Cybersecurity

Calls for cloud security transparency getting louder

Grazed from TechTarget.  Author:  Michael S. Mimoso.

Cloud security transparency today equates to a non-disclosure-agreement discussion between an enterprise and service provider over the provider’s controls. The end result may satisfy the customer and lead to business for the provider, but the process isn’t efficient for either side.

A lot of CIOs are fearful they don’t believe they know enough about the cloud.

Chris Richter, vice president of managed security services, Savvis.

Despite several standards-based efforts, providers don’t have a repeatable mechanism for these types of interactions, and customers often don’t get an apples-to-apples comparison of providers...

Quantum leap in the works for super-secure cloud computing

Grazed from CNBC.  Author:  Alan Boyle.

If the future is heading toward "cloud computing," where most of your data lives on someone else's server, can you trust the cloud to keep a secret? Researchers say they've found a way to guarantee that your information will be secure in the cloud, using quantum entanglement.

The technique is called blind quantum computing, and it adds one more piece to a puzzle that could eventually be assembled into an entirely new infrastructure for data processing. Theoretically, quantum computers could outdo classical computers when it comes to making weather predictions, simulating biological processes, analyzing chemical reactions and, not incidentally, deciphering secret codes. Data security could become an even bigger issue than it is today...

Kaspersky introduces new cloud edition of Hosted Security

Grazed from Computer Business Review.  Author: Editorial Staff.

Kaspersky Lab is inroducing a new edition of Kaspersky Hosted Security, its cloud-based security for web and email, to help channel partners support smaller firms in addressing the security implications of trends such as consumerisation, the increased use of mobile devices and social media, cloud computing and virtualisation.

Kaspersky Hosted Security doesn't require any investments in IT infrastructure or equipment, no specialist security skills and can be easily scaled up or down to meet changing business needs...

Hackers, like security vendors, are embracing the cloud; can you?

Grazed from CSO.  Author: David Braue.

Large-volume hackers have become cloud pioneers, utilising public infrastructure to threaten companies that often effect ambitious but poorly-considered cloud-computing strategies, a security industry technologist has warned.

Noting the growing reliance on virtualisation and the increasing trend towards pushing virtual machines into public cloud services to cut infrastructure costs, Raimund Genes, global chief technology officer with security firm Trend Micro, warned that too many companies are just moving their security and reliability problems from one infrastructure to another.

Redundancy, for example, must be catered for: while cloud services from Amazon, Microsoft and others allow servers to be spread across servers in multiple geographies to minimise downtime, many companies simply move their existing systems into cloud-hosted virtual machines. This leaves them vulnerable to data and systems loss in the event of even a partial cloud collapse...

PATRIOT Act clouds U.S. tech edge

Grazed from Politico.  Author: David Saleh Rauf.

Cloud computing is a gold mine for the U.S. tech industry, but American firms are encountering resistance from an unexpected enemy overseas: the PATRIOT Act.

The Sept. 11-era law was supposed to help the intelligence community gather data on suspected terrorists. But competitors overseas are using it as a way to discourage foreign countries from signing on with U.S. cloud computing providers like Google and Microsoft: Put your data on a U.S.-based cloud, they warn, and you may just put it in the hands of the U.S. government...

Today's cloud winners: the cybercriminals

Grazed from CSO.  Author: Editorial Staff.

Legal complexities make it difficult to use public cloud computing, according to Raimund Genes, Trend Micro's chief technology officer. Unless you're a criminal, that is.

"Public cloud for me is not really a security challenge. It is a change in the way we operate with data. It doesn't decrease security. It increases complexity, and that's a problem," he told the company's Canberra Cloud Security Conference yesterday.

"The cloud, from a legal point of view, will keep our internal lawyers and everybody else busy for the next fifty, one hundred years," he said.

US cyber chief says cloud computing can manage serious cyber threats

Grazed from Network World.  Author: Michael Cooney.

The security of cloud computing is often debated but such debates seem to be over for the general tasked with running the United States military's cyber command, who sees the technology not only as way to rein in IT costs but a way to more easily protect IT assets...

U.S. Counts on the Cloud to Boost Cyber–Security

Grazed from eWeek.  Author: Fahmida Y. Rashid.

Army Gen. Keith Alexander, head of the National Security Agency (NSA), discussed the cloud and how to defend against increasingly sophisticated cyber-threats at a recent Information Systems Security Association conference in Baltimore and in a follow-up interview with eWEEK. As commander of U.S. Cyber Command, he also discussed rules of engagement for the military in cyberspace...

Intelligence community looks to cloud computing

Grazed from Defense Systems.  Author:  Amber Corrin.

Turning to a cloud solution that seemingly leaves behind the silos of secrecy may not be an obvious choice for intelligence agencies, but as budget cuts affect the Defense Department – including its intelligence components – that’s what’s happening, officials said...

NSA Chief Plays Offense on Cloud, Cybersecurity

Grazed from InformationWeek.  Author:  J. Nicholas Hoover.

Cloud computing will make the intelligence community more secure and efficient, NSA director and U.S. Cyber Command commander Gen. Keith Alexander said Thursday.

In a speech in Baltimore before security professionals and a subsequent interview with InformationWeek and other media, Alexander touted the cloud as a key part of the intelligence community's IT strategy...