Cloud Buying Behavior In The Post-Snowden Era

Grazed from Forbes. Author: Ben Kepes.

Many cloud vendors predicted that Edward Snowden’s whistle blowing about widespread NSA surveillance would fundamentally change the technology landscape in general, and the cloud computing landscape in particular. The theory went that customers, wary of their most intimate corporate data being perused by US agencies, would flock to non US cloud vendors to give them security over their data.

Non US vendors such as OnApp and GreenQloud, along with regional service providers such as telcos, either publicly or privately had a view of increasing levels of interest in their services as an alternative to AWS, Google, Microsoft MSFT -0.05% and the other global cloud vendors...

Enabling secure notifications to mobile devices via cloud

Grazed from CIOL. Author: Editorial Staff.

IBM inventors have patented a cloud computing security technique that enables app developers to ensure that data notifications are securely and confidentially pushed to and from mobile devices. It enables developers to create applications that can encrypt data notifications, assign them a unique message identifier (ID) that is securely transmitted to a mobile device via a third-party service provider.

Maintaining the privacy and confidentiality of data shared via mobile networks is a priority for developers, service providers and end-users, yet IBM security researchers found that insufficient security protocols in mobile applications can risk exposing details of data notifications pushed across mobile networks, potentially exposing personal or sensitive information to service providers...

Read more from the source @

Cloud Computing: Microsoft Azure, Office 365 Get EU Privacy Approval

Grazed from RPCMag. Author: Kurt Mackie.

Some of Microsoft's cloud-based services have been endorsed by the European Union's Data Protection Authorities (DPAs) as meeting EU privacy law standards. According to an announcement on Thursday by Microsoft, the 28 DPAs issued a joint letter on April 2 (PDF) signifying approval. The DPAs represent local authorities within the European Union that oversee privacy protections for data services.

Products such as "Microsoft Azure, Office 365, Microsoft Dynamics CRM and Windows Intune" have met privacy standards for transferring data outside the European Union, according to Brad Smith, Microsoft's general counsel and executive vice president of Legal and Corporate Affairs. Microsoft plans to ensure compliance by issuing standard agreements with its EU enterprise customers, starting on July 1...

100 Enterprise Cloud Apps Are Still Dangerous Thanks To The Heartbleed Bug, Researcher Says

Grazed from BusinessInsider. Author: Editorial Staff.

It's been two days since the Heartbleed bug was exposed, a security flaw so bad, security expert Bruce Schneier has called it "catastrophic." The flaw allows hackers to intercept and read website information supposed to be encrypted, like passwords and credit card info. This problem was found in the really popular security software known as OpenSSL used by many huge websites and devices.

That means Heartbleed was found in some of most popular cloud services on the Internet, like Gmail, Yahoo, Flicker, OkCupid, Tumbler and others. The good news is that those sites have been fixed, Mashable reports. More good news: hundreds of other websites are racing to get rid of the bug as we write this. 24 hours after the bug was reported, security vendor SkyHigh Networks had found 368 cloud providers that still had the bug...

Strategies for Managing Data Privacy and Security in the Age of Cloud Computing

Grazed from Acumatica. Author: Editorial Staff.

As a provider of Cloud ERP (enterprise resource planning), Acumatica is acutely aware of many of the concerns that customers have when it comes to utilizing an external provider for hosting and data storage. In fact, because Acumatica was built from the ground up to exist in a hosted environment in the cloud, the solution was architected with security in mind.

Any browser-based application must utilize strong data encryption techniques to ensure the safety of all data between the client browser and the server-based data store. It is the most fundamental step, and naturally that's the first step that you need to validate. Ensuring that at least 2048-bit SSL encryption is used in any session based browser application is key...

With risks revealed, information privacy in the cloud grabs attention

Grazed from TechTarget. Author: Laura Aberle.

While cloud computing is the hottest of hot topics, businesses can be lukewarm when it comes to privacy, security and information governance in the cloud. But recent events such as Edward Snowden's revelations about mass surveillance at the National Security Administration have turned up the heat, according to Else Khoury, the manager of information management services for Niagara Region, a municipal government body in Ontario, Canada. In her AIIM 2014 session "Getting Lost in the Cloud: Privacy Risks and Cloud Computing," she said that privacy has become one of the most buzzed-about issues in information management.

Khoury acknowledged that privacy in the cloud is only one of many challenges discussed at AIIM, but the problems she touched on extend into information governance in the cloud as a whole and to AIIM's overarching theme of information overload creating chaos but also opportunity...

HIPAA and cloud computing: What you need to know

Grazed from ThoughtsOnCloud. Author: Allan Tate.

Many of my clients are in the healthcare field, so a common question is if data can be managed on IBM cloud computing solutions in compliance with the Health Insurance Portability and Accountability Act (HIPAA). The relevant part of this law, enacted by the U.S. Congress in 1996, establishes rules for the storage and transmission of electronic health information. In summary, these rules are:

• Privacy Rule: regulates the use and disclosure of protected health information

• Security Rule: sets national standards for the security of electronic protected health information

• Breach Notification Rule: requires that entities and business associates notify affected individuals (and others) following a breach of unsecured protected health information...

NSA revelations 'changing how businesses store sensitive data'

Grazed from The Guardian.  Author: Matthew Taylor.

The vast scale of online surveillance revealed by Edward Snowden is changing how businesses store commercially sensitive data, with potentially dramatic consequences for the future of the internet, according to a new study.  A survey of 1,000 business leaders from around the world has found that many are questioning their reliance on "cloud computing" in favour of more secure forms of data storage as the whistleblower's revelations continue to reverberate.

The moves by businesses mirror efforts by individual countries, such as Brazil and Germany, which are encouraging regional online traffic to be routed locally rather than through the US, in a move that could have a big impact on US technology companies such as Facebook and Google.  Daniel Castro, a senior analyst at the Information Technology and Innovation Foundation, said the study confirmed "anecdotal evidence that suggests US tech firms are going to be hit hard in the coming years by a global backlash against technology 'made in America'"...

1 in 3 businesses swerve cloud due to government snooping

Grazed from SC Magazine.  Author: Steve Gold.

According to Lieberman Software's report, the bulk of these `cloud defectors' are opting to store their data in local data centre resources, rather than the cloud, thanks in part to Edward Snowden's revelations on the NSA and GCHQ over the last 10 months.

Interestingly, the Privileged Identity Management specialist says that - in its 2012 analysis on the same subject - distrust in cloud computing was even higher. And whilst trust in the cloud has risen by 15 per cent over the last year or so, the government surveillance reports in the news have caused trust levels to take a dive again...

Cloud Computing: Revelations of N.S.A. Spying Cost U.S. Tech Companies

Grazed from The New York Times. Author: Clair Cain Miller.

Microsoft has lost customers, including the government of Brazil. IBM is spending more than a billion dollars to build data centers overseas to reassure foreign customers that their information is safe from prying eyes in the United States government. And tech companies abroad, from Europe to South America, say they are gaining customers that are shunning United States providers, suspicious because of the revelations by Edward J. Snowden that tied these providers to the National Security Agency’s vast surveillance program.

Even as Washington grapples with the diplomatic and political fallout of Mr. Snowden’s leaks, the more urgent issue, companies and analysts say, is economic. Tech executives, including Eric E. Schmidt of Google and Mark Zuckerberg of Facebook, are expected to raise the issue when they return to the White House on Friday for a meeting with President Obama...