clouds
Cloud computing could lead to great cost savings, but many fear the data security risks
R E L A T E D   C O N T E N T
Similar articles
IT hound results
News centre
More from V3.co.uk

Free email newsletters




ADVERTISEMENT

Summit: Industry needs to come clean on cloud security

Trend Micro CTO warns of widespread data theft

Phil Muncaster, V3.co.uk 10 Nov 2009
ADVERTISEMENT

A leading security expert has warned of widespread data theft as more and more organisations move their information into the cloud, and urged firms to consider data encryption by key management as the only viable way to mitigate this risk.

Speaking to V3.co.uk as part of its Information Overload Summit, Dave Rand, chief technology officer of security vendor Trend Micro, argued that IT teams want to move to cloud computing because of the cost savings, but are put off by the lack of data protection assurance offered by any of the major cloud providers.

"Most cloud service providers don't have any data backup strategy; there are no adequate security measures recording who's accessing the data, and the reason is the effect on performance," he explained.

"In the next few years there will be a move towards controlling the data itself or keeping it secure by default – encrypting it by key management at the point of production and decrypting it at the point of consumption."

However, real-time data encryption and key management is no panacea, Rand warned, as it can be open to data being "snooped in-flight", and if organisations lose their keys, any data would be irretrievable.

"The IT security industry needs to own up and say it doesn't have all the answers – but with the emergence of the cloud we have to come to a conclusion," said Rand.

"Between now and widespread adoption we will see massive data theft occurring as people move into the cloud. There will be repeated issues of data going astray, and when it occurs people will get fired and they will be yelling, and then they'll finally realise it's not just protecting the integrity of the system that matters but the data."

Howard Schmidt, president of the Information Security Forum and former White House cyber security adviser, argued that strong authentication, and encryption of data in transit and at rest are essential to securing cloud environments.

However, he said that most cloud providers are already listening to and working on customers' requests for this kind of functionality to be built into their environments.

Visit our dedicated Summit web site here for breaking news, analysis and video on the topic of Information Overload.

See also:

Safe
Former employees posing major threat to data
Disgruntled ex-workers hampering security efforts  09 Nov 2009
Threats
SSL flaw prompts security scramble
Vendors work to protect against 'man in the middle' flaw  06 Nov 2009
Rackspace
Rackspace offers self-service migration to hosted email
Customers can seamlessly move data, says firm  05 Nov 2009
EU flag
EU sanctions 'three strikes' rule for illegal file sharers
Conciliation delegation agrees final details on Telecom Reform Package  05 Nov 2009
T-Mobile
Software glitch causes T-Mobile outage
Back-end error leaves customers cut off for hours  05 Nov 2009

All Enterprise Security Technology
Tags: Cloud-computing, Saas, Trend-micro, Isf, Threats, V3-summit, Security, Strategy

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Blackberry Developer - The Hague
| Randstad Technologies
Blackberry Developer - €45,000 - €50,000 – The Hague Leading mobile application development Company is looking for a talented senior software developer to join the mobile software engineering team to design and develop the next ... more >
SOFTWARE DEVELOPMENT MANAGER - MANCHESTER
| Evolution Recruitment Solutions
IT Development Manager - .Net, C#, embedded C, SQL. This is a new position to take ownership of UK focused software development projects. Core responsibilities will be delivering new software solutions, identifying development requirements, managing ... more >
2 x Java / Oracle Developers - Birmingham
| Computer People
Working for an award winning technology company based in Birmingham, Computer People are looking for 2 Java Software developers to join them in brand new positions. The role will involve end to end analysis and ... more >
C#.NET Software Engineer - Technical Lead - growing firm!
| Computer People
Computer People Nottingham are recruiting for a local firm who are experiencing great success within their industry sector. With long-term growth plans, business is booming hence the need for a new Lead Software Engineer skilled ... more >
More job opportunities

Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site . Advertise
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP and Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Software engineer jobs
Inquirer Jobs Firmware developer jobs, Electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . V3.co.uk
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Investments Limited 2010, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093