Comments on: Entering the “Cloud Security” Fray

By: Adam Young

Adam Young — Fri, 21 Nov 2008 21:22:37 +0000

There is, of course, the multiplicative effect of a compromise in the cloud deployment mechanism. Say they use a VM to deploy on the cloud, and there is an escalation path from the VM out into the cloud hardware, the impact could be large.

Maxo probably has the right approach for personal use, but in order for the Cloud approach to be viable, you have to be able to trust it.

There is always a risk from a monoculture.

By: Adam Young

Adam Young — Fri, 21 Nov 2008 21:22:00 +0000

Maxo probably has the right approach for personal use, but in order for the Cloud approach to be viable, you have to be able to trust it.

There is always a risk from a monoculture.

By: Maxo

Maxo — Fri, 21 Nov 2008 19:43:26 +0000

I made a similar argument last week about how the cloud may increase security for the average user. The argument goes like this, the average computer user knows little to nothing about security and is very vulnerable. If their data was on the cloud it would be more secure because it would be in the hands of "experts", for what that is worth. Computer geeks who know how to secure their data properly are probably less secure with their data in the cloud. There are more computer users that will have a security gain by having their data in the cloud than there are that stand to lose. Therefore the net effect of cloud computer may be a net gain for security.

For me I put nonsensitive data, like my class work in the cloud (Google Docs) and leave my sensitive information (financial, etc.) on my PC.

By: Maxo

Maxo — Fri, 21 Nov 2008 19:43:00 +0000

For me I put nonsensitive data, like my class work in the cloud (Google Docs) and leave my sensitive information (financial, etc.) on my PC.