PaulDotCom mailing list archives
Security in The Cloud
From: zach at n0where.org (Zach Lanier)
Date: Wed, 18 Mar 2009 15:17:01 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Fitzpatrick wrote:
Just read an article about EPIC (Electronic Privacy Information Center) asking the FTC to investigate Google for "the adequacy of the privacy and security safeguards." They have even stated that gmail, google docs, etc should be taken offline until google can prove their security. Personally when I read things like this I always ask myself 'What would Bruce Schneier say?". I think it is up to an individual to measure the risk of cloud computing and act accordingly. I know EPIC is trying to help the average Joe out there but jumping up and down and yelling at google accomplishes little. Their efforts would be better spent on teaching people how to take their privacy into their own hands. As I type I am doing a search on a p2p network and the amount of personal documents shared is staggering. Cloud computing may seem scary to privacy advocates but at least when google has a breach you hear about it. The same can't be said for when there is a breach on your personal PC attached to the internet. What are your opinions on this? _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
It's almost as though EPIC need to remind everyone that they still exist and haven't become entirely decrepit and overshadowed by the EFF. The document is well assembled, citing examples that most users *don't* consider when using Google services (or just about any *aaS, for that matter). Incidentally, the complaint references a recently published report from the World Privacy Forum on privacy risks in Cloud Computing[1]. Both documents raise a few similar points. For example, how many of us actually read, end-to-end, the TOS and privacy policy of the Provider? How many of us validate claims like "your data are safe from unauthorized access when you store it on our Cumulonimbus Mega Awesome Cloud Storage Platform"? I, for one, laud EPIC's past efforts and the heart whence this complaint emerges. However, like a few others, the request for enjoinment basically negated my support for the complaint in its entirety. [1] http://www.worldprivacyforum.org/pdf/WPF_Cloud_Privacy_Report.pdf - -- Zach Lanier | http://n0where.org/ | (617) 606-3451 FP: 7CC5 5DEE E46F 5F41 9913 1577 E320 1D64 A200 AB49 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAknBSK0ACgkQ4yAdZKIAq0nxtACfYtA1+B9vV6C947GFbERZ3fiq ybAAoITsFHFeIoyeq0QN0aCnMaK5SaFR =UU3T -----END PGP SIGNATURE-----
Current thread:
- Meterpreter screenshot script John Miller (Mar 17)
- Meterpreter screenshot script Carlos PĂ©rez (Mar 17)
- Meterpreter screenshot script John (Mar 17)
- Meterpreter screenshot script Carlos Perez (Mar 17)
- Meterpreter screenshot script John (Mar 17)
- Security in The Cloud John Fitzpatrick (Mar 17)
- Security in The Cloud Joel Esler (Mar 17)
- Security in The Cloud Jack Daniel (Mar 18)
- Security in The Cloud Zach Lanier (Mar 18)
- Meterpreter screenshot script John (Mar 17)
- Meterpreter screenshot script Carlos Perez (Mar 18)
- Meterpreter screenshot script Carlos PĂ©rez (Mar 17)