Cloud Technology and Security Alert News Digest – Issue #13

Explore the power and weaknesses of encryption

Encryption in Cloud ComputingWelcome to the Cloud Technology and Security Alert News Digest.
This week we’ll explore both the power and weaknesses of encryption, the fully controlled future of cloud computing that OpenStack might deliver, and the Internet’s darkest, deepest reaches.

When encryption fails

Columbia University CompSci professor Steven M. Bellovin, in an Ars Technia article, observes that encryption alone is not nearly enough to prevent successful breeches like the recent massive theft of sensitive health information from the health insurer, Anthem. While encryption should certainly be part of a security plan, once an intruder has access to your system, the strongest algorithms known to science won’t do a thing. Instead, writes Prof. Bellovin, taking steps to secure your OS and account access should be given far more attention.

OpenStack: the cloud’s most disruptive platform?

Intel’s Billy Cox, writing on the IBM blog, Thoughts on Cloud, nicely describes the potential of enormously scalable projects like OpenStack to radically change our expectations in computing. The closer OpenStack comes to the reliability of integrated upgrades, rolling upgrades, and roll-back, the easier it will become for enterprise to comfortably adopt new kinds cloud deployments. And, observes Cox, the sheer scale of OpenStack makes significant and regular developments possible.

A new lock for the box

Jon Brodkin at Ars Technica reports that Box – known for its collaboration-centered online storage service – will now allow security conscious customers to have full control over their encryption keys. Noting that this move is, in a way, a contradiction to the value that easy document sharing gave Box, Brodkin explains that by connecting Box accounts to AWS’s CloudHSM, their new Enterprise Key Management tool might successfully find a middle ground between “open” and “secure.”

The Dark Web

You think Google searches cover a lot of web sites? Mark Stockley at Naked security writes that there might be at least as much of the Internet that Google DOESN’T reach…and, for our general needs, doesn’t have to. However, law enforcement agencies have an interest in peering into what’s known as the Dark Web – those sites that, intentionally or not – are not indexed by commercial search engines. The US military’s DARPA is developing a tool called Memex to intelligently (and boldly) search those places where “no man has gone before.”

Written by

A Linux system administrator with twenty years' experience as a high school teacher, David has been around the industry long enough to have witnessed decades of technology trend predictions; most of them turning out to be dead wrong.

Related Posts

Albert Qian
— August 28, 2018

Introducing Assessment Cycles

Today, cloud technology platforms and best practices around them move faster than ever, resulting in a paradigm shift for how organizations onboard and train their employees. While assessing employee skills on an annual basis might have sufficed a decade ago, the reality is that organiz...

Read more
  • Cloud Computing
  • Product Feature
  • Skill Profiles
— July 31, 2018

Cloud Skills: Transforming Your Teams with Technology and Data

How building Cloud Academy helped us understand the challenges of transforming large teams, and how data and planning can help with your cloud transformation.When we started Cloud Academy a few years ago, our founding team knew that cloud was going to be a revolution for the IT indu...

Read more
  • Cloud Computing
  • Skill Profiles
— June 26, 2018

Disadvantages of Cloud Computing

If you want to deliver digital services of any kind, you’ll need to compute resources including CPU, memory, storage, and network connectivity. Which resources you choose for your delivery, cloud-based or local, is up to you. But you’ll definitely want to do your homework first.Cloud ...

Read more
  • AWS
  • Azure
  • Cloud Computing
  • Google Cloud
Albert Qian
— May 23, 2018

Announcing Skill Profiles Beta

Now that you’ve decided to invest in the cloud, one of your chief concerns might be maximizing your investment. With little time to align resources with your vision, how do you objectively know the capabilities of your teams?By partnering with hundreds of enterprise organizations, we’...

Read more
  • Cloud Computing
  • Product Feature
  • Skill Profiles
— April 5, 2018

A New Paradigm for Cloud Training is Needed (and Other Insights We Can Democratize)

It’s no secret that cloud, its supporting technologies, and the capabilities it unlocks is disrupting IT. Whether you’re cloud-first, multi-cloud, or migrating workload by workload, every step up the ever-changing cloud capability curve depends on your people, your technology, and your ...

Read more
  • Cloud Computing
— March 29, 2018

What is Chaos Engineering? Failure Becomes Reliability

In the IT world, failure is inevitable. A server might go down, an app may fail, etc. Does your team know what to do during a major outage? Do you know what instances may cause a larger systems failure? Chaos engineering, or chaos as a service, will help you fail responsibly.It almost...

Read more
  • Cloud Computing
  • DevOps
— November 22, 2017

AWS re:Invent 2017: Themes and Tools Shaping Cloud Computing in 2018

As the sixth annual re:Invent approaches, it’s a good time to look back at how the industry has progressed over the past year. How have last year’s trends held up, and what new trends are on the horizon? Where is AWS investing with its products and services? How are enterprises respondi...

Read more
  • AWS
  • Cloud Adoption
  • Cloud Computing
  • reInvent17
— October 27, 2017

Cloud Academy at Cloud Expo Santa Clara, Oct 31 – Nov 2

71% of IT decision-makers believe that a lack of cloud expertise in their organizations has resulted in lost revenue.1  That’s why building a culture of cloud—and the common language and skills to support cloud-first—is so important for companies who want to stay ahead of the transfor...

Read more
  • Cloud Computing
  • Events
— October 24, 2017

Product News: Announcing Cloud Academy Exams, Improved Filtering & Navigation, and More

At Cloud Academy, we’re obsessed with creating value for the organizations who trust us as the single source for the learning, practice, and collaboration that enables a culture of cloud.Today, we’re excited to announce the general availability of several new features in our Content L...

Read more
  • Cloud Computing
— August 29, 2017

On 'the public understanding of encryption' Tweet by Paul Johnston

Some of the questions by journalists about encryption prove they don't get it. Politicians don't seem to get it either (most of them). In fact, outside technology, there are some ridiculous notions of what encryption means. Over and over again, the same rubbish around encrypti...

Read more
  • Cloud Computing
— July 13, 2017

Our Hands-on Labs have a new look

Building new hands-on labs and improving our existing labs is a major focus of Cloud Academy for 2017 and beyond. If you search "types of adult learning," you will get approximately 16.9 gazillion hits. Many will boast about how they meet the needs of a certain type of learner (up to 70...

Read more
  • Cloud Computing
  • hands-on labs
— July 11, 2017

New infographic: Cloud computing in 2017

With 83% of businesses ranking cloud skills as critical for digital transformation in 2017, it’s great news for anyone with cloud architecting experience, and for those considering a career in cloud computing. In our new infographic, we compiled some of the latest industry research to l...

Read more
  • Cloud Computing