The Cache: Technology Expert's Forum
 
*
Welcome, Guest. Please login or register. September 20, 2019, 11:01:12 AM

Login with username, password and session length


Pages: [1]
  Print  
Author Topic: Mafiaboy on cloud (in)security  (Read 1083 times)
isthisthingon
Global Moderator
Lifer
*****
Offline Offline

Posts: 2879



View Profile
« on: November 27, 2010, 04:26:11 PM »

http://www.pcworld.com/article/211753/convicted_botnet_author_describes_next_targets.html?tk=nl_dnx_h_crawl

Quote
"These businesses are a lot more at risk today than ever before. So much data is available, and being put into the cloud," said Calce. "It's one of the reasons I've decided to break my silence."  While he understands the practicality behind the cloud architecture, agreeing it's what the Internet was really designed to be, Calce said he worries if we're ready for the security risks and are willing to address them.

In an interview with CDN, Calce said while everyone is focused on the cloud, his biggest concern is that we're not even secure with our current infrastructure, and here we are putting our data alone in one bubble.It's a great concept, but he said security seems to be an afterthought.  "It's hard to patch-up holes when so many bullets have already been fired. I know I'll never get businesses to agree but we need to slow down technology, and stop reinventing without fixing the predecessor first," said Calce. "We're always taking on security as an afterthought. We should redesign the protocols behind the Internet to make it less exploitable.

Yet I believe "redesigning the protocols behind the Internet" just ain't gonna happen unless the cost can be justified against real, tangible threats that are impossible to mitigate otherwise.
Logged

I would love to change the world, but they won't give me the source code.
perkiset
Olde World Hacker
Administrator
Lifer
*****
Offline Offline

Posts: 10096



View Profile
« Reply #1 on: November 29, 2010, 10:46:03 AM »

Zactly. Let's tear down the whole thing and reboot, shall we?

There is an interesting point hinted at in there, regarding the net-security (as in bottom line, not network) of a cloud based system. In other words, a cloud application is only as secure as its weakest link. This is a VERY important point for constructors of cloud apps/tech to make sure that they are doing their due diligence with partners.

But at the end of the day, the customer really is at the whim of what I (the macro "I") do.
Logged

It is now believed, that after having lived in one compound with 3 wives and never leaving the house for 5 years, Bin Laden called the U.S. Navy Seals himself.
nutballs
Administrator
Lifer
*****
Offline Offline

Posts: 5627


Back in my day we had 9 planets


View Profile
« Reply #2 on: November 29, 2010, 04:46:09 PM »

yep we are awesome. the end 
Logged

I could eat a bowl of Alphabet Soup and shit a better argument than that.
Pages: [1]
  Print  
 
Jump to:  

Perkiset's Place Home   Best of The Cache   phpMyIDE: MySQL Stored Procedures, Functions & Triggers
Politics @ Perkiset's   Pinkhat's Perspective   
cache
mart
coder
programmers
ajax
php
javascript
Powered by MySQL Powered by PHP Powered by SMF 1.1.2 | SMF © 2006-2007, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks


Valid XHTML 1.0! Valid CSS!