The author is very firm believe that cloud computing has some destructive value, especially to its long-term damage the ability to "public cloud". This is in a product activation key for microsoft office 2010 economic aid to very compelling, therefore, focus on its safety and legal problems related to get the final solution.
But lately, we noticed, there are already some interesting law dispute, concentrated in the public on the cloud to protect the private information. The latest from Gartner analyst a Andrew Walls reports have pointed out, the enterprise will be very simple determination, to the independent management IT environment than public cloud environment safe.
"When you build private cloud and began to think, 'this is our old data center standards, we now is just change the standard operation modes, which we did not do what the real change in', this is a big problem, therefore, the manager of the data center will often in the security program comment, will be caused virtualization what practical effect."
"They think IT will cause some risk, so IT won't go with IT. But I from a data security organization members of rich experience, the public cloud administrator all over the world, in the public cloud data in the criminal cases than in the enterprise will not be closed IT environment many high."
So, Walls think, many (most) IT organizations do not understand how will change the security pattern virtualization, as for cloud computing is much more confused. So these organizations are not good management public cloud service providers infrastructure. Walls think, cloud computing at the large-scale promotion is unlikely. For companies, there are too many variables.
In fact, either from the technical or the actual situation of enterprise organization, there is a factor, for enterprises and cloud contractors, increase the safety risk control, this is the law. If this means that enterprise can't ignore complete evaluation IT environment safety.
Some laws affect data management and control
Here are two main "threat" and laws, and the cloud. The first thing is to clear legal users, how the provisions in data storage on the security issues and penalties, the European Union's data privacy protection act can be used as a reference. British formulated in 1998 a slightly different data protection laws, and the American current export control law is very interesting, seem to be able to as a reference standard.
"Risk" is cloud service provider cannot assure users stay at the clouds have data they in the data transmission process will not illegal these legal one. In IaaS mode, users often in this respect has a lot of responsibilities, but in PaaS and SaaS environment, the user for most of the data, not clear their treatment process and storage locations. In the final analysis, the user's data is a few outside the scope of the law for use, it is to a great extent, led to the user for data don't control, and in the public cloud, such risk will continue to increase.
Cloud computing lack of judgment
In this case, the cloud storage services found a let them from punishment under the method, it is timely to delete tort data. Even if we can confirm that the find and promote the MP3tunes infringement activities, but we have no legal to confirm this. Found the problem no, here there was a crisis, cloud storage service provider may because evade law and who deal with your data.
But on the other hand, from the crisis in the ownership of the physical equipment control, your data may suffer. Imagine, your cloud service supplier was found violated federal laws involved in the content, the FBI decided the seizing of their server and the content of the disk to further investigation, at that time, your data......
In this hypothesis, you might get your data backup? What right do you have? According to a 2009 Texas custody business case, of whom 200 were for system-the vast majority of belong to supplier customers, and not be investigated the data from the supplier-will be very few, compensation don't want to.
No single "better solution" cloud
I don't want to exaggerate the risk of cloud computing here. We have already in custody, outsourcing and deal with for a long time, the few of them the legal aspects of "catastrophic" problem. Supplier will generally aware of these problems, and provide the structure or function, to help meet the legal requirements. In the long run, these problems will be free from the self, in the public cloud environment before increasing popularity will be solved.
However, here to explicitly pointed out, than the publicity public cloud "safer" private cloud just seems to be just hype, this claim to ignore our new cloud computing market vulnerability this key reality. Until markets mature, "better safety" problem is we should consider, and risk solutions before deployment. Considering that speaking, public and private cloud all have their own strengths and weaknesses-this may from company to company, even a different application each have quality.
That is to say, a key explanation of the Walls, and the author's opinion. Just because a private cloud is behind the firewall, does not mean that you can do the windows vista home basic activation key work safety of less, or more easy to ensure the safety of the private cloud environment. Have a data center will not let you than any public cloud provider to be automatic "safer", the enterprise want to get better security or on their own.