Feet on the Ground, Head in the Cloud

Feet on the Ground, Head in the Cloud

Summary: Is cloud computing the next wave in computing evolution? Should everything be in the Cloud?


Many people talk about cloud computing, but few people understand what it really means. To be succinct, at its core the Cloud is simply internet-based computing. Instead of your applications and data running on a client/server motif, shared resources, software and data are all stored on the internet, rather than a centralized server at your company's office.

You may already be using cloud computing and are completely unaware of it. Google's GMail and Google Apps, Flickr, Dropbox, Salesforce.com -- all of these are great examples of cloud services. There are plenty more, but this gives you an idea of how cloud computing has actually become widespread.

The advantages to cloud computing are many. For example, a business or user doesn't have to use up their storage for their data. Data can be accessed from anywhere, usually with nothing more than an internet connection and a web browser. Data is backed up and secured off-site, with redundancy in the event of failure that most users and even businesses cannot afford to maintain.

There are, of course, disadvantages to cloud computing. For instance, the hacker attack on Google this past January just shows how insecure your data can be. Of course, the weak link in the security chain is usually the human element: social engineering, fraud, and easy-to-guess passwords.

This leads into the security of your data. If a cloud services company can get hacked, then your data can be compromised if it is not encrypted. Industrial espionage is not new, and was reason behind the attack on Google and numerous other companies. The more secure your data needs to be, the less ideal cloud computing seems. If you have data you need to share but it isn't sensitive, then it's no big deal if someone sees it. Otherwise you need to encrypt all of your data, or avoid using the Cloud.

Another disadvantage is access. Some companies, or even countries might not let you access your data from their location, even if you use a secure connection like a VPN. What if the internet connection goes down? On a local network you could at least access your local network server to access your data, or your email. But not if it's in the Cloud.

There are other aspects of the Cloud that don't apply to consumers at all, such as Amazon's EC2 service. Here, you can boot instances of virtual servers to host your company's web-based business without having to buy space in a datacenter or physical servers. The major drawback is simply the matter of connectivity. If Amazon's service or network connections go down, your site goes down. But this is true for any datacenter or internet-connected office network.

These servers are more secure than standard cloud services as noted above. They are limited by your own security measures that you enable on each virtualized server. Depending on someone else's security claims as your sole line of defense is usually not a good idea.

So where does this leave us? On the business side of things, I wouldn't recommend using the Cloud to outsource your email unless you have encrypted all of your communications -- not unless you don't care if your competitors can end up reading all of your emails. The same goes for document storage.

If the human element is the weak link in terms of security, remove the link. Make it so that even if someone hands over their password to a stranger it won't have any effect on your data. If a Cloud service guarantees that your data is safe, get it in writing that they will pay damages in the event that the data becomes compromised by an outside party.

As for consumers, you have fewer options. Not everyone has the resources or ability to host their own servers. For most consumers, Email is through a service like GMail or Yahoo or Hotmail. If you use one of these services, change your passwords regularly and don't use any easily guessable words, such as names of relatives or pets. Don't use security questions that can be guessed, period.

Without going into a whole seminar on user security, it boils down to using (un)common sense and never giving your login credentials to anyone that asks for them. Use the Cloud services, but don't keep sensitive information on them. You have a computer, desktop, laptop or otherwise; save your private data to your hard drive and wipe it from the cloud service. There's nothing wrong with using Cloud services, just as long as a little preventative medicine goes along with it.

As for the future of cloud computing, that remains to be seen. In the early days of shared computing, everything was done on a mainframe where data was accessed on dumb terminals. The move to client/server technology changed all of that. The internet brought the advent of internet-based computing, a global scope re-imagining of the early days of centralized computing. What is old is new again.

The devices we use may determine where we go from here. If we all end up using lightweight slate devices, web-based Cloud apps and services may take over the majority of how we do business and conduct our personal communications. I think it would be safe to say that people may want their own personal, isolated online storage; a place where they can maintain their data and web-based applications rather than shared space.

Still, I doubt that the Cloud will ever completely replace individual computing needs. There will always be a demand, however small, for storage and services that are directly under the control of the user or business that requires them.

Topics: Hardware, Browser, Cloud, Security, Servers, Virtualization

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • The cloud is also a HUGE step back in security

    There is no such thing as a secure cloud system.

    Internal clouds don't count, because they are nothing more than going back to the thin clients IBM was selling in the 80's.
  • Yeh but I don't trust users

    There might be some risks with the cloud. But there are far more risks from negligent and uninformed users who open emails with promises of free money from Nigeria, or give me your bank account details, or click on this attached application....

    Users are more of a security risk to themselves than any organized attack on the cloud. At least cloud services are protected from most of the virus attacks that represent the vast majority of cyber-security threats in today's world.
    • With the cloud, there is no need for dumb users

      The data is freely stored in your servers. Why do you need to phish for a password, when you already have admin access to everything???
  • The cloud is not learning from history

    The "cloud" is exactly the same as mainframe computing in the last century. Instead of you having any functionality on your own device, it resides with someone else.

    It was bad enough that the someone else used to be the IT department, but at least you had some slim chance of making them responsible, not with cloud-based vendors though.

    Tieing your company's success to some cloud vendor just increases the risk of failure.
    • Failure is not the issue

      Putting your company's trade secrets in the hands of unknown people in an unknown location is.
  • RE: Feet on the Ground, Head in the Cloud

    Just to add a vendor's perspective; we don't claim (in common with many providers) that our cloud is applicable to all cloud computing uses. In fact, different clouds (we are in the IaaS space) are better or worse for various computing needs depending on their underlying infrastructure.

    One important point to make. Many of the large clouds in the IaaS space out there right now use relatively old platforms that limit the user's control and the provider has software access to their cloud severs. This just isn't necessary any more. For example on our platform we don't have access inside users' servers, additionally they have the option to fully encrypt their virtual drives using 256bit AES encryption.

    Secondly, we advice users migrating to the cloud to set-up in multiple clouds with fail-over. In clouds with persistent storage and servers (such as ours), you aren't getting charged for servers that aren't turned on (storage being always on so that is the exception but relatively inexpensive compared with computing resources). Users are often then migrating from single infrastructure previously managed by themselves to a primary cloud with secondary and even tertiary fail-over clouds in high availability, high security data centres. When combined with no software access by the cloud provider and use of encrypted connections between the clouds, can one really claim this is less robust than an in-house solution?

    Kind regards,


    Robert Jenkins
  • Folks, the Cloud is here. Get over it.

    Your IT job may ultimately depend on your 'flexibility' and ability to 'adapt' to Cloud computing.

    When it becomes a serious enough cost consideration, the Folks clinging to Fat client who don't have Cloud expertise are likely to be jettisoned first.

    Bone up on the Cloud. It won't hurt your skill-set and will provide job stability.

    Tip of the Day! ;)
    Dietrich T. Schmitz, ~ Your Linux Advocate
    • RE: Feet on the Ground, Head in the Cloud

      @Dietrich T. Schmitz, Your Linux Advocate - Here, here! +1
  • No, no, no, JUST NO!

    Why should I give my computer to someone else to keep? It makes no sense, and only further complicates security practices.

    [i]To be succinct, at its core the Cloud is simply internet-based computing. Instead of your applications and data running on a client/server motif, shared resources, software and data are all stored on the internet, rather than a centralized server at your company?s office.[/i]

    First off, the Internet is already clogged with nonsense, the fact that I have nothing to rely on but the Internet connection is worrisome at best. Try sitting on a school campus with thousands of other students accessing the network and see what happens. It's bad enough already.

    Second, I WOULD NEVER give my data to anyone to be stored for me. Microsoft's Danger accident, Google's network intrusion disaster, and various other network related disasters should serve as a warning to anyone giddy enough to throw their data away.
    The one and only, Cylon Centurion
    • Blah. Ballmer feels otherwise. Get over it.

      You need to educate yourself.
      Dietrich T. Schmitz, ~ Your Linux Advocate
      • Educate myself?

        @Dietrich T. Schmitz, Your Linux Advocate.

        Buddy, I know what is what. And anyone with a brain should know the cloud, is a no-no. DO you really trust others with your data?
        Do you want a computing experience where you are fighting thousands of other users for network bandwidth, not load load a browser, but to load you entire desktop?
        Do you want the potential risk of having your data open to the world?
        Dietrich, having your eggs in one basket is inviting disaster. You and I both know it is only a matter of time.
        The one and only, Cylon Centurion