Grant the LEAST amount of access for the end user.
DENY then ALLOW, why would you open up Port 80 to the world if you only do business in the United States or local area only?
Why would you open up any Port globally if not used overseas, people with no clue to security allowing access to critical systems open to the world to exploit. The first thing is to block these rogue countries from any access.
The reason for a Linux smart device or appliance because it is customized for the application, like Barracuda or any other smart appliance.
Windows is a HUGE security hole, with the weak underpinnings and NT kernel just one worm/virus away from outbreak.
Beware business cloud dangers, says EU agency
Summary
Businesses should use caution when procuring cloud services, according to the European agency charged with promoting IT security good practice.
Topics
Businesses should use caution when procuring cloud services, according to the European agency charged with promoting IT security good practice.
The European Network and Information Security Agency (Enisa) on Friday published advice and a checklist for organisations thinking of jumping into the cloud, outlining the benefits and risks of using online service provision.
Primarily, organizations should beware of lock-in to cloud services, Enisa told ZDNet UK on Friday. "There is very little in the way of tools and standards for exporting data from one provider to another," said Enisa network security expert Giles Hogben. "That's one of the biggest risks."
Enisa risk management expert Daniele Catteddu told ZDNet UK that governance issues were also a major risk. "There are client code issues like patching, security testing, and policy enforcement," he said.
For more, read "Beware business cloud dangers, says EU agency" on ZDNet UK.
Just In
But then again, what can be expected from trolls anymore?
Originality?
Originality?
Cloud is way to much unknown to trust even a 10th of a second
The unknowns don't have to stay unknown. Enterprises just have to do due diligence when selecting a cloud provider--just like they do when they outsource any other service.
And what a storm it can create.
who can say, with absolute security, to have unpenetrable systems?
The harder it is to penetrate, the harder milions will try to enter.
And what about the client terminals? Probably very unsafe, and a major key-player to get the access - just access the terminal.
I see too many potential holes for my definition of safety.
who can say, with absolute security, to have unpenetrable systems?
The harder it is to penetrate, the harder milions will try to enter.
And what about the client terminals? Probably very unsafe, and a major key-player to get the access - just access the terminal.
I see too many potential holes for my definition of safety.
Cloud computing: a marketing buzzword, designed to 'Bernie Madoff' you into solo-vendor lock-in.
There are advantages to the so-called cloud, yes, but do you trust Microsoft and Google to be your Benevolent Dictator For Life? Of course, there's always the NSA, the IRS, and foreign competitors who might want a looksie at your cloud data! Do recall yesterday' news about breached email data stolen from climate researchers...that could be you!
And, cloud providers are constantly changing their offerings...leaving you out in the cold as fads come and go.
There are advantages to the so-called cloud, yes, but do you trust Microsoft and Google to be your Benevolent Dictator For Life? Of course, there's always the NSA, the IRS, and foreign competitors who might want a looksie at your cloud data! Do recall yesterday' news about breached email data stolen from climate researchers...that could be you!
And, cloud providers are constantly changing their offerings...leaving you out in the cold as fads come and go.
Jurisdiction is also a problem for many.
If the servers are replicated all over the world and you don't have any say over which data centres can be used to store your data, you might have problems.
For legal reasons, a lot of companies aren't able to use cloud services, because they cannot guarantee that the data storage will be to standard and stored on servers in locations which are legally allowed - also, if you are a European company and the cloud provider decides to host the data in the USA (or vice versa), who gets jurisdiction? Can the US Government force the cloud provider to reveal the data under US law, or must they go to court in the country where the data originated and where the company is registered?
Turn it around, if the company is American and the data centre is in Russia, China or a country with much more relaxed laws on access to data?
Hacker? Yep, they are a problem. Tie-in? Yep, that to. But the real nightmare is the legality of storing the data in a cloud.
Cloud services which let the user select which data centres will be used and guarantee not to shift data into other centres will have a distinct advantage over the ones that just replicate the data around the globe willy-nilly.
If the servers are replicated all over the world and you don't have any say over which data centres can be used to store your data, you might have problems.
For legal reasons, a lot of companies aren't able to use cloud services, because they cannot guarantee that the data storage will be to standard and stored on servers in locations which are legally allowed - also, if you are a European company and the cloud provider decides to host the data in the USA (or vice versa), who gets jurisdiction? Can the US Government force the cloud provider to reveal the data under US law, or must they go to court in the country where the data originated and where the company is registered?
Turn it around, if the company is American and the data centre is in Russia, China or a country with much more relaxed laws on access to data?
Hacker? Yep, they are a problem. Tie-in? Yep, that to. But the real nightmare is the legality of storing the data in a cloud.
Cloud services which let the user select which data centres will be used and guarantee not to shift data into other centres will have a distinct advantage over the ones that just replicate the data around the globe willy-nilly.
legality my butt
The main problem is not the legality of the information, almost any country protect the privacy of the information *AND*, at the same time, add some nasty exception about this rule (USA is specially nasty to screw their own Constitution and the privacy of information).
But the real trouble is who (the latest person in the chain of responsibilities) is managing such machine. For example, if a machine is located in Texas or India, then both location can use the same cheap (hence not trusty) workforce. May be the company in Texas can using a h1b workers, or even worst, is off-shoring the work and is using another company, then this company also can use another company to do their job and so on...
The main problem is not the legality of the information, almost any country protect the privacy of the information *AND*, at the same time, add some nasty exception about this rule (USA is specially nasty to screw their own Constitution and the privacy of information).
But the real trouble is who (the latest person in the chain of responsibilities) is managing such machine. For example, if a machine is located in Texas or India, then both location can use the same cheap (hence not trusty) workforce. May be the company in Texas can using a h1b workers, or even worst, is off-shoring the work and is using another company, then this company also can use another company to do their job and so on...
Join the conversation!
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
Vendor Showcase
Facebook Activity
