Sorry, cloud resisters: Control does not equal security

July 18, 2014 Off By David

Grazed from InfoWorld. Author: David Linthicum.

Do you remember last Christmas? Target lost data from about 40 million credit and debit cards that were stolen at its stores between Nov. 27 and Dec. 15, the height of the holiday shopping period. Thieves tampered with the sales terminals’ card swipers to gain access to the data stored on the magnetic stripe on the back of credit and debit cards.

And do you remember Sony’s huge PlayStation Network security blunder that exposed as many as 100 million credit card numbers? It cost Sony big and required user account reboots. What do all these security issues have in common? All are breaches that occurred from internal systems — systems in which IT departments were in direct control…

The problem is that many people equate control with security. Many CIOs have told me they need to have complete control of their servers to ensure they’re secure. Well, all major security breaches occur in systems that are under IT’s "direct control." You never hear about them, unless they’re as spectacular and far-reaching as Sony’s and Target’s breaches…

CategoryNews

Cloud Computing: PredictionIO Raises $2.5M For Open Source Machine Learning Server For Predictive Analytics

Cloud Computing: Oracle saddles up with OpenStack distributor Mirantis