Cloud computing has taken some heat this week. First, over the weekend Apple co-founder and tech icon Steve Wozniak said he's worried about the "horrendous" problems cloud computing could cause as users yield control of their data to service providers.
Then, early this week, Mat Honan, a reporter at Wired magazine, revealed how hackers manipulated the customer service departments of Apple and Amazon to ultimately compromise his Google and Twitter accounts. This led to all of his personal and professional data being lost and bigoted updates to be aired from his social media accounts. In a gut-wrenching first-hand account of the incident, Honan warns of a "looming nightmare" stemming from "vital security flaws" that exist in the cloud computing industry.
But what exactly is the problem Wozniak is warning about and who was really at fault in Honan's situation? In response to the flurry of criticism being spread about the cloud, a variety of service providers have come out passionately defending their industry, pointing out that the cloud can potentially be a haven for hackers, but that if architected properly with the right protections in place, it can be as safe as users make it.
"We have to respectfully disagree with Mr. Wozniak," says Rob May, CEO of Backupify, which provides a secondary backup solution for cloud users. Wozniak's criticism centers around the idea that users cede control of their data when they ship it off to a cloud provider. May says there's an easy solution to that: Keep a second copy of your data with another provider, or use a federated approach to avoid putting all your eggs in one basket.
Others say controlling your data isn't about backing it up, it's about encrypting it. "Use of an encryption gateway ... provides an ideal way for people to control their data from a security, privacy and data residency standpoint," says Kevin Bocek, VP of marketing for CipherCloud, arguing as a solution to address Wozniak's concerns that data needs to be not just backed up, but instead encrypted so that no one else can access it.
Mark O'Neill, CTO of cloud broker Vordel, says there's another simple solution: Perhaps a company's most sensitive data may not be ready to be put up into the cloud yet. Companies can selectively choose which data is stored in the cloud, allowing users to "hedge your investments," he says.
The back-and-forth between the cloud critics and the cloud defenders is only natural. Ultimately, the fundamental arguments made by both Wozniak and Honan are about trust, which are "absolutely legitimate concerns," says Andi Mann, vice president of strategy for CA Technologies. "The cloud is not magic," Mann reminds users, noting that it still requires a plan on the end user's part to ensure the systems are secured effectively.
Sign up for Computerworld eNewsletters.