True story from the consulting trenches: the operations staff had left hours
ago, shaking their heads and reluctantly leaving the consultants to resolve a
problem with their code. It was well past midnight, in the middle of winter,
in a town many time zones from home. The project was late. Altogether, this
was an awkward situation that you probably know well.
The consultants - falling into that murky classification of not quite
outsider, nor regular employee - worked from hobbled accounts; the security
staff were pros and took their charge seriously. By 2:00 a.m., the group was
stuck. They needed to change a properties file residing on a remote server,
but the distributed file system wouldn't allow it, rightfully sneering at the
group like the grubbiest serfs in the kingdom. But there was a Web server...
...And this server was running as root. Before you could say "ex... (more)
Security, Management & Compliance Track at Cloud Expo
Register Today and Save $550 !
Explore Sponsorship Opportunities !
Today marks the beginning of RSA conference in San Francisco, and the Cloud
Security Alliance (CSA) has been quick out of the gate with the release of
its Top Threats to Cloud Computing Report. This peer-reviewed paper
characterizes the top seven threats to cloud computing, offering examples and
The seven threats identified by the CSA are:
Abuse and Nefarious Use of Cloud Computing Insecure Application Programming
Interfaces Malicious Insider... (more)
Cloud is now mature enough that we can begin to identify anti-patterns
associated with using these services.
Keith Shaw from Network World and I spoke about worst practices in the cloud
last week, and our conversation is now available as a podcast.
Come and learn how to avoid making critical mistakes as you move into the
You know that a technology has hit the mainstream when it appears in PCWorld.
Such is the case for cloud computing, a topic PCWorld considers in its recent
piece Amazon Web Services Sees Infrastructure as Commodity. Despite the
rather banal title, this article makes some interesting points about the
nature of commoditization and the effect this will have on the pricing of
services in the cloud. It’s a good article, but I would argue that it
misses an important point about the evolution of cloud services.
Of the three common models of cloud–SaaS, PaaS, and IaaS–it’s the
later, In... (more)
Iron Mountain, the well known information management company, is exiting the
cloud storage business. The company announced yesterday that they will be
phasing out their basic cloud storage services by 2013. Iron Mountain isn’t
the first provider to turn its back on the cloud just as the space is getting
off of the ground; but it is probably the most high profile company to exit
I’ve always liked Iron Mountain because the name makes me think of the
Hobbit (remember Dain of the Iron Hills?) In fact I think that Iron Mountain
is one of the all time great company name... (more)