The ISA's National Institute of Standards and Technology (NIST) – recently accused of collaborating with the NSA to weaken security standards – has put together a paper highlighting the key-management challenge posed by cloud computing platforms. As readers will know, key multiplication (and therefore management) can be headache …
...spreading 1unwanted keys...
Yes, there's a button for that. But since that requires me to have an email application registered I can't be bothered using it.
Sounds like common sense advice
Unfortunately they're also considered a puppet for the alphabet agencies and nobody will ever take them seriously again. They might as well disband now and save the money.
All pretty irrelevant if the servers sit in a country with *no* effective data protection.
Like for example America with THE PATRIOT Act in force.
Some solutions also exist
Well, full disclosure - this is a bit blowing our own horn - but we've built a solution to the cloud key management problem using homomorphic key encryption and split-key encryption. The idea is to give you the full flexibility of Infrastructure and Platform clouds while ensuring high security and - most importantly - leaving control of the keys in your own hands (not any alphabet-soup agency...). Take a look: http://www.porticor.com/technology/
- Review Xperia Z3: Crikey, Sony – ANOTHER flagship phondleslab?
- Pics Whisper tracks its users. So we tracked down its LA office. This is what happened next
- Human spacecraft dodge COMET CHUNKS pelting off Mars
- Ex-US Navy fighter pilot MIT prof: Drones beat humans - I should know
- Downrange Are you a gun owner? Let us in OR ELSE, say Blighty's top cops