As I travelled into London earlier this week for a meeting, I pondered on cloud computing and whether any of the people extolling the concept had any knowledge of the Jericho Forum and the security model it offers.  While I know there is an alliance between Jericho and the Cloud Security Alliance, are the people selling cloud computing products aware of this alliance and if they are, do they support its principle?

It seems to me that cost is the main driver behind the sale of cloud computing (e.g. free or very low cost file storage, office products etc etc) and I don’t see too much about security and what there is tends to talk about virus protection and spam filtering, use of SSL for browser sessions and, if you are lucky, some form of password strength indication.  

So, not a lot hope for a secure world there then – discuss

This Blog has been written by ISAF Blog team member Peter Wenham, CISSP

Delicious

Digg

Reddit

Facebook

StumbleUpon