Cloud computing is simply computers somewhere else, dolling out software or hardware recourses over the Internet or local network. The inherent risks all still exist, but not on site. Despite this, the cloud has become quite popular with businesses and institutions as a way of storing and accessing data and information on demand.
Some of these institutions, including large US law firms, are slowly and reluctantly implementing the use of these services, but have fears that sensitive information could potentially be compromised (hacked) by exploiting their relatively weak security measures.
Using these services, such as IaaS (infrastructure-as-a-service), StaaS (storage-as-a-service), and PaaS (platform-as-a-service), can be both beneficial and potentially risky for those involved in the US justice system.
On one side of the cloud coin, major law firms can store an incredible amount of legal documentation that can be accessed at any given point for documentation management. This means that records are less likely to be lost, damaged, or misfiled over data stored locally on hard drives or physical paper filing. Cloud services also provide the end-user the ability to manage human resources more efficiently, a centrally-controlled email management system (easier for containing viruses, spam checking, etc.), and the reduction of physical hardware needed in-house, which can also reduce the costs associated with IT services.
The other side of that coin is painted in an unattractive light, and is anything but beneficial to large law firms: Security risks that can potentially compromise sensitive material such as confidential client information and court litigation information. Cloud services generally use the same security measures (firewall, IPsec Protocol, anti-virus protection, etc.) and encryption methods of a typical shared multi-user mainframe (server). The problem with implementing cloud defense tactics is that the services are still in their infancy, which means security measures are basic at best.
There are some choices that could easily be integrated into the various services, potentially increasing the cloud's overall defensive posture in detering cyber-attacks, such as those implemented by the US military, including ultra-strong secure operating systems. These are based on system kernel technology (such as the Bell-LaPadula model, which enforces access control) that reinforces key security policies in the OS that are absolutely enforced in the system, and therefore extremely difficult to gain access.
The operating systems designed using kernel-based tactics (such as Honeywell SCOMP, NSA Blacker, Boeing MLS LAN, and USAF SACDIN) are used to secure critical information along the lines of national security, classified military data, and information regarding international financial institutions.
Orange Book A-1 (taken from the DoD’s Trusted Computer Evaluation Criteria standard), is the top of the line for classified information. It’s still not completely secure, as anyone willing and able could find ways around those measures. However, adapting cloud services to use the kernel method of anti-intrusion is a very viable option for large law firms to implement. It could effectively ease the fears associated with storing sensitive legal data in a cloud environment.
Do you think the information you store in the cloud is safe? Tell us in the comments section below.
There is one thing that really makes me second guess motive for "Cloud" computing.
Data-storage is very inexpensive so why would you want to store your personal or sensitive information on someone else's computer/ Database?
A thumb drive can hold up to a Terra-bit of information, and many hard-drives 500gb - 1TB can be purchased for under $200; now that's storage, and cheap storage, having two drives to back stuff up is obtainable because of the inexpensive equipment.
Not only would you protect your personal data but you can store tones of data without paying a monthly fee, risking exposure, or worse.
Also, if you have a "Top Level Domain Name" and you pay for hosting with "Hostgator", you receive unlimited space for about $4.50 a month and everything is backed up.
I really don't see the point to cloud, if it's your data, keep it that way.
Hate to say it, but any electromagnetic field would have adverse effects on 5 ¼" floppies. Home backups with standard magnetic disc harddrives suffer from a similar problem. So, perhaps hackers are the least of our concerns.
Cabe, From a practical point of view, I don't worry about putting information into the cloud. But when it comes to financial records, even though I think it is very unlikely someone will hack into the file, I'm not ready to do it. Cloud back-ups are awesome, transparent and dirt-cheap. But for a business, there are another set of issues to contend with.
There are three assumptions in this thread that aren't valid:
- That you can trust cloud vendors. The fact is that any company can be infiltrated and it only takes one bad apple to ruin the barrel. There are already stories circulating about companies losing their data because a cloud backup system silently stopped working. It SAID it was backing things up, but when the need to restore a file came the data wasn't available. It doesn't matter if this was a software bug, an infiltrator, a hack, or a choice by the cloud vendor. The data was gone and deep pockets won't make it right. It is true that you can always be hit from the inside, no system is perfect. However, you are taking a cloud vendor at their word for a lot that you can't verify. That includes that they are encrypting your data! You can usually verify things that you control.
- That your data can't be stolen without you knowing it. Suppose you have a trade secret that is vital to your business. Then suppose someone picks it off a cloud server and uses it, thereby destroying your critical advantage. You may not even know how or even if the data breach occurred, you only know you are losing business.
- That a cloud based system can be made as secure as your local system. Fact: a network that is not connected to the internet cannot be hacked from the outside. A cloud system inherently does not have that protection.
- That cloud vendors won't attract "special attention" by hackers. The fact is a centralized repository is inherently more vulnerable than a distributed one. If 50 companies have their data on one server, breaking into that server will yeild 50 times the results that hitting just one of those companies will yeild.
You're right, Jenn. The hackers never fail to find a way. In any operating system -- including the open source OSes -- there can be many elements of unknown provenance that can cause security issues.
What company CEO or other dedicated member would ever say that their product was the very best and absolutely exactly what you need. That includes the assertion that it's security methods are by far better than anything anone else has ever thought of. REally, who, in the upper management would ever admit to any fault of their product? They would be on the street the vaery next day.
Sure I know it's a vendor sponsored thing. Nevertheless it might be interesting to konw tha colloboration process will neven be effective without the Cloud. So the main topic is still of my interest, what are the legal questions and how to deal with that. We have a clear vision on that and a solution which effectively support "interactively design in your own safe Cloud".
For more information, please have a look on our Web-site
When a service provider asserts that the medium provided is indeed secure and the data storred will be neither lost nor copied, the ability to provide the services paid for winds up being a rather legal question. At least that is my perception.
Storing files and programs on an accessable server is certainly another way to make the information and resources available for collaborators, so there is at least one alternative. I have used FTP (file transfer protocol) sites as another method of sharing files with those in other parts of the world. That also works, although there could be some security concerns. Those files were secured by both passwords and being stored alongside hundreds of other files that looked quite similar, but which held no value. That was a very cheap trick to confusw any spying individuals.
I would never put personal information on the cloud; i.e. financial documents, contracts, personal legal documents, etc due to issues with security. One company I consult for has been "hacked" twice with a significant number of documents corrupted, stolen, etc. This company has the range of protection warranted and necessary when running a company. I, like most others commenting, feel cloud computing is possibly the wave of the future but now in it's infancy--possibly getting better, but not really there to the point of being completely safe.
Are data stored on a "cloud drive" safe? No, it could be lost, and it could be viewed by unauthorized parties. If you are not concerned about either, then the use of cloud storage is an option.
Laura Sapiens' Ego! Smartmouse offers users a unique interactive experience by providing 2D and 3D connectivity, hardware identity authentication, data storage, and more.
From Dell / Intel® New Paradigms in Design Work Scott Hamilton, vertical market strategist for Dell Precision workstations, 5/2/2013 3
Early in my career, I worked as a draftsman and remember the days of drawing on vellum with numbered pencils and Mylar with plastic lead. This was a fun experience in the sense that I ...
I've been using workstations for more than 10 years and love finding ways to get more performance from my system. With demanding professional applications that require more power each ...
A lasting memory from my first job as an engineer in an auto assembly plant is standing on hard concrete at six in the morning, vending-machine coffee clutched in hand, listening to ...
A quick look into the merger of two powerhouse 3D printing OEMs and the new leader in rapid prototyping solutions, Stratasys. The industrial revolution is now led by 3D printing and engineers are given the opportunity to fully maximize their design capabilities, reduce their time-to-market and functionally test prototypes cheaper, faster and easier. Bruce Bradshaw, Director of Marketing in North America, will explore the large product offering and variety of materials that will help CAD designers articulate their product design with actual, physical prototypes. This broadcast will dive deep into technical information including application specific stories from real world customers and their experiences with 3D printing. 3D Printing is
To save this item to your list of favorite Design News content so you can find it later in your Profile page, click the "Save It" button next to the item.
If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
13 
