Slashdot Mirror

← Back to Stories (view on slashdot.org)

Yale Delays Move To Gmail

Posted by timothy on from the but-it's-in-the-cloud dept.

Mortimer.CA writes "The Yale Daily News is reporting that the move to Gmail has been postponed. After further consultations with faculty and staff, the concerns raised 'fell into three main categories: problems with "cloud computing" (the transfer of information between virtual servers on the Internet), technological risks and downsides, and ideological issues.' In the latter category, 'Google was not willing to provide ITS with a list of countries to which the University's data could be sent [i.e., replicated], but only a list of about 15 countries to which the data would not be sent.'"

15 of 176 comments (clear)

  1. Know what... by butterflysrage · · Score: 4, Interesting

    I would be more than a little interested in that list too...

    --
    the preceding post was not spell checked... suck it.
    1. Re:Know what... by sopssa · · Score: 5, Informative

      It's probably most of the countries. Google has their own highly-redundancy file system that spans thousands of servers and even different datacenters and locations. Even data that is deleted could remain in the system for 9+ months. I think it's highly possible all of the data travels around the world and is stored in several locations.

    2. Re:Know what... by The+Angry+Mick · · Score: 4, Informative

      I was just thinking the same thing. Our law firm is considering GMail as a possible alternative to Outlook/Exchange, and this is one question I know we overlooked. Most of our debate centered around a) loss of control over the data (Federal Discovery Rules), and b) privacy.

      --

      I'm not tense. I'm just terribly, terribly, alert.

    3. Re:Know what... by bernywork · · Score: 4, Informative

      That would be correct, if you look at their BGP advertisements it would figure that Google would have to transit it's own data.

      So if your request for data (YouTube video etc) isn't located in the DC that you connected to, they would have to transit that data across their own links. It would then make sense that they would replicate their own data over those same links during the night on that side of the world when the link is quiet.

      --
      Curiosity was framed; ignorance killed the cat. -- Author unknown
    4. Re:Know what... by commodore64_love · · Score: 4, Interesting

      So if I'm Dutch and store my downloads from Seventeen in my Google account, and that data makes its way over to the U.S., does that mean I've committed a child porn crime?

      --
      "I disapprove of what you say, but I will defend to the death your right to say it." - historian Evelyn Beatrice Hall
    5. Re:Know what... by John+Hasler · · Score: 5, Interesting

      > ...does that mean I've committed a child porn crime?

      No, because _you_ have done nothing inside USA jurisdiction. It may mean Google has, though.

      --
      Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
    6. Re:Know what... by Flavio · · Score: 5, Insightful

      It surprises me that you even discussed the option of having confidential documents stored on a system that makes little guarantees about security or privacy, and that by design distributes your data around the world.

    7. Re:Know what... by The+Angry+Mick · · Score: 4, Interesting

      If there's one area GMail or any other cloud provider should not be used, it's law firms.

      Oh, you'd be surprised how many have already made the switch. My firm's a non-profit, so the costs alone, or lack thereof in GMail's case, are a huge incentive to make a switch. Couple licensing fees with sharp increases in demand for management of issues like retention policies that can vary with statutes of limitations, data loss, time-based archiving, and legal compliance and its easy to understand why a lot of firms are just giving up as the headaches just don't seem worth the effort.

      Personally, I'm leery of the, but it's hard to go your boss with a proposed budget of close to $100,000 for an internally managed system versus $0 (and some geek's time) to drop the problem on someone else.

      --

      I'm not tense. I'm just terribly, terribly, alert.

    8. Re:Know what... by QuantumRiff · · Score: 5, Interesting

      I would be more worried about "If I'm Dutch, and doing something at a research lab at my university" whether its corporate funded, military, or maybe medical research with client data included... Would a nosy sheriff of a county with a large, competing university in the US be able to subpoena my emails, since it might be stored in the US servers?

      --

      What are we going to do tonight Brain?
    9. Re:Know what... by miffo.swe · · Score: 4, Funny

      "10 USD/mailbox/mth for exchange hosting"

      And this is different from Google how? Id much rather put my security in the hands of the best software company in the world with a stunning track record for security.

      --
      HTTP/1.1 400
    10. Re:Know what... by The+Angry+Mick · · Score: 4, Interesting

      Fully understand, and didn't take it as turfing.

      The problem is that in the non-profit sector you have a long history of going with the lowest common denominator. Since I've been at this firm I've had to fight for things as simple as a "thou shalt not browse the porn" policies. Because they're so technologically "green" there's often not enough of a framework in place on which to build a good system, so there's a high tendency for "rip and replace". The system I've been nursing for the last ten years is such a system, and when I announced we were approaching critical mass, we brought in consultants to analyze what was in use and recommend options based on what the attorneys said they needed.

      This is where the costs began to climb. The attorneys recommended systems that would require them to invest as little personal responsibility as possible (think: HAL 9000 level AI). Thanks to some rather unrealistic demands, and some outright paranoia, most all of the vendors came back with quotes in the 100K ballpark, and most of these dictated a complete top-to-bottom overhaul.

      Nothing's been decided yet, so we're still mushing through the options looking for cheaper alternatives.

      --

      I'm not tense. I'm just terribly, terribly, alert.

  2. Re:RAID by bernywork · · Score: 4, Informative

    Sorta, Google call them shards.

    http://news.zdnet.com/2100-9588_22-141569.html

    Shards can be located by different masters and different masters are located in different locations according to the data type.

    So I think Japan (That's where they just dropped their Asia - US cable after all, so it makes sense) has a "complete" replication of all Google data. Some data is also replicated to containers (YouTube etc) for hosting at major ISPs. So all email data would be replicated in non-realtime. If you request something that isn't in that DC it's located in the US or wherever is closest (I guess).

    There are multiple "complete" copies on the east and west coast as well as European hub sites or directly connected to European hub sites.

    If you ask for a citation, I can dig something up for you....

    --
    Curiosity was framed; ignorance killed the cat. -- Author unknown
  3. Potential support issues by dave562 · · Score: 4, Interesting

    I was considering a GAPE deployment for a much smaller organization (about 150 users) and ran into real problems finding answers to some questions. In my particular case I was considering a migration off of Exchange. The exact specifics involved were really vague and often times the suggestion was, "Talk to a solutions provider." I went ahead and talked to two of them. When I pressed them for specifics about GAPE replication of Exchange features (Public Folders for example), I got a lot of vague answers along the lines of either, A. "Well, it can kind of do that." or B. "You don't need to do that because the Google way is better."

    The major consideration that turned me away from Google was their support (or seeming complete lack of it). I had a terrible time getting my pre-sales questions answered when I went directly to Google. The "premiere partners" (companies that are trying to make a business based on deploying GAPE for organizations) were just as vague. One of them even admitted to me that they have problems getting answers out of Google about new features, or the status of outstanding issues.

    I am subscribed to a thread on Google's forums that details people's real world problems with Google support.

    http://www.google.com/support/forum/p/Google+Apps/thread?hl=en&tid=384dd0d72db87c6d

    Some of the people are obviously idiots who can't read the documentation. The large majority of them have serious problems that are ignored. Just recently someone mentioned that Google quoted them 5 days to recover an accidently deleted mailbox.

    I don't doubt that Google Apps could very well be a great product. The key is that it "could" be a great product. Great products require great support. Great products require a certain ease of implementation and use. As it stands currently, GAPE is more like a beta framework that requires a lot of heavy lifting on the part of an IT department. It is hardly a production ready, polished product that can be sold as a service.

  4. Re:RAID by pushing-robot · · Score: 4, Funny

    Only half the bits are on one server vs. another

    While this is of course theoretical, if you put all the "zero" bits on one server and the "one" bits on another, you could also achieve fantastic compression ratios.

    Come to think of it, this gives me a great idea for a defragmentation program...

    --
    How can I believe you when you tell me what I don't want to hear?
  5. Re:Easy solution by unix1 · · Score: 5, Insightful

    There is no fucking way there are google servers in 190 some odd countries.

    The cliche IT answer to "Where does your cloud store data?" is "Why do you want to know?" And it is with good reason.

    The answer is NOYB (none of your business) and it is with good reason. Even though Google provides the service, the data belongs to the customer, i.e. Yale. It is in Yale's discretion where they want to store their data and what reasons they are willing to give out to 3rd parties for doing so.

    However, I'll give you a good reason. If Google can guarantee that the data will be stored in certain countries (or even offer an option for an extra fee or whatever), then it will satisfy Yale's comfort level with respect to the privacy and legality of their data.

    For example, for argument's sake, if Google could guarantee the data would only stay in the U.S. Yale would be well aware of the legal process and rights with regard to their data. However, this may not be the case in other countries such as China, Iran, Italy, Indonesia, etc.. I bet there are plenty of Chinese students studying at Yale, and there are professors of Chinese descent who then would be exposed if the data is stored in China. If Chinese government gets access to their communication and determines it needs to put certain individuals on their watch list based on their views on free speech, human rights, government, etc. they will risk being detained and jailed next time they travel home to visit relatives or after they finish school. It is in Yale's interest to protect their faculty and students from such threats.

    And, from no reasonable perspective, does Yale have to come out and state to any 3rd party, including Google, that so and so is a member of their faculty and they have a concern that that person's communication is stored in such and such countries then they may have a problem. It's NOYB.

    On the other hand, why doesn't Google provide an additional service to their clients where they, the clients, get to pick the countries to which their data could potentially be replicated? It seems like a feature that their clients (companies, universities, governments, etc.) would very likely pay extra for; especially considering Google's own recent encounters with Chinese and Italian governments.