Slashdot Mirror

← Back to Stories (view on slashdot.org)

Forrester: NSA Spying Could Cost Cloud $180B, But Probably Won't

Posted by samzenpus on from the chips-all-in dept.

itwbennett writes "Forrester's James Staten argues in a blog post that the U.S. cloud computing industry stands to lose as much as $180 billion, using the reasoning put forth by a well-circulated report from The Information Technology and Innovation Foundation that pegged potential losses closer to $35 billion. But Staten's real point is that when it comes down to it the cloud industry will likely not take much of a hit at all. Because as much as they voice their displeasure, turning back isn't really an option for businesses using the cloud."

8 of 136 comments (clear)

  1. "the cloud" is just mainframes again by Dan667 · · Score: 5, Insightful

    and all the problems of mainframes (like people spying on you) are being "rediscovered". The problems have not changed and no one will ever care about your data as much as you do.

    1. Re:"the cloud" is just mainframes again by Samantha+Wright · · Score: 5, Funny

      So is this your way of saying you wouldn't be interested in a mini-cloud in every university department and medium-sized business, or perhaps a personal cloud you could run at home? What about a mobile cloud to put in your pocket? Admittedly, they'll be rather bulky and brick-like at first, but some day they might be as compact and lightweight as, say, a deck of cards or a pocket notebook.

      --
      Bio questions? Ask me to start a Q&A journal. Computer analogies available for most topics!
    2. Re: "the cloud" is just mainframes again by crdotson · · Score: 5, Funny

      If by "mainframe" you mean, "it's the 1980s and I use the term 'mainframe' for any vague computer concept I don't understand," then, sure. :)

  2. Two years to go by Okian+Warrior · · Score: 4, Insightful

    It'll take about two years for this problem to disappear.

    There's an enormous monetary incentive for cloud services to implement good privacy. Anyone who doesn't implement it will get their lunch eaten by someone who does.

    There's already a massive exodus away from US based servers, both at home and abroad. People are thinking through the ramifications of having their sensitive information used as "incentives" to help business. Your client lists, sales information, costs and accounting - if any part of your local network is in the cloud, the US can rifle through it and trade the information to another company in return for help fighting terrorism. Many people will choose to believe that this is not happening, but what the heck - who can tell any more?

    This is a self-correcting problem.

    Mega has announced an encrypted E-mail service, the client software will be open for public inspection, and none of it will be hosted on US servers.

    Google has admitted in court that they don't think users have an expectation of privacy.

    Which E-mail service would you rather use? The one from a sleazy convicted criminal, but with impenetrable security? Or the one from a company that always rifles through the contents, but promises to only do it for the better good?

    1. Re:Two years to go by rtb61 · · Score: 4, Insightful

      The real question is will US three letter agencies bloated top heavy with for profit corporate contractors, simply indulge themselves in industrial espionage, there are just hundreds of billions to be made. Will they see an opportunity for inside trading on shares again billions to be made and just a key press away on the cloud.

      How many countries will be stupid enough to allow this to happen, not just in global markets but locally in their markets. How destructive could the US become in economic warfare, how destructive could all the for profit corporate contractors neck deep in US intelligence agencies in their quest for profits.

      Seriously will they resist the temptation to strip mine other countries economies, buy up all the assets and leave everyone beholding to the US. Stop and really think about what can be fiscally done when you have free access to the business cloud, every business email, every business phone call and can hack into every business network. Total global financial control and can't US corporations be trusted with that, ABSOLUTELY FUCKING NOT.

      --
      Chaos - everything, everywhere, everywhen
  3. Open Source Failure by buswolley · · Score: 5, Insightful
    My information is my private property.

    Why isn't there a "simple" host your own "data manager" for people that will be their "email, social, storage server"?

    If opensource had a cause, that should be it,

    --

    A Good Troll is better than a Bad Human.

  4. Murmurs from an internet nobody. by EmperorOfCanada · · Score: 4, Interesting

    I recently took a course on Cryptography and the guy basically showed that with system after system that if he could pick just the tiniest thread loose he just tossed the algorithm into the junk heap. One of the other mantras was don't roll your own; you don't have enough Phds. But when it came to things like AES he seemed pretty confident. At the time of the course I nodded my head and wasn't thinking paranoid thoughts. But if we have learned anything this last month it is that you can take your typical person you once dismissed as paranoid and multiply their ravings by 3.

    So my paranoid raving #1 is that they can break any of the common encryption schemes. Some mathematicians might say pshaw but hey this is now a post Snowden world. If commonly accepted encryption isn't broken then yay!

    But for those with real good data such as bankers who don't want the NSA handing the data over to Goldman Sachs (why not as they make for great conspiracy fodder) then I would only use one time pad encryption. Good luck finding a mathematically loose thread there. A simple way to do one time pad encryption is just like the old spies. You send say 5 people over to your destination each with a different 1TB memory chip containing truly random data. (radioactive decay, xored with rain xored with a lava lamp) Then when you transmit data you xor it through all 5 layers of random data.

    But as for the article if I were in Europe I would move my servers to Europe tomorrow. These government goons all think alike so I suspect that even the Euro police will cooperate anyway; they'll just deny it in a different accent. For instance, I sit in Canada and don't believe for one second that the local police wouldn't pee themselves with delight if the us Feds asked them to do something.

    So the giant rethink in many security setups will have to be EVERYTHING that I don't control is completely compromised. Even individual employees could be compromised. Thus I would only use data schemes that would require the blackmailing/threatening/screwing of many employees.

    But the simple reality is that this requires everyone to become a Rosa Parks. Every employee at these big companies needs to step out and spill the entire truth. If one person comes out they are Snowden II. If 100 come out the party is over.

  5. Re:Facinating... by profplump · · Score: 5, Insightful

    The harm caused by exposing these programs isn't a result of their exposure -- the programs are harmful in their own right, whether or not they are exposed.

    Essentially you're arguing that if Warren Buffet murdered someone the government would be justified in keeping it a secret because exposing his crime would disrupt his economic contributions.