Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Study: Security Fears Continue To Block Cloud Deployment
Oldest First  |  Newest First  |  Threaded View
Page 1 / 2   >   >>
jagibbons
100%
0%
jagibbons,
User Rank: Strategist
4/3/2014 | 9:11:43 AM
Powerful motivator
FUD (fear, uncertainty and doubt) is a very strong motivator or demotivator. This is magnified in this post-recessionary period where we are still struggling to improve financial conditions. When you add the fact that many have significant CapEx investments still sitting around, it can be very difficult to make a major move like this.
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
4/3/2014 | 10:35:38 AM
Re: Powerful motivator
To your point, "FUD" (good one by the way) is slowing down cloud technologies but it may be for good reason but only time will tell. Cloud computing and storage is too new to chance having all of your data stolen. Will all of the news concerning target and others it makes executives be overly cautious. 
jagibbons
50%
50%
jagibbons,
User Rank: Strategist
4/3/2014 | 10:37:41 AM
Re: Powerful motivator
Cautious and measured is good. Paralyzed by fear, not so much.
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
4/3/2014 | 10:43:54 AM
Re: Powerful motivator
Very true, cautiousness is ususally the best. Parallyzed fear will prevent you from making informed decisions also.
IMjustinkern
50%
50%
IMjustinkern,
User Rank: Strategist
4/3/2014 | 11:03:47 AM
Re: Powerful motivator
jagibbons ... definitely agree on the FUD front. Curious: do you think the existence of those CapEx investments will actually push people toward the cloud? Could see that as the greatest motivator of all, especially when the big bosses are parsing budgets. 
jagibbons
100%
0%
jagibbons,
User Rank: Strategist
4/3/2014 | 12:25:19 PM
Re: Powerful motivator
From my experienc, existing CapEx investments will push folk to the cloud when those assets are a) fully depreciated and b) needing to be relaced/refreshed. If they are still in production use, relativly new and still being paid for, that ends up being more of a deterent to cloud adoption.
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
4/3/2014 | 2:56:05 PM
Re: Powerful motivator
I think you have a valid point, new technologies will all be adopted at a much slower pace than before.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
4/3/2014 | 3:25:25 PM
Re: Powerful motivator -- on the other hand....
What would the cloud service provider industry need to do to overcume the FUD and reassure customers? It sounds like -- from this thread -- that its more than just a financial concern.
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
4/3/2014 | 3:31:02 PM
Re: Powerful motivator -- on the other hand....
I think it will just take some time and testing to see how the cloud turns out. Datacenters are protected and controlled but you must rely on others to secure your data in the cloud. There has to be a comfort level with the cloud and only time will tell when that will be.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
4/3/2014 | 4:55:12 PM
Re: Powerful motivator -- on the other hand....
Comfort level along with some effective security strategies. RAVI ITHAL Chief Architect at Netskope had some interesting thoughts about that in his blog today API-First: 3 Steps For Building Secure Cloud Apps
Page 1 / 2   >   >>


Mobile Banking Malware Up 50% in First Half of 2019
Kelly Sheridan, Staff Editor, Dark Reading,  1/17/2020
7 Tips for Infosec Pros Considering A Lateral Career Move
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2020
For Mismanaged SOCs, The Price Is Not Right
Kelly Sheridan, Staff Editor, Dark Reading,  1/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment:   It's a PEN test of our cloud security.
Current Issue
IT 2020: A Look Ahead
Are you ready for the critical changes that will occur in 2020? We've compiled editor insights from the best of our network (Dark Reading, Data Center Knowledge, InformationWeek, ITPro Today and Network Computing) to deliver to you a look at the trends, technologies, and threats that are emerging in the coming year. Download it today!
Flash Poll
How Enterprises are Attacking the Cybersecurity Problem
How Enterprises are Attacking the Cybersecurity Problem
Organizations have invested in a sweeping array of security technologies to address challenges associated with the growing number of cybersecurity attacks. However, the complexity involved in managing these technologies is emerging as a major problem. Read this report to find out what your peers biggest security challenges are and the technologies they are using to address them.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-7245
PUBLISHED: 2020-01-23
Incorrect username validation in the registration processes of CTFd through 2.2.2 allows a remote attacker to take over an arbitrary account after initiating a password reset. This is related to register() and reset_password() in auth.py. To exploit the vulnerability, one must register with a userna...
CVE-2019-14885
PUBLISHED: 2020-01-23
A flaw was found in the JBoss EAP Vault system in all versions before 7.2.6.GA. Confidential information of the system property's security attribute value is revealed in the JBoss EAP log file when executing a JBoss CLI 'reload' command. This flaw can lead to the exposure of confidential information...
CVE-2019-17570
PUBLISHED: 2020-01-23
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maintained and this issue...
CVE-2020-6007
PUBLISHED: 2020-01-23
Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code execution.
CVE-2012-4606
PUBLISHED: 2020-01-23
Citrix XenServer 4.1, 6.0, 5.6 SP2, 5.6 Feature Pack 1, 5.6 Common Criteria, 5.6, 5.5, 5.0, and 5.0 Update 3 contains a Local Privilege Escalation Vulnerability which could allow local users with access to a guest operating system to gain elevated privileges.