Welcome!

Cloud Security Authors: Elizabeth White, Ed Featherston, Darren Anstee, Liz McMillan, Pat Romanski

Related Topics: @CloudExpo, Cloud Security

@CloudExpo: News Item

Trusting Data in the Cloud Is About Losing a Key

The online storage and collaboration market has been hot

The online storage and collaboration market has been hot, with early market entrants Dropbox, Box.net and YouSendIt appearing to have taken the initial lead in providing individuals and businesses with the ability to easily store, share, and send large files between multiple parties.

In the spirit of secure collaboration, at this year's RSA event, Ftopia and GuardTime announced a partnership that hopes to shake up the market a bit by raising even higher the pressing question of one's ability to trust their precious data in the cloud. To answer this question, the Ftopia service is designed to allow businesses to securely collaborate by sharing their files anywhere they want over the Internet without having to rely on trust. Rather, they provide the service with built-in data integrity features that utilize mathematics as its form of proof.

Ftopia does cloud-based data collaboration and storage, and together with GuardTime, a cloud security company, signed a deal to offer the market a provably secure collaboration and storage service. Ftopia uses GuardTime's keyless signature technology to digitally sign the clients' data as it is stored in Ftopia rooms.

As described in the public announcement, GuardTime's Keyless Signature technology provides proof of signing authority, time of the signature, and lifelong integrity for data stored in the cloud and in transit between business collaborators. The signature never expires and its verification is based solely on mathematics, eliminating the need for secrets or keys and the unwieldy management associated with traditional PKI technologies that fail in the cloud.

During an interview with Ftopia CEO Philippe Honigman, I was able to ask him what prompted the creation of the partnership and his new release. "As more information moves to the cloud as the primary place of storage, concerns about trust and security are growing as well," he said. "Traditional, defensive security measures, such as intrusion detection, intrusion prevention, strict network access control policies, or even the tried and true anti-malware technologies, are not enough anymore. Business customers are more likely to entrust their information to a third party when they know for certain - more specifically, when they can prove - that their data has not been altered in any way."

After a quick run-through of the capabilities with Honigman, the workflow appears to remain simple and seemingly unchanged. There is no additional action for the users to take on either end of the file sharing transaction. Each file gets its own signature. The signature is a small file that is automatically created and saved alongside the signed file. If the user wants proof that the file in question has not changed since the exact point in time that it was uploaded, they simply collect the file and its signature and use the verification tool provided by GuardTime to perform the comparison. If the signature can be verified, the file is guaranteed to be the same exact file and can be confirmed that it is that exact file from the exact point in time for which it was signed. If the signature cannot be verified, then the file cannot be guaranteed to be the same.

"The solution is both simple and powerful," said Honigman. "On the surface, it would appear that all that GuardTime is providing us is the ability to timestamp or simply sign a file. But, because the signature is keyless, meaning nobody is forced to manage any keys or keep any secrets, the client can get undeniable proof that the file has not been tampered with, not even by Ftopia."

GuardTime CEO Mike Gault says, "We solved the problem of trust by removing the reliance on keys or secrets to prove that the data remains intact. This is accomplished through a series of concatenated SHA-256 hashes for each file that are used to create and destroy a Merkle tree of hashes every second since the beginning of Unix time, 1970."

According to Guardtime, the resulting root hash, referred to by the company as the "Integrity Code", is published monthly in publications such as the Financial Times. To verify the integrity of the data, all one needs is the published Integrity Code, the original file, and its corresponding signature file. With these three pieces, any organization can use the tools provided or, if they are really paranoid, they could do the reverse hash function mathematics to prove that the file remains intact. In short, GuardTime claims that there is no need to rely on any tool, or any third party to gain proof.

It will be interesting to keep an eye on Ftopia to see how their clients use this feature. It seems that the value becomes painfully apparent when an organization is required by law or regulation to provide proof that their data has remained intact - especially if their own integrity was being questioned. Hopefully this is not the case for most organizations. Which company would want to get all twisted up in court because they couldn't prove they weren't involved in a coverup? I feel safe going out on a limb to say none of them.

More Stories By Victor Cruz

Victor Cruz is a writer whose articles have appeared in American Venture, Cloud Computing Journal, CommPro.biz, CSO Magazine, Communications News, Computer Technology Review, eSecurity Planet, Harvard Review, Medical Design Technology, and WebSecurity Journal. He has advised some 50 IT companies in the past 20 years on their marketing strategies. You can reach him at vcruz[at]mediapr.net

@ThingsExpo Stories
Cloud computing is being adopted in one form or another by 94% of enterprises today. Tens of billions of new devices are being connected to The Internet of Things. And Big Data is driving this bus. An exponential increase is expected in the amount of information being processed, managed, analyzed, and acted upon by enterprise IT. This amazing is not part of some distant future - it is happening today. One report shows a 650% increase in enterprise data by 2020. Other estimates are even higher....
A strange thing is happening along the way to the Internet of Things, namely far too many devices to work with and manage. It has become clear that we'll need much higher efficiency user experiences that can allow us to more easily and scalably work with the thousands of devices that will soon be in each of our lives. Enter the conversational interface revolution, combining bots we can literally talk with, gesture to, and even direct with our thoughts, with embedded artificial intelligence, wh...
Video experiences should be unique and exciting! But that doesn’t mean you need to patch all the pieces yourself. Users demand rich and engaging experiences and new ways to connect with you. But creating robust video applications at scale can be complicated, time-consuming and expensive. In his session at @ThingsExpo, Zohar Babin, Vice President of Platform, Ecosystem and Community at Kaltura, will discuss how VPaaS enables you to move fast, creating scalable video experiences that reach your...
In his keynote at 18th Cloud Expo, Andrew Keys, Co-Founder of ConsenSys Enterprise, provided an overview of the evolution of the Internet and the Database and the future of their combination – the Blockchain. Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life sett...
SYS-CON Events announced today that SoftLayer, an IBM Company, has been named “Gold Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2016, at the Javits Center in New York, New York. SoftLayer, an IBM Company, provides cloud infrastructure as a service from a growing number of data centers and network points of presence around the world. SoftLayer’s customers range from Web startups to global enterprises.
19th Cloud Expo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy. Meanwhile, 94% of enterpri...
Businesses are struggling to manage the information flow and interactions between all of these new devices and things jumping on their network, and the apps and IT systems they control. The data businesses gather is only helpful if they can do something with it. In his session at @ThingsExpo, Chris Witeck, Principal Technology Strategist at Citrix, will discuss how different the impact of IoT will be for large businesses, expanding how IoT will allow large organizations to make their legacy ap...
In his general session at 18th Cloud Expo, Lee Atchison, Principal Cloud Architect and Advocate at New Relic, discussed cloud as a ‘better data center’ and how it adds new capacity (faster) and improves application availability (redundancy). The cloud is a ‘Dynamic Tool for Dynamic Apps’ and resource allocation is an integral part of your application architecture, so use only the resources you need and allocate /de-allocate resources on the fly.
SYS-CON Events announced today the Enterprise IoT Bootcamp, being held November 1-2, 2016, in conjunction with 19th Cloud Expo | @ThingsExpo at the Santa Clara Convention Center in Santa Clara, CA. Combined with real-world scenarios and use cases, the Enterprise IoT Bootcamp is not just based on presentations but with hands-on demos and detailed walkthroughs. We will introduce you to a variety of real world use cases prototyped using Arduino, Raspberry Pi, BeagleBone, Spark, and Intel Edison. Y...
The vision of a connected smart home is becoming reality with the application of integrated wireless technologies in devices and appliances. The use of standardized and TCP/IP networked wireless technologies in line-powered and battery operated sensors and controls has led to the adoption of radios in the 2.4GHz band, including Wi-Fi, BT/BLE and 802.15.4 applied ZigBee and Thread. This is driving the need for robust wireless coexistence for multiple radios to ensure throughput performance and th...
Internet of @ThingsExpo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devices - comp...
The many IoT deployments around the world are busy integrating smart devices and sensors into their enterprise IT infrastructures. Yet all of this technology – and there are an amazing number of choices – is of no use without the software to gather, communicate, and analyze the new data flows. Without software, there is no IT. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists will look at the protocols that communicate data and the emerging data analy...
“We're a global managed hosting provider. Our core customer set is a U.S.-based customer that is looking to go global,” explained Adam Rogers, Managing Director at ANEXIA, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
According to Forrester Research, every business will become either a digital predator or digital prey by 2020. To avoid demise, organizations must rapidly create new sources of value in their end-to-end customer experiences. True digital predators also must break down information and process silos and extend digital transformation initiatives to empower employees with the digital resources needed to win, serve, and retain customers.
Smart Cities are here to stay, but for their promise to be delivered, the data they produce must not be put in new siloes. In his session at @ThingsExpo, Mathias Herberts, Co-founder and CTO of Cityzen Data, will deep dive into best practices that will ensure a successful smart city journey.
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
DevOps at Cloud Expo, taking place Nov 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long dev...
The Jevons Paradox suggests that when technological advances increase efficiency of a resource, it results in an overall increase in consumption. Writing on the increased use of coal as a result of technological improvements, 19th-century economist William Stanley Jevons found that these improvements led to the development of new ways to utilize coal. In his session at 19th Cloud Expo, Mark Thiele, Chief Strategy Officer for Apcera, will compare the Jevons Paradox to modern-day enterprise IT, e...
What happens when the different parts of a vehicle become smarter than the vehicle itself? As we move toward the era of smart everything, hundreds of entities in a vehicle that communicate with each other, the vehicle and external systems create a need for identity orchestration so that all entities work as a conglomerate. Much like an orchestra without a conductor, without the ability to secure, control, and connect the link between a vehicle’s head unit, devices, and systems and to manage the ...
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lea...