Automating data encryption for new cloud architectures

Discussion in 'privacy technology' started by ronjor, Apr 7, 2012.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,751
    Location:
    Texas
    https://www.networkworld.com/newsletters/techexec/2012/040612bestpractices.html
     
  2. TheWindBringeth

    TheWindBringeth Registered Member

    Joined:
    Feb 29, 2012
    Posts:
    2,084
    Interesting article, thanks. It seems to me that anyone wanting to store sensitive data in a non-private cloud would want to make use of opportunities to encrypt that data and protect it from others. Thing is, you can't truly protect it from the cloud provider can you?
     
  3. Justin Troutman

    Justin Troutman Cryptography Expert

    Joined:
    Dec 23, 2007
    Posts:
    226
    Location:
    North Carolina, USA / Minas Gerais, BR
    I'd say unless it's authenticated and encrypted (i.e., AES-CTR-then-AES-CMAC) before you send it to the cloud, there's no guarantee; if you choose to let them encrypt it, and hold the keys, you're ultimately trusting their morals, which may be loose enough to place your security and privacy on a much lower rung than you would.
     
  4. mirimir

    mirimir Registered Member

    Joined:
    Oct 1, 2011
    Posts:
    6,029
    @Justin

    Do you think that homomorphic encryption will be practical within a decade or so?

    From Craig Gentry's 2009 thesis:

    Edit: Wow!

    hcrypt project
    an opensource homomorphic encryption implementation
    -http://www.hcrypt.com/
     
    Last edited: Apr 10, 2012
  5. Justin Troutman

    Justin Troutman Cryptography Expert

    Joined:
    Dec 23, 2007
    Posts:
    226
    Location:
    North Carolina, USA / Minas Gerais, BR
    I'm not sure, to be honest, but even if that's the case, I don't know how much we will have progressed key management-wise. I'd say key management is much more of a headache to get right than homomorphic encryption is to make practical. Nonetheless, it's pretty awesome.
     
Loading...
Thread Status:
Not open for further replies.