Welcome!

Wearables Authors: Zakia Bouachraoui, Yeshim Deniz, Pat Romanski, Liz McMillan, Jnan Dash

Related Topics: @CloudExpo, Agile Computing, Wearables, Cloud Security

@CloudExpo: Article

In Apple’s iCloud, One Key to Rule Them All

Apple maintains complete control over the master encryption key to their marquee cloud offering

Earlier this month it became widely publicized that Apple maintains complete control over the master encryption key to their marquee cloud offering, iCloud. Now, to anyone familiar with security and encryption this should come as no surprise. In order for nearly all consumer cloud services to provide anywhere access to data the provider must be able to encrypt and decrypt data on the fly. But it brings up the bigger question of, who should I trust with my data?

The consumer cloud
Apple iPad and iPhone Charging - Copyright 2010 Louis AbateTo even begin to answer that question, we need to first look at what types of data are being stored inside Apple’s iCloud. For our purposes, we’ll break the data into two sets: general media files and personal files. The first group consists of music, movies, books, and mobile apps – not exactly what you’d call sensitive data. If a third-party were to gain access to your music library, it wouldn’t be the end of the world. The second group, however, is made up of much more personal documents, including notes, calendar events, mail, contacts, and user settings. This is personal information, there’s no question about it, but would a hacker or rogue Apple employee really go through the effort to read your email, text messages, and photos? Maybe if you are Scarlett Johansson – but that’s a different story…

In the end, the consumer cloud means trusting a vendor, in this case, Apple. As a user, you trust them to do the right thing in terms of how they handle security and encryption, both in terms of technology and internal policies. Again, the issue here is trust. You have no control over the encryption key, therefore the possibility of your data being compromised by a malicious hacker or Apple employee is always present. The ultimate question is, are you willing to hand over this trust in return for the convenience of being able to sync your photos, messages, and music across your laptop, phone, and tablet? I believe, and history would suggest, most users are.

The enterprise cannot rely on trust
When it comes to the enterprise it’s a different story. Controlling access to data and protecting it from malicious hackers, competitors, ex-employees, etc. is a top priority for IT. For the traditional storage infrastructure, this means all the hardware sits inside the four walls of the organization. Servers are locked inside racks, which are locked inside a server room. Policies are administered with an access control system and IT has tight control over all aspects of data storage as well as the corporate network.

When moving data outside those “four walls” this all changes. Data is no longer inside that locked server room, but scattered across multiple data centers located in multiple geographies. Personal email and photos are one thing – sensitive corporate IP is another. Security and encryption must be done right:

  1. The security and encryption system must be proven. OpenPGP comes to mind here. It’s open to the degree that it is peer reviewed and with that comes a rock solid encryption scheme trusted with the most sensitive data out there.
  2. IT generates and holds the crypto keys – if the encryption happens before the data leaves for the cloud and the storage vendor doesn’t have a copy of the keys, there is no way anyone can read the encrypted data.
  3. There is an acceptable level of redundancy within the cloud (or clouds) the data is stored on. This has more to do with data protection than security, but lost data can, in some circumstances, be even more damaging than hacked data. Amazon’s eleven-nine’s is a good example of this.

IT is not (and should not) be willing to trust a storage vendor or cloud storage provider with access to their data. When it comes to enterprise data – there is simply too much at stake. Nasuni’s Rob Mason said it best in the following statement: "We trust our employees, but we do not ask our customers to share that trust. This is good security practice. No strong encryption scheme should rely solely on trust."

Do you trust Apple with your personal data? Would you trust a storage vendor to hold the keys to your corporate data? Sound off in the comments below.

More Stories By Louis Abate

Louis is a connoisseur of technology, photography and music. As a passionate tastemaker, he is on a lifelong mission to seek out and evangelize best of breed products and services.

At Nasuni, he heads up the multimedia content creation and social aspects of the company. With one eye on the constant flow of industry news and the other on Nasuni’s services, you’ll find Louis writing about the evolving storage industry and general musings about high technology in the modern office.

IoT & Smart Cities Stories
Moroccanoil®, the global leader in oil-infused beauty, is thrilled to announce the NEW Moroccanoil Color Depositing Masks, a collection of dual-benefit hair masks that deposit pure pigments while providing the treatment benefits of a deep conditioning mask. The collection consists of seven curated shades for commitment-free, beautifully-colored hair that looks and feels healthy.
The textured-hair category is inarguably the hottest in the haircare space today. This has been driven by the proliferation of founder brands started by curly and coily consumers and savvy consumers who increasingly want products specifically for their texture type. This trend is underscored by the latest insights from NaturallyCurly's 2018 TextureTrends report, released today. According to the 2018 TextureTrends Report, more than 80 percent of women with curly and coily hair say they purcha...
The textured-hair category is inarguably the hottest in the haircare space today. This has been driven by the proliferation of founder brands started by curly and coily consumers and savvy consumers who increasingly want products specifically for their texture type. This trend is underscored by the latest insights from NaturallyCurly's 2018 TextureTrends report, released today. According to the 2018 TextureTrends Report, more than 80 percent of women with curly and coily hair say they purcha...
We all love the many benefits of natural plant oils, used as a deap treatment before shampooing, at home or at the beach, but is there an all-in-one solution for everyday intensive nutrition and modern styling?I am passionate about the benefits of natural extracts with tried-and-tested results, which I have used to develop my own brand (lemon for its acid ph, wheat germ for its fortifying action…). I wanted a product which combined caring and styling effects, and which could be used after shampo...
The platform combines the strengths of Singtel's extensive, intelligent network capabilities with Microsoft's cloud expertise to create a unique solution that sets new standards for IoT applications," said Mr Diomedes Kastanis, Head of IoT at Singtel. "Our solution provides speed, transparency and flexibility, paving the way for a more pervasive use of IoT to accelerate enterprises' digitalisation efforts. AI-powered intelligent connectivity over Microsoft Azure will be the fastest connected pat...
There are many examples of disruption in consumer space – Uber disrupting the cab industry, Airbnb disrupting the hospitality industry and so on; but have you wondered who is disrupting support and operations? AISERA helps make businesses and customers successful by offering consumer-like user experience for support and operations. We have built the world’s first AI-driven IT / HR / Cloud / Customer Support and Operations solution.
Codete accelerates their clients growth through technological expertise and experience. Codite team works with organizations to meet the challenges that digitalization presents. Their clients include digital start-ups as well as established enterprises in the IT industry. To stay competitive in a highly innovative IT industry, strong R&D departments and bold spin-off initiatives is a must. Codete Data Science and Software Architects teams help corporate clients to stay up to date with the mod...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
Druva is the global leader in Cloud Data Protection and Management, delivering the industry's first data management-as-a-service solution that aggregates data from endpoints, servers and cloud applications and leverages the public cloud to offer a single pane of glass to enable data protection, governance and intelligence-dramatically increasing the availability and visibility of business critical information, while reducing the risk, cost and complexity of managing and protecting it. Druva's...
BMC has unmatched experience in IT management, supporting 92 of the Forbes Global 100, and earning recognition as an ITSM Gartner Magic Quadrant Leader for five years running. Our solutions offer speed, agility, and efficiency to tackle business challenges in the areas of service management, automation, operations, and the mainframe.