[Author Prev][Author Next][Thread Prev][Thread Next]
[Author Index (this month)][Thread Index (this month)][Top of Archive]

Re: OT: how safe is "the cloud"?

Subject: Re: OT: how safe is "the cloud"?
From: Ken Stitzel <kstitzel -at- symplified -dot- com>
To: Tech Whirl <techwr-l -at- lists -dot- techwr-l -dot- com>
Date: Thu, 7 Jun 2012 12:22:47 -0600

Lauren,

Thanks for the link. The other responders are correct. The article is
unrelated to the LinkedIn hack (at least as far as we know--LinkedIn will
probably be very reluctant to go into details).

The researcher in the article basically rented some computers online from
Amazon because they could crunch more numbers more quickly than his own
computers. That's one of the "cloud" services that Amazon offers.

But then he used that rented computing power to break a widely used (and
old) security algorithm. (The algorithm is just a recipe for making
information more secure while it flies over the wires of the internet. The
recipe makes it look like gibberish or hash. SHA-1 stands for Secure Hash
Algorithm-1. There are also other uses for hash functions.) The fellow in
the article didn't do anything wrong, nor did Amazon's cloud service. He
actually did a service to people that run things on the internet by showing
that SHA-1 is not secure anymore. People who want to protect the encoded
signals zooming around on the internet just need to use a stronger
recipe--and there are plenty.

No shame in admitting you don't know the technology. I know enough to put
my foot in my mouth from working on several security/cloud-related
projects. It's not so hard once you learn it, but the concepts seemed very
strange to me at first. (Just don't put me in charge of locking down the
servers!)

Ken

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Create and publish documentation through multiple channels with Doc-To-Help. Choose your authoring formats and get any output you may need.

Try Doc-To-Help, now with MS SharePoint integration, free for 30-days.

http://bit.ly/doc-to-help

^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

You are currently subscribed to TECHWR-L as archive -at- web -dot- techwr-l -dot- com -dot-

To unsubscribe send a blank email to
techwr-l-leave -at- lists -dot- techwr-l -dot- com


Send administrative questions to admin -at- techwr-l -dot- com -dot- Visit
http://www.techwhirl.com/email-discussion-groups/ for more resources and info.

Looking for articles on Technical Communications? Head over to our online magazine at http://techwhirl.com

Looking for the archived Techwr-l email discussions? Search our public email archives @ http://techwr-l.com/archives

References:
OT: how safe is "the cloud"?: From: Ken Stitzel
Re: OT: how safe is "the cloud"?: From: Lauren

Previous by Author: OT: how safe is "the cloud"?
Next by Author: Re: LinkedIn phishing?
Previous by Thread: Re: OT: how safe is "the cloud"?
Next by Thread: Re: OT: how safe is "the cloud"?

[Top of Archive] | [Author Index (this month)] | [Thread Index (this month)]

What this post helpful? Share it with friends and colleagues:

Sponsored Ads