Slideshows

7 Dumb Cloud Computing Myths

Charles Babcock November 14, 2012 09:06 AM You've heard the arguments: The cloud is not secure, costs too much, and wrecks the environment. Let us set you straight.

« Previous Page | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | Next Page »

E-mail
Share

Myth #2: Virtual Machines Are Safe

Users of virtual machines (VMs) -- standard features of the multi-tenant clouds -- fervently hope that one virtual machine can't spy on another running on the same server. But extremely skillful manipulators have been able to draw conclusions about what's going on in a neighboring VM by watching what cache pages get emptied out of host memory after the spying VM has taken its turn using the server core. Since the spy just loaded the cache pages, it knows which data has been selected to be emptied out by the next user. And that, it turns out, is an indicator of what's currently executing on the processor. Ars Technica ran a piece on the phenomenon Nov. 6, noting it's extremely difficult to do, but scientists at the University of North Carolina, University of Wisconsin and RSA Laboratories demonstrated that it's possible to derive an encryption private key from this process. And there go the keys to the kingdom.

It's not clear to me how the spy VM knows which pages in the shared cache memory are being deleted if it's in its idle state, but the research shows that it does. It's still a painstaking effort to build a picture of the code executing, even when you have that information. You have to string together fragments of executing code over and over again until you get a piece of telling code. But that's what the researchers did.

So far, no one has been able to do this maliciously in a real-world setting -- or if they have, it's not publicly known. And there are fixes to prevent it. Nevertheless, it's a blow to confidence in what heretofore appeared to be the virtual server's impenetrable, logical barriers.

And the researchers' paper went a step further than simply suggesting cache page downloads were the only point of exposure. They also indicated that one virtual machine may be able to sense "the magnetic emanations" signifying types of activity by another. Again, there's no evidence anyone has made use of these findings in a malicious way, and major data centers may come up with countermeasures before they do. But no one is quite sure when this information, in the wrong hands, will be used to breach existing defenses.

Image Credit: Flickr user kellinahandbasket

RECOMMENDED READING:

Answers To 9 Questions About Public Cloud Migration

Cloud Myth 101: Cloud Is A Place

Oracle Open World: Key Questions On Cloud Vision

Cloud's Big Caveat: Runaway Costs

Cloud's Thorniest Question: Does It Pay Off?

Terremark Cloud Services Pass DOD Security Test

Will Dell Lead The x86 Data Center Market?

N.Y. Times Data Center Indictment Misses Big Picture

How The Feds Drive Cloud Innovation

« Previous Page | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | Next Page »

By The Numbers

Base: 417 respondents at organizations using or planning to deploy data analytics, BI or statistical analysis software
Data: InformationWeek 2013 Analytics, Business Intelligence and Information Management Survey of 541 business technology professionals, October 2012

What Do You Think?

What's your attitude about SQL analysis on top of Hadoop?

SaS

Five Big Data Challenges and How to Overcome Them with Visual Analytics

Business leaders often need a visual snapshot of data to quickly grasp and use it. This paper identifies five challenges in presenting data and how visual analytics can resolve them. Solutions are suggested to overcome the challenges of: speed, data clarity, data quality, displaying meaningful results, and dealing with outliers.

Game-Changing Analytics: How IT Executives Can Use Analytics to Create Innovation and Business Success

Today's competitive advantage requires a deeper understanding of your business, your market and your customers. As an IT executive, you can drive that knowledge transformation. In this white paper, learn how to make decisions as a strategic business leader and three steps to begin an analytics initiative within your enterprise.

Data Visualization Techniques: From Basics to Big Data with SAS Visual Analytics

High-performance data visualization turns sophisticated analyses into meaningful graphics, leading to faster and smarter decision making. In this white paper, learn how visual analytics can transform big data, with additional features such as real-time functionality, mobile compatibility, robust applications for technical groups and accessibility for nontechnical users.

Big Data: Lessons from the Leaders

Financial performance, competitive advantage, operational efficiency, strategic decision making - every business goal can extract value from big data, and the time for doubt or inaction has long passed. In this Economist Intelligence Unit report, in-depth interviews with data pioneers reveal the link between the effective use of big data and the bottom line among other results.

Decision-Driven Data Management: A Strategy for Better Decisions with Better Data

Which came first, the data or the decision? This white paper makes the case for having a decision in mind, then tailoring big data's volume, variety and velocity to achieve business results such as overcoming customer dissatisfaction or creating well-informed strategies in real time.

Informationweek Reports

Research: The Big Data Management Challenge

The challenge of big data is real, but most organizations don't differentiate 'big data' from traditional data, and nearly 90% of respondents to our survey use conventional databases as the primary means of handling data. We'll help you understand what constitutes big data (it's not just size) and the numerous management challenges it poses.