EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

11.14.13

In This Age of Fog/Cloud (Surveillance-Friendly) Computing, Can OwnCloud Be Trusted?

Posted in Free/Libre Software at 6:01 am by Dr. Roy Schestowitz

Spooks love the fog as it lets them spy on people without the people knowing about it

Fog

Summary: Looking at the problems with “cloud” (fog) computing, even when it is driven by Free software and is self-hosted

Fog Computing is one of the most disturbing emerging trends. It’s often proprietary by design (no access to source code) and it is a lot worse because it’s remotely controlled (no control over the binaries, either). Red Hat's embrace of OpenStack represents a strategic shift wherein Red Hat facilitates the deployment of Fog Computing by other companies [1]. It’s not Red Hat which does the violations, but oftentimes the companies which Red Hat helps will go on violating people’s privacy and dignity (Amazon for instance).

OpenStack is one of those cases where one has access to source code, but one cannot verify that this code is actually what’s executed as there is no access to the binaries (for the client side). Microsoft partners like Citrix are also embracing OpenStack [2], which sure enjoys growing influence [3]. It’s better to use something that’s Free/Open Source than something that’s proprietary, but when the code runs remotely, it is still far from freedom-respecting, unless of course it’s self-hosted, in which case NSA surveillance of OpenStack instances (possible [4]) is getting hard.

There is only one project that I know fulfills the above needs. It is the Germany-based OwnCloud [5,6,7], which has roots in SUSE (the key staff). The problem is, this project’s code has had a lot of vulnerabilities which basically would be easy for the NSA to exploit and gain access to servers. MEGA is said to be privacy-respecting, but it is proprietary and Flash-based. This option too has been found to have security vulnerabilities.

So the bottom line is this: keep your sensitive data on the local disk, stored by a reliable system like GNU/Linux. This data should not shipped without encryption (e.g. SSH) down a wire unless it only moved locally (within local network or hub). In this age of personal targeting, politically-motivated smears, espionage, etc. we need to protect our personal data. If we didn’t have anything to hide, we wouldn’t mind uploading our entire hard drives to be made publicly accessible by all, right? Well, not really. Apparently, even if you’re doing nothing wrong, you still need privacy. The NSA doesn’t give a damn about that.

Related/contextual items from the news:

  1. Red Hat Delivers More Tools, Services for Enterprise OpenStack

    Red Hat has a sterling reputation for advancing and supporting Linux in the enterprise, but the company is structuring much of its future growth around cloud computing, and OpenStack in particular. The company has recently announced the Red Hat Enterprise Linux OpenStack Platform, an Infrastructure-as-a-Service certification program for OpenStack, a deepening partnership with Canonical and Ubuntu surrounding the new Havana release of OpenStack, and more.

  2. Citrix Embraces ‘Anyness’ and the OpenStack Cloud

    VIDEO: The general manager of Citrix’s cloud efforts explains how his firm both supports and competes against the open-source OpenStack cloud.

  3. OpenStack Summit Highlights Cloud’s Global Influence

    The open-source OpenStack Foundation held its semiannual Design Summit here Nov. 5-8, discussing all manner of topics related to the cloud. As the first OpenStack Summit held outside of the United States, the event had a strong emphasis throughout on the global nature of the OpenStack cloud platform and, more specifically, the high levels of interest, participation and deployment of the platform in China. According to data released at the Hong Kong event, China is now home to more OpenStack developers than anywhere else in the world. China is also home to some of the largest OpenStack deployments on Earth, including one with Qihoo 360, a Beijing-based online security and mobile vendor. Qihoo 360 is using OpenStack to provide cloud-based security for 450 million user

  4. OpenStack Cloud Vendors Vigilant in the Face of NSA Snooping

    The Edward Snowden revelations about NSA snooping in the cloud are not having an impact on OpenStack cloud vendors, including Rackspace and Dreamhost.

  5. Why I love OwnCloud: answer to Dropbox lock-in

    I recently covered the release of Dropbox platform and my thoughts on the impending cloud storage lock-in. I was also fortunate enough to run across what the guys over at NimbusBase are doing over the weekend. They seem to be the answer to the open API for mobile and web applications, providing a cross-cloud storage layer and a GPL reference implementation while they do it. I also penned a few thoughts on their model.

  6. Own Your Data with OwnCloud
  7. Pure open source, open standard based Google Docs, iWork, Office 365 competitor arrives
Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Links 25/10/2014: KDE Mockups, Update on GNOME Outreach Program for Women

    Links for the day



  2. After Infecting Unity -- Successfully -- Microsoft's Partner Xamarin Wants to Infect Unreal Engine With .NET

    Xamarin continues to spread dependence on Microsoft to more gaming frameworks, not just platforms such as GNU/Linux, Android, and even permanent-state devices



  3. Taking Microsoft Windows Off the Grid for Damage to Businesses, the Internet, and Banking Systems

    Microsoft's insecure-by-design software is causing massive damages ([cref 27802 possibly trillions] of [cref 13992 dollars in damages to date]) and yet the corporate press does not ask the right questions, let alone suggest a ban on Microsoft software



  4. City of Berlin Does Not Abandon Free Software, It's Only Tax Authorities

    A Softpedia report that says the City of Berlin is moving to Microsoft Office is flawed and may be based on a poor translation



  5. Nadella a Liar in Chief at Microsoft, Pretending That His Anti-Competitive Practices Are Unfortunately Imposed on Microsoft

    The nastiness of Microsoft knows no bounds as even its assault on GNU/Linux and dirty tricks against Free software adoption are characterised as the fault of 'pirates'



  6. Reuters Writes About the Demise of Software Patents, But Focuses on 'Trolls' and Quotes Lawyers

    How the corporate media chooses to cover the invalidity of many software patents and the effect of that



  7. Links 24/10/2014: Microsoft Tax Axed in Italy, Google's Linux (ChromeOS/Android) Leader Promoted

    Links for the day



  8. Links 24/10/2014: GNU/Linux History, Fedora Delay

    Links for the day



  9. Links 23/10/2014: New *buntu, Benchmarks

    Links for the day



  10. Links 22/10/2014: Chromebooks Surge, NSA Android Endorsement

    Links for the day



  11. Links 21/10/2014: Debian Fork Debate, New GNU IceCat

    Links for the day



  12. Criminal Microsoft is Censoring the Web and Breaks Laws to Do So; the Web Should Censor (Remove) Microsoft

    Microsoft is still breaking the Internet using completely bogus takedown requests (an abuse of DMCA) and why Microsoft Windows, which contains weaponised back doors (shared with the NSA), should be banned from the Internet, not just from the Web



  13. Microsoft 'Loving' GNU/Linux and Other Corporate Media Fiction

    Microsoft has bullied or cleverly bribed enough technology-centric media sites to have them characterise Microsoft as a friend of Free/Open Source software (FOSS) that also "loves Linux"



  14. India May be Taking Bill Gates to Court for Misusing His So-called 'Charity' to Conduct Clinical Trials Without Consent on Behalf of Companies He Invests in

    Bill Gates may finally be pulled into the courtroom again, having been identified for large-scale abuses that he commits in the name of profit (not "charity")



  15. The Problems With Legal Workarounds, Patent Scope, and Expansion of Patent Trolls to the East

    Patent trolls are in the news again and it's rather important, albeit for various different reasons, more relevant than the ones covered here in the past



  16. Links 20/10/2014: Cloudera and Red Hat, Debian 7.7, and Vivid Vervet

    Links for the day



  17. Links 20/10/2014: 10 Years Since First Ubuntu Release

    Links for the day



  18. How Patent Lawyers Analyze Alice v. CLS Bank

    Breaking down a patent lawyer's analysis of a Supreme Court's decision that seemingly invalidated hundreds of thousands of software patents



  19. Is It Google's Turn to Head the USPTO Corporation?

    The industry-led USPTO continues to be coordinated by some of its biggest clients, despite issues associated with conflicting interests



  20. The EPO's Public Relations Disaster Amid Distrust From Within (and EPO Communications Chief Leaves): Part VII

    Amid unrest and suspicion of misconduct in the EPO's management (ongoing for months if not years), Transparency International steps in, but the EPO's management completely ignores Transparency International, refusing to collaborate; the PR chief of the EPO is apparently being pushed out in the mean time



  21. Links 18/10/2014: Debian Plans for Init Systems, Tails 1.2

    Links for the day



  22. Links 18/10/2014: New ELive, Android Expansion

    Links for the day



  23. Another Fresh Blow to Software Patents (and With Them Patent Trolls)

    Another new development shows that more burden of proof is to be put on the litigant, thus discouraging the most infamous serial patent aggressors and reducing the incentive to settle with a payment out of court



  24. Links 16/10/2014: New Android, SSL 3.0 Flaw

    Links for the day



  25. How the Corporate Press Deceives and Sells Microsoft Agenda

    Various new examples of media propaganda that distorts or makes up the facts (bias/lies by omission/selection) and where this is all coming from



  26. Vista 10 is Still Vapourware, But We Already Know It Will Increase Surveillance on Its Users and Contain Malicious Back Doors

    The villainous company which makes insecure-by-design operating systems will continue to do so, but in the mean time the corporate press covers only bugs in FOSS, not back doors in proprietary software



  27. Links 15/10/2014: KDE Plasma 5.1 is Out, GOG Reaches 100-Title Mark

    Links for the day



  28. With .NET Foundation Affiliation Xamarin is Another Step Closer to Being Absorbed by Microsoft

    Xamarin is not even trying to pretend that separation exists between Microsoft and its work; yet another collaboration is announced



  29. The EPO's Protection Triangle of Battistelli, Kongstad, and Topić: Part VI

    Jesper Kongstad, Benoît Battistelli, and Zeljko Topić are uncomfortably close personally and professionally, so suspicions arise that nepotism and protectionism play a negative role that negatively affects the European public



  30. Corporate Media Confirms the Demise of Software Patents in the United States; Will India and Europe Follow?

    It has become increasingly official that software patents are being weakened in the United States' USPTO as well as the courts; will software leaders such as India and Europe stop trying to imitate the old USPTO?


CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts