EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

11.14.13

In This Age of Fog/Cloud (Surveillance-Friendly) Computing, Can OwnCloud Be Trusted?

Posted in Free/Libre Software at 6:01 am by Dr. Roy Schestowitz

Spooks love the fog as it lets them spy on people without the people knowing about it

Fog

Summary: Looking at the problems with “cloud” (fog) computing, even when it is driven by Free software and is self-hosted

Fog Computing is one of the most disturbing emerging trends. It’s often proprietary by design (no access to source code) and it is a lot worse because it’s remotely controlled (no control over the binaries, either). Red Hat's embrace of OpenStack represents a strategic shift wherein Red Hat facilitates the deployment of Fog Computing by other companies [1]. It’s not Red Hat which does the violations, but oftentimes the companies which Red Hat helps will go on violating people’s privacy and dignity (Amazon for instance).

OpenStack is one of those cases where one has access to source code, but one cannot verify that this code is actually what’s executed as there is no access to the binaries (for the client side). Microsoft partners like Citrix are also embracing OpenStack [2], which sure enjoys growing influence [3]. It’s better to use something that’s Free/Open Source than something that’s proprietary, but when the code runs remotely, it is still far from freedom-respecting, unless of course it’s self-hosted, in which case NSA surveillance of OpenStack instances (possible [4]) is getting hard.

There is only one project that I know fulfills the above needs. It is the Germany-based OwnCloud [5,6,7], which has roots in SUSE (the key staff). The problem is, this project’s code has had a lot of vulnerabilities which basically would be easy for the NSA to exploit and gain access to servers. MEGA is said to be privacy-respecting, but it is proprietary and Flash-based. This option too has been found to have security vulnerabilities.

So the bottom line is this: keep your sensitive data on the local disk, stored by a reliable system like GNU/Linux. This data should not shipped without encryption (e.g. SSH) down a wire unless it only moved locally (within local network or hub). In this age of personal targeting, politically-motivated smears, espionage, etc. we need to protect our personal data. If we didn’t have anything to hide, we wouldn’t mind uploading our entire hard drives to be made publicly accessible by all, right? Well, not really. Apparently, even if you’re doing nothing wrong, you still need privacy. The NSA doesn’t give a damn about that.

Related/contextual items from the news:

  1. Red Hat Delivers More Tools, Services for Enterprise OpenStack

    Red Hat has a sterling reputation for advancing and supporting Linux in the enterprise, but the company is structuring much of its future growth around cloud computing, and OpenStack in particular. The company has recently announced the Red Hat Enterprise Linux OpenStack Platform, an Infrastructure-as-a-Service certification program for OpenStack, a deepening partnership with Canonical and Ubuntu surrounding the new Havana release of OpenStack, and more.

  2. Citrix Embraces ‘Anyness’ and the OpenStack Cloud

    VIDEO: The general manager of Citrix’s cloud efforts explains how his firm both supports and competes against the open-source OpenStack cloud.

  3. OpenStack Summit Highlights Cloud’s Global Influence

    The open-source OpenStack Foundation held its semiannual Design Summit here Nov. 5-8, discussing all manner of topics related to the cloud. As the first OpenStack Summit held outside of the United States, the event had a strong emphasis throughout on the global nature of the OpenStack cloud platform and, more specifically, the high levels of interest, participation and deployment of the platform in China. According to data released at the Hong Kong event, China is now home to more OpenStack developers than anywhere else in the world. China is also home to some of the largest OpenStack deployments on Earth, including one with Qihoo 360, a Beijing-based online security and mobile vendor. Qihoo 360 is using OpenStack to provide cloud-based security for 450 million user

  4. OpenStack Cloud Vendors Vigilant in the Face of NSA Snooping

    The Edward Snowden revelations about NSA snooping in the cloud are not having an impact on OpenStack cloud vendors, including Rackspace and Dreamhost.

  5. Why I love OwnCloud: answer to Dropbox lock-in

    I recently covered the release of Dropbox platform and my thoughts on the impending cloud storage lock-in. I was also fortunate enough to run across what the guys over at NimbusBase are doing over the weekend. They seem to be the answer to the open API for mobile and web applications, providing a cross-cloud storage layer and a GPL reference implementation while they do it. I also penned a few thoughts on their model.

  6. Own Your Data with OwnCloud
  7. Pure open source, open standard based Google Docs, iWork, Office 365 competitor arrives
Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New

  1. Links 22/4/2014: More GNU/Linux Gains, Syria Updates

    Links for the day

  2. Links 21/4/2014: New Games for GNU/Linux, Some NatSec Politics

    Links for the day

  3. Site Focus for The Remainder of the Year

    What we plan for the rest of 2014 and why

  4. Links 20/4/2014: EFF FOSS, Easter Drone Strikes, Copyright Industry Fear of Google

    Links for the day

  5. Links 19/4/2014: Slow Easter News Day

    Links for the day

  6. Links 18/4/2014: New KDE, Kubuntu, and More

    Links for the day

  7. Some Perspective on Heartbleed®

    Our views on the whole Heartbleed® bonanza, which seems like partly a PR stunt (for multiple stakeholders)

  8. Microsoft is Leaving Windows -- Including Vista 8.1 -- Vulnerable to Non-Government Crackers, Not Only to NSA

    Microsoft makes it ever more evident that securing users of Windows is not at all a priority, and perhaps not even a desire

  9. Links 17/4/2014: Android RDP, New Ubuntu, RHEL 7 Milestone

    Links for the day

  10. Racing to 1984: Mass Surveillance, Cracking, 'Targeted' Assassinations, and Illegal Torture

    Links for the day

  11. More Microsoft Subsidies to Patent Troll Intellectual Ventures

    Microsoft hands money to Bill Gates' close friend who is the world's largest patent troll

  12. Aiding Microsoft Under the Disguise of 'Pro-FOSS'

    Not everything which is FOSS necessary becomes, by virtue of existence, a positive contribution, as we are constantly reminded by projects that help proprietary software and/or restrictions get a strong grip on FOSS

  13. Links 16/4/2014: Red Hat PR, Ubuntu LTS Imminent

    Links for the day

  14. Links 15/4/2014: Lots of PCLinuxOS Releases, Ukraine Updates

    Links for the day

  15. Apple and Microsoft Actively Lobbying Against Patent Reform in the US

    Apple and Microsoft are reportedly intervening/interfering with US law in order to ensure that the law is Free/libre software-hostile

  16. Lawsuit by Microsoft Shareholder Targets Fine for Crimes Rather Than the Crimes Themselves

    A new lawsuit by a Microsoft shareholder shows everything that's wrong with today's model of accountability, where those who are responsible for crimes are accused of not avoiding fines rather than committing the crimes

  17. Public Institutions Must Dump PRISM-Associated Software

    Another reminder that taxpayers-subsidised services should refuse, as a matter of principle, to pay anything for -- let alone deploy -- proprietary software with back doors

  18. GNU/Linux News: The Opportunities Amid XP EOL

    Links for the day

  19. Microsoft Gets Its Money's Worth From Xamarin: PlayStation 4 Now Polluted by Microsoft

    The Trojan horse of Microsoft, Xamarin, is pushing .NET into Microsoft's console competitor

  20. After Brendan Eich Comes Chris Beard

    Having removed Brendan Eich using bullying and blackmail tactics, his foes inside Mozilla achieved too little as we have yet another man (coming from inside Mozilla) acting as CEO

  21. Healthcare News: Free Software in Health, Humanitarian Causes

    Links for the day

  22. Links 14/4/2014: MakuluLinux, Many Games, More Privacy News and Pulitzer Prize for NSA Revelations

    Links for the day

  23. TechBytes Episode 87: Catching up With Surveillance (NSA, GCHQ et al.)

    The first audio episode in a very long time covers some of the latest happenings when it comes to privacy and, contrariwise, mass surveillance

  24. Server News: KVM, ElasticHosts, Other GNU/Linux Items, and Open Network Linux

    Links for the day

  25. Hardware News: Freedom, Modding, Hackability on the Rise

    Links for the day

  26. Distributions News: GNU/Linux Distros

    Links for the day

  27. GNOME News: Financial Issues, Mutter-Wayland, West Coast Summit, Community Participation

    Links for the day

  28. KDE News: Kubuntu at the Centre Again KDE Applications Updated

    Links for the day

  29. Techrights Rising

    Effective immediately, Techrights will do what it takes to bring back old volume and pace of publishing

  30. Links: Surveillance, Intervention, Torture and Drones

    Links for the day

CoPilotCo

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

CoPilotCo

Recent Posts