One of main information security issue facing corporations is that they simply don’t know what data they have, it’s sensitivity, nor where it’s located. Now, with the rush to cloud computing, these organizations can simply say: “Hey, we don’t know what data we have nor where it is because … it’s designed that way!. We don’t have to know where it is! And if don’t know where it is … how can we know what’s there!?”
OK, I jest. But it does illustrate to me that the abstraction/virtualization layers inserted between an application and its data can certainly obfuscate the assigning of responsibility for the protection of that data in accordance with its sensitivity and CIA. And do/will vendors offer services commensurate with that need? Right now, I for one am in the position of the old man who saw a dog ice-dancing. It wasn’t the he did it well … it was that he did it at all.
0 responses so far ↓
There are no comments yet...Kick things off by filling out the form below..
Leave a Comment