The security of Cloud computing must not be taken for granted, an Australian startup has warned.
Lockbox CTO, Rick Harvey, said that while companies like Dropbox promise that files will be secure in its Cloud, the businesses that use the service are investing a lot of trust in such claims.
“You have to trust Dropbox and there have been many examples of where they’ve got it wrong,” Harvey said.
Harvey said rather than putting complete trust into the Cloud, IT teams must cease making assumptions about its security.
“I think from where I stand, there’s a set of things that people make assumptions about like Cloud security,” he said. “It is secure up to a point but that doesn’t mean that trust doesn’t have to go into the Cloud.”
Using end-to-end encryption enables Lockbox to have a secure file sharing service, Harvey claimed, with the approach switching the control to the customer.
“As Cloud rises security and privacy falls, so we’re trying to be in that gap,” he said.
“We’re pushing the control, the trust and the security out to the client - all the control is held by the client.”
Harvey said the company, which was founded in 2007, views the security of data and the security of IT as two completely different things.
“There’s a difference between IT security and data security,” he said. “Encryption says ‘Lets lock down the data’ and there’s a big difference in that data security isn’t susceptible to the same sort of attacks.”
Dropbox had its security breached last month, when unauthorised access via three attacks took place.
Follow Lisa Banks on Twitter: @CapricaStar
Follow Computerworld Australia on Twitter: @ComputerworldAU