Gartner: Seven cloud-commuting security risks

Cloud computing may be the wave of the future, but one cannot ignore dangers involving data integrity, recovery, privacy and regulatory compliance. Gartner, in a new report entitled, "Assessing the Security Risks of Cloud Computing," cautions that users of cloud computing must ask tough questions and consider getting a security assessment from a neutral third party before committing to a cloud vendor.

Gartner says customers should avoid vendors that do not provide detailed information on security programs or make available the qualifications of policy makers, architects, coders and operators. The Gartner report also outlined seven specific security issues that should always be be raised with the cloud vendor. They include: knowing whether there is privileged user access to sensitive data and what kinds of controls are in place; whether the cloud computing provider undertakes external audits and security certifications; knowing where your data is hosted; and confirming that they will make a contractual commitment to obey local privacy requirements on behalf of their customers.

For more advice:
 - See this networkworld.com article

More tech stories from the FierceCIO network:
 
> Hackers hijack Internet organizations. Article
> Microsoft stops offering boxed Window XP. Article
> New hands-free cell phone law takes effect in California. Article