XML Feedshot and cold water on the subject
By basd on May 2, 2009 | In cloud computing
Installing eyeOS to my host webserver was really easy.
...
So, now I've got a kind of nifty web browser desktop at my disposal. There is also a synch tool -- which I have not set up yet -- which is supposed to allow synchronization of files between the server and the local system.
So, we've got a semi-private sharing space. For instance, if I want to hand off some pdf files to a client, I just create a login for the client, throw some pdf of files on it and he/she retrieves them. The pdf reader "save" button allows local save of the document (and a right-click menu allows a download option.
I can use the text editor or the document system to create and save files, such as notes to myself and the like. I can upload documents for later use.
All good. Yay!
OTOH, whenever I work on improving my "cloud computing" solutions, I get to thinking more about security. Now, if I were running this on my own server -- and assuming it will work with an https connection -- then I actually have a reasonably secure system.
I've tested putting one of my computers online through the firewall, and it works. But ... one of my main reasons for "cloud computing" is to have access when I'm away from home/office. What happens if there is a power failure and the computer goes down?
A hosted account solves this problem. But then on the other hand, all of the files are readily viewable by programmers at the host company. And, assuming they are stored encrypted, then there is still the issue that if the host computer (server) is doing the decryption, they are readable while decrypted. A malevolent server company could just run a program to capture everything from memory while decrypted.
And, while one might think, "with all the data on the server, why would anyone be looking at my files?" -- well, with the search algorithms these days, data that is seemingly buried under billions of bytes becomes instantly transparent when the search is asked correctly. So, one would make a serious mistake to put info helpful to identity theft and/or accounts and passwords on a third-party server.
So, what we need is a system that undertakes the decryption on the local system (and wipes the temp files). A portable linux system on a flash drive gets closer to this solution. The problem is, while there are many public terminals that will let you access a web browser, there are not necessarily going to let you reboot the computer with a flash drive operating system.
So here is where we would like netbooks and cell phones to merge. If we are carrying an internet capable cell phone with a lot of apps on it, we are getting closer to having a full micro system that does not rely on someone else's computer.
But here is where we technology bumps headlong into paranoia. I use a very obsolete Blackberry with not much capability because I frequently go to state and federal courts. They won't allow cell phones in the building with cameras. (Well, some will allow the phone, but they must not be "turned on" lest we take a picture of something secret.)
(What, I don't know.)
There are a handful of rare full-featured phones without cameras. But, they either don't tether to the computer -- or when tethered, have rather tight limitations on data usage.
Personally, I would like to see a cell phone/micro computer that could connect to a full size keyboard/monitor/mouse. There are some "fold-up" keyboards out there, but I haven't tried them.
But, with enough firepower in the "cell phone", if it could be plugged in via a KVM switch, it could be a full-service computer when at the home, office, or office workspace; and on the go, it can have pretty good internet usability without the external hardware.
Then again, for those of us with limited budgets who are surrounded by "no camera" luddites, the future is just so much pie-in-the-sky.
Thank you for visiting and have a pleasant tomorrow.
_______________________
And for a digression about why security matters -- I was just setting up an VOIP account with "Telebend". Their no contract "terms and conditions" are long and almost impossible to read in the little window they provide for doing so. But, I copied it into a regular document so I could read it.
This was astounding -- they not only intend to comply with legal subpoenas and court process, they intend to comply with any "law enforcement request." An illegal wiretap ain't illegal if you have already agreed to it up front in your provider contract!
Sheesh.
Trackback address for this post
Trackback URL (right click and copy shortcut/link location)
No feedback yet
| « ya know ... | document trivia » |
