Feeds

Snowden leaks made us look twice at cloud suppliers – biz bods

Survey: Corporates putting cloud firms under closer scrutiny

Top 5 reasons to deploy VMware with Tegile

Businesses are conducting more due diligence on cloud suppliers and demanding more localised storage of their data in the wake of reports about US surveillance activities, according to a new survey.

One in six businesses are also either delaying or cancelling cloud computing contracts in light of revelations about the alleged communications surveillance activities of the US National Security Agency (NSA), as leaked to the media by whistleblower Edward Snowden, according to the survey.

NTT Communications commissioned a survey of 1,000 IT decision makers from the UK, France, Germany, Hong Kong and the US earlier this year into attitudes to cloud computing post-Snowden. Of the respondents, 60% came from businesses with at least 1,000 employees from across the financial services, retail, manufacturing, professional services, IT and energy sectors.

"This report paints a picture of ICT decision-makers who wish to protect their company’s data even if it means delaying cloud computing projects that could deliver them much-needed flexibility and performance gains," NTT Communications said in its "NSA after-shocks" report (11-page / 761KB PDF). "[Businesses] want to guarantee the sovereignty of their data and reap the benefits of cloud computing. But they can only do so if they can specify exactly where and how their data is stored in the cloud."

Last summer former NSA contractor Edward Snowden began leaking details about the alleged scale and scope of the surveillance activities undertaken by the NSA. The information, which Snowden shared with the UK's Guardian newspaper among other global media outlets, has suggested that the NSA has had the capability to access data stored by some major US-based technology companies, including Google and Microsoft. The companies have denied giving 'back door' access to the information stored on their servers.

According to NTT Communications' report, 31 per cent of IT decision makers have decided to move their business data "to where they know it will be safe", following the Snowden coverage. More than half of the respondents (52 per cent) said their business was now conducting "greater due diligence on cloud providers than ever before".

"Keeping data in their own country was most important to German ICT decision-makers (32 per cent of respondents agreeing), followed by the UK (24 per cent) and France (23 per cent)," the report said. "By contrast, only 16 per cent of US respondents, and 17 per cent in Hong Kong took the same view."

More than a third of businesses (38 per cent) have also altered the procurement conditions they set when seeking a cloud provider following the Snowden revelations, according to the report, whilst 62 per cent of non-cloud users said that the leaks "have prevented them from moving their ICT into the cloud".

The survey also revealed raised concerns about data protection among businesses.

"Nearly three-quarters (72 per cent) of ICT decision-makers polled said they would revisit every cloud and hosting arrangement to ensure data protection, if they had the necessary time and resources," NTT Communications' report said. "Almost nine in ten (86 per cent) of US respondents held this view, as did three quarters (75 per cent) of French respondents. German, UK and Hong Kong respondents agreed but less so (65 per cent, 62 per cent and 62 per cent respectively)."

"The Snowden revelations have also made ICT decision-makers more aware of the need to have detailed knowledge of data protection rules. 84 per cent of ICT decision-makers globally believed they need training on data protection laws and security rules in the territories their businesses operate," it said.

Last year a US think tank said that US cloud providers could lose between $21.5bn and $35bn over a three year period in the wake of the Snowden revelations.

Copyright © 2014, Out-Law.com

Out-Law.com is part of international law firm Pinsent Masons.

Beginner's guide to SSL certificates

More from The Register

next story
It's Big, it's Blue... it's simply FABLESS! IBM's chip-free future
Or why the reversal of globalisation ain't gonna 'appen
IBM storage revenues sink: 'We are disappointed,' says CEO
Time to put the storage biz up for sale?
'Hmm, why CAN'T I run a water pipe through that rack of media servers?'
Leaving Las Vegas for Armenia kludging and Dubai dune bashing
Microsoft and Dell’s cloud in a box: Instant Azure for the data centre
A less painful way to run Microsoft’s private cloud
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
Windows 10: Forget Cloudobile, put Security and Privacy First
But - dammit - It would be insane to say 'don't collect, because NSA'
prev story

Whitepapers

Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.