• Sweden edition
 
Sweden warns firms of cloud computing risks
Microsoft VP John Kalkman address cloud computing at Taiwan conference, May 2010

Sweden warns firms of cloud computing risks

Published: 02 Feb 2011 14:05 GMT+01:00
Updated: 02 Feb 2011 14:05 GMT+01:00

Hundreds of Swedish companies have lost out on large international contracts after their secrets were leaked to competitors due to security breaches as a result of the explosion in cloud computing.

Companies, particularly those in the IT industry, that use cloud services, in which applications and files are stored with large data centres instead of on their own computers and accessed through the internet, are especially at risk.

The Swedish Fortifications Agency (Fortifikationsverket) is warning companies to take extra precautions if they rent data storage space from external providers.

"It's something we've discovered and we want people to be aware of, but it's not normally our job to look at companies' security like that. It's not really our thing to actually go through companies and see what their security levels are like," Catharina Millmarker, press secretary of the agency, told The Local on Wednesday.

"When we look at companies, like when we build new estate areas, we always check to see if the information is safe with them. We don't use those companies where it is not. We see a trend where a lot of companies do this, so we had to say something about it," she added.

The governmental authority, which is one of the largest landowners in Sweden and whose largest client is the Swedish Armed Forces (Försvarsmakten), specialises in protection technology, secure underground facilities and special purpose buildings.

"Information leaks have always been a problem since companies started to send information on the internet. It's been a problem for many years, but it will be an increased problem because of the numbers of users using cloud computing," the agency's security protection director Henrik Thernlund told The Local on Wednesday.

The agency engages in nearly 2,000 security-protected transactions each year to see how they handle the classified information that they receive.

Thernlund has observed that companies trying to procure information no longer have to hack into systems, but can simply pay for trade secrets, according to a Svenska Dagbladet (SvD) report on Wednesday.

"Company executives have no idea how poorly they manage their business-critical data. They are starry-eyed and lose business because of it," Thernlund told the newspaper.

Cloud computing began to take off two to three years ago when the bandwidth made it possible to store data online for certain applications.

The countries that are most cited in engaging in state-funded industrial espionage are Russia, China, Iran and even Britain, which has reportedly invested more resources on collecting data for economic and commercial purposes.

Other markets cited include both France and Germany, as well as India and North Korea, according to SvD.

The agency has noticed about 20 cases a year in which there is a direct threat against a Swedish company and its business-critical information. In another 50 cases, companies are exposed to "significant and serious" risks, according to the report. This pertains to both large and small companies.

Thernlund advised companies not to place all its data on cloud servers.

"No, absolutely not. For instance, if you have a new patent that you have not registered yet, it is very bad to put it on the internet. Keep it at the company before you get the patent. There are advantages with cloud computing, we're not saying ban it at all, but just for some information," he said.

As to why companies have been caught off guard, Thernlund said, "For a smaller company, it is a question of competence, they don't have the competence in-house. For a bigger company, it's cheaper than having your own server."

He added that it is difficult to estimate how much companies lose from cloud computer leaks.

"The advantage for the attacker is that you don't even know if you have lost information. It's not like a book on the shelf where you see the book is missing," said Thernlund.

"Someone else can produce the product you have a patent for, or they will make an offer you were after. You cannot point to a company and say, 'You stole this from me,'" he added.

Thernlund believes that both governments and companies must become more vigilant in this area to beef up their cloud computing security. Often, it is the state that owns the databases and rents out storage space to companies.

According to security software manufacturer Symantec, all information stored on cloud servers should be encrypted, but even this is not enough to ensure that the data is secure depending on which country the cloud company's servers are located.

Vivian Tse (vivian.tse@thelocal.se)

Don't miss...X
Left Right

Your comments about this article

17:04 February 2, 2011 by Arturio
I think that those who took this survey does not even know what it means cloud computing.
04:47 February 3, 2011 by NoVaseline
YEah, that's what i also thought. the person who's talking about this seems to have absolutely no idea about what Cloud Computing mean! Faann, no vaseline!
11:03 February 3, 2011 by Onepack
Fortifikationsverket: Are these the same guys who intercept our email communications and keep them for months??? These are probably the guys who are doing the snooping... Talk about hypocracy!

Cloud Computing is here to stay... and I hope that, as it progresses, the system will continue to provide all of us with valuable services.. even though we may have to put up with the likes of the snooping government. Freedom and liberty are the Cloud Computing's great gift to us all... a real threat to controling/manipulative governments!
11:28 February 3, 2011 by ausrasul
Agree with you Onepack,

but if you look at the last part of the article when the author calmed down, he says Cloud is not secured for "certian" data like unregistered patents.

I agree with that, but only on the under the condition that the company that puts the data doesn't have the competence to secure their remote access to the cloud.

for example if you upload username list as plain text telnet, then ... what are you doing?

of course ssh is better, but not like when you have your own server and secure it with a firewall and use dynamic RSA key to log in.

So it is a matter of security level, not saying cloud is bad, I'm a big fan of cloud.

do you trust your e-bank services if they secure your money with a password only?
01:19 February 4, 2011 by alecLoTh
@Onepack,

Disclaimer: I work in IT, yes we use Cloud, I'm a programmer, I work in security...just to counteract any ideas that I'm out of my depth.....

What you are saying amounts to. "Iam going to put all my eggs in one basket, as well as the eggs of all my neighbours and friends" This way we will be more secure from someone stealing our eggs.

True, you only need to watch one basket instead of many, but if the eggs fall within the law of a country to be scanned, then your idea dosent hold water.

Technically I love the Cloud and it's possibilities...but ass a free-thinker, I call their bluff...this is simply renting people their own information

This is crazy talk.
11:46 February 4, 2011 by mikewhite
Knowing who has your data:

http://www.pcpro.co.uk/blogs/2011/01/10/twitter-data-demand-highlights-cloud-control-problems/

"There are even considerations and worries about data held on EU-hosted servers owned by US corporations. As I reported a month or so ago, at least Bob Muglia, president of servers and tools at Microsoft, was honest enough to admit that Microsoft would hand over data to the US authorities if so instructed, because they would have no choice but to comply." (John Honeyball)
23:51 September 12, 2011 by MytopCloud
Nice and useful article, and security is the main problem for Internet Cloud Computing technology.

www.mytopcloud.com domain name is for sale, for more information refer to web site or email at contact@mytopcloud.com
Today's headlines
Three rescued after cruise ship sinks boat
Rickard Rundgren Björk of the coastguard services speaks to the media after the rescue operation on April 19th 2014. Photo: Maja Suslin /TT

Three rescued after cruise ship sinks boat

Three Saturday morning sailors had a lucky escape after their small boat collided and sank after it crashed into a cruise ship whilst sailing in the Stockholm archipelago. READ () »

Missing Swede found alive and well in UK
Sofie Marie Jansson. Photo: Metropolitan Police

Missing Swede found alive and well in UK

British police have found the missing Swedish girl Sofie Jansson in London, exactly a week after she was last seen, with authorities saying she is doing well. READ () »

Social Democrats make tax pledge to elderly

Social Democrats make tax pledge to elderly

Sweden's opposition party have stepped up its efforts to secure the pensioner vote by pledging to lower taxes for the elderly and make higher earners pay more. READ () »

Malmö Nazi attack victim on the mend
Showan Shattak pictured in Malmö before his attack. Photo: Facebook

Malmö Nazi attack victim on the mend

The 25-year-old man, whose stabbing by neo-Nazis sparked mass demonstrations across Sweden, has made a strong recovery in hospital and took to social media to thank supporters for campaigning against fascism. READ () »

Police seeking missing Swede in London

British police have issued a plea for tips in the search to find Swedish national Sofie Marie Jansson who hasn't been seen for almost a week. READ () »

University applications rocket to record high

University applications rocket to record high

Swedish universities continue to draw vast amounts of applicants with the number of prospective students seeking a third level education increasing for the seventh year in a row. READ () »

Man jailed in US over Lars Vilks murder plot
Swedish artist Lars Vilks pictured in New York in 2012. Photo: Linus Sundahl-Djerf/TT

Man jailed in US over Lars Vilks murder plot

American authorities have sentenced a 20-year-old accomplice of 'Jihad Jane' to five years in prison for an attempted terror plot to kill Swedish artist Lars Vilks, after getting involved with the murder plans when he was a teenager. READ () »

Sweden scraps 'new start zones' after EU input
Integration Minister Erik Ullenhag visits a school in Tensta, one of the neighbourhoods mentioned when he and his colleagues first floated the new start zone proposal. File: TT

Sweden scraps 'new start zones' after EU input

Sweden has abandoned a plan to ease taxes for small companies in blighted areas after the European Commission challenged its legality. READ () »

'Easter eggs an invitation to spread germs'
A typical Swedish Easter egg. Photo: Jessica Gow/TT

'Easter eggs an invitation to spread germs'

A Swedish microbiologist has warned that traditional Swedish Easter eggs laden with candy are an open invitation to the spread of bacteria and viruses. "Is this really a good idea?" he asked. READ () »

Jammed truck snarls Stockholm rush hour
Photo: Anders Wiklund/TT

Jammed truck snarls Stockholm rush hour

PICTURES: A truck got wedged inside a tunnel in central Stockholm on Thursday, with authorities concerned the accident may have damaged cables in the tunnel's ceiling. READ () »

RECEIVE OUR NEWSLETTER AND ALERTS
Society
Swedish supermarket Ica pulls contested Easter commercial off air
Kungahuset
Society
Swedish royals set baptism date for princess
finest.se
Gallery
People-watching April 16
Politics
Who's the prime minister's heir?
Alfie Atkins
Society
Are children's books the key to families integrating in Sweden?
National
'Sweden Dem protests cater to party's martyr image'
National
'Swedish research grants were fantastic, but now it's like Australia'
Society
Only in Sweden: The ten problems you'd never encounter elsewhere
National
Swedes stopped to take my picture, but didn't look me in the eyes
Business & Money
A swipe of the hand replaced cash and cards in Lund
YouTube
Features
Video: Oliver Gee finds out how to embrace The Swedish Hug
TT
National
Abba duo hints at reunion
Advertisement:
Private
National
Flash mobs hug it out across Sweden
Finest.se
Gallery
People-watching April 11-13
TT
Politics
Swedes to give six-hour workday a go
TT
Society
Aussie choir member wows Abba in Sweden
YouTube
Society
Stockholm magic a surprise YouTube hit
Fastighetsbyrån
Society
Gallery: The Local's Property of the Week
Private
Society
Swedes find 200-year-old gravestone in living room
Stockholm School of Economics
Sponsored Article
Why a bachelor's degree is no longer enough
Deepti Vashisht
Features
Deepti Vashisht dissects the magic of Sweden's personal ID number
Shutterstock
Society
Ten signs you've been in Sweden too long
Society
Jimi Fritze heard every word when doctors discussed taking his organs
Society
A Swedish farmer explains why the new bestiality ban is 'pointless'
ESL
Sponsored Article
Learning Swedish the easy way
Latest news from The Local in Switzerland

More news from Switzerland at thelocal.ch

Latest news from The Local in Germany

More news from Germany at thelocal.de

Latest news from The Local in Spain

More news from Spain at thelocal.es

Latest news from The Local in France

More news from France at thelocal.fr

Latest news from The Local in Italy

More news from Italy at thelocal.it

Latest news from The Local in Norway

More news from Norway at thelocal.no

Blog Update: The Diplomatic Dispatch

28 October 15:16

The Green Growth Group Summit »

"Today on the 28 October in Brussels, a large group of key EU Ministers and business people, including UK Secretary of State for Energy and Climate Change Edward Davey, and Swedish Environment Minister Lena Ek, will meet to discuss green growth. They all have a stake in resolving a challenge which, although it is crucial..." READ »

749
jobs available
Swedish Down Town Consulting & Productions
Swedish Down Town Consulting & Productions is an innovative business company which provides valuable assistance with the Swedish Authorities, Swedish language practice and general communications. Call 073-100 47 81 or visit:
www.swedishdowntown.com