• Sweden edition
 
Sweden warns firms of cloud computing risks
Microsoft VP John Kalkman address cloud computing at Taiwan conference, May 2010

Sweden warns firms of cloud computing risks

Published: 02 Feb 2011 14:05 GMT+01:00
Updated: 02 Feb 2011 14:05 GMT+01:00

Hundreds of Swedish companies have lost out on large international contracts after their secrets were leaked to competitors due to security breaches as a result of the explosion in cloud computing.

Companies, particularly those in the IT industry, that use cloud services, in which applications and files are stored with large data centres instead of on their own computers and accessed through the internet, are especially at risk.

The Swedish Fortifications Agency (Fortifikationsverket) is warning companies to take extra precautions if they rent data storage space from external providers.

"It's something we've discovered and we want people to be aware of, but it's not normally our job to look at companies' security like that. It's not really our thing to actually go through companies and see what their security levels are like," Catharina Millmarker, press secretary of the agency, told The Local on Wednesday.

"When we look at companies, like when we build new estate areas, we always check to see if the information is safe with them. We don't use those companies where it is not. We see a trend where a lot of companies do this, so we had to say something about it," she added.

The governmental authority, which is one of the largest landowners in Sweden and whose largest client is the Swedish Armed Forces (Försvarsmakten), specialises in protection technology, secure underground facilities and special purpose buildings.

"Information leaks have always been a problem since companies started to send information on the internet. It's been a problem for many years, but it will be an increased problem because of the numbers of users using cloud computing," the agency's security protection director Henrik Thernlund told The Local on Wednesday.

The agency engages in nearly 2,000 security-protected transactions each year to see how they handle the classified information that they receive.

Thernlund has observed that companies trying to procure information no longer have to hack into systems, but can simply pay for trade secrets, according to a Svenska Dagbladet (SvD) report on Wednesday.

"Company executives have no idea how poorly they manage their business-critical data. They are starry-eyed and lose business because of it," Thernlund told the newspaper.

Cloud computing began to take off two to three years ago when the bandwidth made it possible to store data online for certain applications.

The countries that are most cited in engaging in state-funded industrial espionage are Russia, China, Iran and even Britain, which has reportedly invested more resources on collecting data for economic and commercial purposes.

Other markets cited include both France and Germany, as well as India and North Korea, according to SvD.

The agency has noticed about 20 cases a year in which there is a direct threat against a Swedish company and its business-critical information. In another 50 cases, companies are exposed to "significant and serious" risks, according to the report. This pertains to both large and small companies.

Thernlund advised companies not to place all its data on cloud servers.

"No, absolutely not. For instance, if you have a new patent that you have not registered yet, it is very bad to put it on the internet. Keep it at the company before you get the patent. There are advantages with cloud computing, we're not saying ban it at all, but just for some information," he said.

As to why companies have been caught off guard, Thernlund said, "For a smaller company, it is a question of competence, they don't have the competence in-house. For a bigger company, it's cheaper than having your own server."

He added that it is difficult to estimate how much companies lose from cloud computer leaks.

"The advantage for the attacker is that you don't even know if you have lost information. It's not like a book on the shelf where you see the book is missing," said Thernlund.

"Someone else can produce the product you have a patent for, or they will make an offer you were after. You cannot point to a company and say, 'You stole this from me,'" he added.

Thernlund believes that both governments and companies must become more vigilant in this area to beef up their cloud computing security. Often, it is the state that owns the databases and rents out storage space to companies.

According to security software manufacturer Symantec, all information stored on cloud servers should be encrypted, but even this is not enough to ensure that the data is secure depending on which country the cloud company's servers are located.

Vivian Tse (vivian.tse@thelocal.se)

Don't miss...X
Left Right

Your comments about this article

17:04 February 2, 2011 by Arturio
I think that those who took this survey does not even know what it means cloud computing.
04:47 February 3, 2011 by NoVaseline
YEah, that's what i also thought. the person who's talking about this seems to have absolutely no idea about what Cloud Computing mean! Faann, no vaseline!
11:03 February 3, 2011 by Onepack
Fortifikationsverket: Are these the same guys who intercept our email communications and keep them for months??? These are probably the guys who are doing the snooping... Talk about hypocracy!

Cloud Computing is here to stay... and I hope that, as it progresses, the system will continue to provide all of us with valuable services.. even though we may have to put up with the likes of the snooping government. Freedom and liberty are the Cloud Computing's great gift to us all... a real threat to controling/manipulative governments!
11:28 February 3, 2011 by ausrasul
Agree with you Onepack,

but if you look at the last part of the article when the author calmed down, he says Cloud is not secured for "certian" data like unregistered patents.

I agree with that, but only on the under the condition that the company that puts the data doesn't have the competence to secure their remote access to the cloud.

for example if you upload username list as plain text telnet, then ... what are you doing?

of course ssh is better, but not like when you have your own server and secure it with a firewall and use dynamic RSA key to log in.

So it is a matter of security level, not saying cloud is bad, I'm a big fan of cloud.

do you trust your e-bank services if they secure your money with a password only?
01:19 February 4, 2011 by alecLoTh
@Onepack,

Disclaimer: I work in IT, yes we use Cloud, I'm a programmer, I work in security...just to counteract any ideas that I'm out of my depth.....

What you are saying amounts to. "Iam going to put all my eggs in one basket, as well as the eggs of all my neighbours and friends" This way we will be more secure from someone stealing our eggs.

True, you only need to watch one basket instead of many, but if the eggs fall within the law of a country to be scanned, then your idea dosent hold water.

Technically I love the Cloud and it's possibilities...but ass a free-thinker, I call their bluff...this is simply renting people their own information

This is crazy talk.
11:46 February 4, 2011 by mikewhite
Knowing who has your data:

http://www.pcpro.co.uk/blogs/2011/01/10/twitter-data-demand-highlights-cloud-control-problems/

"There are even considerations and worries about data held on EU-hosted servers owned by US corporations. As I reported a month or so ago, at least Bob Muglia, president of servers and tools at Microsoft, was honest enough to admit that Microsoft would hand over data to the US authorities if so instructed, because they would have no choice but to comply." (John Honeyball)
23:51 September 12, 2011 by MytopCloud
Nice and useful article, and security is the main problem for Internet Cloud Computing technology.

www.mytopcloud.com domain name is for sale, for more information refer to web site or email at contact@mytopcloud.com
Today's headlines
Sweden wants cruise missiles 'for defence'
Defence Minister Karin Enström. File photo: TT

Sweden wants cruise missiles 'for defence'

The Swedish government has announced plans to beef up its defence forces by fitting its fleet of Gripen fighter jets with long-range cruise missiles. READ () »

Swede of the Week
Sweden's oldest would-be MP: 'They promised I wouldn't get in'
Swedes vote in the 2010 elections. File photo: Dan Hansson/TT

Sweden's oldest would-be MP: 'They promised I wouldn't get in'

Gösta Arvedson, 89, is the oldest Riksdag candidate in Sweden, but our Swede of the Week explains that the Liberal Party (Folkpartiet) had to make some unusual promises for him to put his name forward. READ () »

Elections 2014
Most Swedes lack info ahead of EU vote
The Green Party is one of only two parties devoting their websites to the EU elections. Here campaign manager Emma Rung presents the party's posters. Photo: Leif R Jansson/TT

Most Swedes lack info ahead of EU vote

The majority of Swedes feel the country's political parties are not doing enough to inform them about the upcoming European Parliament elections. Only two of the eight parties have dedicated their homepages to the May 25th polls. READ () »

Fatal Norrköping Brawl
Local church tried to stop Norrköping murders
Swedish police on the scene following Monday's fatal brawl. File: TT

Local church tried to stop Norrköping murders

The Syrian-Orthodox Church in Ektorp had tried to quell tensions between two rival families just hours before bad blood spilled into a massive brawl and two brothers lost their lives. READ () »

JobTalk Sweden
'Foreigners don't need to show banks Swedish ID'
The bridge that connects Sweden to the European continent. File: L.E. Daniel Larsson/Flickr

'Foreigners don't need to show banks Swedish ID'

The Swedish agency that helps Europeans fight impediments to the EU principle of free movement has revealed an increase in complaints, including one from a foreign citizen unable to open a bank account in Sweden. READ () »

Eurovision 2014
Pig heart shatters in Sweden's Eurovision clip
Sanna Nielsen in the new clip. Photo: YouTube (screenshot)

Pig heart shatters in Sweden's Eurovision clip

Sweden's Eurovision hopeful Sanna Nielsen released the official video for the song Undo on Wednesday, a clip featuring leather, slow motion destruction, and a frozen pig's heart and some violence. READ () »

Software robot pinches Swedish flats in seconds
Swedish apartments. File: The Local

Software robot pinches Swedish flats in seconds

A Swedish landlord suspects that a property fixer has set up a software robot to sign up for new flats on the market within seconds, and is charging house hunters to use the service. READ () »

Swedish zoo fire 'kills only the spiders'
Photo: Johan Nilsson/TT

Swedish zoo fire 'kills only the spiders'

Twenty-five fire fighters were on hand on Wednesday night when a fire broke out in a southern Sweden animal park. The vast majority of the animals were unharmed, but the cluster of spiders wasn't so lucky. READ () »

Sweden Investor group posts sharp profit drop
File photo: Simon Cunningham/Flickr

Sweden Investor group posts sharp profit drop

Swedish investment giant Investor on Wednesday said its first-quarter profits slumped by a quarter, underlining Sweden's vulnerability to international instability. READ () »

Florida 'mystery knight' dies in Sweden
Michael Boatwright (R) and Medieval knight re-enactors.

Florida 'mystery knight' dies in Sweden

The "motel mystery" American who baffled US authorities by only speaking Swedish when he woke up from a coma last year has passed away, Swedish media reported on Wednesday. READ () »

RECEIVE OUR NEWSLETTER AND ALERTS
finest.se
Gallery
People-watching April 23
TT
Gallery
Inside the 850-year-old king's coffin
Features
Sponsored: South-eastern Sweden offers Öland beaches and more
Gallery
Swedish underwear shop puts staff in front of the camera
Gallery
IN PICTURES: The Local's Property of the Week - Täby
Sponsored: India+Sweden Week - India Unlimited
Features
Sponsored: India+Sweden Week - A film, food, and finance feast
National
University applications rocket to record high
finest.se
Gallery
People-watching April 18-20
TT
Society
Kids in Victorian garb mark Swedish Easter
Shutterstock
National
Swedish MP ordered chemtrail probe
Society
Swedish supermarket Ica pulls contested Easter commercial off air
Kungahuset
Society
Swedish royals set baptism date for princess
Advertisement:
finest.se
Gallery
People-watching April 16
Politics
Who's the prime minister's heir?
Alfie Atkins
Society
Are children's books the key to families integrating in Sweden?
National
'Sweden Dem protests cater to party's martyr image'
National
'Swedish research grants were fantastic, but now it's like Australia'
Society
Only in Sweden: The ten problems you'd never encounter elsewhere
National
Swedes stopped to take my picture, but didn't look me in the eyes
Business & Money
A swipe of the hand replaced cash and cards in Lund
YouTube
Features
Video: Oliver Gee finds out how to embrace The Swedish Hug
TT
National
Abba duo hints at reunion
Private
National
Flash mobs hug it out across Sweden
Stockholm School of Economics
Sponsored Article
Why a bachelor's degree is no longer enough
Latest news from The Local in Switzerland

More news from Switzerland at thelocal.ch

Latest news from The Local in Germany

More news from Germany at thelocal.de

Latest news from The Local in Spain

More news from Spain at thelocal.es

Latest news from The Local in France

More news from France at thelocal.fr

Latest news from The Local in Italy

More news from Italy at thelocal.it

Latest news from The Local in Norway

More news from Norway at thelocal.no

Blog Update: The Diplomatic Dispatch

28 October 15:16

The Green Growth Group Summit »

"Today on the 28 October in Brussels, a large group of key EU Ministers and business people, including UK Secretary of State for Energy and Climate Change Edward Davey, and Swedish Environment Minister Lena Ek, will meet to discuss green growth. They all have a stake in resolving a challenge which, although it is crucial..." READ »

720
jobs available
Swedish Down Town Consulting & Productions
Swedish Down Town Consulting & Productions is an innovative business company which provides valuable assistance with the Swedish Authorities, Swedish language practice and general communications. Call 073-100 47 81 or visit:
www.swedishdowntown.com