With Hollywood stars naked in the global Internet Madness, cloud computing is almost a byword for danger, from Hollywood actress to billions of assets. 498) this.width=498 ' OnMouseWheel = ' javascript:return big (This) ' style= ' width:555px; height:294px "border=" 0 "alt=" the Two Holy grail of cryptography How to save the cloud? "width=" 850 "height=" 453 "src=" http://s9.51cto.com/wyfs02/M01/4A/13/ Wkiol1qikifi63ltaaqhiry8dqm270.png "/> For companies with higher data security requirements such as banks, cloud computing security is a dilemma, on the one hand cloud computing distributed data storage can withstand DDoS attacks, but at the same time increase the risk of data leakage , clouds and security always seem to be difficult to reconcile. For example, in 2012, Iranian hackers launched a massive DDoS attack on US bank companies, and security company CloudFlare said that cloud computing would keep corporate data on multiple servers around the world, which would effectively mitigate the pressure of DDoS attacks, but that sensitive data also faced greater risk of exposure In particular, the SSL private key, which controls access to such critical data, is critical to the bank. The heart Bleed, which broke out in April this year, allows hackers to get a memory cache in a public server to extract the private key (the nightmare in the corporate intranet: A Heartbleed vulnerability exposes OpenVPN private keys), causing a double disaster of security and compliance. The risk of bleeding holes in the heart drives banks (and other data-insecure businesses) to put data on a handful of more secure servers, which not only skyrocket the cost of hardware but also make businesses more vulnerable to DDoS attacks. Recently, CloudFlare chief executive Matthew Prince claimed that CloudFlare had captured the holy grail of cloud security, saving the company Izumo security dilemma. CloudFlare invented a method that allows an enterprise to store encrypted data in a cloud, but store the private key in a separate security server. When a user visits a Web site, CloudFlare issues a temporary "session secret key" that corresponds to the user's device one by one, allowing the private key to disappear from public view. That sounds simple, but Prince says it takes 10 million security deals per second and is a major technological innovation, and Goldman Sachs has become one of the first users of the technology. Some well-known security experts, including personal encryption benchmarking technology PGP inventor Jon Callas and Phil Zimmerman, will CloudFlare invented this "no secret Key SSL" and PGP contrast, It is considered that CloudFlare encryption technology is not only applicable to secure enterprises, but also can be applied to cloud data center extensions, such as deploying critical applications in data centers with poor security management in Africa and China without worrying about security issues. In the Cloud security field, CloudFlare's "No secret key SSL" can be considered a small holy grail. This week IBM's cipher scholar Craig Gentry was awarded the MacArthur Bonus, and Gentry's research project was the cloud-safe "IPhone 6 Plus"-How to encrypt data in a cloud computing environment, making it impossible for cloud providers to get data content, but users with legal credentials can access it. Gentry research in the encryption algorithm is still mainly in the theoretical level, the main challenge is to deal with the actual application of the speed of 1000 times times, but in the IT industry, speed up 1000 times times, only need five years time. Original address: http://www.aqniu.com/neotech/datasecurity/4660.html "Editorial recommended" private cloud security: which programs and tools are more effective? Is cloud computing more secure or less secure? Cloud Attack Assessment Cloud security control is the key "responsible editor: Blue Rain Tear TEL: (010) 68476606" Original: Cryptography of the Two Holy Grail how to save the cloud? Back to network security home
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.