Interview • 09.01.2015

“There is no absolute security“

Interview with Professor Herbert Weber, Competence Center Trusted Cloud

Professor Herbert Weber : “It is essentially up to the user to find out how...
Professor Herbert Weber : “It is essentially up to the user to find out how secure the product is“.
Source: Trusted Cloud

The safe use of cloud services is a challenge for small businesses in particular – yet one that pays off. To make the introduction to this topic easier for users, the independent Center of Excellence Trusted Cloud is currently working on guidelines. Professor Herbert Weber heads the cloud squad and talks with EuroCIS about the project, threat scenarios for retail and the added benefit of cloud services.

Professor Weber, for the past year, it has been all about cloud services here at the Center of Excellence at the German Federal Ministry for Economic Affairs and Energy (German: Bundesministerium für Wirtschaft und Energie), ranging from technology to security all the way to data protection. What is the goal of the Center?

The Center wants to provide independent advice for all parties concerned. Trusted Cloud supports the development of innovative, secure and legally compliant cloud solutions that are particularly suited for use in small and medium-sized businesses. We conduct secondary research of the technology program.

When can a user be sure that he/she chooses suitable and secure cloud services?

There is no absolute security! When you deal with cloud computing, you need to be ready to spend some time with it. The same applies to the technologies. There are 15 to 20 technology routes relevant to the topic of security. In fact, you need to know your way around every one of these technologies to either decide on your own how secure you would like to be or have a consultant who is well versed in them. It is essentially up to the user to find out how secure the product is. There are a number of enterprises that strive towards checking and rating security. This is the typical situation for small business in particular.

Why is security so important and how can it be achieved?

There is an abundance of threat scenarios particularly in the area of online shops. You can take a multitude of measures to prevent threat scenarios of which there are constantly new ones developing. Although this is expensive, it is unavoidable, because you would otherwise incur even more damages at another point. Security costs money; a lot of security maybe costs too much money. In this case, you need to balance safety and costs.

How serious do cloud service providers take the security of their services?

It varies. Some have very great services and take things very seriously. Others are more careless.

How reliable are testing facilities for cloud providers?

They are neither reviewed nor accredited, because so far there are no independent certifiers. Therefore, it remains somewhat of a matter of trust, but above all a question of contract design. The user should agree in a contract with the provider as to what the service includes.

That sounds challenging ...

Contract conclusions are difficult! I think there really aren’t any truly good standard contracts. In terms of security the German Federal Ministry for Security in Information Technology (German: Bundesamt für Sicherheit in der Informationstechnik) has drafted basic requirements to subsequently also be able to write specifications into contracts.

You are currently working on support for parties interested in cloud services.

By the end of the project in March 2015, we will have created a guideline with which interested parties are at least introduced to the subject and are able to learn what security and data security mean. The guide is meant to show what they can gain by obtaining information and how they can implement it in their environment. When we include orientational knowledge into these guidelines, users can be assured that this takes place without a business agenda, because we hold a neutral and independent position, are neither operators nor providers of cloud technologies.

Now we talked a lot about the dangers of the Cloud. Why are expenditures particularly worthwhile for retailers?

Cloud computing is going to have a big influence on the use of information and communication technologies in the future. With cloud computing, we have the chance to cause a complete modernization of IT applications. Especially in the small business field, we are not exactly champions as far as our standards of information and communication technologies are concerned. This gives us the chance to be able to achieve an extensive and complete restoration of IT technology use in the economy.

Interview: Natascha Mörs, iXtenso.com

related articles:

popular articles:

Thumbnail-Photo: Social commerce 2.0: artificial intelligence detects purchase intention...
18.04.2019   #e-commerce #sustainability

Social commerce 2.0: artificial intelligence detects purchase intention

Choosy analyzes fashion trends on Instagram – and redesigns them

The fashion world moves at lightning speed – and more than ever thanks to the rise of social media. In the past, key trends emerged off the runways twice a year during fashion weeks. Now Instagram et al. set the tone daily thanks to feeds of ...

Thumbnail-Photo: Secure networking for 8,800 locations
09.04.2019   #security #software developement

Secure networking for 8,800 locations

LANCOM and ecotel to build one of the largest SD-WANs in Europe

The German network infrastructure supplier LANCOM Systems and the Düsseldorf-based ICT company ecotel have concluded a far-reaching cooperation agreement to build one of the largest WAN projects featuring software-defined networking (SDN) in ...

Thumbnail-Photo: Retailers growing produce in automated farms...
10.06.2019   #food technology #food retail

Retailers growing produce in automated farms

A plug-and-play method to grow clean, healthy food

GP Solutions, a developer of modular, automated micro-farms, announced it is developing systems for major retailers.Throughout the world, companies are embracing the concept of growing clean food onsite in easy-to-operate, automated growing pods. ...

Thumbnail-Photo: Top 8 supply chain technology trends in 2019...
07.05.2019   #supply chain management (SCM) #artificial intelligence

Top 8 supply chain technology trends in 2019

Technologies that supply chain leaders simply cannot ignore

Gartner, Inc. has identified the top 8 supply chain technology trends in 2019.Gartner’s top strategic supply chain technology trends have broad industry impact, but have not yet been widely adopted. They might be experiencing significant ...

Thumbnail-Photo: Introducing a new, powerful mobile POS in Posiflex’s MT series...
25.06.2019   #epos systems #cashpoints

Introducing a new, powerful mobile POS in Posiflex’s MT series

MT-5310W from Posiflex combines the mobility of a tablet with the functionality of a fixed POS terminal. .

Today’s customers have higher expectations than ever when it comes to service. To meet and exceed customers’ ever-growing expectations, Posiflex is pleased to present MT-5310W, the latest addition to the popular MT series: a hybrid ...

Thumbnail-Photo: Internal communication via app at Modehaus Ramelow...
03.06.2019   #personnel management #app

Internal communication via app at Modehaus Ramelow

Mobile chat works as a bulletin board

What's new at Modehaus Ramelow? The fashion retailer’s employees can check PIA - and share information to their heart’s content. PIA is an app for "private information exchange".More and more internal communication ...

Thumbnail-Photo: Frictionless checkout across all channels to build loyalty...
04.07.2019   #mobile payment #customer satisfaction

Frictionless checkout across all channels to build loyalty

H&M and Klarna elevate the shopping experience for US consumers

H&M and Klarna announced that they have expanded their current partnership agreement to also include the US market, in the development of an unrivalled payments and shopping experience across touchpoints. Together, H&M and Klarna are aiming ...

Thumbnail-Photo: APG Cash Drawer: new SMARTtill business development manager...
15.05.2019   #cash management #cash handling systeme

APG Cash Drawer: new SMARTtill business development manager

APG Cash Drawer announces hire of SMARTtill business development manager

APG Cash Drawer, a fast-growing global manufacturer of cash management solutions, announced today the addition of Tony Pusateri as SMARTtill Business Development Manager. ...

Thumbnail-Photo: Changing markets: embracing disruption to harvest opportunity...
18.06.2019   #digitization #event

Changing markets: embracing disruption to harvest opportunity

Reporting from the first annual Retail & Brand Experience World Congress in Barcelona

More than 200 industry insiders highlighted the many challenges facing the retail sector today in interesting talks and lectures.Topics included the customer experience, the use of technologies, digital media, omnichannel strategies, personalization ...

Thumbnail-Photo: U.S. merchants lack critical tools to fuel global expansion...
10.07.2019   #online trading #e-commerce

U.S. merchants lack critical tools to fuel global expansion

Top challenges: payment localization, compliance, and cybersecurity

Rapyd, a FinTech-as-a-Service provider, today announced the results of its inaugural ‘2019 State of Cross-Border eCommerce: U.S. Merchant Outlook’, which found that most U.S. business units (91 percent) prioritize cross-border sales as a ...

Supplier

Delfi Technologies GmbH
Delfi Technologies GmbH
Landgraben 75
24232 Schönkirchen
ROQQIO Commerce Solutions GmbH
ROQQIO Commerce Solutions GmbH
Harburger Schloßstraße 28
21079 Hamburg
APG Cash Drawer
APG Cash Drawer
4 The Drove
BN9 0LA Newhaven
LANCOM Systems GmbH
LANCOM Systems GmbH
Adenauerstraße 20 / B2
52146 Würselen