Interview • 09.01.2015

“There is no absolute security“

Interview with Professor Herbert Weber, Competence Center Trusted Cloud

Professor Herbert Weber : “It is essentially up to the user to find out how...
Professor Herbert Weber : “It is essentially up to the user to find out how secure the product is“.
Source: Trusted Cloud

The safe use of cloud services is a challenge for small businesses in particular – yet one that pays off. To make the introduction to this topic easier for users, the independent Center of Excellence Trusted Cloud is currently working on guidelines. Professor Herbert Weber heads the cloud squad and talks with EuroCIS about the project, threat scenarios for retail and the added benefit of cloud services.

Professor Weber, for the past year, it has been all about cloud services here at the Center of Excellence at the German Federal Ministry for Economic Affairs and Energy (German: Bundesministerium für Wirtschaft und Energie), ranging from technology to security all the way to data protection. What is the goal of the Center?

The Center wants to provide independent advice for all parties concerned. Trusted Cloud supports the development of innovative, secure and legally compliant cloud solutions that are particularly suited for use in small and medium-sized businesses. We conduct secondary research of the technology program.

When can a user be sure that he/she chooses suitable and secure cloud services?

There is no absolute security! When you deal with cloud computing, you need to be ready to spend some time with it. The same applies to the technologies. There are 15 to 20 technology routes relevant to the topic of security. In fact, you need to know your way around every one of these technologies to either decide on your own how secure you would like to be or have a consultant who is well versed in them. It is essentially up to the user to find out how secure the product is. There are a number of enterprises that strive towards checking and rating security. This is the typical situation for small business in particular.

Why is security so important and how can it be achieved?

There is an abundance of threat scenarios particularly in the area of online shops. You can take a multitude of measures to prevent threat scenarios of which there are constantly new ones developing. Although this is expensive, it is unavoidable, because you would otherwise incur even more damages at another point. Security costs money; a lot of security maybe costs too much money. In this case, you need to balance safety and costs.

How serious do cloud service providers take the security of their services?

It varies. Some have very great services and take things very seriously. Others are more careless.

How reliable are testing facilities for cloud providers?

They are neither reviewed nor accredited, because so far there are no independent certifiers. Therefore, it remains somewhat of a matter of trust, but above all a question of contract design. The user should agree in a contract with the provider as to what the service includes.

That sounds challenging ...

Contract conclusions are difficult! I think there really aren’t any truly good standard contracts. In terms of security the German Federal Ministry for Security in Information Technology (German: Bundesamt für Sicherheit in der Informationstechnik) has drafted basic requirements to subsequently also be able to write specifications into contracts.

You are currently working on support for parties interested in cloud services.

By the end of the project in March 2015, we will have created a guideline with which interested parties are at least introduced to the subject and are able to learn what security and data security mean. The guide is meant to show what they can gain by obtaining information and how they can implement it in their environment. When we include orientational knowledge into these guidelines, users can be assured that this takes place without a business agenda, because we hold a neutral and independent position, are neither operators nor providers of cloud technologies.

Now we talked a lot about the dangers of the Cloud. Why are expenditures particularly worthwhile for retailers?

Cloud computing is going to have a big influence on the use of information and communication technologies in the future. With cloud computing, we have the chance to cause a complete modernization of IT applications. Especially in the small business field, we are not exactly champions as far as our standards of information and communication technologies are concerned. This gives us the chance to be able to achieve an extensive and complete restoration of IT technology use in the economy.

Interview: Natascha Mörs, iXtenso.com

related articles:

popular articles:

Thumbnail-Photo: Online retail sales to exceed 6 trillion dollars by 2024...
18.09.2019   #online trading #e-commerce

Online retail sales to exceed 6 trillion dollars by 2024

Average online customer spend will surpass 1,000 dollars globally per annum

New data from Juniper Research has shown that the total transaction value of remote payments for digital and physical goods will exceed 6 trillion dollars by 2024; representing a growth of 53 percent from 2019.The new research, ‘Mobile & ...

Thumbnail-Photo: Epta on the podium of the German Design Awards 2020...
10.12.2019   #design #refrigeration cabinets

Epta on the podium of the German Design Awards 2020

Excellent prodcut design with OutFit and Mozaïk, combining functionality and aesthetics

Epta wins the prestigious German Design Award for the second time, the award given to projects that merge functionality and utility, aesthetics and quality. The OutFit family under the Costan brand and Mozaïk under the Bonnet Névé ...

Thumbnail-Photo: ARNEG GROUP: from Sharing Avenue to Melting Pot...
09.12.2019   #refrigeration cabinets #Trade fair special EuroShop 2020

ARNEG GROUP: from Sharing Avenue to Melting Pot

The sharing road leads a long way

At the 20th edition of Euroshop, the Arneg Group is expressing its cosmopolitan soul on a kaleidoscopic stand that embodies the concept of sharing, interpreted as a virtuous fusion of competence, experience and vision capable of generating change ...

Thumbnail-Photo: Strategic partnership in Brazil for new checkout-free stores...
30.08.2019   #mobile payment #brick and mortar retail

Strategic partnership in Brazil for new checkout-free stores

Zippin and Lojas Americanas: national roll-out underway

Zippin announced it has entered a strategic partnership with Brazil's largest retailer, Lojas Americanas S.A., to deploy its checkout-free technology in stores across the country. Though its innovation vertical, "IF – ...

Thumbnail-Photo: What do people around the world buy?
16.12.2019   #online trading #e-commerce

What do people around the world buy?

Global fashion search engine Lyst reveals trends in online shopping behavior

High-quality and contemporary fashion: Online shoppers can find fashion’s hottest brands and products using the search engine Lyst and learn everything about the latest fashion must-haves. iXtenso spoke with Eva Lindner, Marketing ...

Thumbnail-Photo: Irma: flagship store in Copenhagen
30.10.2019   #electronic shelf labels (ESL) #price labelling

Irma: flagship store in Copenhagen

Denmark's oldest grocery chain opens a new store

At the same time Irma, a Danish grocery chain, could celebrate its 133rd birthday, the chain also opened a new flagship store at Østerport station in Copenhagen. Besides showing renewal and being able to ensure the customers updated prices ...

Thumbnail-Photo: drs//POS – The POS system for many check-out situations...
13.09.2019   #pos systems #cashpoints

drs//POS – The POS system for many check-out situations

With the POS system developed by Superdata you are put in the picture

The POS acts as an ear in the store. It affects how timely, and with what information, decision makers at the head office are in a position to assess developments in the store and are able to respond appropriately to the situation.With our POS ...

Thumbnail-Photo: The iXtenso editors tested self-scanning ......
30.09.2019   #mobile payment #self-checkout systems

The iXtenso editors tested self-scanning ...

... with an app of the Hobbymarkt Knauber in Bonn, Germany

Snabble has developed a payment app that allows customers to scan their purchases in retail stores and pay online. I wondered: How does it work?The app is in use in the Bonn DIY and hobby market Knauber, among other places. Let’s make a move ...

Thumbnail-Photo: Face Payment in China
19.12.2019   #retail #event

Face Payment in China

The Arrival of Facial Payment Era

According to recent report by Forward, China is currently the largest consumer in the global face recognition device market, thanks to its booming facial payment sector. In 2017, Chinese market accounted for 29.29% of the global total, and will ...

Thumbnail-Photo: Nominate your company for the E-commerce Germany Awards 2020!...
21.11.2019   #online trading #e-commerce

Nominate your company for the E-commerce Germany Awards 2020!

Award ceremony as part of E-Commerce Berlin Expo

The E-commerce Germany Awards are officially accepting submissions as of the 4th  November, 2019. Companies within the e-commerce sector are able to apply to one of the ten categories. The annual awards are given out for the third time in ...

Supplier

Superdata GmbH
Superdata GmbH
Ruhrstr. 90
22761 Hamburg
Frost-Trol s.a.
Frost-Trol s.a.
Ctra. Valencia-Barcelona, km. 68,9
12080 Castellon
ARNEG S.p.A.
ARNEG S.p.A.
Via Venezia, 58
35010 Marsango di Campo San Martino/PD
APG Cash Drawer
APG Cash Drawer
4 The Drove
BN9 0LA Newhaven
Delfi Technologies GmbH
Delfi Technologies GmbH
Landgraben 75
24232 Schönkirchen
iXtenso - Magazin für den Einzelhandel
iXtenso - Magazin für den Einzelhandel
Celsiusstraße 43
53125 Bonn
POS TUNING Udo Voßhenrich GmbH & Co KG
POS TUNING Udo Voßhenrich GmbH & Co KG
Am Zubringer 8
32107 Bad Salzuflen