NEWS
NEWS
NEWS
Google to cloud buyers: No need to trust us, use your own encryption keys
The growing concern over privacy has finally caught up to Google Inc., at least in the public cloud, where its widely used infrastructure-as-a-service platform received a small but important update this morning that brings customers the ability to protect their data using their own encryption keys. That provides a much-needed alternative to the default security functionality
It’s not that there is anything wrong with Google’s encryption per se. Quite the opposite. The search giant uses industry-standard AES-256 bit keys to safeguard the data kept in its cloud and follows strict security procedures that directly contribute to the fact that the platform has not experienced so much as a single major breach in the seven years since its launch.
Google Cloud Platform is still vulnerable to government snooping, though, which is no less a cause of concern among the nowadays typically privacy-conscious developers who constitute the lynchpin of its user base. The new encryption option will help mitigate those worries, though the search giant has an entirely different audience in mind with the launch.
The added complexity of manual key management is usually only worth the hassle for large organizations in heavily-regulated industries such as healthcare and financial services that are legally bound to handle their own encryption. The desire to address that potentially hugely lucrative market that lies in behind Google’s update had previously driven its competitors down the same route.
Microsoft Corp. introduced a key management service of its own six months ago that organizes ciphers based on importance and provides integration with on-premise encryption appliances. The launch was mainly a response to Amazon Inc., which, as the originator of the entire cloud movement and the reigning infrastructure-as-a-service, has naturally offered similar functionality long before.
The update to Google’s platform levels the playing field somewhat. Organizations can now control the rates at which keys are refreshed and use a different cryptographic algorithm than AES-256 if need be. But with the competitive focus in the public cloud increasingly shifting from pricing to value-added features, the search giant is not likely to settle for that. As a result, customers can most likely expect more advanced functionality to arrive further down the line.
Photo via Geralt
Since you’re here …
… We’d like to tell you about our mission and how you can help us fulfill it. SiliconANGLE Media Inc.’s business model is based on the intrinsic value of the content, not advertising. Unlike many online publications, we don’t have a paywall or run banner advertising, because we want to keep our journalism open, without influence or the need to chase traffic.The journalism, reporting and commentary on SiliconANGLE — along with live, unscripted video from our Silicon Valley studio and globe-trotting video teams at theCUBE — take a lot of hard work, time and money. Keeping the quality high requires the support of sponsors who are aligned with our vision of ad-free journalism content.
If you like the reporting, video interviews and other ad-free content here, please take a moment to check out a sample of the video content supported by our sponsors, tweet your support, and keep coming back to SiliconANGLE.
