Risk Management

12:58 PM
Gilad Parann-Nissany, SAP
Gilad Parann-Nissany, SAP
Commentary
50%
50%

The Holy Grail of Cloud Computing – Maintaining Data Confidentiality

Whether a financial institution enters a public or private cloud, data privacy and confidentiality are top concerns. A financial application (or a service) must be protected, and true privacy must be maintained, says SAP's Gilad Parann-Nissany.

Breaking the Trust Paradigm

Current key management technologies, as mentioned above, are either a trust compromise, or a compromise on cloud computing features. Breaking the trust paradigm requires a new approach, specific to cloud key management.

A technology that enables such an approach is split-key management. Here's a financial metaphor which will help to explain how this works, and its benefits. Most contemporary safe deposit boxes utilize a two-key system, the bank has one key while you (the box owner) hold the second key, and both keys are required to open the access door to remove the deposit drawer. This two key system is how the bank provides some assurance that an unscrupulous employee can't enter the vault and start pilfering boxes. Split-key management implements the same concept technologically in the cloud; the "bank" – a virtual key management system – generates a unique key for you, and another key to be used by the key management system. Both keys are required to encrypt and decrypt data, yet at the same time, only you, the end user, have access to your master key, making it impossible for the cloud provider to ever seeing your most critical piece of data – your encryption keys.

[The Rise of Cloud Computing on Wall Street]

Another foundational technology that is important in cloud data security is Homomorphic Key Encryption. This protects the sensitive encryption keys themselves, when they are in use in the memory of cloud servers. The benefit is that the most sensitive information, the keys themselves, are never exposed in the cloud, even when they are actually used. Advanced "partially homomorphic" mathematics enables such innovation.

Going forward, such technologies, integrated with financial clouds and SaaS applications, lower the risk to data privacy and allow financial institutions to migrate more easily to the cloud.

Gilad Parann-Nissany, founder and CEO, is a Cloud Computing pioneer. As CTO for Small Business at SAP, Gilad built SaaS Clouds for medium and small enterprises and contributed to SAP products reaching more than 8 million users. Before founding Porticor, he created a consumer Cloud at G.ho.st – a cloud operating system that delighted hundreds of thousands of users while providing browser-based and mobile access to data, people and applications.

Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
More Commentary
Single Source, Many Truths
If the data quality is not at fault, why then might departments reject the data? The answer is that there are two aspects to data quality: factual correctness and contextual correctness.
Predictions Come True as Regulators Swoop
While two out of the five capital markets predictions from July have already come true, let's hope that all five don't actually happen.
IBOR Before It Was "IBOR"
While its catchy new nomenclature and explosion in popularity has given the outside world an impression that it is novel, the same conversations about it were happening twenty years ago. So why then is IBOR the latest buzz word for firms today?
SEC Reforms: What Floating NAVs Mean for Money Market Funds & Accounting Software
Money market accounts are a $2.6 trillion industry that impacts nearly every investor who parks cash, so a new SEC rule has major ramifications for a large number of investors.
Flip Sides of the Same Coin: Compliance & Transparency
The upheaval caused by the 2008 financial crisis continues to ripple outward, creating an unsettled environment that has disrupted traditional measures of trust.
Register for Wall Street & Technology Newsletters
White Papers
Current Issue
Wall Street & Technology - July 2014
In addition to regular audits, the SEC will start to scrutinize the cyber-security preparedness of market participants.
Video
Inside Abel Noser's Trading Floor
Inside Abel Noser's Trading Floor
Advanced Trading takes you on an exclusive tour of Abel Noser's New York trading floor, where the agency broker known for transaction cost analysis, is customizing algorithms for the buy side, while growing its fixed income trading and transitions business.