What happens if a cloud service on which the organisation of the future depend fails or gets hacked? This is the Critical Information Infrastructure Protection (CIIP) perspective ENISA takes in its latest report.
"From a security perspective, the concentration of data is a ‘double-edged sword’" Dr Marnix Dekker says. "Large providers can offer state-of-the-art security and business continuity, spreading the costs across many customers. But if an outage or security breach occurs, the impact is bigger, affecting many organisations and citizens at once."
Over the past few years we have seen examples of failures affecting large sites with millions of users, such as the 2012 Windows Azure leap year bug outage. Read more...