News

Study: Security Not Priority for Cloud Providers, Users

Security is not a top priority for cloud computing vendors and customers, according to a recent CA Technologies-sponsored survey by the Ponemon Institute.

The report, "Security of Cloud Computing Providers" (PDF), polled 127 cloud service providers from the United States and Europe. A whopping 73 percent of U.S. service providers and 75 percent of European service providers said their cloud services did not substantially protect and secure their customers' confidential or sensitive information.

Furthermore, two-thirds of U.S. providers and 61 percent of European providers were unsure whether their solutions meet customers' security requirements.

According to the polled vendors, the primary reasons customers purchased their solutions was cost reduction (91 percent), ease of deployment (79 percent) and improved customer service (37 percent). Vendors believe that improving security and complying with agreements and policies are low priorities for customers.

Another big reason for low security: The majority of cloud providers (69 percent) don't believe it's their responsibility. Even more worrisome, polled vendors said their systems and applications are not always evaluated for security threats prior to deployment to customers.

In addition, a majority admitted they do not have dedicated security personnel to oversee the security of their cloud applications, infrastructure or platforms. On average, providers allocate 10 percent or less of their operational resources to security.

Last year, Ponemon released a similar study on cloud users. Comparing results from the two studies, the firm concluded in the recent report that "neither the company that provides the services nor the company that uses cloud computing seem willing to assume responsibility for security in the cloud. In addition, cloud computing users admit they are not vigilant in conducting audits or assessments of cloud computing providers before deployment."

Featured

  • An image of planes flying around a globe

    2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Google To Acquire Cloud Startup Wiz for $32 Billion

    Google has announced a pending agreement to acquire Wiz Inc., a cloud security platform, in an all-cash deal worth $32 billion.

  • FTC Expands Microsoft Antitrust Investigation Under Trump Administration

    The Federal Trade Commission (FTC) is pressing ahead with a broad investigation into Microsoft's business practices, an inquiry that began in the final weeks of the Biden administration.

  • Microsoft to Shut Down Skype Services

    Microsoft will discontinue its Skype telecommunications and video calling services on May 5, 2025, marking the end of the platform's decades-long run.