CloudComputing

Ottawacitizen’ da Kanada Isyani Kanada’ li “Ottawacitizen” adli bir Internet sitesinde bulut bilisim ustune bir yazi yayinlandi. Bu yazida eski Microsoft yoneticisinin yaptigi bir aciklamanin duyurusu yer aldi. Bu aciklamaya gore, siyasal orgutler de dahil olmak  uzere Kanadali’ larin bilgisayar verileri eger Amerika Birlesik Devletleri’ nin populer bulut bilisim servislerinde depolaniyorsa, Amerikan casuslarinin eline gecebiliyor. . Avrupa Parlemonto’ su tarafindan hazirlatilan bir raporda, Microsoft sirketinin eski bas gizlilikdanismani Caspar Bowden’ in bir aciklamasi yer aliyor. Bu aciklamada Casper Bowden soyle diyor:  “Amerika’ da Amerika Birlesik Devletleri bulut sistemlerinde depolanan yabancilara ait verilerin   siyasal olarak izlenmesi yasal bir eylemdir.” Sozu gecen bu bulut bilisim sistemleri icinde Google, Microsoft, Apple, IBM ve digerleri yer aliyor. Bowden’ e gore, 9-11 Eylul eylemlerinin arkasindan cok tartisilan “Patriot Act” gibi yasalar, Amerikan hukumetinin istihbarat izlemeleri uzerindeki kisitlamalari onemli bir olcude kaldirirken, Foreign Intelligence Surveillance Act (FISA) - Yabanci Istihbarat Izleme Yasasi, ilk kez ozellikle Amerika Birlesik Devletleri disinda yasayan ve Amerikali olmayan yabancilarin bulut bilisim sistemlerinde depolanan verilerini  kitlesel izleme gucunu arttiriyor. Bowden, Amerika Birlesik Devletleri’ ndeki bu yasayi Avrupa’ nin veri ozgurlugune vurulmus “buyuk bir darbe” olarak niteleyerek Avrupalilarin durumu uzerine soyledigi  herseyin Kanadalilar icin de gecerli oldugunu vurguluyor. Haber once Slate.com web sitesinde duyuruldu. Bu duyurunun ardindan habere Ingiliz hukukculari tepki gosterdi. Ingiltere’ de yayinlanan “Independent” gazetesi de, Ingiltere’de bir kisim parlamenterin Amerika Hukumetiyle ortak istihbarat servislerinin durdurulmasi ve hassas hukumet  verilerinin Amerikan bazli bulut bilisim sistemlerinde tutulmasina son verilmesi konusunda Ingiliz hukumetini uyardigini yazdi. Ottowocitizen,veri casuslugunda en buyuk tehlikenin bulut bilisim sistemlerini kullanan Kanada sirketleri ve hukumet disi orgutler oldugunu yaziyor. Enerji, dogal kaynaklar ve ekonomi politikalari ustune enbuyuk savunma guruplarindan biri olan Kanadalilar Konseyi yurutme direktoru Garry Neill, kendi orgutlerinin de hedef alinacagindan suphesi olmadigini,  cunku kendilerinin de Amerikan cikarlarini  etkileyen etkinliklerle ugrastiklarini soyluyor Birkac dolar daha az para harcayacagiz diye bilgisayar servislerini buluta tasiyanlar cok dikkatli olmalidirlar, diyor. Kanadalilar Konseyi, kendi ana verisini ic bunyesinde tutuyor Internet ve web hizmetlerini de yalnizca Kanadali sirketlere yaptirtiyor. Bilindigi gibi bulut bilisim bireylerin, sirketlerin, hukumetlerin bilgisayar islemlerini kendi ic bunyelerinde tutmak yerine maliyeti daha dusuk Google ve Microsoft gibi sirketlere tasimalari anlamina geliyor. Internet bazli bulut bilisim servisleri yahoo, gmail, hotmail gibi email servislerini, veri depolamalarini, yazilim sistemleri ve  veri tabani mimarisi ve sunucularini kapsiyor. Sirketler ve hukumetler bilgi iletisim maliyetlerini cok dusuren bu servislere dogru yoneldikce bulut bilisim hizmetlerinde son yillarda buyuk gelismeler oluyor. OttowaCitizen web sitesinde yayinlanan yaziya Google soyle yanit verdi: ” Kolluk gucleri illegal eylemleri izlemeli ve halkin guvenligini saglamalidir. Ancak asiri genis tabanli taleplere karsi kullanicilarimizin kisisel bilgilerinin korunmasi da bir bu kadar onemlidir. Google kullanicilarinin Google’ da depoladiklari verilerin gizlilik ve guvenligine saygi gostermek bizim yaklasimimizin ana temasidir. ”  Google Ingiltere’ de yayinlanan Independent gazetesine de soyle bir yanit verdi: “verilere bu tur erisimin cok ciddi bir tartismayi ve daha fazla seffafligi gerekli kildigini dusunuyoruz.” Microsoft, Apple, Amazon and Cisco gibi diger bulut bilisim sirketleri bu konuda yorum yapmaktan kacindi. Casper Bowden, FISA izlemesinin Avrupa Insan Haklari Komisyonu ve Kanada Sozlesmesiyle celiskili oldugunu soyluyor. Cunku bu yasalar, mantiksiz arama ve tutuklamalara karsi kisileri koruyor. Insan haklari ustune bir Avrupa Insan Haklari komitesi bu konuyu 20 Subat’ ta tartisacak. Ottowa’ daki Amerikan elciliginin bir sozcusu bu konuyla ilgili Pazartesi gunu Washington’ dan bir aciklama yapilmasinin beklendigini soyledi.

Cloud computing law puts Canadian users at risk of snooping by American spies> Read More  OTTAWA — American spies can snoop through Canadians’ computer data — including  that of political organizations and without warrants — if the data resides within popular U.S. cloud computing services, says a former Microsoft executive. In a report commissioned by the European Parliament, former Microsoft chief privacy adviser Caspar Bowden reveals, “it is lawful in the U.S. to conduct purely political surveillance on foreigners’ data accessible in U.S. clouds,” operated by U.S. firms such as Google, Microsoft, Apple, IBM and others. One sweeping provision of the Foreign Intelligence Surveillance Act (FISA) authorizes the targeting of, “foreign-based political organization(s)... or foreign territory that relates to... conduct of the foreign affairs of the United States.” While other contentious U.S. post-9/11 laws, such as the Patriot Act, significantly lifted restrictions on government surveillance, Bowden says the foreign surveillance law, “for the first time (has) created a power of mass-surveillance specifically targeted at the data of non-U.S. persons located outside the U.S., which applies to cloud computing.” In an interview with the Citizen, he characterized the U.S. law as a “grave risk” to European data sovereignty and said, “everything I’ve said about the situation of Europeans applies also to Canadians.” British lawmakers reacted with anger this week after Slate.com broke the story. The newspaper The Independent quoted members of parliament calling on the government to consider a halt to shared intelligence services with the U.S. and to end the use of U.S.-based cloud computing for sensitive government data. The Canadian government makes limited use of cloud computing for some human resources and financial data services, but the systems are internal and controlled by Shared Services Canada. The biggest threat from FISA snooping appears to be Canadian business and non-governmental organizations that use the cloud. “There’s no question we would be targeted,” says Garry Neil, executive-director of Council of Canadians, one of the largest advocacy groups for Canada-first policies on issues such as energy, natural resources and economic policy. “We’re involved in campaigns that affect U.S. interests, in campaigns to try and slow down the development of the tarsands that would be seen as American foreign policy.” The organization stores its primary computer data internally and contracts with only Canadian companies for Internet and web services. Still, Neil says, “it does indicate for many who take advocacy positions that they really need to be very cautious about what they’re doing for the want of saving a few dollars,” by outsourcing their computer services to the Cloud. Authorization for the U.S. cloud surveillance comes from a subtle and largely unnoticed 2008 amendment to FISA commonly known as “warrantless wiretapping.” The controversial act allows U.S. federal agencies to electronically gather foreign intelligence on U.S. soil through electronic eavesdropping and other measures and without probable-cause search warrants. One of the parties to the targeted information must be believed to be outside the U.S. to protect the privacy of American citizens. But the 2008 change incorporated “remote computing services”  — cloud computing —  into the existing definition of an “electronic communication service provider.” Experts say that allows U.S. agencies to access customer files and other information at various U.S-owned cloud data centres in the U.S., Europe, India and other countries. Approval for electronic surveillance is given by the U.S. attorney general for a period of up to one year. U.S. companies that fail to comply with a FISA order can be brought before a secret FISA court for punishment and are prohibited from disclosing the existence of FISA orders served on them. A five-year extension of the FISA Amendment Act of 2008 was granted by Congress and the White House in December 2012.