I mean, Amazon isn’t necessarily in the wrong for providing the service. It’s governments trusting a private company, with a history of collecting more data than they should, with sensitive data. It’s just stupid, really really, mind numbingly, stupid
Yea, that’s why I mentioned these companies are just doing it wrong. Governments have the same problems as private companies, in that they don’t really want to maintain their own cloud infrastructure, so they’ll use something like AWS
But for example they could host their own On-premises HSM and encrypt their GovCloud to a degree that it’s inaccessible to AWS
It’s pretty common that AWS is doing that, they even have a special GovCloud for them.
These companies are obviously just doing it wrong by having public S3 buckets
I mean, Amazon isn’t necessarily in the wrong for providing the service. It’s governments trusting a private company, with a history of collecting more data than they should, with sensitive data. It’s just stupid, really really, mind numbingly, stupid
Yea, that’s why I mentioned these companies are just doing it wrong. Governments have the same problems as private companies, in that they don’t really want to maintain their own cloud infrastructure, so they’ll use something like AWS
But for example they could host their own On-premises HSM and encrypt their GovCloud to a degree that it’s inaccessible to AWS