Don't fall for fearmongering about iCloud

As iCloud's release nears, private cloud tools dubiously promise to give IT a safe haven for mobile users' data

Page 2 of 2

Regardless of the misplaced focus on iCloud, the notion that corporate data will soon sync everywhere and anywhere, without IT's knowledge or control, has made a lot of CIOs and CSOs worried. After all, some have to enforce various rules for legal reasons, such as the E.U.'s privacy directives and the U.S.'s HIPAA, and others have contractual requirements, such as for defense work.

Enter the private cloud purveyors, who let IT set up file-sharing servers on premise or in the cloud so that mobile and laptop users will sync their data to those authorized and managed file locations instead of to iCloud, Dropbox,, and the like. At first blush, it sounds like a reasonable solution: Give users a safe alternative for file storage and access.

But these services have two fundamental flaws.

One, they don't replace iCloud, Dropbox,, or other public cloud storage services. They don't integrate with mobile apps, so users can't easily get files from or save files to them from their mobile apps. Instead, they're basically glorified FTP clients that work separately from the mobile apps and the preintegrated cloud storage services in those apps. (SharePoint -- the private internal storage cloud of choice at many enterprises -- has an even worse flaw: It doesn't support non-Microsoft clients.)

Two, for that data to be useful to the mobile (or remote) user, it has to be accessible to apps on the device. And as soon as the data is brought into an app, users can share it with other devices using iCloud or with other devices and users via other public cloud services that the app supports. So much for keeping the data away from iCloud, Dropbox,, and the like. Given that iOS and the other major mobile OSes support business-class VPNs, exactly what is the point? Simpler FTP is all I can see as the possible benefit.

To try to corral your corporate data, you can offer private cloud services, but users will default to what is easier and automatic: iCloud or a commercial service. Does that mean all hope is lost for data management in a mobile workforce? No.

A simple solution is to use a commercial service like Dropbox or, getting a corporate account that allows for IT management of access and storage location for authorized users. If you cannot use a commercial service for a legitimate security reason, then use a server/app combo internally that supports the WebDAV protocol, which many mobile productivity apps support natively as they would Dropbox and Apple and Google support WebDAV strongly in their products (it's part of iOS and Mac OS X, as well as Google Apps), so it's a usual-suspect data-handling protocol for mobile developers.

Either way, if your users hook into that storage service for their productivity apps, it'll become their default for all cloud storage in the apps that matter to you. After all, the preintegration means that users stay connected to that service across sessions, so they're less likely to switch to a personal service once set up on yours. This does mean you need to allow for storage of personal data on those servers -- otherwise, users will switch to a personal service at some point and may stay there.

This approach is not perfect, especially given the embarrassing security breach Dropbox suffered earlier this year. But tapping into a service that users will access anyhow is more realistic than setting up a private storage cloud that users have to explicitly and inconveniently work with -- and therefore won't. And remember, they can always just use email to move files around.

Until the day of fine-grained contexual mobile device management arrives, it's best to deal with the reality on the ground: Data moves where it flows most easily.

So, focus on the data itself: Who do you allow to access it (and thus trust)? What data do you let leave your data center in the first place (by not using Web interfaces to it)? Realistically, data will find its way out of your control if a user wants it. If you accept that premise, your goal becomes about building paths of least resistance so users can do the right thing without undue effort. And you can focus your active security on those actively seeking your data.

This article, "Don't fall for fearmongering about iCloud," was originally published at Read more of Galen Gruman's Mobile Edge blog and follow the latest developments in mobile technology at Follow Galen's mobile musings on Twitter at MobileGalen. For the latest business technology news, follow on Twitter.

| 1 2 Page 2