24
Australia to build Top Secret cloud in AWS for defence users (www.theregister.com)
submitted 1 week ago by Recant@beehaw.org to c/technology@beehaw.org
17 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] unexposedhazard@discuss.tchncs.de 19 points 1 week ago

"Top Secret" <> "AWS"

I can only laugh so much guys, careful.

[-] MisterD@lemmy.ca 4 points 1 week ago

AWS is an American company. If the US goes facist, Trump could order Amazon to give him a copy of everything they have in their TS cloud

[-] FalseMyrmidon@kbin.run 4 points 1 week ago

That's why you build it in Australia and only give Australian citizens with appropriate security clearances direct operational access.

[-] Recant@beehaw.org 2 points 1 week ago

Well I would think that if the customer, in this case the Australian Signals Directorate, encrypted all data prior to going to AWS, it would be protected from any data mining that Amazon does.

I am sure that the ASD isn't just posting the information unencrypted on AWS or solely trusting Amazon's encryption where Amazon also has a copy of the key.

[-] FalseMyrmidon@kbin.run 4 points 1 week ago

I'm sure it'll be airgapped and completely separate from the rest of AWS.

[-] unexposedhazard@discuss.tchncs.de 2 points 1 week ago

Well yes and no. For one there is lots of metadata like access times, the IPs that connect and their locations, traffic amount, etc.

But also like with all "cloud solutions" you are just outsourcing your uptime reliability issues. And for a system like that, im not sure outsourcing that is a great idea.

[-] Recant@beehaw.org 1 points 1 week ago

Yes that metadata can exist but can't that be obscured if AWS isn't connected to directly?

I think some of the technical details of how the ASD intends to ensure data protection/confidentiality/integrity are omitted for national security reasons.

[-] unexposedhazard@discuss.tchncs.de 1 points 1 week ago

It looks like it will be on prem, but then i dont even understand why they would involve amazon at all? Just use the existing public solutions. As soon as any major part of a system that is connected to the internet has proprietary code in it, you cant really trust it to protect secret information anymore.

[-] DeltaTangoLima@reddrefuge.com 1 points 1 week ago

It's won't be on-prem, but it will be dedicated data centres, built and run by Amazon, so almost the same as. Why? Because AWS runs better data centres than the gov ever could.

Gov is outsourcing the physical infrastructure risk, just like any other ocmpany that puts their stuff in the cloud.

this post was submitted on 04 Jul 2024
24 points (100.0% liked)

Technology

37381 readers
220 users here now

Rumors, happenings, and innovations in the technology sphere. If it's technological news or discussion of technology, it probably belongs here.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
alyaza@beehaw.org
TheRtRevKaiser@beehaw.org
gyrfalcon@beehaw.org
rs5th@beehaw.org
coldredlight@beehaw.org
Los@beehaw.org
SemioticStandard@beehaw.org
TheRtRevKaiser@kbin.social
remington@beehaw.org