Sicherheit, Datenschutz und Uberwachung von Cloud-Daten BT-Drucksache 17/12259

Über das Wochenende fand ich Zeit, ein wenig in diesem doch sehr interessanten Dokument zu blättern:

“Kleine Anfrage des Abgeordneten Andrej Hunko u.a. und der Fraktion DIE LINKE. Sicherheit, Datenschutz und Uberwachung von Cloud-Daten BT-Drucksache 17/12259″

Das Dokument befindet sich hier zum Download.

Eine sehr interessante Information ist in Bezug auf Frage 22 zu finden:

22. Wie viele Rechtshilfeersuchen zur Sicherung oder Herausgabe von Cloud-Daten haben welche Bundesbehörden in den letzten zwei Jahren bei welchen Einrichtungen welcher Länder gestellt?

a) Wie viele Rechtshilfeersuchen zur Sicherung oder Herausgabe von CloudDaten haben welche Behörden welcher Länder in den letzten zwei Jahren bei welchen Bundesbehörden gestellt?
b) Wie wurden die Rechtshilfeersuchen jeweils beantwortet?

Als Antwort wurde dann folgendes Statement gegeben:

Zu22, a) und b)
Weder die Anzahl eingehender, noch ausgehender Rechtshilfeersuchen, bzw. die
Art der Beantwortung werden statistisch erfasst.

Sehr interessant – ich frage mich jetzt, warum dem wohl so ist? Man erhebt ja allerlei Dinge in unseren durchaus komplexen bürokratischen Strukturen – warum dann nicht solche interessanten Anfragen?

Hiking the Nibelungensteig / 120 KM, 4000 m Elevation Gains in 40 Hours

Over Easter, it was time again to reach out for the limits of my physical capabilities after the awesome trip in 2011 (200 KM in 3 days). This time, we focussed on the “Nibelungensteig” located near Frankfurt am Main, Germany.

From a cultural perspective, this trail has a lot of interesting locations to provide. Most of the tiny towns along the trail are worth to be visited and explored by foot. Unfortunately, we did not spend much time on this due to the time constraints so this is a compromise you have to make.

According to the website of the Nibelungensteig, the trail is quite challenging with about 124 KM in total and about 4000 meters of altitude that have to be climbed. I highly recommend to download the GPS coordinates of the complete trail – an overview of the trail  can be found here. But please be aware that in some parts the trail management has changed the route, so the GPS coordinates are not totally accurate.

Some of the pics we made along the trail:

On of the interesting things to see on the trail

Camping the night before we kicked of the trail

 

 

80 Km really kicked in

Not the best weather – rain, snow

Church

No hairdresser around

Watch Out!

 

 

One of these very nice castles on the trail.

Roadtrip Turkey 2013

Some while ago, I spent 10 days with old friends doing a roadtrip in the west of Turkey. Here are some basic infos I’d like to share – perhaps they are helpful for some of you:

• We started in Istanbul and rented a car beforehand via Internet – it’s highly recommended to pick up the car at the Airport on the Asian side (Sabiha Gokcen) in order to prevent getting crazy in the Istanbul downtown traffic jams.
• We headed around the Sea of Marmara and drove down until Bergama – Bergama is nice for a 1-day trip.
• From there, we headed to the north to visit the ancient ruins of Troia – 1/2 visit is sufficient except for people who love ruins
• Afterwards, continue north to Canakkale to visit the battlefields of the 1st WW and return back to Istanbul afterwards.
• Turkish highways can drive Middle European drivers crazy – be aware!
• We went there in March which is out of season and hotels, restaurants etc. welcome you with lower prices However, you have to expect lower temperatures and bad weather as well.
• Istanbul is awesome – if you have never been there before, stay at least for 3 days.

Some impressions of the trip:

 

Paper: Cloud Forensics: A Meta-Study of Challenges, Approaches, and Open Problems

Cloud Forensics: A Meta-Study of Challenges, Approaches, and Open Problems

Abstract:

In recent years, cloud computing has become popular as a cost-effective and efficient computing paradigm. Unfortunately, today’s cloud computing architectures are not designed for security and forensics. To date, very little research has been done to develop the theory and practice of cloud forensics. Many factors complicate forensic investigations in a cloud environment. First, the storage system is no longer local. Therefore, even with a subpoena, law enforcement agents cannot confiscate the suspect’s computer and get access to the suspect’s files. Second, each cloud server contains files from many users. Hence, it is not feasible to seize servers from a data center without violating the privacy of many other users. Third, even if the data belonging to a particular suspect is identified, separating it from other users’ data is difficult. Moreover, other than the cloud provider’s word, there is usually no evidence that links a given data file to a particular suspect. For such challenges, clouds cannot be used to store healthcare, business, or national security related data, which require audit and regulatory compliance. In this paper, we systematically examine the cloud forensics problem and explore the challenges and issues in cloud forensics. We then discuss existing research projects and finally, we highlight the open problems and future directions in cloud forensics research area. We posit that our systematic approach towards understanding the nature and challenges of cloud forensics will allow us to examine possible secure solution approaches, leading to increased trust on and adoption of cloud computing, especially in business, healthcare, and national security. This in turn will lead to lower cost and long-term benefit to our society as a whole.

Information:

Paper by Shams Zawoad, Ragib Hasan - PDF Download

Brief Discussion:

This paper does not completely bring up a new solution to an already existing problem but discusses work that has been done so far in this sector. Hence, this paper can be seen as an overview which is a good read in case you want to get an overview of the issues in this area. Overall, it strongly reminds me of our paper “Technical Issues of Forensic Investigations in Cloud Computing Environments” published 2 years ago.

Packrafting River Glatt / Switzerland – Part 2

As promised in this blog post, we continued our mission to packraft the Glatt River from the Greifensee lake to the Rhine. This time, it didn’t snow fortunately but it was still bloody cold and the river was getting more challenging as can be seen in the video. Due to fact that we didn’t wear any helmet and are still in the “learning phase”, we circumvented some white water rapids which turned out to be right decision in most of the cases

However, again, it was an awesome trip we both totally enjoyed – watch out for some more stuff to come! Our Packrafting-TODO List for Switzerland is growing each and every day almost

Packrafting the Glatt River – Switzerland – March 2013 – Part 2 from Domber42 on Vimeo.

Winter Hiking in Maloja, Engadin, Switzerland

We spent only one weekend in Engadin, Switzerland, and did some walking on the frozen lake as well as a minor hike in the nearby mountains. St. Moritz is not a place normal people have to visit – not much special to see there except for rich and wonna-be rich people.

Packrafting River Glatt / Switzerland

Snow, degrees hardly above zero and from time to time some sun – what do you do then in Switzerland? Exactly – Skiing! Packrafting!

This time we focussed on the river Glatt – starting at the Greifensee lake, we had to get out of the river several times due to some dams. After various hours, we finished this trip near the town of Rümlang. However, we will continue from here the next time and follow the Glatt river until it meets the Rhein.

Packrafting the Glatt River – Switzerland – February 2013 from Domber42 on Vimeo.