The cloud has no security. Full stop.

Any temporary security built into clould solutions has vulnerable points that can be attacked, no matter what. Worse, the defenders won't know about the weak points that *should* have been strong. (i.e. 0-days) until the data's already gone. And you may not even know it was copied!

Clould violates the most basic security principle of all: attack surface (and the related # of possible attackers). After all, the clould can be attacked by *anyone*, from *anywhere* on the whole planet.

Uh...no. Supersized mega-nope. Do. Not. Want.

When even the United States Government can't keep *security clearance* applications secret, it's game over. What chance do the rest of us have with no budget and no buy-in from bosses (except lip service, natch)?

Given the number of potential "insiders" involved in large scale cloud data the ONLY data that should be in the cloud is data you WANT shared!

With the current (and even theoretically possible future) state of the art in data security, putting confidential data in the clould is criminal negligence in my opinion.