Stakeholders are cautioning the Bureau of Industry and Security against requiring Infrastructure-as-a-Service providers to verify the identities of foreign customers, arguing that privacy-related concerns about a developing cloud-computing rule will make U.S. businesses less competitive abroad.