cloudofdata.com
Dr Paul Miller
The Cloud of Data
Information Security & Cloud Computing
cloudofdata.com
Cloud Stack redux
Some (quick!) ‘truths’ about the Cloud
Information Security?
Topics
cloudofdata.com
The Cloud Stack‘The Cloud’ lumps different concepts/capabilities together
www.flickr.com/photos/wonderlane/3089163372/
cloudofdata.com
“convenient, on-demand network access to a shared pool of configurable computing resources...”
csrc.nist.gov/groups/SNS/cloud-computing/
cloudofdata.com
Software/Application [as a Service](SaaS)
Platform [as a Service](PaaS)
Infrastructure [as a Service](IaaS)
Traditional 3 layer model - there are plenty of others!all ‘Cloud’… but DIFFERENT!
cloudofdata.com
SaaS
PaaS
Infrastructure as a Service (IaaS)
computers (Amazon EC2, Rackspace, GoGrid...)storage (Amazon S3, MobileMe, Google Drive...)
Elasticity (Rightscale…)Bandwidth (Limelight, Amazon CloudFront…)
ElectricityCooling
etc.
outsource raw infrastructure - avoid significant CapExscale to meet demand - Eli Lilly, payrollpublic/ private/ hybrid
cloudofdata.com
SaaS
Platform as a Service (PaaS)
Salesforce force.comApprenda SaaSGridGoogle App Engine
Microsoft AzureAppistry
Talis Platform
IaaS
‘does heavy lifting’concentrate on your app’s USP
least developed but most potential?
cloudofdata.com
Software as a Service (SaaS)
Google Apps, ZohoAcrobat.com, iWork.com
Kashflow, FreeAgentWordPress.com
MobileMeSalesforce.com
PaaS
IaaS
lightweight applications, delivered over Webmostly low-end disruptors for now...
cloudofdata.com www.flickr.com/photos/dpicker/2255136085/
Some ‘Truths’ about the Cloud
Some more true than others!
cloudofdata.com
It’s All Off-Premise
Microsoft Data Centre, Dublin Cisco, VMware et al pushing on-premise
G-Cloud, here and in USA...
www.datacenterknowledge.com/wp-content/uploads/2009/09/aerial-1000.jpg
cloudofdata.com
It’s Cheap
www.flickr.com/photos/esdrascalderan/357434020/
For elastic or periodic jobs.Less clear-cut for ‘normal’ load
cloudofdata.com
It’s Green
www.flickr.com/photos/venteco/2851026377/
Probably… but Simon Wardley
http://tr.im/greenclouds
cloudofdata.com
It’s Not Reliable
www.flickr.com/photos/raver_mikey/2300514593/
Numbers don’t add up...
cloudofdata.com
It’s Not Secure
www.flickr.com/photos/8323834@N07/500995147/
And your data centre ?
cloudofdata.com
USA will read my data
www.flickr.com/photos/whitehouse/3484013571/
PATRIOT Act and data territoriality are real… but manageable
cloudofdata.com
It’s Amazon
www.flickr.com/photos/lucasartoni/2967023166/
And Rackspace, and Microsoft, and Sun, and HP, and Google, and...
cloudofdata.com
0
750
1,500
2,250
3,000
July September November January March May
Amazon Rackspace Joyent GoGrid OpSource FlexiScale
www.jackofallclouds.com/2010/05/state-of-the-cloud-may-2010/
Guy Rosen has begun tracking trends, using QuantCast’s top 500,000 sites
cloudofdata.com
“It’s like computers on the Internet, innit?”
With thanks to Simon Wardley
www.flickr.com/photos/fimbrethil/2642775023/
cloudofdata.com
Security
What are you securing…and Why?
5 broad areas...
cloudofdata.com
Secure Physical Infrastructurewww.flickr.com/photos/treborrenrut/4481585336/
cloudofdata.com
Secure the Network
cloudofdata.com
Secure Applications
cloudofdata.com
Secure Data
cloudofdata.com
Secure People
cloudofdata.com
Conclusion
cloudofdata.com
it can be!
what matters?
security costs time, money and effort
identify appropriate levels of security…
always remember that people will be people.
cloudofdata.com
Dr Paul Miller
The Cloud of Data
skype: cloudofdata
phone: +44 7769 740083
Except where otherwise noted, this work is licensed under the Creative Commons Attribution Licence. To view a copy of this licence, visit creativecommons.org/licenses/by/2.0/uk/ or send a letter to
Creative Commons, 171 Second St, San Francisco, CA 94105, United States of America
Thank you
cloud of data
Download this presentationslideshare.net/cloudofdata
Made on a
Mac