cloudofdata.com

Dr Paul Miller

The Cloud of Data

paul.miller@cloudofdata.com

Information Security & Cloud Computing

cloudofdata.com

Cloud Stack redux

Some (quick!) ‘truths’ about the Cloud

Information Security?

Topics

cloudofdata.com

The Cloud Stack‘The Cloud’ lumps different concepts/capabilities together

www.flickr.com/photos/wonderlane/3089163372/

cloudofdata.com

“convenient, on-demand network access to a shared pool of configurable computing resources...”

csrc.nist.gov/groups/SNS/cloud-computing/

cloudofdata.com

Software/Application [as a Service](SaaS)

Platform [as a Service](PaaS)

Infrastructure [as a Service](IaaS)

Traditional 3 layer model - there are plenty of others!all ‘Cloud’… but DIFFERENT!

cloudofdata.com

SaaS

PaaS

Infrastructure as a Service (IaaS)

computers (Amazon EC2, Rackspace, GoGrid...)storage (Amazon S3, MobileMe, Google Drive...)

Elasticity (Rightscale…)Bandwidth (Limelight, Amazon CloudFront…)

ElectricityCooling

etc.

outsource raw infrastructure - avoid significant CapExscale to meet demand - Eli Lilly, payrollpublic/ private/ hybrid

cloudofdata.com

SaaS

Platform as a Service (PaaS)

Salesforce force.comApprenda SaaSGridGoogle App Engine

Microsoft AzureAppistry

Talis Platform

IaaS

‘does heavy lifting’concentrate on your app’s USP

least developed but most potential?

cloudofdata.com

Software as a Service (SaaS)

Google Apps, ZohoAcrobat.com, iWork.com

Kashflow, FreeAgentWordPress.com

MobileMeSalesforce.com

PaaS

IaaS

lightweight applications, delivered over Webmostly low-end disruptors for now...

cloudofdata.com www.flickr.com/photos/dpicker/2255136085/

Some ‘Truths’ about the Cloud

Some more true than others!

cloudofdata.com

It’s All Off-Premise

Microsoft Data Centre, Dublin Cisco, VMware et al pushing on-premise

G-Cloud, here and in USA...

www.datacenterknowledge.com/wp-content/uploads/2009/09/aerial-1000.jpg

cloudofdata.com

It’s Cheap

www.flickr.com/photos/esdrascalderan/357434020/

For elastic or periodic jobs.Less clear-cut for ‘normal’ load

cloudofdata.com

It’s Green

www.flickr.com/photos/venteco/2851026377/

Probably… but Simon Wardley

http://tr.im/greenclouds

cloudofdata.com

It’s Not Reliable

www.flickr.com/photos/raver_mikey/2300514593/

Numbers don’t add up...

cloudofdata.com

It’s Not Secure

www.flickr.com/photos/8323834@N07/500995147/

And your data centre ?

cloudofdata.com

USA will read my data

www.flickr.com/photos/whitehouse/3484013571/

PATRIOT Act and data territoriality are real… but manageable

cloudofdata.com

It’s Amazon

www.flickr.com/photos/lucasartoni/2967023166/

And Rackspace, and Microsoft, and Sun, and HP, and Google, and...

cloudofdata.com

0

750

1,500

2,250

3,000

July September November January March May

Amazon Rackspace Joyent GoGrid OpSource FlexiScale

www.jackofallclouds.com/2010/05/state-of-the-cloud-may-2010/

Guy Rosen has begun tracking trends, using QuantCast’s top 500,000 sites

cloudofdata.com

“It’s like computers on the Internet, innit?”

With thanks to Simon Wardley

www.flickr.com/photos/fimbrethil/2642775023/

cloudofdata.com

Security

What are you securing…and Why?

5 broad areas...

cloudofdata.com

Secure Physical Infrastructurewww.flickr.com/photos/treborrenrut/4481585336/

cloudofdata.com

Secure the Network

cloudofdata.com

Secure Applications

cloudofdata.com

Secure Data

cloudofdata.com

Secure People

cloudofdata.com

Conclusion

cloudofdata.com

it can be!

what matters?

security costs time, money and effort

identify appropriate levels of security…

always remember that people will be people.

cloudofdata.com

Dr Paul Miller

The Cloud of Data

paul.miller@cloudofdata.com

skype: cloudofdata

phone: +44 7769 740083

Except where otherwise noted, this work is licensed under the Creative Commons Attribution Licence. To view a copy of this licence, visit creativecommons.org/licenses/by/2.0/uk/ or send a letter to

Creative Commons, 171 Second St, San Francisco, CA 94105, United States of America

Thank you

cloud of data

Download this presentationslideshare.net/cloudofdata

Made on a

Mac