Twitter Feed
Animoto = Automated Imagery PED
Over the past two days, I’ve spent quite a bit of time with Stevie Clifton, Co-founder & CTO of Animoto. Besides being one of the coolest things I’ve seen in…
World Summit of Cloud Computing 2008
Video by Animoto using cloud computing technology. (Done in 20 minutes for free)!! Follow me at https://Twitter.com/Kevin_Jackson
2008 World Summit of Cloud Computing
After a uneventful trip , I’m now in Israel for the World Summit. With over 500 people expected to attend, it promises to be an exciting time. Unfortunately, I arrived…
CloudCamp Federal ’08
| Get your Presentation Pack Follow me at https://Twitter.com/Kevin_Jackson
NCOIC Cloud Working Group
The NCOIC will be holding a cloud computing working group on December 10th during plenary session in Costa Mesa, CA. The session focus will be “Requirements for Enterprise Cloud Computing”.…
Cloud Computing vs. Cloud Services
In September, Frank Gens provided an excellent overview of the the new “Cloud Computing Era”. In preparing for an upcoming talk, I re-read the post and found myself appreciating it…
Inaugural “Inside the Cloud” Survey
Appistry and CloudCamp recently released results from the first “Inside the Cloud” survey. Key takeaways were: Amazon perceived as cloud leader, with twice as many votes as Google Infrastructure providers…
FIAC Presentation Mentions Cloud Computing
At the recent Federal Information Assurance Conference, Bob Gourley, CTO Crucial Point LLC, and former Defense Intelligence Agency CTO, recently provided his views on the state of Federal IT. His cloud…
Sun Cloud Czar
Earlier this week it was announced that, Sun, Senior Vice President, Dave Douglas, was appointed to lead the Company’s cloud computing efforts. A JDJ Article also stated that, in addition to becoming Sun’s…
From Sam Johnston’s Taxonomy post
- Clients (examples) are computer hardware and/or computer software which rely on The Cloud for application delivery, or which is specifically designed for delivery of cloud services, and which are in either case essentially useless without it.
- Services (examples) (aka Web Service) are “software system[s] designed to support interoperable machine-to-machine interaction over a network“[36] which may be accessed by other cloud computing components, software (eg Software plus services) or end users directly.
- Application (examples) leverages The Cloud in software architecture, often eliminating the need to install and run the application on the customer’s own computer, thus alleviating the burden of software maintenance, ongoing operation, and support.
- Platform (examples) (aka Platform as a service) (the delivery of a computing platform and/or solution stack as a service) facilitates deployment of applications without the cost and complexity of buying and managing the underlying hardware and software layers
- Storage (examples) is the delivery of data storage as a service (including database-like services), often billed on a utility computing basis (eg per gigabyte per month)
- Infrastructure (examples) (aka Infrastructure as a service) is the delivery of computer infrastructure (typically a platform virtualization environment) as a service
2 Comments
Cloud Computing
- CPUcoin Expands CPU/GPU Power Sharing with Cudo Ventures Enterprise Network Partnership
- CPUcoin Expands CPU/GPU Power Sharing with Cudo Ventures Enterprise Network Partnership
- Route1 Announces Q2 2019 Financial Results
- CPUcoin Expands CPU/GPU Power Sharing with Cudo Ventures Enterprise Network Partnership
- ChannelAdvisor to Present at the D.A. Davidson 18th Annual Technology Conference
Cybersecurity
- Route1 Announces Q2 2019 Financial Results
- FIRST US BANCSHARES, INC. DECLARES CASH DIVIDEND
- Business Continuity Management Planning Solution Market is Expected to Grow ~ US$ 1.6 Bn by the end of 2029 - PMR
- Atos delivers Quantum-Learning-as-a-Service to Xofia to enable artificial intelligence solutions
- New Ares IoT Botnet discovered on Android OS based Set-Top Boxes
You don’t mention where security fits in this stack. I know security is important at every level and it is there at every level now, but really there should be a single source of secure control of access to resources.
That’s something big we need to work out. How can I have one account, the account I use to log into my cloud application and I can use that application with any other layer of stack or in combination with them without having to know that amazon requires these credentials and nirvanix requires another set.
The end user shouldn’t care about these things, it should be handled at the platform level, but from my perspective there is no robust security model for the cloud, not yet.
Any ideas what we might see fill this gap?
Actually security is something that I do think about as a CISSP, but having looked at the various solutions it was clear that they permiated every layer of the stack. The resources themselves are secured by various mechanisms (AWS request signing for example) and from the user point of view you have OpenID and OAuth at the services layer. Even on the clients we don’t want cloud apps interfering with each other and you can see that browsers like chrome go to great lengths to prevent this.
So yes it’s a valid point, but not one that wasn’t well considered.
Cheers,
Sam