14. “ Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five essential characteristics, three service models, and four deployment models. ” Source: NIST, 2009a
31. Community Cloud Internet Internet Internet Internet Public Cloud Public Cloud Public Cloud Private Cloud Private Cloud Private Cloud Public Cloud Private Cloud Hybrid Cloud Hybrid Cloud Deploymentmodels Organization Organization Organization Organization
32. Public Cloud Available to the general public Owned by an organization selling Cloud services
33. Deploy a Service with a few mouse clicks Rational Team Concert running in 5 minutes Step 1 Step 2 Step 3 Click and Choose the Service you need Choose the hardware and usage configuration Application provisioned and ready to run
38. Implement ‘desktop’ solutions Short deployment time (minutes vs. months) Test Tools as a Service Available through the Internet Always the latest versions and updates
49. Logging challenges Data ownership issues Security of virtual OS’s in the Cloud Multi-tenancy Data dispersal and international privacy laws Encryption needs Need for isolation management Dependence of secure hypervisors EU DPD and US Safe Harbor program Exposure of data to foreign government Attraction to hackers Quality of service guarantees Security Risk mitigation Possibility of massive outages Basel II Trust
50. Private Public External De-perimeterised Internal Perimeterised Open Proprietary Source: The Jericho Forum: https://www.opengroup.org/jericho/index.htm Cloud SecurityCube
51. Security measures Public Cloud Virtual machine isolation Security group support SSH, HTTPS for management Web identity management Audit history report VPN connection