SlideShare une entreprise Scribd logo

Cloud computing 101

Télécharger en tant que PPTX, PDF
K
kriggins

TH

TechnologieBusiness
1  sur  31
Welcome to secure360 2012  Did you remember to scan your badge for CPE Credits? Ask your Room Volunteer for assistance.  Please complete the Session Survey front and back (this is Room 12), and leave on your seat.  Note: “Session” is Tuesday or Wednesday  Are you tweeting? #Sec360
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model is composed of five essential characteristics, three service models, and four deployment models.
Broad Rapid Measured On-Demand Network Access Elasticity Service Self-Service Resource Pooling Essential Characteristics Infrastructure as Software as a Platform as a a Service (SaaS) Service (PaaS) Service (IaaS) Service Models Public Private Hybrid Community Deployment Models NIST Visual Model of Cloud Computing
Essential Characteristics From From Here Here Cloud Yup, Wait! Over Here Too Here Too! Broad Network Access
Essential Characteristics Bigger Cloud Little Little Cloud Cloud Rapid Elasticity
Essential Characteristics A Lot Middlin’ A Little Time Measured Service
Essential Characteristics I want to do it. NOW! On-Demand Self-Service
Essential Characteristics Everybody uses the same water. Resource Pooling
Service Models Presentation Presentation Modality Platform APIs Applications (Software as a Service) Data Metadata Content Integration and Middleware (Platform as a Service) SaaS APIs (Infrastructure as PaaS a Service) IaaS Abstraction Hardware Facilities
Service Models Here’s a bunch of logs, have at it. IaaS
Service Models Here’s a foundation, some tools, and more materials. Knock yourself out. PaaS
Service Models It’s all in there. Just move in. SaaS
Who’s In Control? SaaS Less Control PaaS As We Go Up IaaS
Deployment Models Private Community Public Hybrid
Deployment Models Private Source: http://dogs.icanhascheezburger.com/2012/03/16/funny-dog-pictures-mine-all-mine-2/
Deployment Models Public Source: http://popupcity.net/2009/11/on-moscows-public-toilets/
Deployment Models Community
Deployment Models Hybrid http://www.coolfunnycomments.com/funnypictures/dogs_041.html
Actors  Consume r  Provider  Broker  Auditor  Carrier
Things to Think About  Visibility  Backups  Compliance  Encryption  Availability  Logging  Audit  Authentication  Disaster Rec.  Access control  Monitoring  Monitoring
Questions to Ask Yourself How would we be harmed if the asset became widely public and widely distributed?
Questions to Ask Yourself How would we be harmed if an employee of our cloud provider accessed the asset?
Questions to Ask Yourself How would we be harmed if the process or function were manipulated by an outsider?
Questions to Ask Yourself How would we be harmed if the process or function failed to provide expected results?
Questions to Ask Yourself How would we be harmed if the information/data were unexpectedly changed?
Questions to Ask Yourself How would we be harmed if the asset were unavailable for a period of time?
References NIST SP800-145 Cloud Definition http://csrc.nist.gov/publications/nistpubs/800-145/SP800-145.pdf NIST SP800-146 Cloud Computing Synopsis and Recommendations http://csrc.nist.gov/publications/drafts/800-146/Draft-NIST-SP800-146.pdf NIST SP500-292 Cloud Computing Reference Architecture http://www.nist.gov/customcf/get_pdf.cfm?pub_id=909505 Cloud Security Alliance Guidance https://cloudsecurityalliance.org/guidance/csaguide.v3.0.pdf ENISA Cloud Risk Assessment http://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessment Australian DoD Cloud Security Considerations http://www.dsd.gov.au/publications/Cloud_Computing_Security_Considerations.pdf Jericho Cloud Cube https://collaboration.opengroup.org/jericho/cloud_cube_model_v1.0.pdf Cloud Security Rules http://www.amazon.com/The-Cloud-Security-Rules-Technology/dp/1463691785
Questions? Twitter: @kriggins, @infosecramblins Email: kriggins@infosecramblings

Recommandé

Open source and standards - unleashing the potential for innovation of cloud ...
Open source and standards - unleashing the potential for innovation of cloud ...Open source and standards - unleashing the potential for innovation of cloud ...
Open source and standards - unleashing the potential for innovation of cloud ...Ignacio M. Llorente
 
Patterns of Cloud Applications Using Microsoft Azure Services Platform
Patterns of Cloud Applications Using Microsoft Azure Services PlatformPatterns of Cloud Applications Using Microsoft Azure Services Platform
Patterns of Cloud Applications Using Microsoft Azure Services PlatformDavid Chou
 
Cloud Computing - PaaS
Cloud Computing - PaaSCloud Computing - PaaS
Cloud Computing - PaaSThomas Bachmann
 
What is cloud computing
What is cloud computingWhat is cloud computing
What is cloud computingDan Morrill
 
Oracle cloud computing strategy
Oracle cloud computing strategyOracle cloud computing strategy
Oracle cloud computing strategyjameskenney
 
The role of hyper-v in nist model
The role of hyper-v in nist modelThe role of hyper-v in nist model
The role of hyper-v in nist modelAlexey Bokov
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingPhani Kumar Bhamidipati
 
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...Business Drivers and Challenges of Cloud Computing and Social Networking Appl...
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...M Biro
 

Recommandé

Open source and standards - unleashing the potential for innovation of cloud ...
Open source and standards - unleashing the potential for innovation of cloud ...Open source and standards - unleashing the potential for innovation of cloud ...
Open source and standards - unleashing the potential for innovation of cloud ...Ignacio M. Llorente
 
Patterns of Cloud Applications Using Microsoft Azure Services Platform
Patterns of Cloud Applications Using Microsoft Azure Services PlatformPatterns of Cloud Applications Using Microsoft Azure Services Platform
Patterns of Cloud Applications Using Microsoft Azure Services PlatformDavid Chou
 
Cloud Computing - PaaS
Cloud Computing - PaaSCloud Computing - PaaS
Cloud Computing - PaaSThomas Bachmann
 
What is cloud computing
What is cloud computingWhat is cloud computing
What is cloud computingDan Morrill
 
Oracle cloud computing strategy
Oracle cloud computing strategyOracle cloud computing strategy
Oracle cloud computing strategyjameskenney
 
The role of hyper-v in nist model
The role of hyper-v in nist modelThe role of hyper-v in nist model
The role of hyper-v in nist modelAlexey Bokov
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingPhani Kumar Bhamidipati
 
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...Business Drivers and Challenges of Cloud Computing and Social Networking Appl...
Business Drivers and Challenges of Cloud Computing and Social Networking Appl...M Biro
 
Cloud Computing For Enterprises
Cloud Computing For EnterprisesCloud Computing For Enterprises
Cloud Computing For EnterprisesOne App Cloud
 
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)MukeshKrActivelylook
 
Private Cloud With System Center Project
Private Cloud With System Center ProjectPrivate Cloud With System Center Project
Private Cloud With System Center ProjectAbhijit Kundu
 
ON event - May 2010
ON event - May 2010ON event - May 2010
ON event - May 2010Ben Kepes
 
Moving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy StepsMoving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy StepsAppZero
 
Blaze clan company presentation
Blaze clan company presentationBlaze clan company presentation
Blaze clan company presentationSupratik Ghatak
 
Software as a service
Software as a serviceSoftware as a service
Software as a serviceDivya korrapati
 
Mashups
MashupsMashups
MashupsPhani Kumar Bhamidipati
 
IT Modernization and Cloud Computing
IT Modernization and Cloud ComputingIT Modernization and Cloud Computing
IT Modernization and Cloud ComputingBarry Gervin
 
Cloud computing Fundamentals
Cloud computing FundamentalsCloud computing Fundamentals
Cloud computing FundamentalsKen-Lauren Daganio
 
Cloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalCloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalSukumar Nayak
 
Introduction to PaaS
Introduction to PaaSIntroduction to PaaS
Introduction to PaaSChris Haddad
 
Cloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrixCloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrixCloudSyntrix
 
Cloud Computing 101
Cloud Computing 101Cloud Computing 101
Cloud Computing 101Ben Kepes
 
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and IntegrationsCloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrationspaulfallon
 
Kanz visual bee
Kanz visual beeKanz visual bee
Kanz visual beeBen Kepes
 
Kanz
KanzKanz
KanzBen Kepes
 
Oracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureOracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureBob Rhubart
 
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012ProductCamp Boston
 
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...Kai Wähner
 
Rock star intro
Rock star introRock star intro
Rock star introJon Corippo
 
Plastic Surgery
Plastic SurgeryPlastic Surgery
Plastic Surgeryguest529758
 

Contenu connexe

Tendances

Cloud Computing For Enterprises
Cloud Computing For EnterprisesCloud Computing For Enterprises
Cloud Computing For EnterprisesOne App Cloud
 
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)MukeshKrActivelylook
 
Private Cloud With System Center Project
Private Cloud With System Center ProjectPrivate Cloud With System Center Project
Private Cloud With System Center ProjectAbhijit Kundu
 
ON event - May 2010
ON event - May 2010ON event - May 2010
ON event - May 2010Ben Kepes
 
Moving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy StepsMoving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy StepsAppZero
 
Blaze clan company presentation
Blaze clan company presentationBlaze clan company presentation
Blaze clan company presentationSupratik Ghatak
 
IT Modernization and Cloud Computing
IT Modernization and Cloud ComputingIT Modernization and Cloud Computing
IT Modernization and Cloud ComputingBarry Gervin
 
Cloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalCloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalSukumar Nayak
 
Introduction to PaaS
Introduction to PaaSIntroduction to PaaS
Introduction to PaaSChris Haddad
 
Cloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrixCloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrixCloudSyntrix
 
Cloud Computing 101
Cloud Computing 101Cloud Computing 101
Cloud Computing 101Ben Kepes
 
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and IntegrationsCloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrationspaulfallon
 
Kanz visual bee
Kanz visual beeKanz visual bee
Kanz visual beeBen Kepes
 
Oracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureOracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureBob Rhubart
 
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012ProductCamp Boston
 
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...Kai Wähner
 

Tendances (20)

Cloud Computing For Enterprises
Cloud Computing For EnterprisesCloud Computing For Enterprises
Cloud Computing For Enterprises
 
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
Cloudcomputingsimpleppt 141114085742-conversion-gate01 (1)
 
Private Cloud With System Center Project
Private Cloud With System Center ProjectPrivate Cloud With System Center Project
Private Cloud With System Center Project
 
ON event - May 2010
ON event - May 2010ON event - May 2010
ON event - May 2010
 
Moving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy StepsMoving Windows Server Apps to the cloud in 3 Easy Steps
Moving Windows Server Apps to the cloud in 3 Easy Steps
 
Blaze clan company presentation
Blaze clan company presentationBlaze clan company presentation
Blaze clan company presentation
 
Software as a service
Software as a serviceSoftware as a service
Software as a service
 
Mashups
MashupsMashups
Mashups
 
IT Modernization and Cloud Computing
IT Modernization and Cloud ComputingIT Modernization and Cloud Computing
IT Modernization and Cloud Computing
 
Cloud computing Fundamentals
Cloud computing FundamentalsCloud computing Fundamentals
Cloud computing Fundamentals
 
Cloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalCloud Services Integration Automation-External
Cloud Services Integration Automation-External
 
Introduction to PaaS
Introduction to PaaSIntroduction to PaaS
Introduction to PaaS
 
Cloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrixCloud computing services by cloudsyntrix
Cloud computing services by cloudsyntrix
 
Cloud Computing 101
Cloud Computing 101Cloud Computing 101
Cloud Computing 101
 
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and IntegrationsCloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
Cloud Circle Talk - Enterprise Architecture, Cloud Computing and Integrations
 
Kanz visual bee
Kanz visual beeKanz visual bee
Kanz visual bee
 
Kanz
KanzKanz
Kanz
 
Oracle Cloud Reference Architecture
Oracle Cloud Reference ArchitectureOracle Cloud Reference Architecture
Oracle Cloud Reference Architecture
 
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
The Cloud and Next Gen IT Gordon Haff - p camp-boston2012
 
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
Systems Integration in the Cloud Era - API vs. Integration Framework vs. Ente...
 

En vedette

Cubs vs. Cardinals
Cubs vs. CardinalsCubs vs. Cardinals
Cubs vs. Cardinalsguest17a158
 
Netlog Linked In Aanpassen
Netlog Linked In AanpassenNetlog Linked In Aanpassen
Netlog Linked In AanpassenNathalieGardin
 
Do You Really Know Your Users?
Do You Really Know Your Users?Do You Really Know Your Users?
Do You Really Know Your Users?lundsby
 
End Of The Year Projects
End Of The Year ProjectsEnd Of The Year Projects
End Of The Year Projectsmsmccartysclass
 
Smalltalk in the pocket - Building applications for the iPhone
Smalltalk in the pocket - Building applications for the iPhoneSmalltalk in the pocket - Building applications for the iPhone
Smalltalk in the pocket - Building applications for the iPhoneEsteban Lorenzano
 
Beetjezotdoen
BeetjezotdoenBeetjezotdoen
Beetjezotdoencersei
 
Netlog Linked In Aanpassen
Netlog Linked In AanpassenNetlog Linked In Aanpassen
Netlog Linked In AanpassenNathalieGardin
 
Tide - The missing web framework
Tide - The missing web frameworkTide - The missing web framework
Tide - The missing web frameworkEsteban Lorenzano
 
Where ideas come from - Business Gets Social
Where ideas come from - Business Gets SocialWhere ideas come from - Business Gets Social
Where ideas come from - Business Gets SocialLouis Richardson
 

En vedette (20)

Rock star intro
Rock star introRock star intro
Rock star intro
 
Plastic Surgery
Plastic SurgeryPlastic Surgery
Plastic Surgery
 
Cubs vs. Cardinals
Cubs vs. CardinalsCubs vs. Cardinals
Cubs vs. Cardinals
 
Numbers review
Numbers reviewNumbers review
Numbers review
 
Netlog Linked In Aanpassen
Netlog Linked In AanpassenNetlog Linked In Aanpassen
Netlog Linked In Aanpassen
 
Do You Really Know Your Users?
Do You Really Know Your Users?Do You Really Know Your Users?
Do You Really Know Your Users?
 
MTAF
MTAFMTAF
MTAF
 
End Of The Year Projects
End Of The Year ProjectsEnd Of The Year Projects
End Of The Year Projects
 
Smalltalk in the pocket - Building applications for the iPhone
Smalltalk in the pocket - Building applications for the iPhoneSmalltalk in the pocket - Building applications for the iPhone
Smalltalk in the pocket - Building applications for the iPhone
 
Mars - ESUG 2010
Mars - ESUG 2010Mars - ESUG 2010
Mars - ESUG 2010
 
Voyage - PharoConf 2012
Voyage - PharoConf 2012Voyage - PharoConf 2012
Voyage - PharoConf 2012
 
Reef - ESUG2011
Reef - ESUG2011Reef - ESUG2011
Reef - ESUG2011
 
iBizLog - ESUG2010
iBizLog - ESUG2010iBizLog - ESUG2010
iBizLog - ESUG2010
 
Beetjezotdoen
BeetjezotdoenBeetjezotdoen
Beetjezotdoen
 
Netlog Linked In Aanpassen
Netlog Linked In AanpassenNetlog Linked In Aanpassen
Netlog Linked In Aanpassen
 
Tide - The missing web framework
Tide - The missing web frameworkTide - The missing web framework
Tide - The missing web framework
 
Voyage by example
Voyage by exampleVoyage by example
Voyage by example
 
Business Intelligence Portal
Business Intelligence PortalBusiness Intelligence Portal
Business Intelligence Portal
 
Where ideas come from - Business Gets Social
Where ideas come from - Business Gets SocialWhere ideas come from - Business Gets Social
Where ideas come from - Business Gets Social
 
Beijing Olympic game
Beijing Olympic gameBeijing Olympic game
Beijing Olympic game
 

Similaire à Cloud computing 101

Redefining cloud computing again linthicum with bonus
Redefining cloud computing again linthicum with bonusRedefining cloud computing again linthicum with bonus
Redefining cloud computing again linthicum with bonusDavid Linthicum
 
MPLS 2010: Network Enabled Cloud and Service Models
MPLS 2010: Network Enabled Cloud and Service ModelsMPLS 2010: Network Enabled Cloud and Service Models
MPLS 2010: Network Enabled Cloud and Service ModelsCisco Service Provider
 
3.cloud service delivery models
3.cloud service delivery models3.cloud service delivery models
3.cloud service delivery modelsDrRajapraveen
 
NIC 2013 - Configure and Deploy Private Cloud
NIC 2013 - Configure and Deploy Private CloudNIC 2013 - Configure and Deploy Private Cloud
NIC 2013 - Configure and Deploy Private CloudKristian Nese
 
Taiye Lambo - Auditing the cloud
Taiye Lambo - Auditing the cloudTaiye Lambo - Auditing the cloud
Taiye Lambo - Auditing the cloudnooralmousa
 
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or LessCloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or LessSalesforce_APAC
 
Sc World Congress Econference March 2011
Sc World Congress Econference March 2011Sc World Congress Econference March 2011
Sc World Congress Econference March 2011Neira Jones
 
Cloud Computing Webinar
Cloud Computing WebinarCloud Computing Webinar
Cloud Computing WebinarSaif Ahmad
 
Windows Azure Platform
Windows Azure PlatformWindows Azure Platform
Windows Azure PlatformSoumow Dollon
 
Microservices oracle-meetup
Microservices oracle-meetupMicroservices oracle-meetup
Microservices oracle-meetupNitu Parimi
 
cloud computting
cloud computtingcloud computting
cloud computtingAvinash Ram
 
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012CA Nimsoft
 

Similaire à Cloud computing 101 (20)

Redefining cloud computing again linthicum with bonus
Redefining cloud computing again linthicum with bonusRedefining cloud computing again linthicum with bonus
Redefining cloud computing again linthicum with bonus
 
MPLS 2010: Network Enabled Cloud and Service Models
MPLS 2010: Network Enabled Cloud and Service ModelsMPLS 2010: Network Enabled Cloud and Service Models
MPLS 2010: Network Enabled Cloud and Service Models
 
3.cloud service delivery models
3.cloud service delivery models3.cloud service delivery models
3.cloud service delivery models
 
cloud computing
cloud computingcloud computing
cloud computing
 
NIC 2013 - Configure and Deploy Private Cloud
NIC 2013 - Configure and Deploy Private CloudNIC 2013 - Configure and Deploy Private Cloud
NIC 2013 - Configure and Deploy Private Cloud
 
Taiye Lambo - Auditing the cloud
Taiye Lambo - Auditing the cloudTaiye Lambo - Auditing the cloud
Taiye Lambo - Auditing the cloud
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or LessCloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
 
Cloud computing
Cloud computingCloud computing
Cloud computing
 
Sc World Congress Econference March 2011
Sc World Congress Econference March 2011Sc World Congress Econference March 2011
Sc World Congress Econference March 2011
 
Cloud Computing Webinar
Cloud Computing WebinarCloud Computing Webinar
Cloud Computing Webinar
 
agile microservices @scaibo
agile microservices @scaiboagile microservices @scaibo
agile microservices @scaibo
 
Cloud computing
Cloud computingCloud computing
Cloud computing
 
PIM4Cloud
PIM4CloudPIM4Cloud
PIM4Cloud
 
Cloud Service Models
Cloud Service ModelsCloud Service Models
Cloud Service Models
 
Windows Azure Platform
Windows Azure PlatformWindows Azure Platform
Windows Azure Platform
 
Microservices oracle-meetup
Microservices oracle-meetupMicroservices oracle-meetup
Microservices oracle-meetup
 
cloud computting
cloud computtingcloud computting
cloud computting
 
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012
Managing Your Cloud with Confidence - Mark Rivington, n•fluence 2012
 
UNIT III - ppt.pptx
UNIT III - ppt.pptxUNIT III - ppt.pptx
UNIT III - ppt.pptx
 

Dernier

🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfhans926745
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 

Dernier (20)

🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 

Cloud computing 101

  • 1.
  • 2. Welcome to secure360 2012  Did you remember to scan your badge for CPE Credits? Ask your Room Volunteer for assistance.  Please complete the Session Survey front and back (this is Room 12), and leave on your seat.  Note: “Session” is Tuesday or Wednesday  Are you tweeting? #Sec360
  • 3. Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model is composed of five essential characteristics, three service models, and four deployment models.
  • 4. Broad Rapid Measured On-Demand Network Access Elasticity Service Self-Service Resource Pooling Essential Characteristics Infrastructure as Software as a Platform as a a Service (SaaS) Service (PaaS) Service (IaaS) Service Models Public Private Hybrid Community Deployment Models NIST Visual Model of Cloud Computing
  • 5. Essential Characteristics From From Here Here Cloud Yup, Wait! Over Here Too Here Too! Broad Network Access
  • 6. Essential Characteristics Bigger Cloud Little Little Cloud Cloud Rapid Elasticity
  • 7. Essential Characteristics A Lot Middlin’ A Little Time Measured Service
  • 8. Essential Characteristics I want to do it. NOW! On-Demand Self-Service
  • 9. Essential Characteristics Everybody uses the same water. Resource Pooling
  • 10. Service Models Presentation Presentation Modality Platform APIs Applications (Software as a Service) Data Metadata Content Integration and Middleware (Platform as a Service) SaaS APIs (Infrastructure as PaaS a Service) IaaS Abstraction Hardware Facilities
  • 11. Service Models Here’s a bunch of logs, have at it. IaaS
  • 12. Service Models Here’s a foundation, some tools, and more materials. Knock yourself out. PaaS
  • 13. Service Models It’s all in there. Just move in. SaaS
  • 14. Who’s In Control? SaaS Less Control PaaS As We Go Up IaaS
  • 15.
  • 16. Deployment Models Private Community Public Hybrid
  • 17. Deployment Models Private Source: http://dogs.icanhascheezburger.com/2012/03/16/funny-dog-pictures-mine-all-mine-2/
  • 18. Deployment Models Public Source: http://popupcity.net/2009/11/on-moscows-public-toilets/
  • 19. Deployment Models Community
  • 20. Deployment Models Hybrid http://www.coolfunnycomments.com/funnypictures/dogs_041.html
  • 21. Actors  Consume r  Provider  Broker  Auditor  Carrier
  • 22. Things to Think About  Visibility  Backups  Compliance  Encryption  Availability  Logging  Audit  Authentication  Disaster Rec.  Access control  Monitoring  Monitoring
  • 23.
  • 24. Questions to Ask Yourself How would we be harmed if the asset became widely public and widely distributed?
  • 25. Questions to Ask Yourself How would we be harmed if an employee of our cloud provider accessed the asset?
  • 26. Questions to Ask Yourself How would we be harmed if the process or function were manipulated by an outsider?
  • 27. Questions to Ask Yourself How would we be harmed if the process or function failed to provide expected results?
  • 28. Questions to Ask Yourself How would we be harmed if the information/data were unexpectedly changed?
  • 29. Questions to Ask Yourself How would we be harmed if the asset were unavailable for a period of time?
  • 30. References NIST SP800-145 Cloud Definition http://csrc.nist.gov/publications/nistpubs/800-145/SP800-145.pdf NIST SP800-146 Cloud Computing Synopsis and Recommendations http://csrc.nist.gov/publications/drafts/800-146/Draft-NIST-SP800-146.pdf NIST SP500-292 Cloud Computing Reference Architecture http://www.nist.gov/customcf/get_pdf.cfm?pub_id=909505 Cloud Security Alliance Guidance https://cloudsecurityalliance.org/guidance/csaguide.v3.0.pdf ENISA Cloud Risk Assessment http://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessment Australian DoD Cloud Security Considerations http://www.dsd.gov.au/publications/Cloud_Computing_Security_Considerations.pdf Jericho Cloud Cube https://collaboration.opengroup.org/jericho/cloud_cube_model_v1.0.pdf Cloud Security Rules http://www.amazon.com/The-Cloud-Security-Rules-Technology/dp/1463691785

Notes de l'éditeur

  1. Wow. That makes my head hurt. Let’s see if we can’t find a simpler metaphor.