Presentation on theme: "Prepared for [xxxx] – Commercial in Confidence connect transform protect A Cloudy Cyberspace? Tony Roadknight – Technical Architect."— Presentation transcript:
Prepared for [xxxx] – Commercial in Confidence connect transform protect A Cloudy Cyberspace? Tony Roadknight – Technical Architect
Moving Services Into the Cloud What are the models? What are the security issues? What needs to be changed?
The NIST Definition of Cloud Computing V15 Cloud computing displays a number of attributes: On-demand self-service Broad network access Resource pooling Rapid elasticity Measured service Can be delivered in the following deployment models: Public cloud Private cloud Community cloud Hybrid cloud Supports the following service models: Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS) http://csrc.nist.gov/groups/SNS/cloud-computing/cloud-def-v15.doc
Cloud Computing Services - SPI Framework Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS)
In House Deployment Security App used to protect connection Guards what information is released Cleans any information that is received Depending upon trust of network the Security App may: Sign data (Integrity) Encrypt data (Confidentiality)
Infrastructure as a Service (IaaS) Deployment Can apply existing model using existing applications Security applied between Service App and the Cloud » Guards what information is released » Cleans any information that is received However Availability now relies upon the Cloud fabric
Platform as a Service (PaaS) Deployment Can no longer intercept all communication paths Security must be embedded within Service App » Guards what information is released » Cleans any information that is received Application migration to PaaS Services API
Software as a Service (SaaS) Deployment Security must be applied before information released to SaaS Guards what information is released to SaaS Cleans any information that is received from SaaS
Summary Existing services can be deployed within IaaS Cloud Services Move to PaaS and SaaS requires: Application changes Possible accreditation challenges Acceptance of changing trust model Fully integrated Cloud Computing solution requires: Cloud technology extensions Revised accreditation model Key threat changes: Scale Multi-tenancy Actors
Your consent to our cookies if you continue to use this website.