Welcome!

SDN Journal Authors: Dana Gardner, Elizabeth White, David Paquette, Olivier Huynh Van, Pat Romanski

Related Topics: @CloudExpo, Microservices Expo, Open Source Cloud, Containers Expo Blog, Cloud Security, @BigDataExpo, SDN Journal

@CloudExpo: Article

Cloud Is All About Security

An exclusive Q&A with Terry Woloszyn, Founder & CEO, Leeward Security Ltd.

"Open source has always provided a number of benefits, including easing adoption costs, propagating a better understanding of the technology, and allowing for faster evolution and commercialization of products and services based on it," noted Terry Woloszyn, Founder & CEO, Leeward Security Ltd., in this exclusive Q&A with Cloud Expo Conference Chair Jeremy Geelan. "This is clearly evident with the OpenStack and CloudStack," Woloszyn continued, "and others that have been quickly commercialized as offerings such as Rackspace."

Cloud Computing Journal: The move to cloud isn't about saving money, it is about saving time. - Agree or disagree?

Terry Woloszyn: It's actually both. Depending on the type of cloud - SaaS, PaaS, or IaaS, and whether it is private or public - the metrics that are used to determine the savings vary in weighting and importance. For example, the total cost of ownership in selecting, installing, configuring, managing, and ultimately replacing enterprise applications is quite large when compared to utilizing a public cloud SaaS equivalent. In this case, it's about saving time and money. On the other hand, utilizing a private cloud infrastructure as a host platform for enterprise applications is much more about saving time in provisioning, as the money difference is small, realized only in hardware utilization and platform management cost savings.

There are other metrics that factor into a selection decision as well, such as security, redundancy, disaster recovery, scalability, and more. It all comes down to the individual requirements of the selector when determining what "it's all about saving."

Cloud Computing Journal: How should organizations tackle their regulatory and compliance concerns in the cloud? Who should they be asking/trusting for advice?

Woloszyn: Unfortunately, regulatory compliance is a moving target. Depending on the jurisdiction, there may not even be a way to become compliant, as legislation at different levels of government may actually conflict, resulting in a bun fight between them that only the courts can settle, and may take years to do so.

Furthermore, cloud exacerbates the problem by spreading the compliance requirements across a plurality of jurisdictions, which results in more conflicting legislation. Great examples have emerged wherein data privacy compliance dictated by one jurisdiction outside of the US is impossible to achieve, thanks to PATRIOT, to be complied with if a US cloud is utilized. It may even be impossible to comply if the network traffic itself simply transits US territory. Again, legislators and regulators are only starting to realize that they no longer can legislate within their borders - that there is a global economic and technology reality that they must account for if their constituents are to remain competitive in the global markets.

As a result, trying to achieve 100% compliance may be impractical, as it is virtually impossible to understand where every bit is located and where they travel during the usage of the cloud, and what compliance requirements are incumbent on the users and providers as a result. One approach to resolve this is similar to ring security employed by systems today, with the core representing the local jurisdiction regulatory and compliance requirements, and the risks and costs for non-compliance. Each subsequent ring around the core represents regulatory and compliance requirements of lessening importance, along with corresponding risks and costs for non-compliance. The final ring represents no regulatory or compliance requirements, and no risks. By creating this type of framework and taxonomy, with the assistance of technologists, cloud providers, and legal counsel, it allows the adopter to quickly make assessments for existing and future cloud adoption, and easily allows for impact analysis of ever-changing technology, regulatory, and compliance requirements.

Cloud Computing Journal: What does the emergence of Open Source clouds mean for the cloud ecosystem? How does the existence of OpenStack, CloudStack, OpenNebula, Eucalyptus and so on affect your own company?

Woloszyn: Open Source has always provided a number of benefits, including easing adoption costs, propagating a better understanding of the technology, and allowing for faster evolution and commercialization of products and services based on it. This is clearly evident with the OpenStack, CloudStack, and others that have been quickly commercialized as offerings such as Rackspace. It makes for more consistency, faster adoption, and more robust offerings as everyone works towards the same results in the open source community, rather than the competitive development model of the 1980s and 1990s that only resulted in a handful of expensive, proprietary, half-solutions.

Cloud Computing Journal: With SMBs, the two primary challenges they face moving to the cloud are always stated as being cost and trust: where is the industry on satisfying SMBs on both points simultaneously - further along than in 2011-12, or...?

Woloszyn: Certainly from a cost perspective, cloud has become very affordable as a technology. However, the skills and labor costs associated with cloud adoption and management are still relatively high, making it a barrier for SMB adoption. As cloud becomes more ubiquitous, the skills become more accessible and affordable. As a result, like any technology, it is the large, early adopters that start, and it slowly cascades down through SMB, and eventually down to SOHO and individuals.

As for trust, SMBs actually seem to trust more than the enterprise adopters. This is because more cloud vendors have succeeded in promoting security and trust of their brand through standards compliance, certification, and customer recognition. SMBs are aware that the cloud vendors are likely more secure an offering, for example, than the SMB themselves could provide.

Cloud Computing Journal: 2013 seems to be turning into a breakthrough year for Big Data. How much does the success of cloud computing have to do with that?

Woloszyn: Big Data, like other enterprise-scale technologies, would only be within reach of large enterprises without the support of cloud. Cloud has a democratization effect on new technology adoption, and allows for economies of scale that would otherwise be unaffordable by most organizations. This makes Big Data accessible by a much larger group of adopters, by virtue of cloud support.

Cloud Computing Journal: What about the role of social: aside from the acronym itself SMAC (for Social, Mobile, Analytics, Cloud) are you seeing and/or anticipating major traction in this area?

Woloszyn: There was a time when having a website was a requirement for organizations to be considered "real" and viable. Organizations without a website were viewed as either too small, or not viable, or not even trustworthy. Today, a website is mandatory for all organizations to do business. The same pattern is being followed for Social. Organizations now see an emerging requirement for social participation in order to be recognized as "real." The convergence of mobile and social and cloud has accelerated the growth of social as the primary and preferred interaction channels between the consumers and business, and between businesses themselves. Without a social presence, organizations today will simply not survive against those that actively exploit social media in their sales, marketing and other business functions.

Cloud Computing Journal: To finish, just as real estate is always said to be about "location, location, location", what one word, repeated three times, would you say Cloud Computing is all about?

Woloszyn: Cloud is all about "Security, Security, Security," where Cloud provides the security in cost savings, the security in access and availability, and the better security against present and future threats.

More Stories By Pat Romanski

News Desk compiles and publishes breaking news stories, press releases and latest news articles as they happen.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@CloudExpo Stories
There are several IoTs: the Industrial Internet, Consumer Wearables, Wearables and Healthcare, Supply Chains, and the movement toward Smart Grids, Cities, Regions, and Nations. There are competing communications standards every step of the way, a bewildering array of sensors and devices, and an entire world of competing data analytics platforms. To some this appears to be chaos. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, Bradley Holt, Developer Advocate a...
24Notion is full-service global creative digital marketing, technology and lifestyle agency that combines strategic ideas with customized tactical execution. With a broad understand of the art of traditional marketing, new media, communications and social influence, 24Notion uniquely understands how to connect your brand strategy with the right consumer. 24Notion ranked #12 on Corporate Social Responsibility - Book of List.
Just over a week ago I received a long and loud sustained applause for a presentation I delivered at this year’s Cloud Expo in Santa Clara. I was extremely pleased with the turnout and had some very good conversations with many of the attendees. Over the next few days I had many more meaningful conversations and was not only happy with the results but also learned a few new things. Here is everything I learned in those three days distilled into three short points.
SYS-CON Events announced today that SoftLayer, an IBM Company, has been named “Gold Sponsor” of SYS-CON's 18th Cloud Expo, which will take place on June 7-9, 2016, at the Javits Center in New York, New York. SoftLayer, an IBM Company, provides cloud infrastructure as a service from a growing number of data centers and network points of presence around the world. SoftLayer’s customers range from Web startups to global enterprises.
Major trends and emerging technologies – from virtual reality and IoT, to Big Data and algorithms – are helping organizations innovate in the digital era. However, to create real business value, IT must think beyond the ‘what’ of digital transformation to the ‘how’ to harness emerging trends, innovation and disruption. Architecture is the key that underpins and ties all these efforts together. In the digital age, it’s important to invest in architecture, extend the enterprise footprint to the cl...
The vision of a connected smart home is becoming reality with the application of integrated wireless technologies in devices and appliances. The use of standardized and TCP/IP networked wireless technologies in line-powered and battery operated sensors and controls has led to the adoption of radios in the 2.4GHz band, including Wi-Fi, BT/BLE and 802.15.4 applied ZigBee and Thread. This is driving the need for robust wireless coexistence for multiple radios to ensure throughput performance and th...
DevOps at Cloud Expo, taking place Nov 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to wait for long dev...
If you had a chance to enter on the ground level of the largest e-commerce market in the world – would you? China is the world’s most populated country with the second largest economy and the world’s fastest growing market. It is estimated that by 2018 the Chinese market will be reaching over $30 billion in gaming revenue alone. Admittedly for a foreign company, doing business in China can be challenging. Often changing laws, administrative regulations and the often inscrutable Chinese Interne...
Adobe is changing the world though digital experiences. Adobe helps customers develop and deliver high-impact experiences that differentiate brands, build loyalty, and drive revenue across every screen, including smartphones, computers, tablets and TVs. Adobe content solutions are used daily by millions of companies worldwide-from publishers and broadcasters, to enterprises, marketing agencies and household-name brands. Building on its established design leadership, Adobe enables customers not o...
Internet of @ThingsExpo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 19th Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devices - comp...
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
Cloud computing is being adopted in one form or another by 94% of enterprises today. Tens of billions of new devices are being connected to The Internet of Things. And Big Data is driving this bus. An exponential increase is expected in the amount of information being processed, managed, analyzed, and acted upon by enterprise IT. This amazing is not part of some distant future - it is happening today. One report shows a 650% increase in enterprise data by 2020. Other estimates are even higher....
19th Cloud Expo, taking place November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy. Meanwhile, 94% of enterpri...
From wearable activity trackers to fantasy e-sports, data and technology are transforming the way athletes train for the game and fans engage with their teams. In his session at @ThingsExpo, will present key data findings from leading sports organizations San Francisco 49ers, Orlando Magic NBA team. By utilizing data analytics these sports orgs have recognized new revenue streams, doubled its fan base and streamlined costs at its stadiums. John Paul is the CEO and Founder of VenueNext. Prior ...
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
Businesses are struggling to manage the information flow and interactions between all of these new devices and things jumping on their network, and the apps and IT systems they control. The data businesses gather is only helpful if they can do something with it. In his session at @ThingsExpo, Chris Witeck, Principal Technology Strategist at Citrix, will discuss how different the impact of IoT will be for large businesses, expanding how IoT will allow large organizations to make their legacy ap...
“We're a global managed hosting provider. Our core customer set is a U.S.-based customer that is looking to go global,” explained Adam Rogers, Managing Director at ANEXIA, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
"We have several customers now running private clouds. They're not as large as they should be but it's getting there. The adoption challenge has been pretty simple. Look at the world today of virtualization vs cloud," stated Nara Rajagopalan, CEO of Accelerite, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Developing software for the Internet of Things (IoT) comes with its own set of challenges. Security, privacy, and unified standards are a few key issues. In addition, each IoT product is comprised of (at least) three separate application components: the software embedded in the device, the back-end service, and the mobile application for the end user’s controls. Each component is developed by a different team, using different technologies and practices, and deployed to a different stack/target –...
What does it look like when you have access to cloud infrastructure and platform under the same roof? Let’s talk about the different layers of Technology as a Service: who cares, what runs where, and how does it all fit together. In his session at 18th Cloud Expo, Phil Jackson, Lead Technology Evangelist at SoftLayer, an IBM company, spoke about the picture being painted by IBM Cloud and how the tools being crafted can help fill the gaps in your IT infrastructure.