LSQHA Blog Reviews

The cloud computing story for the iPad will fill out as more applications become available. The first few applications we've seen give a glimpse into how the cloud plays a role in the iPad's future, especially with collaborative services such as online meetings. Cisco is launching a WebEx client for the iPad . Cisco is one of the more experienced companies for developing cloud-based products through its hosted service. It's beefing up that strategy, too, as mobile plays a more significant role in the workplace, especially as video is concerned. Sponsor Cisco is building a number of data centers throughout world, with the latest rolling out today, said Grace Kim of Cisco. The network gives Cisco flexibility in developing its client software for multiple platforms. WebEx is available on most smart phones through the browser. The app is available on the iPhone and the iPad. It is available on the Blackberry. WebEx does not as of yet have an app for the Android, With the data centers in place, Cisco gets some flexibility in how it structures pricing for clients, which it can extend to new platforms. A catalyst for that strategy may be the iPad itself. The iPad's form factor allows customers to view meetings on a screen that is simply much bigger. That's where the iPad has value. That, too, comments on how cloud computing becomes more important. The iPad makes video more logical to use. It's not available yet on the WebEx app. Cisco developed the app in the 50 days since Apple announced the iPad. Like a lot of other apps. we notice that WebEx is lacking some features. Cisco, though, is fully focused on video as a focal part of its collaboration strategy. You can expect that we will see video as part of the iPad app in future versions. The iPad is the right device for meeting collaboration. Far more so, we would say, than the iPhone. Customers will take advantage of this, fueling the need for more data centers that are designed for tasks that require elasticity, a key tenant of the cloud computing movement. Will Cisco offer more elasticity in its pricing models? Online conferencing has its roots in the ancient history of cloud computing. That's a time that dates back more than 10 years ago, (chuckle), when we first saw the glimpses of a per use model. Kim said they are always exploring new pricing structures which you can see in new products such as its hybrid offering that allows a large enterprise to use an on-premise client for data critical sessions and the hosted service for meetings that require lesser levels of security.

See the article here:
The Cloud's Important Role for WebEx on the iPad

At 1:00 a.m. on Sunday morning I was doing routine maintenance on my personal Amazon Web Services account and instead found myself looking at something I had no right to be seeing: A database with 800,000 user accounts to the e-card site CardMaster.com . Along with that were the database passwords and back end of a major U.S. Public Broadcasting Service news show website ( Gwen Ifill's Washington Week ), including daily updates from panelists on the stories they cover. I wish I wasn't the person to find this. I founded one of Amazon's earliest dashboards. My consultancy is on Amazon's European Customer Advisory Board. But this highlights a significant issue in the cloud today: There is a whole new user profile acting as developer and administrator. We are becoming empowered with amazing tools - and being given enough rope to really hang ourselves. Sponsor Guest author Jonathan Siegel is a serial entrepreneur and founder of the cloud applications consultancy ELCTech.com as well as a handful of cloud startups. Jonathan's book, Electric Connections , is due out in June of this year. I am an early adopter, business builder and owner of a cloud consultancy. On Sunday morning I went to clear out my personal Amazon Web Services account of excess files after seeing huge usage numbers from a report by CloudSplit. For those technically inclined, I was clearing out my S3 buckets and moving the few files that I wanted to save into an EBS disk instead. My EBS disk ran out of space and I went to use a feature called EBS Snapshots. Snapshots are like a tape backup of your EBS disk drive. That's when I noticed something odd: My EBS Snapshot account was filled with hundreds of snapshots, when I knew I had only made a handful. I wondered, Why do I have access to these backups? Were these backups made by my teammates? Shared snapshots from Amazon? Or something else... What I saw were backups of Enron emails, a genomics database and then two made my stomach turn - a database for 800,000 user accounts to CardMaster.com and the database and site files for the Washington Week website. Yeah, the Enron emails are a non sequitur and the genomics database was likely meant to be public. But the other two, there's no way they were intended for the public, yet here they were - marked as public and available to me or any other Amazon cloud user. How Did This Happen? Amazon is the largest and longest running public cloud computing platform. It has pushed the boundaries of technology infrastructure for us users. In fact, it has given us tools that are more powerful than anything we previously had available in our own small datacenters. This is great, because before we needed to hire trained Cisco or NetApp administrators in order to do basic tasks as our websites scaled. This was expensive and added another step - a delay - to our deployments. Amazon's infrastructure commoditizes much of this technology into simple Web calls; paste some XML to Amazon and your website gets a full incremental backup to live-networked NAS. But as Stan Lee has warned us: With great power comes great responsibility. By giving programmers control of the network and storage, we've empowered developers to take on system administration chores. This power has come too quickly or is being digested too lightly - as my discovery has shown. In the case of PBS's Washington Week there was quick acceptance of the issue. "It was human error and nothing personal was exposed," said Kevin Dando, PBS's Director of Digital Communications. "Although we weren't aware of the issue initially, it was easily corrected. Because of Amazon's strong audit capabilities we could pinpoint the error and fix it quickly." Despite numerous attempts we were unable to reach CardMaster.com. This highlights a deeper issue in the cloud today: Despite what you may think, cloud security is not sexy. We are seeing products that address the baseline needs of cloud functionality, like Amazon's dashboard and the support sites for the cloud. They focus on the sexy: deploying mobile apps, auto-scaling, grid processing and other buzz-word-friendly features. But the dirty truth is that the cloud has a whole new user profile acting as administrator and needs a new set of tools and expectation management to ensure that little mistakes make little problems and not big ones. Remember: This is not something that Amazon did wrong. This is an intentional switch thrown by Amazon's users that allowed their data to be public to any other Amazon user. The users did not mean to hit that switch and it's unclear whether those users would have found this issue without my notification. This is the switch in Amazon's Web Console. It can be more subtle when packaged deep within cloud-assisting tools: And Why Me? A spokesperson for Amazon pointed out that snapshots were private by default and users must choose to share them. According to Amazon, "in general users understand this feature very well as this is no different than users explicitly choosing to share their data by any means." However, as we've seen, users are obviously making their data inadvertently public. Amazon said they were updating their documentation "to provide more explicit guidance on this feature," and that they would be "reaching out to the few who may be unknowingly sharing their snapshots." The question, though, is: Is it too easy to accidentally make your data public - and whose role is it to play data cop? This leads to me, at 1 a.m., and finding security leakage with Amazon's cloud customers while doing unrelated housekeeping. Look, I'm anything but an IT Security guy; I've got enough on my plate to worry about. For god's sakes, I have 6 kids! Moreover, I'm an outspoken supporter for moving companies to the cloud - and I exclusively recommend Amazon's cloud because of its reliability and features. Why is it me that finds this security issue - one that has been open since January of this year if the Snapshot dates are accurate. This tells me that there is a pattern about to be replayed: That the users on the cloud today are a motley crew. That we need more supervision and hand-holding - whether we like it or not. That powerful services like CloudKick and CloudSplit need to be encouraged to add security as a top-priority feature. And we need to budget for their services and embrace their boring, yet hyper-important role as perimeter guard and security inspector. If I were to try to keep this security problem in the bag - and avoid alerting the community - I would be fostering a sense of complacency that is antithetical to the marketplace needs. The cloud is so young that when we find a problem we need to admit it and find real, workable solutions. Since the cloud represents new ways of doing things, it gives us new ways of getting in trouble, and we need a lively forum for nipping these issues in the bud and laying a framework for ongoing success. What Now? If you are on Amazon's cloud, I can't stress enough that you need to immediately go to your AWS Management Console. Check at a minimum that your Snapshots, for every Region, are marked PUBLIC only if you mean them to be available to ALL other Amazon Web Services users. I've already checked mine. If you find data that you did not intend to make public, you need to engage your security team to remove the snapshots from the public and mitigate any data exposure. Hopefully this gets chalked on the wall as a lesson learned - and we continue our march to the cloud with a deeper appreciation of our security support needs. This isn't about calling people out. I work in the cloud and am passionate about its development. These mistakes could very well have been ones I made - or any other cloud user. To move the cloud forward we need to encourage a dialog about our new found power, new paradigms and new needs in the cloud. Discuss

View post:
User Ignorance Causes Cloud Security Leak; Accounts, Passwords Revealed

Cloudkick is a cloud monitoring start-up that helps system admins manage cloud servers. Today, the company announced it is getting physical, bringing its cloud monitoring capabilities to internally hosted servers and virtual machines. The company has had a lot of success in helping companies who startup in the cloud and start to achieve scale. It already has a host of hot startup companies including Posterous , Bump Technologies , and Urban Airship . Through listening to users, the company decided to offer local server support to merge its view of all server assets for these organizations. Sponsor What is CloudKick? Cloudkick enables a company to manage internally hosted servers and run the Cloudkick's agent and report into the same console as your cloud computing infrastructure from AWS, RackSpace, SliceHost and others. When installed, the CloudKick agent will respond to status checks from the Cloudkick monitoring solution, which itself is a distributed cloud application. Cloudkick supports a host of cloud provider solutions and shares a report of feature. We met with the company at their offices in San Francisco. Upon entry to the warehouse, called " The Farm " near the Mission District, we realized that was a true technology startup , founded by system administrators trying to make their jobs easier. The team participated in Y-Combinator and has received an initial capital infusion by Avalon Ventures. The Cloudkick system offers consolidated server reports and shows server events by polling registered clients in cloud (and now data centers) and piping them to Cloudkick's multi-tentant event aggregator. The tools are modeled after administrative tools like Cacti, Nagios, and Munin, but are delivered on on top of an agent-driven real time view of the underlying assets of server infrastructure. When checking out the demonstration, we also noted that the browser is updated in real-time as events are polled. This keeps the information fresh without having to re-check and brings the best of browser based real-time communication to system administrations. Cloudkick's implementation is simple and elegant. The young company is demonstrating product leadership by living the mantra of simplicity and utility. Here's a sample of the graphs from CloudKick's feature inventory . Monitoring Every Server The goal of this release is to bring servers from the datacenter to power of cloud monitoring. It allows a larger and larger region of infrastructure to rely on outside controls to monitor it's health and well being. One feature we we intrigued by with Cloudkick was the ability to tag and filter groups of hosts, and to then set rules across them. For example, tagging all servers "web apps" allows a rule to quickly set custom rules for checking up time. The company offers an API for its services and uses 2-legged OAuth for API authentication. OAuth is "an open protocol to allow secure API authorization in a simple and standard method from desktop and web applications.". The company also offers a proxy service that streamlines and secures the connections for hosts that will connect to the Cloudkick services. Cloudkick is a cloud company monitoring clouds and shows us in many ways the architecture of the future. In one of the blog posts from company, they share " love affair with cassandra " and how multi-master database technology is an enabler for co-location of server assets in infrastructure clouds. Where does Cloudkick go from here? Discuss

Follow this link:
Cloudkick Broadens its Scope: Now Monitors the Datacenter

EMC is a large company focused on high performance storage for enterprises. It's offerings are closely aligned with the idea of extending infrastructure from virtualization to private cloud infrastructure. The company wants to help IT data provisioning services are as easy as Amazon and as secure as Fort Knox. To get a handle of where enterprise data storage meets the web, we looked for inspiration from architects of the web and Internet, including web pioneer Sir Tim Berner-Lee and Vint Cerf . We take a look at EMC as positioned as the closet, physically, to the core assets of the enterprise. Sponsor In this report, we also spoke with Ted Newman, CTO of the Cloud Infrastructure Group of EMC Consulting, which is part of EMC Global Services to find out what is really happening in the enterprise sales and delivery engines. We mashed his thoughts up with some big-thinkers in the core of computing to get perspective on the company's future as a map to enterprise information assets. Where Does Data Live? EMC's byline is " Where Information Lives ", and by being a leading provider of storage solutions, this claim is literal indeed. Here, we see that data does have a home. In this case, in an enclosure, in a data center. This YouTube video shares a 2009 demonstration of EMC's Symmetrix V-Max. This unit, built in partnership with Intel, can be configured with up to two petabytes of storage and one terrabyte of cache. Based on our interview Newman from the company and its focus on creating and extending private clouds, we think the EMC is recognizing the vast power of extending the enterprise out and providing services that compete with with the ease and speed of Amazon Web Services, but also provide enterprise class controls and performance. Where Does Data Dance? Tim Berners Lee sheds some light in this interview about the future of the web and its data. Question : "Is your vision of the Semantic Web one in which data is freely available, or are there access rights attached to it?" Answer : "A lot of information is already public, so one of the simple things to do in building the new Web of data is to start with that information. And recently, I've been working with both the U.K. government and the U.S. government in trying not only to get more information on the Web, but also to make it linked data. But it's also very important that systems are aware of the social aspects of data. And it's not just access control, because an authorized user can still use the right data for the wrong purpose. So we need to focus on what are the purposes for accessing different kinds of data, and for that we've been looking at accountable systems. Accountable systems are aware of the appropriate use of data, and they allow you to make sure that certain kinds of information that you are comfortable sharing with people in a social context, for example, are not able to be accessed and considered by people looking to hire you. For example, I have a GPS trail that I took on vacation. Certainly, I want to give it to my friends and my family, but I don't necessarily wish to license people I don't know who are curious about me and my work and let them see where I've been. Companies may want to do the same thing. They might say, "We're going to give you access to certain product information because you're part of our supply chain and you can use it to fine-tune your manufacturing schedule to meet our demand. However, we do not license you to use it to give to our competition to modify their pricing." This vision is where there is opportunity, accountable means controls. Shared, means cloud. Perhaps a new term in the making: Accountable clouds. Does Your Cloud Compile? Vint Cerf, Chief Internet Evangelist posted to the Google Research blog, Cloud Computing and the Internet that further expands on vocabulary management and cloud computing. We see a definition of cloud computing emerging here that ties it to data portability and capability, a defining moment in the definition of semantic web. "Interestingly, my colleague, Sir Tim Berners-Lee, has been pursuing ideas that may inform the so-called "inter-cloud" problem. His idea of data linking may prove to be a part of the vocabulary needed to interconnect computing clouds. The semantics of data and of the actions one can take on the data, and the vocabulary in which these actions are expressed appear to me to constitute the beginning of an inter-cloud computing language. This seems to me to be an extremely open field in which creative minds everywhere can be free to contribute ideas and to experiment with new concepts. It is a new layer in the Internet architecture and, like the many layers that have been invented before, it is an open opportunity to add functionality to an increasingly global network." All of the sudden, the semantic web seems required to realize the vision of the cloud. And, the great thing about it is that the cloud layer being a first example of the semantic web shows us we can start it in information technology's own backyard. EMC's Opportunity The enterprise of the future needs to share nicely, store petabytes at-will, and be available on demand. Also, to the degree that organizations run sensitive or personalized enterprise software, the platforms it runs on and interacts with will need to demonstrate the controls and permissions similar to those today inside the enterprise. This will be a key factor in whether the enterprise systems can gracefully consume cloud computing - or what they can adopt it for. This is the space open for EMC to provide hardware solutions coupled with software to manage the resources of the cloud, including storage, computing, and network. This is also the area of much focus - from monitoring to provisioning. And a winner is not going to be determined overnight. A roundup of open questions for the company and the enterprise information industry: VMware and Not - Can EMC win soley with ties to VMware, if open source hypervisors take significant market share, can and will the company be well positioned in these architectures? Oracle with Sun - Will Oracle's move into hardware, cloud, and storage have an impact on the companies positioning? S3 Servers in the Enterprise - We may have made this up. It seems clear that S3 and other Amazon Web Services will become the core fabric for IT adopting the cloud. It only makes sense to do the same with abstracting storage in the enterprise. We believe in the power of the cloud to creep in, and we want to see how big storage providers react to this new logical competitor. A key here for EMC and the rest of the IT industry is that Amazon sells storage with no consulting involved, or waiting period. At EMC, global services was responsible for 37% of EMC's total revenue in 2009 and is a important part of servicing customers. We wonder, should EMC offer an "S3" for the enterprise that plugs into Ionix and other EMC offerings? Open Protocols Inside, APIs Outside? - We asked recently in a discussion with Hitachi Data Systems whether open protocols instead of APIs would be the driver for this industry interoperability. Amazon, is clearly an API, where things more in the core of storage tier are protocols, worked on in tandem by many and influenced by those who matter. Helping IT Respond to Now - In a way, EMC and cloud computing meet in the IT budgeting process. We think that providing "always available" and "highly available" will meet, "low latency" and "DR" in a real way in future Amazon vs. internal discussions. What we mean, is that Amazon providing "scale as you go" is perfect disruption for the IT department. Iinfrastructure scales, IT budgets don't. This can be a big headache for IT trying to predict the future and is an opportunity for EMC to provide a better solution for enterprise capacity management. Yes, that means paying with a credit card - at least sometimes. Intel / Cisco as partners - New types of network management and cloud services are evolving in the chipset and network layer. We see the companies maturity in how it has global partnerships with these companies to help the the channel and drive solutions. At the same time, this centuries IT industry is more of a mosh-pit than a sing-a-long, and it seems like it is going to get very cozy in the future in the area of network and cloud management. This EMC rant on YouTube is a funny take on where the company is positioned. If EMC plays it's cards right, enterprises will choose its tools to "control the shape" of the data and systems in the data center. And, if it evolves quickly enough, the same IT manages will have solutions that keep all of the companies assets, including public cloud offerings, under one umbrella. Is your enterprise moving your data out into the cloud? Or is the cloud moving into your company's data? Photo credit: paul_clarke Discuss

Read the original:
Rulers of the Cloud: A Multi-Tenant Semantic Cloud is Forming & EMC Knows that Data Matters

Google, together with Microsoft, AT&T, AOL, Intel, the ACLU, the Electronic Frontier Foundation and a number of other organizations launched a new effort to modernize the Electronic Communications Act (ECPA) today. ECPA , which was enacted in 1986, sets standards for low enforcement access to electronic communications and other data. According to this coalition of technology companies, which calls itself Digital Due Process , ECPA has been outpaced by technological advances like cloud computing and is now a "patchwork of confusing standards that have been interpreted inconsistently by the courts, creating uncertainty for both service providers and law enforcement agencies." Sponsor ECPA: Outdated and Convoluted In an announcement earlier today, Google specifically noted that while the ECPA was originally designed to protect citizens from unwarranted government intrusion (while still giving law enforcement the necessary tools to ensure public safety), ECPA is now completely outdated. Indeed, as Google notes, ECPA became law before most people even knew what email was and long before the "cloud" became a buzzword. Today the law gives more protection to data you store locally than to data stored in the cloud - an issue the Digital Due Process coalition is trying to rectify. The coalition also wants to ensure that government agencies get a search warrant before they can track the location of your cell phone. Digital Due Process also wants to protect citizens (and its member organizations) against unnecessary bulk data requests from government agencies. As CNET's Declan McCullagh noted yesterday, ECPA is notorious for being extremely convoluted. Digital Due Process also noted that the ECPA standard are not clear (especially with regards to access to location information), that it's not clear how the Fourth Amendment applies to new services and information and that some fo the standards are simply illogical. More Resources The current law Legal analysis of the current law from the Digital Due Process coalition (PDF) Digital Due Process wants the U.S. Congress to completely rewrite the law, but to focus on a handful of issues: access to email and other private communications stored in the cloud, access to location information, and the use of subpoenas to obtain transactional data. Here are the four ways Digital Due Process wants to modernize the ECPA: Better protect your data stored online : The government must first get a search warrant before obtaining any private communications or documents stored online; Better protect your location privacy : The government must first get a search warrant before it can track the location of your cell phone or other mobile communications device; Better protect against monitoring of when and with whom you communicate : The government must demonstrate to a court that the data it seeks is relevant and material to a criminal investigation before monitoring when and with whom you communicate using email, instant messaging, text messaging, the telephone, etc.; and Better protect against bulk data requests : The government must demonstrate to a court that the information it seeks is needed for a criminal investigation before it can obtain data about an entire class of users. Discuss

Go here to read the rest:
Coalition of Tech Companies Wants to Give You Digital Due Process