The Evolution of Cloud Computing and Security – CF010
This week the conversation is all around the cloud computing and how today’s modern architecture continues to evolve. Christian, Ashton, and Jim talk about the ways cloud computing is being adopted in the enterprise and discuss the security and scalability implications of government agencies trusting their data to a third party cloud infrastructure. While we are still cloudy on a few matters ourselves, this episode promises to be a noteworthy discussion on where the next generation of cloud computing is headed.
Cyber Frontiers is all about Exploring Cyber security, Big Data, and the Technologies Shaping the Future Through an Academic Perspective! Christian Johnson, a student at the University of Maryland will bring fresh and relevant topics to the show based on the current work he does.
Support the Average Guy Tech Scholarship Fund: https://www.patreon.com/theaverageguy
WANT TO SUBSCRIBE? We now have Video Large / Small and Video iTunes options at http://theAverageGuy.tv/subscribe
You can contact us via email at jim@theaverageguy.tv or call in your questions or comments to be played on the show at (402) 478-8450
Listen Mobile: |
Audio Only |
Containers are the future of cloud computing
http://www.linuxjournal.com/content/containers%E2%80%94not-virtual-machines%E2%80%94are-future-cloud
Big take away: VMs run on separate operating systems with their own binaries/libraries
Containers run on the same Operating system, sharing binaries and libraries with the native OS
Security Concerns for Docker
http://opensource.com/business/14/7/docker-security-selinux
Takeaway: Namespacing raises security concerns at the kernel level, which is potentially very scary
Google is already releasing Docker Optimized VMs
https://cloud.google.com/compute/docs/containers/container_vms
Takeaway: With companies like Google already looking to advance the technology, it might not be long until containers are the widespread solution to PaaS
How Containers will challenge VMs (and companies that host them)
http://robhirschfeld.com/2014/04/18/docker-real-or-hype/
Takeaway: Not a silver bullet. Good, but could result in “container sprawl” – Many applications on many containers
Dockers Security Page
https://blog.docker.com/2013/08/containers-docker-how-secure-are-they/
CLOUD SECURITY AND THE GOVERNMENT
Cloud Security Improvements Aim to Accelerate “Cloud First” Adoption
–Out of 286 executives, only 30 percent are implementing cloud strategies, 58 percent not aware of any cloud strategy under way at agency.
Many agencies still believe that their information, particularly classified and national security data, may be too sensitive to move to the cloud. In response to these security concerns, private clouds and hybrid clouds are preferred over public clouds. Private and hybrid clouds provide agencies greater security control over their information than public clouds.
Cloud Deployment Models:
— Infrastructure as a Service (IaaS)
—–Most security level considerations at this level, its just the infrastructure.
— Platform as a Service (PaaS)
—–Automates the configuration, deployment and ongoing management of applications
— Software as a Service (SaaS)
—–Licensing and delivery model, subscription based, centrally hosting.
IaaS: OpenStack a Model of IaaS in the Open Source Community
Trust in cloud security at all-time low: Execs still betting on the cloud
OpenStack’s focus on peer review of code has identified a great many problems and risks including those promoted potentially by state actors.
Azure CTO Mark Russinovich’s top ten public cloud security risks:
Jim’s Twitter: http://twitter.com/#!/jcollison
Contact Christian: christian@theaverageguy.tv
Contact the show at jim@theaverageguy.tv
Find this and other great Podcasts from the Average Guy Network at http://theaverageguy.tv
Music courtesy of Ryan King. Check out the Die Hard Cafe band and other original works at:
http://diehardcafe.bandcamp.com/ / http://cokehabitgo.tumblr.com/tagged/my-music
Some links may contain affiliate codes that benefit the Average Guy Podcast Network.