smart usage of cloud services 1
DESCRIPTION
TRANSCRIPT
SMART USAGE OF CLOUD SERVICES 1
Christoph Hechenblaikner
Cloud Storage Services
CLOUD COMPUTING
CLOUD COMPUTING
• NIST:
• On demand self service
• Very broad network access
• Resource pooling / automation
• Rapid Elasticity
Christoph Hechenblaikner[1] http://csrc.nist.gov/publications/nistpubs/800-145/SP800-145.pdf, (25.05.2013)
CLOUD COMPUTING
Christoph Hechenblaikner[2] http://www.idc.com/getdoc.jsp?containerId=prUS23684912#.UOiFdYnjlgw
• IDC CC-Forecast Nov 2012:
• 2016: $100 billion
• AGR: 26,4% (2012 - 2016)
• 2016: 41% of total IT growth
• 2015:1/7 of total IT investment
TOWARDS HEAVEN
Christoph Hechenblaikner[3] http://jameskaskade.com/?p=344(25.05.2013)
SaaS PaaS IaaS
Proprietary Mainframe MPP & SMP Grid Computing Commodity Clusters Virtualized
Clusters
XAAS
Christoph Hechenblaikner
Applications
Data
Runtime
Middleware
OS
Virtualization
Hardware
Storage
Networking
Applications
Data
Runtime
Middleware
OS
Virtualization
Hardware
Storage
Networking
Applications
Data
Runtime
Middleware
OS
Virtualization
Hardware
Storage
Networking
SaaS
PaaS
IaaS
XAAS
Christoph Hechenblaikner
End User
Developer
System Engineers Developers
user
valu
e
SaaS
PaaS
IaaS
CLOUD STORAGE
Christoph Hechenblaikner
Plain Hosting, FTP-Servers, NAS, ...
Amazon S3, Joyent Storage, ...
Google Drive, Dropbox, ...SaaS
PaaS
IaaS
CLOUD STORAGE
Christoph Hechenblaikner
• PaaS Features
• Unlimited, scaleable storage
• Encryption / Key Management
• Areal distribution / constraints
• Backups / Integrity / Archiving
CLOUD STORAGE
Christoph Hechenblaikner
• SaaS Features
• Usability / Client Applications
• Versioning / Deduplication
• Security (Transport / Storage)
• Sharing / Social Integration
THE PRESENT
THE PRESENT
Christoph Hechenblaikner
THE PRESENT
Christoph Hechenblaikner
THE PRESENT
Christoph Hechenblaikner
PaaS !
IaaSServer
ApplicationClient Application
Client-System
File-System
wwwLibrary
BUSINESS MODEL
Christoph Hechenblaikner
• Free: (or low prize)
• Limited data volume
• Limited functionality
• Limited traffic
• Limited platforms
BUSINESS MODEL
Christoph Hechenblaikner
• Premium: (or business)
• Large data volume
• Extended functionality (Groups, Encryption, ...)
• Extended backup / archiving / versioning
• Business Cloud (Isolation, ...)
PROBLEMS
Christoph Hechenblaikner
• Multiple accounts / providers
• Multiple devices
• Diverse functionalities / file structures
• Different security / privacy policies
} Exclusive use
SECURITY CONSIDERATION
Christoph Hechenblaikner
• iCloud:
• Secure Transport (HTTPS)
• Server-Side AES-128 (per file key)
• Their key !!
SECURITY CONSIDERATION
Christoph Hechenblaikner
• Spideroak:
• Secure Transport (HTTPS)
• Client-Side AES-256
• Your key: Password derived (PBDF2, 16384 rounds, sha256, 32 byte salt)
ENHANCING SECURITY
Christoph Hechenblaikner
• Problem:
• Server side encryption
• Provider owns keys
• Solutions:
• Software between Files and Service
• TrueCrypt, BoxCryptor, ...
BOXCRYPTOR
Christoph Hechenblaikner
BoxCryptor Volume
Dropbox FolderBoxCryptor
Dropbox Service www
PROBLEMS
Christoph Hechenblaikner
www
Dropbox
GDrive
DollyDrive
MANAGEMENT SYSTEMS
MANAGEMENT SYSTEMS
• Provide central interface / easy access
• Exchange between services
• Do not replace client-apps
• User manages files and distribution of files
Christoph Hechenblaikner
MANAGEMENT SYSTEMS
Christoph Hechenblaikner
Client-Browser /
Client-Application
Dropbox
GDrive
Sugar Sync
Box
Web-Management-
Service
SMART SYSTEMS
SMART SYSTEMS
• Manages all services
• User only manages files
• User defines constraints
• System manages accounts / distribution / security
Christoph Hechenblaikner
SMART SYSTEMS
Christoph Hechenblaikner
Not on the market!
CrossCloud
CROSSCLOUD
Christoph Hechenblaikner
Dropbox
CrossCloud
Client-System
File-System
wwwUser
GDrive
SkyDrive
SugarSync
CROSSCLOUD
Christoph Hechenblaikner
• Smart sync:
• Different services
• “Raid 0/1”, service constraints, ...
• Encryption:
• Client side / service independent
• Open source
THANK YOU!