using cloud in an enterprise environment
TRANSCRIPT
webdev@rguUsing cloud in an enterprise environment
Different cloud deployment models and their characteristics
• Public Cloud • Private Cloud • Hybrid Cloud
The Data Protection Act and how it relates to Cloud Computing
case study example of using a hybrid cloud model in an enterprise environment
Today we are covering…
Cloud deployment
models
Public Cloud
Private Cloud
Public Cloud
Private Cloud
Hybrid Cloud
Leadership Engineering
We want access to the fastest and newest
cloud services straight away
All of our data must remain secure and we
want to remain in control of it
National Institute of Standards and Technology
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared opal of configurable computer resources that can be rapidly provisioned and released with minimal management effort or service provider interaction
Cloud Computing
National Institute of Standards and Technology
The cloud infrastructure is provisioned for open use by the general public. It may be owned, managed, and operated by a business, academic, or government organisation, or some combination of them. It exists on the premises of the cloud provider.
Public Cloud
National Institute of Standards and Technology
National Institute of Standards and Technology
The cloud infrastructure is provisioned for exclusive use by a single organisation comprising multiple consumers. It may be owned, managed, and operated by the organisation, a third parts, or some combination of them, and it may exist on or off premises
Private Cloud
Elastic Capabilities
Opex economics (operational Expense)
Ease of operations
time to implement
data sovereignty
environmental control
cost predictability
capex economics (Capitol Expense)
Elastic Capabilities
Opex economics (operational Expense)
Ease of operations
time to implement
data sovereignty
environmental control
cost predictability
capex economics (Capitol Expense)
Private Cloud
Public Cloud
Leadership Engineering
We want access to the fastest and newest
cloud services straight away
All of our data must remain secure and we
want to remain in control of it
National Institute of Standards and Technology
The cloud infrastructure is a composition of two or more distinct cloud infrastructures that remain unique entities, but are bound together by a standardised or proprietary technology that enables data and application portability
Hybrid Cloud
Data protection
act and cloud computing
Data Protection Act 1998
http://www.legislation.gov.uk/ukpga/1998/29/contents
UK implementation of the 1995 EU Directive on Data Protection 95/46/EC
The Data Protection Act applied to the processing of personal data. Data is defined as information within: • A relevant filing system (paper or electronic based) • Any type of information held by a body subject to the freedom of
information act • An accessible record (e.g. Health, Education, Housing) • Equipment operating automatically in response to instructions (i.e. in a
computerised format
Data Protection Act 1998
The Data Subject The Data ProcessorThe Data Controller
An individual who is the subject of personal data
A person or body which decides what happens to the personal data it processes
A person or body (other than an employee of the data controller) who process
personal data on behalf of the data controller
If using a Data Processor a written contract is needed
Data Protection Act 1998
Data must be: 1. Fairly and lawfully processed 2. Processed for limited purposes and not further purposes in a manner
which is incompatible with those purposes 3. Adequate, relevant, and not excessive 4. Accurate and up to date 5. Not kept longer than necessary 6. Processed in accordance with the individual’s rights 7. Secure 8. Not transferred to countries outside of the European Economic Area
unless adequate protection is providedData Controller Responsibilities
Data Protection Act 1998
The Data Protection Act applied to the processing of personal data. Data {can be} defined as information…in a computerised format.
Information is in the cloud…therefore it is computerised
Data Protection Act 1998
The Data Protection Act applied to the processing of personal data. Data {can be} defined as information…in a computerised format.
Information is in the cloud…therefore it is computerised
Cloud information is sometimes about living
identifiable people…so it is it personal data
Data Protection Act 1998
The Data Protection Act applied to the processing of personal data. Data {can be} defined as information…in a computerised format.
Information is in the cloud…therefore it is computerised
Cloud information is sometimes about living
identifiable people…so it is it personal data
Something is happening to that data…so it is being processed
Data Protection Act 1998
The Data Subject The Data ProcessorThe Data Controller
The person that you are storing data about A cloud service purchaser A cloud service provider
Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for implementing 8 parts of DPA
Contracted to provide adequate security
American Company
Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism
Act of 2001
Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for implementing 8 parts of DPA
Contracted to provide adequate securityContracted to maintain data
Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for implementing 8 parts of DPA
Contracted to provide adequate securityContracted to maintain dataContracted to process in
accordance with rights
Here is a map of the world
Here is a map of the world
Here is a map of the world that will potentially have the same human rights law as us
in a few years time
Anyone use Google Forms?How many of these places are you comfortable in your data being?
case study of an enterprise hybrid cloud
model
rgu.My Moodle Web
Application Server
https://github.com/moodle/moodle
Can run on an AWS T2-Micro 1 v CPU 0.5GB Memory
Application Data User DataContent Data
Boilerplate code for moodle. Nothing really
confidential here
Material uploaded by staff / students
Usernames & Passwords Grade Profiles
Student Records
Application Data
Boilerplate code for moodle. Nothing really
confidential here
Moodle Source Code
Application Data
Moodle Database
Application Data
Material uploaded by staff / students
Moodle Source Code
Application Data
Moodle Database
Application Data
Content Data
Uploaded Lectures
Content Data
Uploaded Course Submissions
Content Data
Uploaded Course Information
Content Data
Usernames & Passwords Grade Profiles
Student Records
Moodle Source Code
Application Data
Moodle Database
Application Data
Uploaded Lectures
Content Data
Uploaded Course Submissions
Content Data
Uploaded Course Information
Content Data
User Data
Usernames and Passwords
User Data
Grade Profiles
User DataStudent Records
User Data
File StorageDatabase Storage
Code storage
Moodle Source Code
Application Data
Moodle Database
Application Data
Uploaded Lectures
Content DataUploaded Course Submissions
Content Data
Uploaded Course Information
Content Data
Usernames and Passwords
User DataGrade Profiles
User Data
Student Records
User Data
File StorageDatabase Storage
Code storage
Uploaded Lectures
Content DataUploaded Course Submissions
Content Data
Uploaded Course Information
Content Data
Usernames and Passwords
User DataGrade Profiles
User Data
Student Records
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
File StorageDatabase Storage
Code storage
Uploaded Lectures
Content DataUploaded Course Submissions
Content Data
Uploaded Course Information
Content Data
Pr. C - File Storage Student Records
User Data
Pr.C - Database Passwords and Grade Profiles
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
File StorageDatabase Storage
Code storage
Uploaded Lectures
Content DataUploaded Course Submissions
Content Data
AWS RDS Course Information
Application Data
Pr. C - File Storage Student Records
User Data
Pr.C - Database Passwords and Grade Profiles
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
File StorageDatabase Storage
Code storage
AWS RDS Course Information
Application Data
Pr. C - File Storage Student Records
User Data
Pr.C - Database Passwords and Grade Profiles
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
AWS D3 Uploaded Lectures
Application Data
Pr. C - File Storage Course Submissions
Application Data
AWS RDS Course Information
Application Data
Pr. C - File Storage Student Records
User Data
Pr.C - Database Passwords and Grade Profiles
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
AWS D3 Uploaded Lectures
Application Data
Pr. C - File Storage Course Submissions
Application Data
Public Cloud Private Cloud
AWS RDS Course Information
Application Data
Pr. C - File Storage Student Records
User Data
Pr.C - Database Passwords and Grade Profiles
User Data
AWS EC2 Moodle Source Code
Application Data
AWS RDS Moodle Database
Application Data
AWS D3 Uploaded Lectures
Application Data
Pr. C - File Storage Course Submissions
Application Data
Hybrid Cloud
Different cloud deployment models and their characteristics
• Public Cloud • Private Cloud • Hybrid Cloud
The Data Protection Act and how it relates to Cloud Computing
case study example of using a hybrid cloud model in an enterprise environment