Welcome!

Cloud Expo Authors: Aria Blog, Carmen Gonzalez, Gilad Parann-Nissany, Tom Leyden, Torben Andersen

Related Topics: Cloud Expo, Web 2.0, GovIT

Cloud Expo: Blog Feed Post

Building Canada’s Cloud Identity Ecosystem

These various developments will enable all kinds of opportunities for service providers

With the government promising delivery of the long-awaited Digital Economy strategy by the year end, this prompts a review of what role the Cloud industry can play in this strategy.

This then further encourages us to identify what particular segments of the Cloud Computing industry we might specialize in, with a view to concentrating in areas where Canada has strength so that start-up ventures can be better focused towards niche opportunities.

Best practices – Cloud Privacy By Design

At the top of my list is the best practice known as ‘Cloud Privacy-By-Design‘, developed by the Privacy Commissioner of Ontario.

This is such a hot topic. As Andrea talks about in this earlier blog the mention of Cloud Computing is usually quickly followed by concerns about the USA`s Patriot Act. Fears are that as soon as you upload your data to the Cloud the American Government will be free to access and spy on it.

Therefore as the name suggests Cloud Privacy-By-Design offers a best practice framework to enable private as well as public sector organizations to safely use Cloud services with these concerns in mind.

Given how few have yet to actually make this move it`s therefore going to be a huge global growth area for new consulting skills, and it demonstrates how the Government can play a role in creating these best practice assets as a means of stimulating and supporting economic growth this way.

The team at the OPC office kindly sent me a number of new updates to these best practice materials:

  • International Working Group on Data Protection in Telecommunications (IWGDPT) April 2012: Working Paper on Cloud Computing – PDF file
  • EC Article 29 Working Party July 2012: Opinion of the European Commission Article 29 WP on cloud computing – attached – PDF file
  • Office of the Information and Privacy Commissioner of British Columbia: Cloud Computing Guidelines for Public Bodies – PDF file


The Cloud Identity Ecosystem – Framework for ‘Personal Clouds’

The sheer mammoth scale of this market opportunity is expanded even further when we consider the broader development of what the USA Government has defined as the ‘Identity Ecosystem‘.

This could also be thought of as the ‘Privacy Web’, as this ecosystem is fundamentally a set of controls to be distributed throughout the many different systems where Identity related data about you is stored.

So far we have mainly approached the Cloud in terms of it being an environment to host and run virtualized applications, but as the above concerns highlight we also think of it as a universal data network too.

This ecosystem is explained in this report from the World Economic Forum – Personal Data : The Emergence of a New Asset Class (40-page PDF), and where this overlaps with Cloud Computing it’s called ‘Personal Clouds’.

This refers to the ‘Personal Data Stores’ of information we store about ourselves with different online providers, from email through to social networks and photo stores. As well as the Cloud storing the files and data, there will also be protocols and standards for linking these ‘fragments’ together into one holistic digital persona.

Venture Acceleration

This expertise and focus helps us to more effectively fast-track new start-ups. These requirements and best practices set the context for the new technology that is needed.

For example vendors like Perspecsys provide on-premise devices that encrypts information before uploading it to Cloud services like Salesforce.com. The Ontario Privacy Commissioner describes:

PerspecSys’ cloud solution advances the essential principles of Privacy by Design -privacy by default, end-to-end security, and strong accountability- by enabling enterprises to automatically encrypt (decrypt) data locally and on-the-fly when using third-party cloud service applications, with no loss of functionality. Maintaining control over encryption and decryption processes is an excellent approach to safeguarding personal data, regardless of where the data resides. – Ann Cavoukian, Ph.D. Information and Privacy Commissioner of Ontario, Canada

The value of this technology is immediately apparent to the industry giants like Salesforce.com, who have already bought up a similar vendor to enable their Data Residency Option service.

Open standards are also key to this acceleration. This ecosystem will take many years to fully evolve and includes core building blocks such as OAuth which enables “Social Sign-on”, a means of joining up web sites via usernames and passwords, that vendors like Janrain cater for.

It then extends from here right through to a sophisticated ‘dataweb’ where these foundations facilitiate sharing of all kinds of personal data. Frameworks for enabling and managing this data flow include the Kantara Initiative UMA program, and the OASIS XDI protocol, which provide the mechanisms for sharing the Privacy controls.

As explained in this research, and this Open Identity Exchange presentation, Kantara and UMA builds on core Identity building blocks like OpenID Connect to facilitate Identity-enabled secure data sharing between remote systems, facilitating the Personal Identity Ecosystem.

This presentation explains these core mechanics, and this one maps it to Government Privacy policies.

We’re continuing the process of developing a new Kantara Initiative working group, which will build a program called ‘Kantara Cloud Identity and Security best practices’.

Conclusion

These various developments will enable all kinds of opportunities for service providers, ranging from simply managing the authentication process as a service, like Verizon, through to “data as a service”, where banks, utilities and other key organizations provide data for online real-time web services.

As well as general purpose file sharing this Personal Cloud ecosystem will evolve to cater for various industry-specific functions, like a ‘Personal Cloud EMR’ – Electronic Medical Record.

This is what players like ZenVault can offer. ZenVault is a downloadable app that allows you to personally hold and control your own EMR, and provide it to doctors as and when needed. Personal Cloud services, in combination with dataweb control mechanisms, will make the ideal combination possible – Very easy sharing of information between patients, GPs and other key process stakeholders, but in an entirely secure and controlled manner.

In combination these provide the foundations for a plethora of new ventures, and we will help entrepreneurs launch and fast-track these businesses.

More Stories By Cloud Best Practices Network

The Cloud Best Practices Network is an expert community of leading Cloud pioneers. Follow our best practice blogs at http://CloudBestPractices.net

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@CloudExpo Stories
SYS-CON Events announced today Isomorphic Software, the global leader in high-end, web-based business applications, will exhibit at SYS-CON's DevOps Summit 2015 New York, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Isomorphic Software is the global leader in high-end, web-based business applications. We develop, market, and support the SmartClient & Smart GWT HTML5/Ajax platform, combining the productivity and performance of traditional desktop software ...
ScriptRock makes GuardRail, a DevOps-ready platform for configuration monitoring. Realizing we were spending way too much time digging up, cataloguing, and tracking machine configurations, we began writing our own scripts and tools to handle what is normally an enormous chore. Then we took the concept a step further, giving it a beautiful interface and making it simple enough for our bosses to understand. We named it GuardRail after its function - to allow businesses to move fast and stay sa...
SYS-CON Media announced today that Sematext launched a popular blog feed on DevOps Journal with over 6,000 story reads over the weekend. DevOps Journal is focused on this critical enterprise IT topic in the world of cloud computing. DevOps Journal brings valuable information to DevOps professionals who are transforming the way enterprise IT is done. Sematext is a globally distributed organization that builds innovative Cloud and On Premises solutions for performance monitoring, alerting an...
In high-production environments where release cycles are measured in hours or minutes — not days or weeks — there's little room for mistakes and no room for confusion. Everyone has to understand what's happening, in real time, and have the means to do whatever is necessary to keep applications up and running optimally. DevOps is a high-stakes world, but done well, it delivers the agility and performance to significantly impact business competitiveness.
"Our premise is Docker is not enough. That's not a bad thing - we actually love Docker. At ActiveState all our products are based on open source technology and Docker is an up-and-coming piece of open source technology," explained Bart Copeland, President & CEO of ActiveState Software, in this SYS-CON.tv interview at DevOps Summit at Cloud Expo®, held Nov 4-6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The Internet of Things is not new. Historically, smart businesses have used its basic concept of leveraging data to drive better decision making and have capitalized on those insights to realize additional revenue opportunities. So, what has changed to make the Internet of Things one of the hottest topics in tech? In his session at @ThingsExpo, Chris Gray, Director, Embedded and Internet of Things, discussed the underlying factors that are driving the economics of intelligent systems. Discover ...
"BSQUARE is in the business of selling software solutions for smart connected devices. It's obvious that IoT has moved from being a technology to being a fundamental part of business, and in the last 18 months people have said let's figure out how to do it and let's put some focus on it, " explained Dave Wagstaff, VP & Chief Architect, at BSQUARE Corporation, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4-6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The major cloud platforms defy a simple, side-by-side analysis. Each of the major IaaS public-cloud platforms offers their own unique strengths and functionality. Options for on-site private cloud are diverse as well, and must be designed and deployed while taking existing legacy architecture and infrastructure into account. Then the reality is that most enterprises are embarking on a hybrid cloud strategy and programs. In this Power Panel at 15th Cloud Expo (http://www.CloudComputingExpo.com...
Verizon Enterprise Solutions is simplifying the cloud-purchasing experience for its clients, with the launch of Verizon Cloud Marketplace, a key foundational component of the company's robust ecosystem of enterprise-class technologies. The online storefront will initially feature pre-built cloud-based services from AppDynamics, Hitachi Data Systems, Juniper Networks, PfSense and Tervela. Available globally to enterprises using Verizon Cloud, Verizon Cloud Marketplace provides a one-stop shop fo...
Leysin American School is an exclusive, private boarding school located in Leysin, Switzerland. Leysin selected an OpenStack-powered, private cloud as a service to manage multiple applications and provide development environments for students across the institution. Seeking to meet rigid data sovereignty and data integrity requirements while offering flexible, on-demand cloud resources to users, Leysin identified OpenStack as the clear choice to round out the school's cloud strategy. Additional...
The move in recent years to cloud computing services and architectures has added significant pace to the application development and deployment environment. When enterprise IT can spin up large computing instances in just minutes, developers can also design and deploy in small time frames that were unimaginable a few years ago. The consequent move toward lean, agile, and fast development leads to the need for the development and operations sides to work very closely together. Thus, DevOps become...
SYS-CON Events announced today that IDenticard will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. IDenticard™ is the security division of Brady Corp (NYSE: BRC), a $1.5 billion manufacturer of identification products. We have small-company values with the strength and stability of a major corporation. IDenticard offers local sales, support and service to our customers across the United States and Canada...
SYS-CON Events announced today that Windstream, a leading provider of advanced network and cloud communications, has been named “Silver Sponsor” of SYS-CON's 16th International Cloud Expo®, which will take place on June 9–11, 2015, at the Javits Center in New York, NY. Windstream (Nasdaq: WIN), a FORTUNE 500 and S&P 500 company, is a leading provider of advanced network communications, including cloud computing and managed services, to businesses nationwide. The company also offers broadband, p...
SYS-CON Events announced today that AIC, a leading provider of OEM/ODM server and storage solutions, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. AIC is a leading provider of both standard OTS, off-the-shelf, and OEM/ODM server and storage solutions. With expert in-house design capabilities, validation, manufacturing and production, AIC's broad selection of products are highly flexible and are conf...

ARMONK, N.Y., Nov. 20, 2014 /PRNewswire/ --  IBM (NYSE: IBM) today announced that it is bringing a greater level of control, security and flexibility to cloud-based application development and delivery with a single-tenant version of Bluemix, IBM's

The BPM world is going through some evolution or changes where traditional business process management solutions really have nowhere to go in terms of development of the road map. In this demo at 15th Cloud Expo, Kyle Hansen, Director of Professional Services at AgilePoint, shows AgilePoint’s unique approach to dealing with this market circumstance by developing a rapid application composition or development framework.
AppZero has announced that its award-winning application migration software is now fully qualified within the Microsoft Azure Certified program. AppZero has undergone extensive technical evaluation with Microsoft Corp., earning its designation as Microsoft Azure Certified. As a result of AppZero's work with Microsoft, customers are able to easily find, purchase and deploy AppZero from the Azure Marketplace. With just a few clicks, users have an Azure-based solution for moving applications to the...
“In the past year we've seen a lot of stabilization of WebRTC. You can now use it in production with a far greater degree of certainty. A lot of the real developments in the past year have been in things like the data channel, which will enable a whole new type of application," explained Peter Dunkley, Technical Director at Acision, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The cloud is becoming the de-facto way for enterprises to leverage common infrastructure while innovating and one of the biggest obstacles facing public cloud computing is security. In his session at 15th Cloud Expo, Jeff Aliber, a global marketing executive at Verizon, discussed how the best place for web security is in the cloud. Benefits include: Functions as the first layer of defense Easy operation –CNAME change Implement an integrated solution Best architecture for addressing network-l...
“We help people build clusters, in the classical sense of the cluster. We help people put a full stack on top of every single one of those machines. We do the full bare metal install," explained Greg Bruno, Vice President of Engineering and co-founder of StackIQ, in this SYS-CON.tv interview at 15th Cloud Expo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.