Cloud Computing: The Wave of the Future



Similar documents
Cloud Computing An Elephant In The Dark

Limitations of Liability and Indemnities

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

Security and Privacy in Cloud Computing

Cloud Computing in the Federal Sector: What is it, what to worry about, and what to negotiate.

CORPORATE & INSURANCE GROUP

Contracting for Cloud Computing

Daren Kinser Auditor, UCSD Jennifer McDonald Auditor, UCSD

Checklist: Cloud Computing Agreement

Cloud Computing. IST 501 Fall Dongwon Lee, Ph.D.

The Business of Asset Finance A Primer for Lawyers

Perspectives on Cloud Computing and Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

Summary of responses to the public consultation on Cloud computing run by CNIL from October to December 2011 and analysis by CNIL

The Cloud Computing Revolution: Beyond the Hype

Top 10 Tips and Tools for Meeting Regulatory Requirements and Managing Cloud Computing Providers in the United States and Around the World

How To Protect Your Data In The Cloud

CS573 Data privacy and security in the cloud. Slide credits: Ragib Hasan, Johns Hopkins University

Cloud Computing Contracts. October 11, 2012

How To Manage Cloud Data Safely

Insights into Cloud Computing

Cloud Computing: Legal Risks and Best Practices

Strategic Compliance & Securing the Cloud. Annalea Sharack-Ilg, CISSP, AMBCI Technical Director of Information Security

Security & Trust in the Cloud

2015 NMSBA SCHOOL LAW CONFERENCE

Proposed guidance for firms outsourcing to the cloud and other third-party IT services

OWASP Chapter Meeting June Presented by: Brayton Rider, SecureState Chief Architect

Cloud of clouds. Guiding the journey to the cloud. Matthew Allcoat

Annex 1. Contract Checklist for Cloud-Based Genomic Research Version 1.0, 21 July 2015

Risk Management of Outsourced Technology Services. November 28, 2000

The Magical Cloud. Lennart Franked. Department for Information and Communicationsystems (ICS), Mid Sweden University, Sundsvall.

East African Information Conference th August, 2013, Kampala, Uganda. Security and Privacy: Can we trust the cloud?

Cloud Computing and Records Management

CLOUD STORAGE SECURITY INTRODUCTION. Gordon Arnold, IBM

Cloud Computing Technology

STORAGE SECURITY TUTORIAL With a focus on Cloud Storage. Gordon Arnold, IBM

Cloud Computing. What is Cloud Computing?

Strategies for Secure Cloud Computing

Running head: TAKING A DEEPER LOOK AT THE CLOUD: SOLUTION OR 1

Information Technology: This Year s Hot Issue - Cloud Computing

Cloud Computing Best Practices and Considerations for Project Managers Mike Lamoureux, PMP, MBA. Page 1

Cloud Security. DLT Solutions LLC June #DLTCloud

Cloud Computing Security Issues

How To Understand Cloud Computing

Article 29 Working Party Issues Opinion on Cloud Computing

Architectural Implications of Cloud Computing

Private Cloud 201 How to Build a Private Cloud

Data Privacy, Security, and Risk Management in the Cloud

Clouds vs Grids KHALID ELGAZZAR GOODWIN 531

Legal issues in the Cloud

GUIDANCE FOR MANAGING THIRD-PARTY RISK

Cloud Computing An Auditor s Perspective

Legal Issues in the Cloud: A Case Study. Jason Epstein

DISTRIBUTED COMPUTER SYSTEMS CLOUD COMPUTING INTRODUCTION

Overview. Data protection in a swirl of change Cloud computing. Software as a service. Infrastructure as a service. Platform as a service

How to procure a secure cloud service

CLOUD SECURITY SECURITY ASPECTS IN GEOSPATIAL CLOUD. Guided by Prof. S. K. Ghosh Presented by - Soumadip Biswas

Clinical Trials in the Cloud: A New Paradigm?

Purpose. Service Model SaaS (Applications) PaaS (APIs) IaaS (Virtualization) Use Case 1: Public Use Case 2: Use Case 3: Public.

Perspectives on Cloud Computing and Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

Presentation by: Dr. Nathalie Moreno Partner. Cloud Computing and Data Protection: an Update 4 October 2012

Security Issues in Cloud Computing

Addressing Data Security Challenges in the Cloud

AskAvanade: Answering the Burning Questions around Cloud Computing

The NIST Definition of Cloud Computing (Draft)

HARNESSING THE POWER OF THE CLOUD

QUESTIONS TO ASK IN THE DEVELOPMENT OF A SOFTWARE LICENSE

Cloud Security Keeping Data Safe in the Boundaryless World of Cloud Computing

SOFTWARE LICENSE AGREEMENT

Cloud Computing. Chapter 1 Introducing Cloud Computing

Acquia Comments on EU Recommendations for Data Processing in the Cloud

Recommendations for companies planning to use Cloud computing services

Kroll Ontrack VMware Forum. Survey and Report

Evolving Technology Issues: Cloud Computing

OFFICE OF AUDITS & ADVISORY SERVICES CLOUD COMPUTING AUDIT FINAL REPORT

Cloud definitions you've been pretending to understand. Jack Daniel, Reluctant CISSP, MVP Community Development Manager, Astaro

Cloud Security Strategies. Fabio Gianotti, Head of Cyber Security and Enterprise Security Systems

A Strawman Model. NIST Cloud Computing Reference Architecture and Taxonomy Working Group. January 3, 2011

Architecting the Cloud

Cloud Computing. Introduction

Objective and key requirements of this Prudential Standard

Transcription:

Bernice Karn Cloud Computing: The Wave of the Future June 9, 2010

What is Cloud Computing? National Institute of Standards & Technology Definition*: 5 characteristics 3 service models 4 deployment models * v15, October 7, 2009 (Peter Mell and Tim Grance) Available at: http://csrc.nist.gov/groups/sns/cloudcomputing/cloud-def-v15.doc

What is Cloud Computing? NIST - 5 Characteristics On demand self service Broad network access Resource pooling Rapid elasticity Measured service

What is Cloud Computing? NIST - 3 Service Models Cloud software as a service ( SaaS ) Cloud platform as a service ( PaaS ) Cloud infrastructure as a service ( IaaS )

What is Cloud Computing? NIST - 4 Deployment Models Private cloud Community cloud Public cloud Hybrid cloud

What is Cloud Computing? Source: Gartner (August 2009)

Notable Quotes The interesting thing about Cloud Computing is that we ve redefined Cloud Computing to include everything that we already do I don t understand what we would do differently in the light of Cloud Computing other than change the wording of some of our ads. Larry Ellison, Wall Street Journal, September 26, 2008

Notable Quotes It s stupidity. It s worse than stupidity: it s a marketing hype campaign. Somebody is saying this is inevitable and whenever you hear somebody saying that, it s very likely to be a set of businesses campaigning to make it true. Richard Stallman, The Guardian, September 29, 2008

Legal Laundry List Service Issues Scope of use Services provided Service level commitments Business continuity/disaster recovery Data Protection Issues Confidentiality Privacy Security measures Audit rights

Legal Laundry List Continued Contract Management Issues Governance Change management Amendment of terms Dispute resolution Financial Issues Fees Terms of payment Taxes

Legal Laundry List Continued Duration of Contract Issues Term Renewal rights Termination rights Insolvency Problems Transitional issues Devolution of Contract Assignment, change in control, subcontracting

Legal Laundry List Continued Risk Management Representations and warranties Limitations of liability and exclusions Indemnifications

Legal Laundry List Continued Today s Discussion: Privacy and Data Protection Insolvency and Transition Issues Scope of Use Service Level Issues Risk Management Representations/warranties Limitations of liability Indemnities

Privacy and Data Protection Canada Personal Information Protection and Electronic Documents Act General obligation Outsourcing Transfer outside of Canada Proposed amendments breach notification

Privacy and Data Protection Continued EU Directive 95/46/EC Data protection principle - protection of fundamental right to privacy of individuals and their right to privacy of processing of personal data Onward transfers regulated Methods of compliance

EU Data Transfers Data Export Type? Transfer Transit OK Where? Non-Approved Country USA Approved Country OK Safe Harbor? NO YES OK Do any exceptions apply? NO Establish presumption of adequacy? NO YES YES OK OK A problem

Privacy and Data Protection Continued US Gramm-Leach-Bliley Act Health Insurance Portability and Accountability Act May 2010 New bill introduced in Congress by Reps. Boucher and Stearns State laws

Insolvency and Transition Issues Insolvency Loss of control Asset of business? Mitigation strategies Transition Data transfer Compatibility Transition services Training

Scope of Use Provider s licensed rights Geographic restrictions Copying

Service Level Issues Integrity, confidentiality and availability Latency Innovation Support and maintenance Service level credits

Risks Varies by application One extreme as is Other extreme extensive customer protection

Risk Management Representations and warranties Purpose Indemnification Why have it? Typical indemnities Limitation of liability clause Direct and indirect damages Exclusions

Conclusion/Recommendations Cloud computing trades savings and performance for acceptance of risk Ensure that the form of contract is appropriate to the risk assumed

www.casselsbrock.com 2100 Scotia Plaza, 40 King Street West, Toronto, Canada M5H 3C2 Phone 416 869 5300 & Blackwell LLP. Cassels Brock and the CB logo are registered trade-marks of Cassels Brock & Blackwell LLP. All rights reserved.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information