An SME perspective on Cloud Computing November 09. Survey

Similar documents
INTRODUCTION TO CLOUD COMPUTING CEN483 PARALLEL AND DISTRIBUTED SYSTEMS

Kroll Ontrack VMware Forum. Survey and Report

Cloud computing: benefits, risks and recommendations for information security

OWASP Chapter Meeting June Presented by: Brayton Rider, SecureState Chief Architect

The Cloud. IIA Seminar, York April 30 th

Cloud Computing. Cloud computing:

Office of the Government Chief Information Officer The Government of the Hong Kong Special Administrative Region

CLOUD COMPUTING An Overview

Report on Hong Kong SME Cloud Adoption and Security Readiness Survey

Topics. Images courtesy of Majd F. Sakr or from Wikipedia unless otherwise noted.

Cloud Computing in Banking

What Is The Cloud And How Can Your Agency Use It. Tom Konop Mark Piontek Cathleen Christensen

ENISA and Cloud Security

Cloud Computing; What is it, How long has it been here, and Where is it going?

Hadoop in the Hybrid Cloud

CCA Fall Karl Erik Rye. Director, Comm. Products, GCI.

Connecting to the Cloud

Cloud Services Overview

4/28/2014. What's the Scoop on Cloud Computing. Agenda. Why you are here?

Architecting the Cloud

Cloud Computing Paradigm

Cloud Courses Description

The NREN s core activities are in providing network and associated services to its user community that usually comprises:

The European Cloud Journey. Gabriella Cattaneo, European Government Consulting IDC s European Cloud Research Team February 24, 2014

Cloud Computing 101 Dissipating the Fog 2012/Dec/xx Grid-Interop 2012

Cloud/structural funds workshop on 6 February 2014, DG Connect

Creating Dynamic IT Infrastructure at Reduced Cost with Cloud Computing

Cloud Computing. Chapter 1 Introducing Cloud Computing

The Cloud. JL Cabrera LTEC 4550

CLOUD IN HEALTHCARE EXECUTIVE SUMMARY 1/21/15

Infopaper. Demystifying Platform as a Service

Information Security: Cloud Computing

Tufts University. Department of Computer Science. COMP 116 Introduction to Computer Security Fall 2014 Final Project. Guocui Gao

W H I T E PA P E R. Cloud Migration Methodology -Janaki Jayachandran (Director of Technology) a t t e n t i o n. a l w a y s.

Shared Services Canada. Cloud Computing

Everything You Need To Know About Cloud Computing

See Appendix A for the complete definition which includes the five essential characteristics, three service models, and four deployment models.

pavcloud PaaS IaaS VaaS DCaaS For orders and information call or FEATURES: BENEFITS: DCaaS VaaS IaaS PaaS

Cloud, Community and Collaboration Airline benefits of using the Amadeus community cloud

INTRODUCING CLOUD POWER

White Paper on CLOUD COMPUTING

Cloud Computing. Chapter 1 Introducing Cloud Computing

Saf April Saf Helping your business reach further with hosted at UK based, ISO 27001, Tier 4 data centres.

Quattra s Cloud Vision & Framework Value

Realizing the Value Proposition of Cloud Computing

Increased MSME and Global Entrepreneurship Due to Cloud Computing

Private vs. Public Cloud Solutions

How to procure a secure cloud service

Regulated Applications in the Cloud

Cloud Courses Description

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

Services Providers. Ivan Soto

Public Versus Private Cloud Services


CLOUD ARCHITECTURE DIAGRAMS AND DEFINITIONS

Cloud Computing Services

Virtualization and Cloud Computing

How cloud computing can transform your business landscape

Cloud Computing for SCADA

Program. Maria Fiore Business Development Manager Hartco. Hugo Boutet igovirtual. Introduction to MicroAge. SME and «cloud computing» 2006 MicroAge

Dale Graver VC3, Inc

2014 HIMSS Analytics Cloud Survey

GETTING THE MOST FROM THE CLOUD. A White Paper presented by

Validating Enterprise Systems: A Practical Guide

Session 11 : (additional) Cloud Computing Advantages and Disadvantages

IBM & Cloud Computing. Smarter Planet. John Easton UK & Ireland Cloud Computing Technical Leader

Cloud Computing. Chapter 1 Introducing Cloud Computing

Private & Hybrid Cloud: Risk, Security and Audit. Scott Lowry, Hassan Javed VMware, Inc. March 2012

Cloud Panel Service Evaluation Scenarios

BI in the Cloud Sky is the limit

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab

SSAE 16 for Transportation & Logistics Companies. Chris Kradjan Kim Koch

Cloud Computing Safe Harbor or Wild West?

Data Centers and Cloud Computing. Data Centers

Ananthakrishnan J Architect, Sonata Software. Ananth B Product Manager Testing Practice. Sonata Software Limited. Sonata Software Limited

Data Center Consolidation: Lessons From The Field. John Tsiofas, Kraft Kennedy David Carlson, Kraft Kennedy

Hedge Funds & the Cloud: The Pros, Cons and Considerations

Cloud Computing Thunder and Lightning on Your Horizon?

Security management in the internet era


This is an RFI and not a RFQ or ITN. Information gathered will lead to possible RFQ/ITN. This is a general RFI for all proposed solutions.

Data In The Cloud: Who Owns It, and How Do You Get it Back?

How cloud computing can transform your business landscape.

The business case for cloud computing

CLOUD COMPUTING CUSTOMER RELATIONSHIP MANAGEMENT FOR SMALL AND MEDIUM ENTERPRISES

Transcription:

An SME perspective on Cloud Computing November 09

About ENISA The European Network and Information Security Agency (ENISA) is an EU agency created to advance the functioning of the internal market. ENISA is a centre of excellence for the European Member States and European institutions in network and information security, giving advice and recommendations and acting as a switchboard of information for good practices. Moreover, the agency facilitates contacts between the European institutions, the Member States and private business and industry actors. Contact details e-mail: Daniele.catteddu@enisa.europa.eu and Giles.hogben@enisa.europa.eu, Internet: http://www.enisa.europa.eu/

An SME perspective on Cloud Computing 3 Background ENISA Cloud Computing Security Risk Assessment ENISA (the European Network and Information Security Agency) has conducted a security risk assessment of cloud computing technologies aimed at giving advice to (among others) SME's on the most important risks in adopting cloud computing technologies, as well as ways to address those risks. As part of this study, we have launched a survey of the actual needs, requirements and expectations of SMEs for cloud computing services. The results of the survey were used to support the creation of a use case scenario: An SME perspective on Cloud Computing. On this scenario we have then base part of our analysis. The results the analysis can be found in the report: Cloud computing Risk Assessment: Benefits, risks and recommendations for information security. Here you can find the raw data from the survey

4 An SME perspective on Cloud Computing Contents About ENISA... 2 Contact details... 2 Background... 3 Questionnaire... 5 Company Size - Question 1... 6 Company geo location - Question 2... 7 Drivers - Question 3... 7 Cloud Models - Question 4... 9 Cloud Types - Question 5... 10 Use of multiple providers - Question 6... 11 Disaster Recovery options - Question 7... 12 Cloud Services - Question 8... 13 Main concerns - Question 9... 15

An SME perspective on Cloud Computing 5 Questionnaire The survey An SME perspective on cloud computing was launched the 16 th of April 2009 through the on line survey service Monkey. The survey is still available at this link: http://www.surveymonkey.com/s.aspx?sm=czdvubba9lizylr3kneziq_3d_3d, and ENISA will keep on collecting data until June 2010. The survey is composed of nine questions, aiming to identify: the reasons behind a possible engagement of an SME in the Cloud Computing the most suitable cloud model (Private, Public, etc) the type (SaaS, PaaS, etc) of cloud service an SME will likely use the willingness to outsource to multiple providers the disaster recovery options considered the cloud computing services, in terms of IT services/applications, are considered the main concerns At the 1 st of November 74 answers were collected. Please find below the details

6 An SME perspective on Cloud Computing Company Size - Question 1 What is the size of the enterprise you represent Answer Options Percent Count 1-9 Employees 36,5% 27 10-50 Employees 16,2% 12 50-250 Employees 18,9% 14 Over 250 Employees 28,4% 21 answered question 74

An SME perspective on Cloud Computing 7 Company geo location - Question 2 Please choose the country your SME is based in Country AT BE CY CZ DK FR DE IE IT LU NL SI ES SE CH UK Count 2 2 2 1 2 3 5 5 6 1 5 2 9 1 2 15 63 Other (please specify): USA: 8 - INDIA: 2 - CANADA: 1 11 answered question 74 Drivers - Question 3 What are the reasons behind your possible engagement in the Cloud Computing area? Answer Options Percent Count Remove economic/expertise barriers impeding to modernize business processes by the introduction of Information Technology 30,6% 22 Avoiding capital expenditure in hardware, software, IT support, Information Security by outsourcing infrastructure/platforms/services Flexibility and scalability of IT resources Increasing computing capacity and business performance Diversification of IT systems 68,1% 49 63,9% 46 36,1% 26 11,1% 8 Local and global optimisation of IT infrastructure through automated management of virtual machines 25,0% 18 Business Continuity and Disaster recovery capabilities 52,8% 38 Assessing the feasibility and profitability of new services (i.e. by developing business cases into the Cloud) 29,2% 21 Adding redundancy to increase availability and resilience 27,8% 20 Controlling marginal profit and marginal costs 15,3% 11 Other (please specify) 13,9% 10 answered question 72 skipped question 2

8 An SME perspective on Cloud Computing Number Other (please specify) 1 Creating new business models and new revenue 2 As small company our tasks and time should not be addressed to backup & system aspects 3 Simplification of updating, error correction and similar security functions automatically 4 Major knowledge of IT systems and methodologies and needs of security policy & infrastructure application 5 Access everywhere. Usually free to test. 6 Providing cloud hosting services 7 Unlimited storage capacity 8 Research purposes

An SME perspective on Cloud Computing 9 Cloud Models - Question 4 Which solution do you see as the most suitable for an SME, according to this possible Cloud Computing taxonomy? Answer Options Percent Count Public Cloud (owned and managed by an unrelated business) 24,7% 18 Private Cloud (owned and managed internally) 15,1% 11 Partner Cloud (owned and managed by a trusted partner) 27,4% 20 A federation of clouds provided by various sources (partner, private, etc). 31,5% 23 Other 1,4% 1 answered question 73 skipped question 1

10 An SME perspective on Cloud Computing Cloud Types - Question 5 Which layer of the Cloud would you be most likely to approach? Answer Options Percent Count Individual software packages (SaaS) 34,2% 25 Complete operating system and software package available via cloud services (PaaS) 28,8% 21 Just infrastructure services such as storage, network capacity etc (Iaas) 24,7% 18 Security services in the cloud 9,6% 7 Other (please specify) 2,7% 2 answered question 73 skipped question 1

An SME perspective on Cloud Computing 11 Use of multiple providers - Question 6 Would you be willing to outsource to multiple providers? Answer Options Percent Count YES 73,6% 53 NO 26,4% 19 Other (please specify) 3 answered question 72 skipped question 2 Number Other (please specify) 1 Likely not. 2 not sure 3 we prefer single-source, but I expect reliability concerns to lead to multiple providers, just as it has in the network infrastructure area

12 An SME perspective on Cloud Computing Disaster Recovery options - Question 7 Which of the following disaster recovery options are of interest to you? Answer Options Percent Count Fully outsourced disaster recovery and business continuity 48,6% 35 A contingency plan based on internal resources (i.e. leveraging services/platform/infrastructure already in use 63,9% 46 before the Cloud ) Other (please specify) 1,4% 1 answered question 72 skipped question 2 Number Other (please specify) 1 Possibly a mix of Outsourced and Internal facilities.

An SME perspective on Cloud Computing 13 Cloud Services - Question 8 Which IT services/applications supporting business processes are most likely to be outsourced to a Cloud Computing service provider? Answer Options Percent Count Payroll 38,9% 28 Human Resources 19,4% 14 Procurements 16,7% 12 CRM/Sales Management 52,8% 38 Accounting and Finance 30,6% 22 Project management 41,7% 30 Application development on the cloud 44,4% 32 Anonymised data analysis 29,2% 21 Other (please specify) 12,5% 9 answered question 72 skipped question 2 Number Other (please specify) 1 Messaging/collaboration as well as 'standard office tools' 2 We are under development of a massive multiplayer game based on web browser. LAMP (Linux, Apache, MySQL and PHP) services must share resources and work together into servers cloud. 3 Electronic Records Service, including Archiving 4 I don't want to be bothered with anything that isn't my core business. 5 Mail servers 6 Exchange, SharePoint, Hosted Desktop (Word, Excel ect) 7 Knowledge management infrastructure 8 Web presence 9 Call centre

14 An SME perspective on Cloud Computing

An SME perspective on Cloud Computing 15 Main concerns - Question 9 What are your main concerns in your approach to Cloud Computing? Answer Options Answer Options Not Important Medium Importance Very Important Showstopper Rating Average Count Privacy 0 7 28 31 3,36 66 Availability of services and/or 3 9 28 26 3,17 66 data Integrity of services and/or 0 9 28 27 3,28 64 data Confidentiality of corporate data 1 3 17 43 3,59 64 Repudiation 1 24 25 7 2,67 57 Loss of control of services 2 14 29 17 2,98 62 and/or data Lack of liability of providers in case of security incidents 1 15 25 19 3,03 60 Inconsistency between trans national laws and regulations Unclear scheme in the pay per use approach 8 25 15 12 2,52 60 10 26 14 9 2,37 59 Uncontrolled variable cost 4 21 26 7 2,62 58 Cost and difficulty of migration 7 31 14 6 2,33 58 to the cloud (legacy software etc...) Intra-clouds (vendor lock-in) 5 21 20 10 2,63 56 migration Other (please specify) 3 answered question 73 skipped question 1

16 An SME perspective on Cloud Computing

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information