This show is #55, recorded on July 27, 2011 with Greg Ferro, Ethan Banks, Kim Pedersen, and Mrs. Y aka the Network Security Princess. We cover a bit of news, and then discuss the security and economic implications of outsourcing your applications to the cloud. Or…the “blah blah cloud” as those of us worn out by marketing hype like to think of it.
- Dell buys Force 10. The applause is still ringing in our ears.
- Software switching keeps getting a lot of attention, and Greg gets a little ranty about finger placement & corduroy.
- US-CERT director gives no reason for departure, but we have our suspicions.
- Apple releases Lion. Firewire vulnerabilities, battery bricks, and busted VPN clients, oh my!
- TSA pr0n parade gets a software whitewash. You’re lookin’ good in your pixel-y undies!
- Defining the cloud. (Okay, at least we try to.)
- What sorts of functions can the cloud provide?
- How is cloud computing distinct from a colocation service?
- Is the cloud secure? ORLY?!? Tell us how…
- How is separation between cloud tenants done?
- How do you handle intellectual property theft by a cloud provider employee?
- If your cloud provider goes out of business, who owns your data? The cloud provider – or you?
- How long could your business last if you had to go to court to get your data back from your cloud provider?
- How do you write a contract to protect your business if your cloud provider has an extended outage?
- Can you control where your data geographically resides?
- How do you guarantee access from your network to your cloud provider?
- Once you’ve guaranteed access and performance, is outsourcing to the cloud still financially wise?
- When does it make sense to outsource to the cloud? When does it NOT make sense?
- What happens when a cloud fails? What is your recovery plan?
- Is it a smart idea to put mission-critical applications into the cloud?
- How do cloud providers contract SLAs for system failures?
- How do cloud providers replicate data between sites?
- What usage reporting does a cloud provider offer?
- How do you authenticate a cloud-based application against your local user database?
- How do you ensure compliance with regulations when your application is cloud-hosted?
- Is the cloud really just a poor man’s data center?
- Okay – level set. Pros versus cons. The cloud is not all bad.
Odds and ends of items mentioned in the show…