The Oregon Trail Of Cloud Computing - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Cloud
Commentary
1/29/2009
04:40 PM
John Foley
John Foley
Commentary
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

The Oregon Trail Of Cloud Computing

Cloud computing is like the Wild West, where the players are rough around the edges, the borders are undefined, and the homesteaders are subject to unforeseen risks. In this environment, IT governance is nearly impossible -- but an absolute requirement.

Cloud computing is like the Wild West, where the players are rough around the edges, the borders are undefined, and the homesteaders are subject to unforeseen risks. In this environment, IT governance is nearly impossible -- but an absolute requirement.InformationWeek's Mike Fratto provides an eye-opening look into the state of governance in his article "Cloud Control," which appeared in the Jan. 26 issue of InformationWeek and is posted on InternetEvolution.com. Fratto talked to a handful of IT pros who are working through the issues of cloud computing governance. His sobering conclusion: "The courts and industry groups will eventually help develop guidelines, but for now, we're on our own."

Some of the issues that IT folks need to focus on as they consider cloud computing include security, privacy, availability, and performance. Governance requires applying policies, access controls, monitoring, and auditing to corporate use of cloud services.

One of the trickiest aspects of cloud governance involves just where data is located when it's in the cloud. As Fratto notes, it's not unusual for software-as-a-service and other cloud vendors to store data on servers managed by another company. In effect, there can be two or more degrees of separation between your company and your company's data.

"Outsourcing companies are themselves outsourcing their processing," says John Pironti, an IT consultant. "You have to worry about where your data ends up."

Cloud service providers tend to be opaque about their underlying architectures, making it hard for IT departments to know precisely where data is stored. At the same time, state and federal regulations govern the management of health-related and other personal data, and they won't accept "I don't know" as an answer to queries about where that data is stored.

Cloud service providers are taking steps to give customers more options and control. Just last month, Amazon made it possible for users to launch EC2 instances in specific regions of Europe. That capability was a must-have for companies needing to comply with EU regulatory requirements.

Even so, Amazon remains unacceptably opaque. The company refuses to reveal the locations of its data centers. "You can't audit what you can't see," writes Fratto. "This is a deal killer in many regulated industries."

What's the right course of action? InformationWeek recommends that IT pros be proactive and consult with their in-house security experts, legal counsel, and data owners before getting too far into cloud services.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
News
The State of Chatbots: Pandemic Edition
Jessica Davis, Senior Editor, Enterprise Apps,  9/10/2020
Commentary
Deloitte on Cloud, the Edge, and Enterprise Expectations
Joao-Pierre S. Ruth, Senior Writer,  9/14/2020
Slideshows
Data Science: How the Pandemic Has Affected 10 Popular Jobs
Cynthia Harvey, Freelance Journalist, InformationWeek,  9/9/2020
White Papers
Register for InformationWeek Newsletters
2020 State of DevOps Report
2020 State of DevOps Report
Download this report today to learn more about the key tools and technologies being utilized, and how organizations deal with the cultural and process changes that DevOps brings. The report also examines the barriers organizations face, as well as the rewards from DevOps including faster application delivery, higher quality products, and quicker recovery from errors in production.
Video
Current Issue
IT Automation Transforms Network Management
In this special report we will examine the layers of automation and orchestration in IT operations, and how they can provide high availability and greater scale for modern applications and business demands.
Slideshows
Flash Poll