Cloud Security Alliance - Cloud Summit Keynote

4,816 views

Published on

My keynote from the 2010 Cloud Security Alliance (CSA) Summit at the RSA Security Conference. Topic: The Future of Cloud...

Published in: Technology
1 Comment
12 Likes
Statistics
Notes
No Downloads
Views
Total views
4,816
On SlideShare
0
From Embeds
0
Number of Embeds
986
Actions
Shares
0
Downloads
388
Comments
1
Likes
12
Embeds 0
No embeds

No notes for slide









































































  • Cloud Security Alliance - Cloud Summit Keynote

    1. 1. 1 The Cloud Magic 8 Ball
    2. 2. 2 Is Cloud AA Major Shift? IT? Is This Major Shift In
    3. 3. 2 Is Cloud AA Major Shift? IT? Is This Major Shift In
    4. 4. 3 Will Everything Move To The Cloud?
    5. 5. 3 Will Everything Move To The Cloud?
    6. 6. 4 Is All We Know & Do Today In Security Worthless In Cloud?
    7. 7. 4 Is All We Know & Do Today In Security Worthless In Cloud?
    8. 8. 5 Is The Cloud More Secure?
    9. 9. 5 Is The Cloud More Secure?
    10. 10. 6 Without Context, Stupid Question
    11. 11. 7 More Secure Than What?
    12. 12. 8 Can We Trust The Cloud?
    13. 13. 8 Can We Trust The Cloud?
    14. 14. 9 So I Have Options Today?
    15. 15. 9 So I Have Options Today?
    16. 16. 10 Toward A Secure Cloud Future
    17. 17. Journey To the InterCloud Made Simple Stand-Alone Data Centers Federation / Workload Portability / Interoperability
    18. 18. Journey To the InterCloud Made Simple Stand-Alone Data Centers Federation / Workload Portability / Interoperability
    19. 19. Journey To the InterCloud Made Simple Virtualized Data Centers Stand-Alone Data Centers Federation / Workload Portability / Interoperability
    20. 20. Journey To the InterCloud Made Simple Private Cloud Virtualized Data Centers Public Cloud Stand-Alone Data Centers Federation / Workload Portability / Interoperability
    21. 21. Journey To the InterCloud Made Simple Private Cloud Virtualized Data Centers Public Cloud Virtual Stand-Alone Private Cloud Data Centers Federation / Workload Portability / Interoperability
    22. 22. Journey To the InterCloud Made Simple Cloud Brokers Private Cloud Virtualized Data Centers Public Cloud Virtual Stand-Alone Private Cloud Data Centers Federation / Workload Portability / Interoperability
    23. 23. Journey To the InterCloud Made Simple Cloud Brokers Private Cloud Virtualized Data Centers Public Cloud Virtual Stand-Alone Hybrid Clouds Private Cloud Data Centers Federation / Workload Portability / Interoperability
    24. 24. Journey To the InterCloud Made Simple Cloud Brokers Private Cloud Virtualized Data Centers Public Cloud Intercloud Virtual Stand-Alone Hybrid Clouds Private Cloud Data Centers Federation / Workload Portability / Interoperability
    25. 25. 12 Simple, Right?
    26. 26. 12 Simple, Right?
    27. 27. 13 So, What’s The Future Of Cloud?
    28. 28. 13 So, What’s The Future Of Cloud?
    29. 29. 13 So, What’s The Future Of Cloud?
    30. 30. 13 So, What’s The Future Of Cloud?
    31. 31. 13 So, What’s The Future Of Cloud?
    32. 32. 13 So, What’s The Future Of Cloud?
    33. 33. 13 So, What’s The Future Of Cloud?
    34. 34. 13 So, What’s The Future Of Cloud?
    35. 35. 14 There Are ~4,100,000,000 Of These....
    36. 36. 15 ...and 6,797,100,000 Of These *http://en.wikipedia.org/wiki/List_of_countries_by_number_of_mobile_phones_in_use
    37. 37. 16 So While Mega Data Centers Re- Centralize Our Apps & Data In Fewer & Fewer Locations Thanks to Cloud...
    38. 38. 17 These Little Buggers -- Distributed Everywhere -- Have Amazingly Powerful Processors, Lots Of Memory, Near- Ubiquitous Connectivity and Native Apps & Data...
    39. 39. 18 The Consumption Modality Will Ultimately Become More Important Than The Back-End Delivery Mechanism
    40. 40. 19 How Will You Choose What To Protect & Where Will You Choose To Invest To Protect It?
    41. 41. 20 The Eight Things That Matter (Again)
    42. 42. 20 The Eight Things That Matter (Again) Open Standards & APIs
    43. 43. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability)
    44. 44. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries
    45. 45. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries Transparency | Introspection & Retrospection
    46. 46. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries Transparency | Introspection & Retrospection {Id}Entity and Authentication
    47. 47. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries Transparency | Introspection & Retrospection {Id}Entity and Authentication Mobility and Transitivity | Network Morphs
    48. 48. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries Transparency | Introspection & Retrospection {Id}Entity and Authentication Mobility and Transitivity | Network Morphs SDLC | {Web}AppSec
    49. 49. 20 The Eight Things That Matter (Again) Open Standards & APIs Portability (with Open Standards/API Yields Interoperability) Evolution of Name Spaces & Registries Transparency | Introspection & Retrospection {Id}Entity and Authentication Mobility and Transitivity | Network Morphs SDLC | {Web}AppSec Information Centricity & Survivability
    50. 50. 21 What Does That Mean?
    51. 51. 22 Abstraction As Distraction
    52. 52. 22 Abstraction As Distraction Cloud is a fantastic security forcing function
    53. 53. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally
    54. 54. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally The InterCloud is De-Perimeterization on ‘roids.
    55. 55. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally The InterCloud is De-Perimeterization on ‘roids. Plan for FAIL | Redux: Information Centricity & Survivability
    56. 56. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally The InterCloud is De-Perimeterization on ‘roids. Plan for FAIL | Redux: Information Centricity & Survivability Public, Private, Hybrid : All comes down to trust models
    57. 57. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally The InterCloud is De-Perimeterization on ‘roids. Plan for FAIL | Redux: Information Centricity & Survivability Public, Private, Hybrid : All comes down to trust models Cloud is an iteration of a platform and an operational model, approach it as such and manage risk appropriately
    58. 58. 22 Abstraction As Distraction Cloud is a fantastic security forcing function Stay grounded, think globally, act locally The InterCloud is De-Perimeterization on ‘roids. Plan for FAIL | Redux: Information Centricity & Survivability Public, Private, Hybrid : All comes down to trust models Cloud is an iteration of a platform and an operational model, approach it as such and manage risk appropriately Focus on the data. It’s what we’re all frothing over in the first place.
    59. 59. 23 So What Will Cloud Bring Tomorrow?
    60. 60. 24 Does It Really Matter?
    61. 61. 25 What Are You Doing To Secure What You Have Today?
    62. 62. 26 So, Can We Trust The Cloud?
    63. 63. 26 So, Can We Trust The Cloud?
    64. 64. 27 Can You Afford Not To?
    65. 65. 28 Find Out:
    66. 66. 29 CloudAudit {.org}

    ×