Top News
Tools
Cloud computing has become the talk of many professionals who think of it as the solution to cost and management challenges. However, the leading concern about it is performance and reliable speed. As the cloud continues becoming an increasingly integral part of businesses, organizations must ensure that their cloud performance is optimized to meet the demands of their operations. Here are some tips that might help you improve cloud performance:
-
These Three Types of Cloud Services Define the Technology
Monday, 12 December 2022
-
How the Cloud is Improving Major League Baseball in the 21st Century
Monday, 25 July 2022
-
Cloud Adoption is Up Because of the Pandemic
Monday, 11 July 2022
-
Get the Most from Your Cloud Computing Resources
Monday, 27 June 2022
Storage
Cloud computing has significantly altered many things in our lives. It has changed the way we do things, the leading being how we do business and conduct different activities in our lives. Unlike a decade ago when this technology was just a buzzword in IT, it has made its way into several industries bringing substantial change wherever it has been adopted. Back then, there was little knowledge about this emerging technology, so people asked questions about what it is and the changes it is likely to bring. Although many of these questions have been answered, many others still emerge. Here are some key cloud computing stats that might help.
-
AWS Releases The Open Source Library AutoGluon For AI Development
Monday, 10 February 2020
-
Containers Are An Important Tool For Developers Deploying To The Cloud, But Look Out For These Vulnerabilities
Monday, 16 September 2019
-
How the Cloud Leverages Open-Source Solutions
Wednesday, 11 September 2019
-
Managing Your Cloud Computing Costs
Wednesday, 13 March 2019
Planning, Patience and Professionals are Key to the Cloud
It’s no secret that companies have rapidly shifted toward a cloud-first infrastructure. Businesses are expediting cloud migration efforts and even defaulting to cloud-based solutions for new workloads and applications.
Incorporating cloud infrastructure into IT strategy provides a variety of tempting benefits, including cost and time savings, quicker innovation and increased security. But driven to make the transition as quickly as possible, organizations often skip over crucial steps and make mistakes that can eliminate desired benefits.
The reality is that cloud migration is a complex journey, and rushing in without a plan will not provide benefits but could even facilitate losses. So how can organizations avoid mistakes when moving to the cloud? There are several aspects for leaders to consider before committing.
You will need a plan
Shifting data to a cloud-hosted infrastructure may seem simple, but it can take months of preparation to ensure the process is seamless and effective. Migration requires a systematic plan to generate successful outcomes -- without it, business operations may be immediately at risk and organizations can sink money into the cloud without understanding why they are migrating in the first place.
An incorrectly set up program designed to run a process when employees create a new ticket could fail to trigger ticket creation, halting work and resulting in delays and monetary losses. Issues may remain unresolved for days or weeks if organizations don't have a plan or team to review cloud performance.
Planning starts by capturing the state of current IT infrastructure and identifying any challenges and necessary solutions, as well as details like implementation owners and anticipated length of application phase.
Once leaders have a picture of their current environment, they can envision short and long-term cloud goals, plan out the steps to achieve these goals and evaluate what resources and costs are needed to make the shift. An established strategy allows leaders to decide which data and in what size portions, they will begin to move. Implementation owners understand their roles and expectations, so decisions are intentional.
You don’t have to do everything at once
A common mistake companies make is looking at cloud migration as an immediate transition of all data and systems to a new house.
In reality, cloud migration is a process. There are often thousands of applications and data sets to migrate, so trying to do it all at once is unnecessarily resource-intensive and can lead to errors created by using an untested system.
One way to improve outcomes is to start by moving non-critical workloads to the cloud to test the system. If something goes awry, it can be fixed with little risk to the organization, and lessons can be applied to the next workload. Once enterprises get to business-essential programs, they can be confident in their process. Additionally, a progressive approach encourages organizations to think critically about each workload – if it’s accessible and cost-effective on prem, an organization may benefit from a hybrid approach.
Cloud environments are not simply new vessels for old data. As organizations migrate older data, they can also create new, cloud-native applications. Building a new solution directly in the cloud can enhance productivity.
You should hire a cloud team
Cloud migration is not a one size fits all solution – each aspect of the process should be carefully constructed with the individual organization’s needs and long-term goals in mind. This requires a team of cloud professionals that understand how to apply cloud best practices and developments to specific organizations. Years of experience in the IT industry does not necessarily provide the skills needed to support a shift to the cloud.
Experienced cloud practitioners know to use tools standard engineers would be unfamiliar with, such as cloud formation and terraform for replica automation, which decrease human-made errors and create the ability to move applications from one work environment to another.
As leaders increasingly benefit from modernization and cloud transitions, leaders must develop their migration method and devise a customized strategy while shifting their workload in digestible portions. Each step is linked to one another, so an intentional, gradual approach can increase success. Understanding this allows businesses to minimize the possibility of errors during the migration process and fully utilize cloud capabilities for the long-term organizational benefit.
Gloria Zhang, Director of Cloud Programs at ASCENDING
A Misuse of Cloud Resources: The Threat of Ransomware as a Service
One of the overarching benefits of cloud computing is its leveling of the playing field regarding the use of technology. Organizations of any size have access to the same cutting-edge technology offered by cloud service providers (CSPs). Perhaps the easiest way for a company to take advantage of the cloud is through a software-as-a-service (SaaS) solution. Companies or individuals can add extensive computing functionality to their environment virtually instantly.
Unfortunately, malicious minds typically find a way to divert otherwise good ideas for malevolent purposes. A recent example of this defect in human nature can be seen in the introduction of ransomware-as-a-service (RaaS). As if cybersecurity teams needed additional work, RaaS democratizes the ability to launch damaging ransomware attacks. RaaS makes it possible for virtually anyone to initiate a ransomware attack.
What is Ransomware-as-a-Service?
RaaS is a business model in which operators offer affiliates paid access to ransomware resources with the ability to launch attacks. It’s a variation on the standard SaaS delivery model that eliminates the need for criminals to have the necessary skills or time to develop ransomware themselves. RaaS operators offer their services on the dark web and advertise them in the same way legitimate software companies do on the Internet.
How Does RaaS Work?
An RaaS operator typically recruits affiliates on dark web forums. The affiliate agrees to the terms which usually include agreeing to use one of these four revenue models:
- A flat fee for a monthly subscription;
- Affiliate programs in which the developer gets a percentage of the profits in addition to the subscription fee;
- A one-time license with no profit sharing;
- Straight profit sharing with no upfront fees.
After payment arrangements are made, the operator provides the affiliate with access to the ransomware. The affiliate selects a target, sets ransom demands, and creates a ransom note. They then compromise the victim’s assets and execute the ransomware. The operator furnishes a payment portal and may help the affiliate with victim negotiations. The affiliate controls the decryption keys while an operator may provide a website that can be used to leak sensitive data to encourage the victims to pay.
The Evolution of RaaS
The RaaS model began to gain popularity in 2019. Since that time, ransomware variants previously used exclusively by their developers have been identified in RaaS attacks. The list of RaaS providers includes:
- Darkside - This group is reputedly responsible for the May 2021 attack on Colonial Pipeline. The attack affected consumers and airlines in the eastern U.S. for several days. Colonial paid the hackers for the decryption keys necessary to restart their systems.
- DoppelPaymer - Attacks using this RaaS include one in Germany in 2020 that may have contributed to the death of a patient.
- LockBit - The gang behind LockBit runs an efficient and businesslike organization that has resulted in the widespread use of this ransomware by affiliate groups.
Defending Against Ransomware
Defending against any type of ransomware attack involves the coordination of multiple secure initiatives that include:
- Implementing reliable backup and recovery procedures;
- Installing security patches promptly;
- Employing multi-factor authentication;
- Anti-phishing software and user education to avoid compromised credentials;
- Extended detection and response solutions to identify sophisticated risks.
As much as we like to highlight the positive characteristics of cloud computing, the unfortunate reality is that the same resources that can be used to add functionality to your business can also be used for nefarious purposes such as promoting ransomware as a service.
Ways to Ensure Compliance in the Cloud
Ensuring compliance in the cloud can be a daunting task for many that need a balance between the data security needs and the benefits of cloud computing. The cloud provides businesses with a flexible, scalable, cost-effective infrastructure to store, process, and manage their data. However, it also presents new security challenges and regulatory requirements that organizations must meet. Here are some ways to ensure compliance in the cloud within your organization.
- Identify relevant regulations and standards
Before you can think of anything else, identify the relevant regulations and standards that apply to your organization and ensure compliance in the cloud. Since the regulations vary from one industry to the other as well as regions, such as the European Union’s General Data Protection Regulation (GDPR) and the Payment Card Industry Data Security Standard (PCI DSS) in the financial industry, find out the ones that apply to your industry or region. You must understand these regulations and standards and ensure that your cloud environment is configured to meet these requirements.
- Conduct a security risk assessment
Carry out a risk assessment to identify potential security threats and vulnerabilities in your organization’s cloud environment. The assessment should include a review of the security controls, data access controls and incident response procedures. Based on the results you get from the risk assessment, you should develop a security plan to mitigate potential threats and protect sensitive data.
- Encrypt
Malicious people are always looking for ways to access sensitive data, and encryption might be one of the right tools to protect it in the cloud. Encrypt all data at rest and in transit to prevent unauthorized access or theft. Consider using encrypted virtual private networks (VPNs) to secure communications between cloud services and clients.
- Use multi-factor authentication
The first step in securing your cloud data is limiting access. Multi-factor authentication (MFA) adds an extra layer of security to user accounts by requiring users to provide two or more forms of authentication, such as a password and a security token. You should enable multi-factor authentication for all cloud services to prevent unauthorized access to sensitive data.
- Conduct regular security audits
Regular security audits are important in ensuring that your cloud environment remains compliant with regulations and standards. The audits should include a review of security controls, data access controls and incident response procedures. Based on the audit results, organizations should update their security plan and make any necessary changes to their cloud environment.
- Choose a reliable cloud provider
Cloud providers are not the same, so you should choose the one that suits most, if not all, your needs. The safety and accessibility of your organization’s data in the cloud depend largely on the reliability and security of the cloud provider. Carefully evaluate potential cloud providers and choose one with a strong track record of security and data protection. Organizations should also review the provider’s security policies and procedures and the measures they take to prevent data breaches.
- Establish data backup and disaster recovery procedures
No one wants to lose their sensitive data when a disaster strikes. Therefore, you should establish a data backup and disaster recovery plan or procedures to ensure that your data is always protected in the event of a data breach or disaster. These procedures should include regular backups of all data stored in the cloud and a plan for restoring data in the event of an emergency.
- Train your employees
Employees play a critical role in ensuring compliance in the cloud. Companies must train employees regularly on the importance of data security and the measures they should take to protect sensitive data. Train your staff on the relevant regulations and standards and the consequences of non-compliance.
One of These 6 Cloud Computing Projects Might be the Place to Start
Due to technological advancements, many industries are actively implementing cloud computing applications to enhance their operations. Cloud computing has become one of the most famous and in-demand technologies, improving operations and reducing costs. With the increased dependence on data for decision-making, cloud computing avails computer systems resources like computing power and storage necessary for handling vast data volumes coming from different sources in different formats. As you think of deploying cloud, one of these six cloud computing projects might be the best place to start your journey.
- Cloud-based bookstore
Many people love reading, and you can offer them a place to find their favourite books by coming up with an online store. This is an application that categorizes different books online for the user. The application arranges books according to the author, cost, title, and genre, among others. The reader can access the website, choose an online book, and pay electronically. Users can also inquire about the availability of certain books. You may need skills in inventory management and familiarity with programming languages like Python, C# or SQL to develop such a project.
- Data leaks detection project
The sole purpose of this project is to prevent data leaks associated with SQL injection and improve the security of databases. This system may be run online without any system as long as there is stable internet consumption. This project improves data security by preventing SQL injection and hacking using encryption. The project uses several encryption techniques to encrypt data in the cloud and store it in AES encryption format.
- Chatbots
The advances in artificial intelligence (AI) and automation mean that most work can be done by machines in modern organizations. A chatbot is one of the AI software that can help in many ways, such as replying to queries initiated by human users. Chatbots can answer human questions when users visit sites such as e-commerce websites. Since they are useful in e-commerce and other websites, this project can be one of the most successful projects you can think about.
- Smart Traffic Management
Smart traffic management leverages the capacity of cloud computing to reduce the waiting time of vehicles and minimize traffic using wireless sensors, communication technologies and other smart technologies. With the advances in cloud technologies, you can develop an application that replicates the movement of any vehicle, such as cars, trucks, scooters and other vehicles, to monitor real-time traffic. The application will calculate the quickest route and time for a vehicle and allow them to use an alternative route to avoid getting stuck in traffic.
- Shipping management system
Ecommerce is now one of the most attractive businesses in the world. With its growth, the supply chain and shipping have also grown tremendously as customer demands increase. Shipping and e-commerce companies such as FedEx, DHL, eBay and Amazon have had to grow their delivery and shipping approaches to meet customer demands. This presents an opportunity for others to develop applications to ease the movement of products. By taking advantage of the cloud, you can develop a cloud computing project to help manage shipping functions and enhance capabilities. A Software-as-a-service solution based on Microsoft using SQL server and .Net can be deployed to automate shipping processes and monitor everything in the supply chain.
- Online automation of a university or college
Cloud computing projects can also serve the educational sector. They can be used to gather data about campus faculty, students and employees. A portal is developed where students can log in or register by entering their credentials. The cloud computing project for a college or learning institution eases things for students, workers, faculty, or divisions. Students can search and check their details or book services regardless of where they are. This is a cheaper and time-saving alternative.
Trends and Developments in the Cloud Computing Industry
Since it first came into light in the early 2000s, cloud computing has made huge strides in the right direction. With the increase in the use of mobile devices and the need for more flexible and scalable computing resources, businesses are fast seeing the importance of the cloud as an essential part of IT infrastructure. As we move into 2023, here are some of the latest trends and developments in the cloud computing industry that you need to know.
- Multi-cloud and Hybrid Cloud Solutions
Multi-cloud and hybrid solutions are among the top trends in the cloud computing industry. While multi-cloud solutions involve multiple cloud service providers, hybrid cloud involves both public and private cloud environments. The primary benefit of these solutions is that they allow businesses to choose the right cloud provider for each workload and application. This ensures they get the best performance, scalability, and cost-effectiveness for each.
- Edge Computing
Edge computing is another trend gaining momentum in the cloud computing industry. Edge computing is a distributed computing model that brings the computing power closer to the end-users. This reduces latency and improves performance. It involves processing data at or near the edge of the network instead of a centralized data center. This is particularly useful for applications that require real-time data processing, such as IoT devices, autonomous vehicles, and video streaming services.
- AI and Machine Learning
Artificial intelligence (AI) and machine learning (ML) are driving the latest developments in cloud computing. These technologies require significant computing power and data processing capabilities, which cloud providers can provide. With the popularity of cloud-based AI and ML solutions, businesses leverage these technologies without investing in expensive hardware and software.
- Serverless Computing
Serverless computing is a new cloud computing model that has been gaining popularity in recent years. With this model, developers can write and deploy code without worrying about the underlying infrastructure. It allows the cloud provider to manage the infrastructure and automatically scale resources based on demand. This makes it easier for businesses to build and deploy applications quickly and cost-effectively.
- Cloud Security
In the internet age, security remains a growing concern for businesses, as more and more data is being stored in the cloud. As cyber-attacks continue rising, cloud providers respond to this concern by investing in new security technologies and services. These technologies and services include advanced threat detection, encryption, and access control. Many cloud providers also offer compliance certifications and audits to ensure their services meet industry standards and regulations.
- Containerization
This is another trend that is changing the building and deployment of applications in the cloud. Containers are a lightweight and portable way of packaging applications and their dependencies. Containerization makes moving applications between different cloud environments easier and reduces the risks caused by compatibility issues. Many cloud providers, like Kubernetes, offer container services to help businesses manage and orchestrate their containerized applications.
- Serverless Database Solutions
Like serverless computing, serverless databases have become increasingly popular in cloud computing. They allow businesses to store and manage their data without concern about the underlying infrastructure. With these database solutions, the cloud provider manages the database and automatically scales resources based on demand. This allows businesses to manage their data and reduce costs, as they only pay for the resources they use.
In conclusion, new trends and developments will always emerge as the cloud computing industry continues evolving rapidly. However, by staying up-to-date with these trends, businesses can make the most of their cloud infrastructure and stay ahead of the competition.
Ways to Ensure Compliance in the Cloud
Ensuring compliance in the cloud can be a daunting task for many that need a balance between the data security needs and the benefits of cloud computing. The cloud provides businesses with a flexible, scalable, cost-effective infrastructure to store, process, and manage their data. However, it also presents new security challenges and regulatory requirements that organizations must meet. Here are some ways to ensure compliance in the cloud within your organization.
- Identify relevant regulations and standards
Before you can think of anything else, identify the relevant regulations and standards that apply to your organization and ensure compliance in the cloud. Since the regulations vary from one industry to the other as well as regions, such as the European Union’s General Data Protection Regulation (GDPR) and the Payment Card Industry Data Security Standard (PCI DSS) in the financial industry, find out the ones that apply to your industry or region. You must understand these regulations and standards and ensure that your cloud environment is configured to meet these requirements.
- Conduct a security risk assessment
Carry out a risk assessment to identify potential security threats and vulnerabilities in your organization’s cloud environment. The assessment should include a review of the security controls, data access controls and incident response procedures. Based on the results you get from the risk assessment, you should develop a security plan to mitigate potential threats and protect sensitive data.
- Encrypt
Malicious people are always looking for ways to access sensitive data, and encryption might be one of the right tools to protect it in the cloud. Encrypt all data at rest and in transit to prevent unauthorized access or theft. Consider using encrypted virtual private networks (VPNs) to secure communications between cloud services and clients.
- Use multi-factor authentication
The first step in securing your cloud data is limiting access. Multi-factor authentication (MFA) adds an extra layer of security to user accounts by requiring users to provide two or more forms of authentication, such as a password and a security token. You should enable multi-factor authentication for all cloud services to prevent unauthorized access to sensitive data.
- Conduct regular security audits
Regular security audits are important in ensuring that your cloud environment remains compliant with regulations and standards. The audits should include a review of security controls, data access controls and incident response procedures. Based on the audit results, organizations should update their security plan and make any necessary changes to their cloud environment.
- Choose a reliable cloud provider
Cloud providers are not the same, so you should choose the one that suits most, if not all, your needs. The safety and accessibility of your organization’s data in the cloud depend largely on the reliability and security of the cloud provider. Carefully evaluate potential cloud providers and choose one with a strong track record of security and data protection. Organizations should also review the provider’s security policies and procedures and the measures they take to prevent data breaches.
- Establish data backup and disaster recovery procedures
No one wants to lose their sensitive data when a disaster strikes. Therefore, you should establish a data backup and disaster recovery plan or procedures to ensure that your data is always protected in the event of a data breach or disaster. These procedures should include regular backups of all data stored in the cloud and a plan for restoring data in the event of an emergency.
- Train your employees
Employees play a critical role in ensuring compliance in the cloud. Companies must train employees regularly on the importance of data security and the measures they should take to protect sensitive data. Train your staff on the relevant regulations and standards and the consequences of non-compliance.
Best Practices for Cloud Security
As more and more organizations move their operations to the cloud, it is important to consider the security implications of this transition. While cloud computing can offer significant benefits in terms of cost, scalability, and flexibility, it is essential to follow best practices to ensure the security of your data and systems. This article will explore some key considerations for cloud security and provide tips for keeping your organization's data safe in the cloud.
- Choose the right cloud service provider
Among the first steps in ensuring cloud security is looking for a reputable and trustworthy cloud service provider. Look for providers that have a track record of providing secure and reliable services and that are compliant with industry standards such as SOC 2 and PCI DSS. It is also a good idea to review the provider's security policies and procedures to ensure they align with your organization's security needs.
- Secure access to the cloud
Once you have selected a cloud service provider, it is important to ensure that access to the cloud is secure. This includes implementing strong authentication methods such as multi-factor authentication and regularly updating passwords. It is also a good idea to use secure protocols such as SSL/TLS for data transmission and to enable encryption for data at rest.
- Manage user access privileges
Effective access management is key to ensuring the security of your cloud environment. It is important to carefully control who has access to your cloud resources and to assign access privileges on a least privilege basis. This means giving users only the access they need to perform their job duties rather than granting them blanket access to all resources. It's also a good idea to regularly review access privileges to ensure they are still appropriate.
- Monitor privileged users
In addition to managing access privileges, it is important to monitor the activity of privileged users, such as administrators, to ensure that they are not misusing their access. This can include implementing tools to monitor and log user activity, as well as conducting regular audits to identify any potential issues.
- Encrypt your data
Encrypting data is an important security measure to protect against unauthorized access to sensitive information. It is a good idea to encrypt both data in transit and data at rest in your cloud environment. This can include implementing encryption for data stored in the cloud as well as for data transmitted between the cloud and other systems.
- Protect user endpoints
User endpoints, such as laptops and smartphones, can be vulnerable to attacks, so it is important to implement measures to protect them. This can include installing antivirus software and keeping it up to date, implementing strong passwords and enabling two-factor authentication. It is also a good idea to educate employees about best practices for protecting their devices and having a process for responding to security incidents.
- Educate your employees
Your employees are a key line of defence against security threats, so it is important to educate them about best practices for protecting your organization's data. This can include training on topics such as strong passwords, phishing attacks, and secure browsing habits. It is also a good idea to establish policies and procedures for employees to follow in the event of a security incident.
- Maintain logs and monitor
Maintaining logs and monitoring your cloud environment can help you identify and respond to potential security issues in a timely manner. This can include implementing tools to monitor suspicious activity and regularly reviewing logs to identify any potential issues.
In a nutshell, cloud security is an important consideration for any organization that is moving operations to the cloud. By following best practices such as choosing a reputable cloud service provider, securing access, managing user access privileges, monitoring privileged users, encrypting data, protecting user endpoints, educating employees, and maintaining logs as well as performing regular monitoring, you will get the best off the cloud and improve operations.
Simplify Moving to the Cloud
Moving your storage from on-premise to the cloud can be a challenging undertaking. It involves many demanding activities, from choosing a provider that meets your requirements to finding the best migration options and the right backend architecture. All these can feel overwhelming, mainly if you do not have the right help. However, with the right planning and research, it does not have to be painful. Rather, you can take it as a learning process, whether you are migrating from one provider to another or getting started. The best thing is to follow the right steps and processes. Here are three decision-making processes that might be helpful in your cloud migration journey.
- Consider your goals
Ask yourself why you want to move from on-premise or one cloud to another. What are your long and short-term goals for migrating? Are you building a complex application? What are your future growth plans? As you answer these questions, document what you need to achieve these goals. Highlight things that are essential for a provider to have and other considerations that are important to you. Consider things like storage, bandwidth and other additional requirements such as data security necessary for your business. Think of what you might need in future and ensure you consult your provider every step of the way.
You will understand your cloud requirements by outlining what you need for your operations and the demands associated with your goals. Furthermore, you will be able to understand the differences between providers. Compare offerings, SLAs and services in greater detail.
- Consider resources
Human and other resources are crucial for your migration to the cloud. Ask yourself if you have the right team, adequate financial resources and infrastructure to support your migration. Furthermore, ask yourself how much time you want to spend managing the infrastructure and whether the cloud service provider has the right options and resources for teams of any size or experience. Consider the complexity of pricing models. These models can be complex. If you are concerned with the cost, find a provider with simple, affordable and predictable pricing. This ensures you do not get a surprise bill, especially at the beginning of your journey.
Keep your long-term and short-term goals in mind as you start the configuration process. This will help you know what you need and the future configurations. Furthermore, knowing your available finances allows you to choose what must be in the cloud and what should not.
- Join a community
Successful migration to the cloud should not be the end of everything. Rather, it is just the beginning of engagement with others using cloud platforms. The right place to ensure you are engaged is by joining a community. There is a huge developer community that is not only inclusive but also supportive. Joining such a community will answer most of your questions because others have encountered the concerns, worries and questions you may be having. You will meet individuals from all over the world and collaborate with them in sharing knowledge and other projects.
As you join the cloud computing world, become part of different communities. Furthermore, make use of resources such as online tutorials offered by developers meant to enhance your experience with the cloud. Select a cloud computing provider with an excellent support team and one that can answer your questions faster. Select a provider who goes the extra mile to ensure you are satisfied whenever you ask a question or when you are concerned. Being part of events such as seminars and conferences is also good for your journey in adopting cloud computing because it enhances your knowledge.
ChatGPT Available in Azure
According to Microsoft, ChatGPT is now available in the Azure OpenAI Service.
Today, we are thrilled to announce that ChatGPT is available in preview in Azure OpenAI Service.
Read the Article Microsoft
Cloud Migration is Managable
According to InfoQ, cloud migration is not as complex as it can seem.
Cloud migration is not a drastic change for businesses. Becoming “Cloud Native” is crucial for business success in the current business landscape.
Read the article INFOQ
Keeping the Cloud Safe
According to Politico, the Biden Administration is seeking to craft a plan to keep the cloud safe.
Governments and businesses have spent two decades rushing to the cloud — trusting some of their most sensitive data to tech giants that promised near-limitless storage, powerful software and the knowhow to keep it safe.
Read the article Politico
Edge Computing Eats Away at Cloud
Edge computing needs faster speeds than the cloud can provide, reports Information Week.
Edge computing isn’t a panacea, but its timing is impeccable. The cloud is too slow to meet the needs of most edge devices making it necessary to move computing closer.
Read the Article Information Week
Why Cloud Service Providers May Put Servers in Outer Space
The major cloud service providers (CSPs) are continuously looking for innovative services and products to add to their portfolio of offerings. They are also constantly on the lookout for ways to trim their budgets, improve performance, and optimize resource utilization.
One of the directions they are looking is straight up with a variety of offerings that address the growth of space-based, commercial enterprises and satellite technology. Let’s look at some of the ways two CSPs are planning to leverage the opportunities of the final frontier.
Azure Space combines the possibilities of space with the power of cloud computing. The platform includes several distinct products that employ space infrastructure to extend Azure capabilities and help space-based companies process satellite data efficiently.
Following are two of the offerings from Azure Space.
The Ground Station provides low-latency connectivity to extend communication coverage between a company’s satellites and the Azure Cloud. The features of Azure Orbital Ground Station let customers:
- Operate faster by employing a global network of antennas that scale to address satellite fleet growth;
- Streamline satellite management using Azure cloud services and ground stations;
- Make use of secure and resilient ground stations for satellite communication;
- Control costs by only paying for bandwidth that is consumed on-demand.
This service enables customers to downlink space-borne data from multiple sources and store it in Azure Data Platform components. The raw data can then be converted into analysis-ready data using the Azure Orbital Analytics processing pipeline. Integrations with Microsoft tools and partner AI models allow customers to derive insights from satellite imagery and use them productively with Microsoft Teams or open source tools. This platform serves as the path between Microsoft customers and satellite operators.
Amazon is working on multiple space-based solutions for its customers as well as experimenting with new ways to provide its services via satellites. The following are two examples of the innovative use of space technology by AWS.
AWS Sound Station provides real-time processing of data using a global network of antennas that enable communication with a satellite to be established multiple times per orbit. High-resolution imagery can be refreshed more regularly for enhanced monitoring and change detection. The features of this offering include:
- Ground station as a service which eliminates purchase and maintenance expenses;
- Premium data and physical security;
- Fast downloads and immediate data processing;
- Self-service scheduling with customers only paying for the antenna time they use.
In November 2022, AWS announced it has successfully run a suite of AWS software on an orbiting satellite. This innovative experiment is the first of its kind and was conducted in low Earth orbit over the previous 10 months. The company is testing a more efficient and faster way for customers to capture and analyze space data directly on AWS satellites using the cloud.
AWS edge capabilities on an orbiting satellite allow customers to analyze raw data in orbit and only downlink the most important images for later analysis. Communication with satellites will be more efficient with operators using familiar AWS tools.
These are just a few examples of cloud computing expanding into space. The large CSPs are driving innovation and opening the door for space data to be used more effectively to address important issues that affect business and society.
What Are Deep Sea Data Centers and Do They Matter?
The cloud in cloud computing is an abstract concept that does not mean that servers and storage devices are floating around, hidden in fluffy congregations of water vapor. But while the current computing environment may not incorporate those cumulus clouds floating across the sky, you might be surprised to learn that there is a lot of interest in locating servers deep in the ocean.
The terrestrial data centers that make up the cloud require an incredible amount of electricity for power and millions of gallons of water for cooling the computers and peripheral devices they house. These considerations influence where large cloud data centers are built, as they need access to sufficient energy and water resources.
One might wonder why anyone would want to put computer servers in the ocean. But when you think about it, it makes a lot of sense. The ocean provides an abundant source of renewable energy and, by its very nature, plenty of water for cooling hot equipment. Building on the ocean floor does not require rerouting water resources that might be needed for agriculture or other human endeavors.
Microsoft has explored the concept of submerged servers since 2015 when it established Project Nantick to research the feasibility of housing data centers on the ocean floor and powering them with offshore renewable energy. The tests were conducted off the coast of Orkney, Scotland at the European Marine Energy Center.
The company followed up an initial experiment with a second phase which deployed an underwater data center four times larger than phase one with 36 times its computing power. The dimensions of the pressure vehicle containing the servers were a little over 12 meters in length and 3 meters in diameter, about the size of a 40-foot shipping container. Its electrical power consumption was 240 KW, all of which was locally produced by renewable wind, solar, tidal, and wave sources.
Nantick Phase II consisted of 12 racks containing 864 standard Microsoft data center servers and 27.6 petabytes of disk space. It has the computing power of a combined several thousand consumer PCs and storage space for around five million movies.
The second phase of project Nantick concluded on July 9th, 2020. What Microsoft learned from its testing has potentially paradigm-shifting ramifications for the construction of future data centers.
Advantages of Under Sea Data Centers
Following are some of the advantages that Microsoft’s experiments have demonstrated.
- Increased reliability - The use of nitrogen rather than oxygen for the vessel’s atmosphere combined with the absence of people potentially bumping into equipment led to a failure rate of 1/8 that of a land-based control group.
- Consumer benefits - Data centers modeled after Nantick can be provisioned in 90 days. They can reduce latency by being located closer to the consumers using them. A large percentage of the world’s population lives near the coastline, making it an attractive audience for deep sea data centers.
- Societal benefits - Renewable energy and intelligent manufacturing using recycled and recyclable materials provide a zero-emission and sustainable path for data center construction.
Microsoft plans to use the knowledge gained from Project Nantick to improve the sustainability of its more traditional data centers. While no commercial product has yet to be announced, the future of deep sea data centers looks promising for the benefits they can provide consumers and society.
Is Cloud Ransomware a Danger to Your IT Environment?
Ransomware has been a major cybersecurity threat to traditional IT environments for years. Until recently, cloud resources were not frequently attacked by this particular kind of malicious software. In large part, this was due to the challenges of attacking a cloud infrastructure.
This apparent safety may be changing and organizations now need to guard their cloud environments from ransomware attacks. As more companies migrate workloads and sensitive data to the cloud, cybercriminals are increasingly seeing cloud resources as a viable target for ransomware.
How Cloud Ransomware Works
Criminals are primarily using three methods to perpetrate ransomware attacks on cloud services. Each method has a similar capacity for damage if executed successfully.
- Infecting file-sharing services and applications - Companies often use file-sharing services synced to a cloud service to facilitate data access for mobile employees. A ransomware attack will begin by encrypting data on a local machine that is then synced to the cloud. The infected file then spreads the malware throughout the cloud infrastructure affecting a large number of files.
- Phishing attacks - Cybercriminals use phishing techniques to trick users into divulging credentials for cloud-based email services like Microsoft 365. The victim’s emails are then encrypted and held for ransom.
- Targeting cloud vendors - In an attempt to maximize the value of a successful attack, ransomware gangs are directly targeting cloud vendors rather than their customers. Criminals try to compromise the credentials of a vendor’s employee so they can encrypt infrastructure that affects multiple clients. The hope is that some of the clients will pay the ransom to avoid the major disruptions caused by the attack.
Defenses Against Cloud Ransomware
Some of the defenses against cloud ransomware are identical to the measures required to protect against traditional attacks. Others are tailored to the aspects of the cloud that make it vulnerable to ransomware.
- Employee education is one of the most important initiatives an organization can undertake to protect itself from ransomware. Users need to be trained to identify and not fall victim to phishing emails. They also need to understand the importance of using strong passwords and not sharing credentials to avoid misuse by malicious insiders.
- Keep all software and firmware updated. Attackers take advantage of known vulnerabilities when attempting a ransomware attack. Updates often contain fixes for vulnerabilities that offer greater protection for the cloud environment.
- Develop comprehensive backup and business continuity plans. A viable strategy is to back up systems using multiple techniques which may include making both cloud and local copies of your data. If one set is compromised, you can still recover your systems.
- Use blacklists to keep employees away from websites that are known to host malware or other malicious software. Consider installing anti-phishing tools that help identify advanced threats.
The shared responsibility matrix for cloud security provides multiple targets for ransomware attacks. Criminals can attack a company’s data directly or by impacting the cloud provider’s infrastructure. Devote the necessary resources to train all employees and minimize the chances of a successful attack on your data resources.
A Brief Look at Offerings From the Top Cloud Providers
The big cloud providers all want your business and are constantly rolling out new offerings designed to attract and retain customers. In this article, we are going to look at some of the flagship products and services available from the largest public cloud vendors ranked by revenue in mid-2021 as determined by Statista.
Azure is the leading cloud vendor based on revenue and offers a wide variety of products and services addressing the needs of small, medium, and large businesses. The company has capitalized on the installed Windows operating system customer base and prioritizes integration with legacy systems.
The combination of legacy support and cutting-edge tech logic make Azure a viable choice for enterprises migrating workloads to the cloud or operating hybrid environments. Cloud-managed instances of the popular SQL Server relational database provide just one example of the specific solutions available from Azure.
Amazon may lack the enterprise relationship onramp enjoyed by Azure but makes up for it with its constant innovation and quality of its products and services. Some of its distinctive offerings include its analytics and data lakes, machine learning, and extensive storage options for everything from disaster recovery to long-term archiving.
Amazon offers free trials of many solutions such as Amazon Lightsail, used to launch and manage virtual private servers, Amazon EC2, providing virtual cloud servers, and SageMaker, to build and train machine learning models. AWS is also the only major cloud provider to offer macOS virtual server support.
The offerings of the IBM cloud are tailored to meet the needs of the company’s large and medium-sized enterprise clients. IBM concentrates on PaaS and IaaS solutions. Acquiring Red Hat in 2019 demonstrates a commitment to an open and hybrid approach to cloud infrastructure.
IBM’s cloud offers extensive analytics, artificial intelligence, and machine learning solutions that make use of the company’s Watson supercomputer. As hybrid environments continue to propagate throughout the IT world, IBM’s migration and management tools provide customers with a viable path when moving from on-premises data centers to the cloud.
Some readers may be surprised at Salesforce’s inclusion in the top cloud vendors, but the company’s array of SaaS solutions is impressive. From its beginnings as primarily a customer relationship management (CRM) solution, Salesforce has expanded its offerings to encompass many cloud-based enterprise software solutions.
Its Slack-first Customer 360 combines sales, service, marketing, commerce, IT, and analytics solutions to provide small and large businesses with an innovative way to work while employing digital workflows. Salesforce concentrates on SaaS offerings and is not the right cloud vendor if you are looking for cloud storage or infrastructure solutions.
Google’s cloud strategy strongly supports cloud-native solutions based on open source and open systems. This makes it attractive to companies looking to add specific capabilities to multi-cloud environments. Google offers machine learning support with vision, speech, and natural language APIs. Google’s advanced technical capabilities make it a viable choice for solutions in the field of data analytics, AI, and machine learning.
This is just a sampling of the incredible diversity of cloud offerings available to customers in 2021. Virtually any organization can find a solution that helps them meet their business objectives. It’s just a matter of selecting the right cloud.
Popular Articles
- Most read