Introduction to the different cloud models that exist and how they can be used in an enterprise level environment. Short discussion on UK DPA and its relevance to cloud computing
2. Different cloud deployment models and their
characteristics
• Public Cloud
• Private Cloud
• Hybrid Cloud
The Data Protection Act and how it relates to Cloud
Computing
case study example of using a hybrid cloud model in
an enterprise environment
Today we are
covering…
6. Leadership Engineering
We want access to the
fastest and newest
cloud services straight
away
All of our data must
remain secure and we
want to remain in
control of it
7. National Institute of
Standards and Technology
Cloud computing is a model for enabling ubiquitous,
convenient, on-demand network access to a shared opal
of configurable computer resources that can be rapidly
provisioned and released with minimal
management effort or service provider interaction
Cloud Computing
8. National Institute of
Standards and Technology
The cloud infrastructure is provisioned for open use by the
general public. It may be owned, managed, and operated
by a business, academic, or government organisation, or
some combination of them. It exists on the premises of
the cloud provider.
Public Cloud
10. National Institute of
Standards and Technology
The cloud infrastructure is provisioned for exclusive use
by a single organisation comprising multiple consumers.
It may be owned, managed, and operated by the
organisation, a third parts, or some combination of them,
and it may exist on or off premises
Private Cloud
11. Elastic Capabilities
Opex economics (operational Expense)
Ease of operations
time to implement
data sovereignty
environmental control
cost predictability
capex economics (Capitol Expense)
12. Elastic Capabilities
Opex economics (operational Expense)
Ease of operations
time to implement
data sovereignty
environmental control
cost predictability
capex economics (Capitol Expense)
PrivateCloud
PublicCloud
13. Leadership Engineering
We want access to the
fastest and newest
cloud services straight
away
All of our data must
remain secure and we
want to remain in
control of it
14. National Institute of
Standards and Technology
The cloud infrastructure is a composition of two or more
distinct cloud infrastructures that remain unique
entities, but are bound together by a standardised or
proprietary technology that enables data and application
portability
Hybrid Cloud
16. Data Protection Act 1998
http://www.legislation.gov.uk/ukpga/1998/29/contents
UK implementation of the 1995 EU
Directive on Data Protection 95/46/EC
The Data Protection Act applied to the processing of personal data. Data is
defined as information within:
• A relevant filing system (paper or electronic based)
• Any type of information held by a body subject to the freedom of
information act
• An accessible record (e.g. Health, Education, Housing)
• Equipment operating automatically in response to instructions (i.e. in a
computerised format
17. Data Protection Act 1998
The Data Subject The Data ProcessorThe Data Controller
An individual who is the
subject of personal data
A person or body which
decides what happens to the
personal data it processes
A person or body (other than
an employee of the data
controller) who process
personal data on behalf of the
data controller
If using a Data Processor a
written contract is needed
18. Data Protection Act 1998
Data must be:
1. Fairly and lawfully processed
2. Processed for limited purposes and not further purposes in a manner
which is incompatible with those purposes
3. Adequate, relevant, and not excessive
4. Accurate and up to date
5. Not kept longer than necessary
6. Processed in accordance with the individual’s rights
7. Secure
8. Not transferred to countries outside of the European Economic Area
unless adequate protection is provided
Data Controller
Responsibilities
19. Data Protection Act 1998
The Data Protection Act applied to the processing of personal data. Data
{can be} defined as information…in a computerised format.
Information is in the cloud…
therefore it is computerised
20. Data Protection Act 1998
The Data Protection Act applied to the processing of personal data. Data
{can be} defined as information…in a computerised format.
Information is in the cloud…
therefore it is computerised
Cloud information is
sometimes about living
identifiable people…so it is it
personal data
21. Data Protection Act 1998
The Data Protection Act applied to the processing of personal data.
Data {can be} defined as information…in a computerised format.
Information is in the cloud…
therefore it is computerised
Cloud information is
sometimes about living
identifiable people…so it is it
personal data
Something is happening to that
data…so it is being processed
22. Data Protection Act 1998
The Data Subject The Data ProcessorThe Data Controller
The person that you are
storing data about
A cloud service purchaser A cloud service provider
23. Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for
implementing 8 parts of DPA
Contracted to provide
adequate security
American Company
24. Uniting and Strengthening America by Providing Appropriate
Tools Required to Intercept and Obstruct Terrorism
Act of 2001
25. Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for
implementing 8 parts of DPA
Contracted to provide
adequate security
Contracted to maintain data
27. Data Protection Act 1998
The Data Subject
The Data Controller
The Data Processor
Has responsibility for
implementing 8 parts of DPA
Contracted to provide
adequate security
Contracted to maintain data
Contracted to process in
accordance with rights
35. Application Data User DataContent Data
Boilerplate code for
moodle. Nothing really
confidential here
Material uploaded by
staff / students
Usernames & Passwords
Grade Profiles
Student Records
36. Application Data
Boilerplate code for
moodle. Nothing really
confidential here
Moodle Source Code
Application Data
Moodle Database
Application Data
37. Material uploaded by
staff / students
Moodle Source Code
Application Data
Moodle Database
Application Data
Content Data
Uploaded Lectures
Content Data
Uploaded Course
Submissions
Content Data
Uploaded Course
Information
Content Data
38. Usernames & Passwords
Grade Profiles
Student Records
Moodle Source Code
Application Data
Moodle Database
Application Data
Uploaded Lectures
Content Data
Uploaded Course
Submissions
Content Data
Uploaded Course
Information
Content Data
User Data
Usernames and
Passwords
User Data
Grade Profiles
User Data
Student Records
User Data
39. File Storage
Database
Storage
Code
storage
Moodle Source Code
Application Data
Moodle Database
Application Data
Uploaded Lectures
Content DataUploaded Course
Submissions
Content Data
Uploaded Course
Information
Content Data
Usernames and
Passwords
User Data
Grade Profiles
User Data
Student Records
User Data
40. File Storage
Database
Storage
Code
storage
Uploaded Lectures
Content DataUploaded Course
Submissions
Content Data
Uploaded Course
Information
Content Data
Usernames and
Passwords
User Data
Grade Profiles
User Data
Student Records
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
41. File Storage
Database
Storage
Code
storage
Uploaded Lectures
Content DataUploaded Course
Submissions
Content Data
Uploaded Course
Information
Content Data
Pr. C - File Storage
Student Records
User Data
Pr.C - Database
Passwords and Grade Profiles
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
42. File Storage
Database
Storage
Code
storage
Uploaded Lectures
Content DataUploaded Course
Submissions
Content Data
AWS RDS
Course Information
Application Data
Pr. C - File Storage
Student Records
User Data
Pr.C - Database
Passwords and Grade Profiles
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
43. File Storage
Database
Storage
Code
storage
AWS RDS
Course Information
Application Data
Pr. C - File Storage
Student Records
User Data
Pr.C - Database
Passwords and Grade Profiles
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
AWS D3
Uploaded Lectures
Application Data
Pr. C - File Storage
Course Submissions
Application Data
44. AWS RDS
Course Information
Application Data
Pr. C - File Storage
Student Records
User Data
Pr.C - Database
Passwords and Grade Profiles
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
AWS D3
Uploaded Lectures
Application Data
Pr. C - File Storage
Course Submissions
Application Data
Public Cloud Private Cloud
45. AWS RDS
Course Information
Application Data
Pr. C - File Storage
Student Records
User Data
Pr.C - Database
Passwords and Grade Profiles
User Data
AWS EC2
Moodle Source Code
Application Data
AWS RDS
Moodle Database
Application Data
AWS D3
Uploaded Lectures
Application Data
Pr. C - File Storage
Course Submissions
Application Data
Hybrid Cloud
46. Different cloud deployment models and their
characteristics
• Public Cloud
• Private Cloud
• Hybrid Cloud
The Data Protection Act and how it relates to
Cloud Computing
case study example of using a hybrid cloud model
in an enterprise environment