Cloud computing issues

Last updated

Cloud computing [ citation needed ] is used by most[ quantify ] people every day but there are issues that limit its widespread adoption. It is one of the fast developing area that can instantly supply extensible services by using internet with the help of hardware and software virtualization. Cloud computing biggest advantage is flexible lease and release of resources as per the requirement of the user. Its other advantages include efficiency, compensating the costs in operations and management. It curtails down the high prices of hardware and software [1]

Contents

The major disadvantages of cloud computing are privacy issue and service provider's wilful destruction of stored data to create space for fresh data entry. There are security issues of various kinds related to cloud computing falling into two broader categories: First, the issues related to the cloud security that the cloud providers face (like software provided to the organizations, infrastructure as a service). Secondly, the issues related to the cloud security that the customers experience (organizations who store data on the cloud) [1]

Most issues start from the fact that the user loses control of their data, because it is stored on a computer belonging to someone else (the cloud provider). [2] For example, the user may wish that their information is kept private, but the owner of the remote servers may want to take advantage of it for their own business. Other issues hampering the adoption of cloud technologies include the uncertainties related to guaranteed QoS provisioning, automated management, and remediation in cloud systems. [3]

Threats and opportunities of the cloud

GNU project initiator Richard Stallman has characterized cloud computing as raising cost and information-ownership concerns. [4] Oracle founder Larry Ellison viewed the trend to "cloud computing" in terms of "fashion-driven [...] complete gibberish". [5]

However, the concept of cloud computing appeared to gain steam, [6] with 56% of the major European technology decision-makers seeing the cloud as a priority in 2013 and 2014, and the cloud budget may reach 30% of the overall IT budget. [7]

According to the TechInsights Report 2013: Cloud Succeeds based on a survey, cloud implementations generally meet or exceed expectations across major service models, such as Infrastructure as a Service (IaaS), Platform as a service (PaaS) and Software as a service (SaaS). [8]

Several deterrents to the widespread adoption of cloud computing include:

The cloud offers many strong points: infrastructure flexibility, faster deployment of applications and data, cost control, adaptation of cloud resources to real needs, improved productivity, etc. The cloud market of the early 2010s - especially for private clouds - was dominated by software and services in SaaS mode and IaaS (infrastructure). PaaS and the public cloud lag in comparison.

Privacy

The increased use of cloud computing services such as Gmail and Google Docs has pressed the issue of privacy concerns of cloud computing services to the utmost importance. [2] [9] The provider of such services lie in a position such that with the greater use of cloud computing services has given access to a plethora of data. [9] This access has the immense risk of data being disclosed either accidentally or deliberately. [9] The privacy of the companies can be compromised as all the information is sent to the cloud service provider. [10] Privacy advocates have criticized the cloud model for giving hosting companies' greater ease to control—and thus, to monitor at will—communication between host company and end user, and access user data (with or without permission). Instances such as the secret NSA program, working with AT&T, and Verizon, which recorded over 10 million telephone calls between American citizens, causes uncertainty among privacy advocates, and the greater powers it gives to telecommunication companies to monitor user activity. [11] [12] A cloud service provider (CSP) can complicate data privacy because of the extent of virtualization (virtual machines) and cloud storage used to implement cloud service. [13] CSP operations, customer or tenant data may not remain on the same system, or in the same data center or even within the same provider's cloud; this can lead to legal concerns over jurisdiction.

While there have been efforts (such as US-EU Safe Harbor) to "harmonize" the legal environment, providers such as Amazon still cater to major markets (typically to the United States and the European Union) by deploying local infrastructure and allowing customers to select "regions and availability zones". [14] Cloud computing poses privacy concerns because the service provider can access the data that is on the cloud at any time. It could accidentally or deliberately alter or even delete information. [15] This becomes a major concern as these service providers employ administrators, which can leave room for potential unwanted disclosure of information on the cloud. [9]

Technical issues

Sometimes there can be some technical issues like servers might be down so at that time it becomes difficult to gain access to the resources at any time and from anywhere e.g. non-availability of services can be due to denial of service attack. To use the technique of cloud computing there should always be a strong internet connection without which we would not be able to take advantage of the cloud computing. The other issue related to the cloud computing is that it consumes the great power of physical devices such as a smartphone. [10]

Sharing information without a warrant

Many cloud providers can share information with third parties if necessary for purposes of law and order even without a warrant. That is permitted in their privacy policies which users have to agree to before they start using cloud services. [16]

There are life-threatening situations in which there is no time to wait for the police to issue a warrant. Many cloud providers can share information immediately with the police in such situations.

Example of a privacy policy that allows this

The Dropbox privacy policy states that [17]

We may share information as discussed below …

Law & Order. We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to (a) comply with the law; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of Dropbox or our users; or (d) protect Dropbox's property rights.

Previous situation about this

The Sydney Morning Herald reported about the Mosman bomb hoax, which was a life-threatening situation, that: [18]

As to whether NSW Police needed a warrant to access the information it was likely to have, Byrne said it depended on the process taken. "Gmail does set out in their process in terms of their legal disclosure guidelines [that] it can be done by a search warrant ... but there are exceptions that can apply in different parts of the world and different service providers. For example, Facebook generally provides an exception for emergency life threatening situations that are signed off by law enforcement."

Another computer forensic expert at iT4ensics, which works for large corporations dealing with matters like internal fraud, Scott Lasak, said that police "would just contact Google" and "being of a police or FBI background Google would assist them".

"Whether or not they need to go through warrants or that sort of thing I'm not sure. But even for just an IP address they might not even need a warrant for something like that being of a police background.

...

NSW Police would not comment on whether it had received help from Google. The search giant also declined to comment, instead offering a standard statement on how it cooperated with law enforcement.

A spokesman for the online users' lobby group Electronic Frontiers Australia, Stephen Collins, said Google was likely to have handed over the need information on the basis of "probable cause or a warrant", which he said was "perfectly legitimate". He also said “It happens with relative frequency. … Such things are rarely used in Australia for trivial or malevolent purposes.”

Privacy solutions

Solutions to privacy in cloud computing include policy and legislation as well as end users' choices for how data is stored. [9] The cloud service provider needs to establish clear and relevant policies that describe how the data of each cloud user will be accessed and used. [9] Cloud service users can encrypt data that is processed or stored within the cloud to prevent unauthorized access. [2] [9] Cryptographic encryption mechanisms are certainly the best options. In addition, authentication and integrity protection mechanisms ensure that data only goes where the customer wants it to go and it is not modified in transit.

Strong authentication is a mandatory requirement for any cloud deployment. User authentication is the primary basis for access control, and specially in the cloud environment, authentication and access control are more important than ever since the cloud and all of its data are publicly accessible. [19] Biometric identification technologies linking users' biometrics information to their data are available. These technologies use searchable encryption techniques, and perform identification in an encrypted domain so that cloud providers or potential attackers do not gain access to sensitive data or even the contents of the individual queries.

Compliance

To comply with regulations including FISMA, HIPAA, and SOX in the United States, the Data Protection Directive in the EU and the credit card industry's PCI DSS, users may have to adopt community or hybrid deployment modes that are typically more expensive and may offer restricted benefits. This is how Google is able to "manage and meet additional government policy requirements beyond FISMA" [20] [21] and Rackspace Cloud or QubeSpace are able to claim PCI compliance. [22]

Many providers also obtain a SAS 70 Type II audit, but this has been criticised on the grounds that the hand-picked set of goals and standards determined by the auditor and the auditee are often not disclosed and can vary widely. [23] Providers typically make this information available on request, under non-disclosure agreement. [24] [25]

Customers in the EU contracting with cloud providers outside the EU/EEA have to adhere to the EU regulations on export of personal data. [26]

A multitude of laws and regulations have forced specific compliance requirements onto many companies that collect, generate or store data. These policies may dictate a wide array of data storage policies, such as how long information must be retained, the process used for deleting data, and even certain recovery plans. Below are some examples of compliance laws or regulations.

In a virtualized cloud computing environment, customers may never know exactly where their data is stored. In fact, data may be stored across multiple data centers in an effort to improve reliability, increase performance, and provide redundancies. This geographic dispersion may make it more difficult to ascertain legal jurisdiction if disputes arise. [27]

FedRAMP

U.S. Federal Agencies have been directed by the Office of Management and Budget to use a process called FedRAMP (Federal Risk and Authorization Management Program) to assess and authorize cloud products and services. Federal CIO Steven VanRoekel issued a memorandum to federal agency Chief Information Officers on December 8, 2011 defining how federal agencies should use FedRAMP. FedRAMP consists of a subset of NIST Special Publication 800-53 security controls specifically selected to provide protection in cloud environments. A subset has been defined for the FIPS 199 low categorization and the FIPS 199 moderate categorization. The FedRAMP program has also established a Joint Accreditation Board (JAB) consisting of Chief Information Officers from DoD, DHS, and GSA. The JAB is responsible for establishing accreditation standards for 3rd party organizations who perform the assessments of cloud solutions. The JAB also reviews authorization packages, and may grant provisional authorization (to operate). The federal agency consuming the service still has final responsibility for final authority to operate. [28]

As with other changes in the landscape of computing, certain legal issues arise with cloud computing, including trademark infringement, security concerns and sharing of proprietary data resources.

The Electronic Frontier Foundation has criticized the United States government during the Megaupload seizure process for considering that people lose property rights by storing data on a cloud computing service. [29]

One important but not often mentioned problem with cloud computing is the problem of who is in "possession" of the data. If a cloud company is the possessor of the data, the possessor has certain legal rights. If the cloud company is the "custodian" of the data, then a different set of rights would apply. The next problem in the legalities of cloud computing is the problem of legal ownership of the data. Many Terms of Service agreements are silent on the question of ownership. [30]

These legal issues are not confined to the time period in which the cloud-based application is actively being used. There must also be consideration for what happens when the provider-customer relationship ends. In most cases, this event will be addressed before an application is deployed to the cloud. However, in the case of provider insolvencies or bankruptcy the state of the data may become blurred. [27]

Vendor lock-in

Because cloud computing is still relatively new, standards are still being developed. [31] Many cloud platforms and services are proprietary, meaning that they are built on the specific standards, tools and protocols developed by a particular vendor for its particular cloud offering. [31] This can make migrating off a proprietary cloud platform prohibitively complicated and expensive. [31]

Three types of vendor lock-in can occur with cloud computing: [32]

Heterogeneous cloud computing is described as a type of cloud environment that prevents vendor lock-in, and aligns with enterprise data centers that are operating hybrid cloud models. [33] The absence of vendor lock-in lets cloud administrators select their choice of hypervisors for specific tasks, or to deploy virtualized infrastructures to other enterprises without the need to consider the flavor of hypervisor in the other enterprise. [34]

A heterogeneous cloud is considered one that includes on-premises private clouds, public clouds and software-as-a-service clouds. Heterogeneous clouds can work with environments that are not virtualized, such as traditional data centers. [35] Heterogeneous clouds also allow for the use of piece parts, such as hypervisors, servers, and storage, from multiple vendors. [36]

Cloud piece parts, such as cloud storage systems, offer APIs but they are often incompatible with each other. [37] The result is complicated migration between backends, and makes it difficult to integrate data spread across various locations. [37] This has been described as a problem of vendor lock-in. [37] The solution to this is for clouds to adopt common standards. [37]

Heterogeneous cloud computing differs from homogeneous clouds, which have been described as those using consistent building blocks supplied by a single vendor. [38] Intel General Manager of high-density computing, Jason Waxman, is quoted as saying that a homogeneous system of 15,000 servers would cost $6 million more in capital expenditure and use 1 megawatt of power. [38]

Open source

Open-source software has provided the foundation for many cloud computing implementations, prominent examples being the Hadoop framework [39] and VMware's Cloud Foundry. [40] In November 2007, the Free Software Foundation released the Affero General Public License, a version of GPLv3 intended to close a perceived legal loophole associated with free software designed to run over a network. [41]

Open standards

Most cloud providers expose APIs that are typically well documented (often under a Creative Commons license [42] ) but also unique to their implementation and thus not interoperable. Some vendors have adopted others' APIs and there are a number of open standards under development, with a view to delivering interoperability and portability. [43] As of November 2012, the Open Standard with broadest industry support is probably OpenStack, founded in 2010 by NASA and Rackspace, and now governed by the OpenStack Foundation. [44] OpenStack supporters include AMD, Intel, Canonical, SUSE Linux, Red Hat, Cisco, Dell, HP, IBM, Yahoo, Huawei and now VMware. [45]

Security

Security is generally a desired state of being free from harm (anything that compromises the state of an entity's well-being). As defined in information security, it is a condition in which an information asset is protected against its confidentiality (quality or state of being free from unauthorized or insecure disclosure contrary to the defined access rights as listed in the access control list and or matrix), integrity (a quality or state of being whole/ as complete as original and uncorrupted as functionally proven by the hash integrity values) and availability (a desired state of an information resource being accessible only by authorized parties (as listed in access control list and or matrix) in the desired state and at the right time. Security is an important domain in as far as cloud computing is concerned, there are a number of issues to be addressed if the cloud is to be perfectly secure (a condition i doubt will ever be achieved)(Martin Muduva, 2015).

As cloud computing is achieving increased popularity, concerns are being voiced about the security issues introduced through adoption of this new model. [46] [47] The effectiveness and efficiency of traditional protection mechanisms are being reconsidered as the characteristics of this innovative deployment model can differ widely from those of traditional architectures. [48] An alternative perspective on the topic of cloud security is that this is but another, although quite broad, case of "applied security" and that similar security principles that apply in shared multi-user mainframe security models apply with cloud security. [49]

The relative security of cloud computing services is a contentious issue that may be delaying its adoption. [50] Physical control of the Private Cloud equipment is more secure than having the equipment off site and under someone else's control. Physical control and the ability to visually inspect data links and access ports is required in order to ensure data links are not compromised. Issues barring the adoption of cloud computing are due in large part to the private and public sectors' unease surrounding the external management of security-based services. It is the very nature of cloud computing-based services, private or public, that promote external management of provided services. This delivers great incentive to cloud computing service providers to prioritize building and maintaining strong management of secure services. [51]

Security issues have been categorized into sensitive data access, data segregation, privacy, bug exploitation, recovery, accountability, malicious insiders, management console security, account control, and multi-tenancy issues. Solutions to various cloud security issues vary, from cryptography, particularly public key infrastructure (PKI), to use of multiple cloud providers, standardization of APIs, and improving virtual machine support and legal support. [48] [52] [53]

Cloud computing offers many benefits, but is vulnerable to threats. [54] As cloud computing uses increase, it is likely that more criminals find new ways to exploit system vulnerabilities. Many underlying challenges and risks in cloud computing increase the threat of data compromise. To mitigate the threat, cloud computing stakeholders should invest heavily in risk assessment to ensure that the system encrypts to protect data, establishes trusted foundation to secure the platform and infrastructure, and builds higher assurance into auditing to strengthen compliance. Security concerns must be addressed to maintain trust in cloud computing technology. [46]

Data breach is one of the big concerns in cloud computing. A compromised server could significantly harm the users as well as cloud providers. A variety of information could be stolen. These include credit card and social security numbers, addresses, and personal messages. The U.S. now requires cloud providers to notify customers of breaches. Once notified, customers now have to worry about identity theft and fraud, while providers have to deal with federal investigations, lawsuits and reputational damage. Customer lawsuits and settlements have resulted in over $1 billion in losses to cloud providers. [55]

Availability

A cloud provider may shut down without warning. For instance, the Anki robot company suddenly went bankrupt in 2019, making 1.5 million robots unresponsive to voice command. [56]

Sustainability

Although cloud computing is often assumed to be a form of green computing , there is currently no way to measure how "green" computers are. [57]

The primary environmental problem associated with the cloud is energy use. Phil Radford of Greenpeace said “we are concerned that this new explosion in electricity use could lock us into old, polluting energy sources instead of the clean energy available today.” [58] Greenpeace ranks the energy usage of the top ten big brands in cloud computing, and successfully urged several companies to switch to clean energy.

On December 15, 2011, Greenpeace and Facebook announced together that Facebook would shift to use clean and renewable energy to power its own operations. [59] [60] Soon thereafter, Apple agreed to make all of its data centers ‘coal free’ by the end of 2013 and doubled the amount of solar energy powering its Maiden, NC data center. [61] Following suit, Salesforce agreed to shift to 100% clean energy by 2020. [62]

Citing the servers' effects on the environmental effects of cloud computing, in areas where climate favors natural cooling and renewable electricity is readily available, the environmental effects will be more moderate. (The same holds true for "traditional" data centers.) Thus countries with favorable conditions, such as Finland, [63] Sweden and Switzerland, [64] are trying to attract cloud computing data centers. Energy efficiency in cloud computing can result from energy-aware scheduling and server consolidation. [65] However, in the case of distributed clouds over data centers with different sources of energy including renewable energy, the use of energy efficiency reduction could result in a significant carbon footprint reduction. [66]

Abuse

As with privately purchased hardware, customers can purchase the services of cloud computing for nefarious purposes. This includes password cracking and launching attacks using the purchased services. [67] In 2009, a banking trojan illegally used the popular Amazon service as a command and control channel that issued software updates and malicious instructions to PCs that were infected by the malware. [68]

IT governance

The introduction of cloud computing requires an appropriate IT governance model to ensure a secured computing environment and to comply with all relevant organizational information technology policies. [69] [70] As such, organizations need a set of capabilities that are essential when effectively implementing and managing cloud services, including demand management, relationship management, data security management, application lifecycle management, risk and compliance management. [71] A danger lies with the explosion of companies joining the growth in cloud computing by becoming providers. However, many of the infrastructural and logistical concerns regarding the operation of cloud computing businesses are still unknown. This over-saturation may have ramifications for the industry as a whole. [72]

Consumer end storage

The increased use of cloud computing could lead to a reduction in demand for high storage capacity consumer end devices, due to cheaper low storage devices that stream all content via the cloud becoming more popular.[ citation needed ] In a Wired article, Jake Gardner explains that while unregulated usage is beneficial for IT and tech moguls like Amazon, the anonymous nature of the cost of consumption of cloud usage makes it difficult for business to evaluate and incorporate it into their business plans. [72]

Ambiguity of terminology

Outside of the information technology and software industry, the term "cloud" can be found to reference a wide range of services, some of which fall under the category of cloud computing, while others do not. The cloud is often used to refer to a product or service that is discovered, accessed and paid for over the Internet, but is not necessarily a computing resource. Examples of service that are sometimes referred to as "the cloud" include, but are not limited to, crowd sourcing, cloud printing, crowd funding, cloud manufacturing. [73] [74]

Performance interference and noisy neighbors

Due to its multi-tenant nature and resource sharing, cloud computing must also deal with the "noisy neighbor" effect. This effect in essence indicates that in a shared infrastructure, the activity of a virtual machine on a neighboring core on the same physical host may lead to increased performance degradation of the VMs in the same physical host, due to issues such as e.g. cache contamination.

Due to the fact that the neighboring VMs may be activated or deactivated at arbitrary times, the result is an increased variation in the actual performance of cloud resources. This effect seems to be dependent on the nature of the applications that run inside the VMs but also other factors such as scheduling parameters and the careful selection may lead to optimized assignment in order to minimize the phenomenon. This has also led to difficulties in comparing various cloud providers on cost and performance using traditional benchmarks for service and application performance, as the time period and location in which the benchmark is performed can result in widely varied results. [75] This observation has led in turn to research efforts to make cloud computing applications intrinsically aware of changes in the infrastructure so that the application can automatically adapt to avoid failure. [76]

Monopolies and privatization of cyberspace

Philosopher Slavoj Žižek points out that, although cloud computing enhances content accessibility, this access is "increasingly grounded in the virtually monopolistic privatization of the cloud which provides this access". According to him, this access, necessarily mediated through a handful of companies, ensures a progressive privatization of global cyberspace. Žižek criticizes the argument purported by supporters of cloud computing that this phenomenon is part of the "natural evolution" of the Internet, sustaining that the quasi-monopolies "set prices at will but also filter the software they provide to give its "universality" a particular twist depending on commercial and ideological interests." [77]

See also

Related Research Articles

In telecommunication, provisioning involves the process of preparing and equipping a network to allow it to provide new services to its users. In National Security/Emergency Preparedness telecommunications services, "provisioning" equates to "initiation" and includes altering the state of an existing priority service or capability.

In economics, vendor lock-in, also known as proprietary lock-in or customer lock-in, makes a customer dependent on a vendor for products, unable to use another vendor without substantial switching costs.

Software as a service is a software licensing and delivery model in which software is licensed on a subscription basis and is centrally hosted. SaaS is also known as on-demand software, web-based software, or web-hosted software.

Software multitenancy is a software architecture in which a single instance of software runs on a server and serves multiple tenants. Systems designed in such manner are "shared". A tenant is a group of users who share a common access with specific privileges to the software instance. With a multitenant architecture, a software application is designed to provide every tenant a dedicated share of the instance - including its data, configuration, user management, tenant individual functionality and non-functional properties. Multitenancy contrasts with multi-instance architectures, where separate software instances operate on behalf of different tenants.

Desktop virtualization is a software technology that separates the desktop environment and associated application software from the physical client device that is used to access it.

Cloud storage is a model of computer data storage in which data, said to be on "the cloud", is stored remotely in logical pools and is accessible to users over a network, typically the Internet. The physical storage spans multiple servers, and the physical environment is typically owned and managed by a cloud computing provider. These cloud storage providers are responsible for keeping the data available and accessible, and the physical environment secured, protected, and running. People and organizations buy or lease storage capacity from the providers to store user, organization, or application data.

<span class="mw-page-title-main">On-premises software</span> Direct information article

On-premises software is installed and runs on computers on the premises of the person or organization using the software, rather than at a remote facility such as a server farm or cloud. On-premises software is sometimes referred to as "shrinkwrap" software, and off-premises software is commonly called "software as a service" ("SaaS") or "cloud computing".

Infrastructure as a service (IaaS) is a cloud computing service model by means of which computing resources are supplied by a cloud services provider. The IaaS vendor provides the storage, network, servers, and virtualization. This service enables users to free themselves from maintaining an on-premises data center. The IaaS provider is hosting these resources in either the public cloud, the private cloud, or the hybrid cloud.

<span class="mw-page-title-main">Cloud computing</span> Form of shared Internet-based computing

Cloud computing is the on-demand availability of computer system resources, especially data storage and computing power, without direct active management by the user. Large clouds often have functions distributed over multiple locations, each of which is a data center. Cloud computing relies on sharing of resources to achieve coherence and typically uses a pay-as-you-go model, which can help in reducing capital expenses but may also lead to unexpected operating expenses for users.

Dynamic Infrastructure is an information technology concept related to the design of data centers, whereby the underlying hardware and software can respond dynamically and more efficiently to changing levels of demand. In other words, data center assets such as storage and processing power can be provisioned to meet surges in user's needs. The concept has also been referred to as Infrastructure 2.0 and Next Generation Data Center.

A hosted desktop is a product set within the larger cloud-computing sphere generally delivered using a combination of technologies including hardware virtualization and some form of remote connection software, Citrix XenApp or Microsoft Remote Desktop Services being two of the most common. Processing takes place within the provider's datacenter environment with traffic between the datacenter and the client being primarily display updates, mouse movements and keyboard activity.

Cloud computing security or, more simply, cloud security, refers to a broad set of policies, technologies, applications, and controls utilized to protect virtualized IP, data, applications, services, and the associated infrastructure of cloud computing. It is a sub-domain of computer security, network security, and, more broadly, information security.

Data virtualization is an approach to data management that allows an application to retrieve and manipulate data without requiring technical details about the data, such as how it is formatted at source, or where it is physically located, and can provide a single customer view of the overall data.

Mobile Cloud Computing (MCC) is the combination of cloud computing and mobile computing to bring rich computational resources to mobile users, network operators, as well as cloud computing providers. The ultimate goal of MCC is to enable execution of rich mobile applications on a plethora of mobile devices, with a rich user experience. MCC provides business opportunities for mobile network operators as well as cloud providers. More comprehensively, MCC can be defined as "a rich mobile computing technology that leverages unified elastic resources of varied clouds and network technologies toward unrestricted functionality, storage, and mobility to serve a multitude of mobile devices anywhere, anytime through the channel of Ethernet or Internet regardless of heterogeneous environments and platforms based on the pay-as-you-use principle."

HP Cloud Service Automation is cloud management software from Hewlett Packard Enterprise (HPE) that is used by companies and government agencies to automate the management of cloud-based IT-as-a-service, from order, to provision, and retirement. HP Cloud Service Automation orchestrates the provisioning and deployment of complex IT services such as of databases, middleware, and packaged applications. The software speeds deployment of application-based services across hybrid cloud delivery platforms and traditional IT environments.

A cloud database is a database that typically runs on a cloud computing platform and access to the database is provided as-a-service. There are two common deployment models: users can run databases on the cloud independently, using a virtual machine image, or they can purchase access to a database service, maintained by a cloud database provider. Of the databases available on the cloud, some are SQL-based and some use a NoSQL data model.

HP CloudSystem is a cloud infrastructure from Hewlett Packard Enterprise (HPE) that combines storage, servers, networking and software.

<span class="mw-page-title-main">HP Cloud</span> Set of cloud computing services

HP Cloud was a set of cloud computing services available from Hewlett-Packard. It was the combination of the previous HP Converged Cloud business unit and HP Cloud Services, an OpenStack-based public cloud. It was marketed to enterprise organizations to combine public cloud services with internal IT resources to create hybrid clouds, or a mix of private and public cloud environments, from around 2011 to 2016.

Cloud management is the management of cloud computing products and services.

"X as a service" is a phrasal template for any business model in which a product use is offered as a subscription-based service rather than as an artifact owned and maintained by the customer. Originating from the software as a service concept that appeared in the 2010s with the advent of cloud computing, the template has expanded to numerous offerings in the field of information technology and beyond it. The term XaaS can mean "anything as a service".

References

  1. 1 2 Gaur, A., Jain, A., & Verma, A. (2017, August). Analyzing storage and time delay by hybrid Blowfish-Md5 technique. In 2017 International Conference on Energy, Communication, Data Analytics and Soft Computing (ICECDS) (pp. 2985-2990). IEEE.
  2. 1 2 3 Haghighat, Mohammad; Zonouz, Saman; Abdel-Mottaleb, Mohamed (2015). "CloudID: Trustworthy cloud-based and cross-enterprise biometric identification". Expert Systems with Applications. 42 (21): 7905–7916. doi:10.1016/j.eswa.2015.06.025.
  3. Ostberg; et al. (2017). "Reliable capacity provisioning for distributed cloud/Edge/Fog computing applications". 2017 European Conference on Networks and Communications (EuCNC). pp. 1–6. doi:10.1109/EuCNC.2017.7980667. hdl:11572/272828. ISBN   978-1-5386-3873-6. S2CID   19836815.
  4. Johnson, Bobbie (2008-09-29). "Cloud computing is a trap, warns GNU founder Richard Stallman". Computing. The Guardian . Guardian News and Media Limited. ISSN   0261-3077 . Retrieved 2015-07-09. Richard Stallman, founder of the Free Software Foundation and creator of the computer operating system GNU, said that cloud computing was simply a trap aimed at forcing more people to buy into locked, proprietary systems that would cost them more and more over time. [...] The 55-year-old New Yorker said that computer users should be keen to keep their information in their own hands, rather than hand it over to a third party.
  5. Farber, Dan (2008-09-26). "Oracle's Ellison nails cloud computing". CNET. CBS Interactive Inc. Retrieved 2015-07-09. Speaking at Oracle OpenWorld, Larry Ellison said that the computer industry is more fashion-driven than women's fashion and cloud computing is simply the latest fashion. The Wall Street Journal quoted the Oracle CEO's remarks: 'The interesting thing about cloud computing is that we've redefined cloud computing to include everything that we already do. I can't think of anything that isn't cloud computing with all of these announcements. The computer industry is the only industry that is more fashion-driven than women's fashion. Maybe I'm an idiot, but I have no idea what anyone is talking about. What is it? It's complete gibberish. It's insane. When is this idiocy going to stop? [...] We'll make cloud computing announcements. I'm not going to fight this thing. But I don't understand what we would do differently in the light of cloud.'
  6. "Archived copy" (PDF). Archived from the original (PDF) on 2016-03-19. Retrieved 2014-07-03.{{cite web}}: CS1 maint: archived copy as title (link)
  7. Challenges & Opportunities for IT partners when transforming or creating a business in the Cloud. compuBase consulting. 2012. p. 77.
  8. Cloud Computing Grows Up: Benefits Exceed Expectations According to Report. Press Release, May 21, 2013.
  9. 1 2 3 4 5 6 7 ryan, mark (January 2011). "Cloud Computing Privacy Concerns on Our Doorstep". ACM. 54: 36–38. doi: 10.1145/1866739.1866751 .
  10. 1 2 Anushka Gaur, Anurag Jain. Glimpse of Cloud Computing, International Journal of Advance Research, Ideas and Innovations in Technology, www.IJARIIT.com.
  11. Cauley, Leslie (2006-05-11). "NSA has massive database of Americans' phone calls". USA Today. Retrieved 2010-08-22.
  12. "NSA taps in to user data of Facebook, Google and others, secret files reveal". 2013-06-07. Retrieved 2013-06-07.
  13. Winkler, Vic (2011). Securing the Cloud: Cloud Computer Security Techniques and Tactics. Waltham, Massachusetts: Elsevier. p. 60. ISBN   978-1-59749-592-9. Archived from the original on 2012-07-29. Retrieved 2014-07-03.
  14. "Regions and Availability Zones". Amazon Web Services Documentation. Retrieved 2014-01-24.
  15. "Cloud Computing Privacy Concerns on Our Doorstep". January 2011.
  16. All Cloud Drives from One Location. Retrieved on 14 December 2015
  17. "Dropbox Privacy Policy" . Retrieved 2014-12-04.
  18. "'Every touch leaves a trace': how Google helped track bomb hoax suspect". 2011-08-17. Retrieved 2014-12-04.
  19. Sen, Saydip (2013). "Security and Privacy Issues in Cloud Computing". In Ruiz-Martinez; Pereniguez-Garcia; Marin-Lopez (eds.). Architectures and Protocols for Secure Information Technology Infrastructures. Advances in Information Security, Privacy, and Ethics. USA: IGI-Global. pp. 1–45. arXiv: 1303.4814 . Bibcode:2013arXiv1303.4814S. doi:10.4018/978-1-4666-4514-1.ch001. ISBN   9781466645141. S2CID   14091704.
  20. "FISMA compliance for federal cloud computing on the horizon in 2010". SearchCompliance.com. Archived from the original on 2010-07-25. Retrieved 2010-08-22.
  21. "Google Apps and Government". Official Google Enterprise Blog. 2009-09-15. Retrieved 2010-08-22.
  22. "Cloud Hosting is Secure for Take-off: Mosso Enables The Spreadsheet Store, an Online Merchant, to become PCI Compliant". Rackspace. 2009-03-14. Archived from the original on 2011-10-01. Retrieved 2010-08-22.
  23. "Amazon gets SAS 70 Type II audit stamp, but analysts not satisfied". SearchCloudComputing.com. 2009-11-17. Retrieved 2010-08-22.
  24. "Assessing Cloud Computing Agreements and Controls". WTN News. Archived from the original on 2011-04-03. Retrieved 2010-08-22.
  25. "Cloud Certification From Compliance Mandate to Competitive Differentiator". Cloudcor. Retrieved 2011-09-20.
  26. "How the New EU Rules on Data Export Affect Companies in and Outside the EU | Dr. Thomas Helbing – Kanzlei für Datenschutz-, Online- und IT-Recht". Dr. Thomas Helbing. Retrieved 2010-08-22.
  27. 1 2 Chambers, Don (July 2010). "Windows Azure: Using Windows Azure's Service Bus to Solve Data Security Issues" (PDF). Rebus Technologies. Retrieved 2012-12-14.
  28. "FedRAMP". U.S. General Services Administration. 2012-06-13. Archived from the original on 2012-10-06. Retrieved 2012-06-17.
  29. Cohn, Cindy; Samuels, Julie (31 October 2012). "Megaupload and the Government's Attack on Cloud Computing". Electronic Frontier Foundation. Retrieved 2012-12-14.
  30. Maltais, Michelle (26 April 2012). "Who owns your stuff in the cloud?". Los Angeles Times. Retrieved 2012-12-14.
  31. 1 2 3 McKendrick, Joe. (2011-11-20) "Cloud Computing's Vendor Lock-In Problem: Why the Industry is Taking a Step Backward," Forbes.com
  32. Hinkle, Mark. (2010-6-9) "Three cloud lock-in considerations", Zenoss Blog
  33. Staten, James (2012-07-23). "Gelsinger brings the 'H' word to VMware". ZDNet.
  34. Vada, Eirik T. (2012-06-11) "Creating Flexible Heterogeneous Cloud Environments", page 5, Network and System Administration, Oslo University College
  35. Geada, Dave. (June 2, 2011) "The case for the heterogeneous cloud," Cloud Computing Journal
  36. Burns, Paul (2012-01-02). "Cloud Computing in 2012: What's Already Happening". Neovise. Archived 2014-07-01 at the Wayback Machine
  37. 1 2 3 4 Livenson, Ilja. Laure, Erwin. (2011) "Towards transparent integration of heterogeneous cloud storage platforms", pages 27–34, KTH Royal Institute of Technology, Stockholm, Sweden.
  38. 1 2 Gannes, Liz. GigaOm, "Structure 2010: Intel vs. the Homogeneous Cloud," June 24, 2010.
  39. Jon Brodkin (July 28, 2008). "Open source fuels growth of cloud computing, software-as-a-service". Network World. Archived from the original on October 15, 2012. Retrieved 2012-12-14.
  40. "VMware Launches Open Source PaaS Cloud Foundry". 2011-04-21. Retrieved 2012-12-14.
  41. "AGPL: Open Source Licensing in a Networked Age". Redmonk.com. 2009-04-15. Retrieved 2010-08-22.
  42. GoGrid Moves API Specification to Creative Commons Archived May 5, 2009, at the Wayback Machine
  43. "Eucalyptus Completes Amazon Web Services Specs with Latest Release". Ostatic.com. Archived from the original on 2012-10-08. Retrieved 2010-08-22.
  44. "OpenStack Foundation launches". Infoworld.com. 2012-09-19. Retrieved 2012-11-17.
  45. "Did OpenStack Let VMware Into The Henhouse?". InformationWeek. 2012-10-19. Retrieved 2012-11-17.
  46. 1 2 Mariana Carroll; Paula Kotzé; Alta van der Merwe (2012). "Securing Virtual and Cloud Environments". In I. Ivanov; et al. (eds.). Cloud Computing and Services Science, Service Science: Research and Innovations in the Service Economy. Springer Science+Business Media. doi:10.1007/978-1-4614-2326-3. ISBN   978-1-4614-2325-6. S2CID   45153604.
  47. M Carroll, P Kotzé, Alta van der Merwe (2011), Secure virtualization: benefits, risks and constraints, 1st International Conference on Cloud Computing and Services Science, Noordwijkerhout, The Netherlands, 7–9 May 2011
  48. 1 2 Zissis, Dimitrios; Lekkas (2010). "Addressing cloud computing security issues". Future Generation Computer Systems. 28 (3): 583. doi:10.1016/j.future.2010.12.006.
  49. Winkler, Vic (2011). Securing the Cloud: Cloud Computer Security Techniques and Tactics. Waltham, MA USA: Syngress. pp. 187, 189. ISBN   978-1-59749-592-9. Archived from the original on 2012-07-29. Retrieved 2014-07-03.
  50. "Are security issues delaying adoption of cloud computing?". Network World. Archived from the original on 2010-02-22. Retrieved 2010-08-22.
  51. "Security of virtualization, cloud computing divides IT and security pros". Network World. 2010-02-22. Retrieved 2010-08-22.
  52. Armbrust, M; Fox, A.; Griffith, R.; Joseph, A.; Katz, R.; Konwinski, A.; Lee, G.; Patterson, D.; Rabkin, A.; Zaharia, M. (2010). "A view of cloud computing". Communications of the ACM. 53 (4): 50–58. doi: 10.1145/1721654.1721672 .
  53. Anthens, G (2010). "Security in the cloud". Communications of the ACM. 53 (11): 16. doi:10.1145/1839676.1839683. S2CID   9125453.
  54. Solomon, Amiad. "Importance of Cloud Cost Management". Spot by NetApp. Retrieved 2022-08-12.
  55. Bowen, Janine Anthony. (2011). Cloud Computing: Issues in Data Privacy/Security and Commercial Considerations. Computer and Internet Lawyer Trade Journal. 28 (8), 8.
  56. "Inside Anki shutdown: Who owns IP, assets auction, failed partnership". 2019-06-18.
  57. James Urquhart (January 7, 2010). "Cloud computing's green paradox". CNET News. Retrieved March 12, 2010. ... there is some significant evidence that the cloud is encouraging more compute consumption
  58. "Dirty Data Report Card" (PDF). Greenpeace . Retrieved 2013-08-22.
  59. "Facebook and Greenpeace settle Clean Energy Feud". Techcrunch. 15 December 2011. Retrieved 2013-08-22.
  60. "Facebook Commits to Clean Energy Future". Greenpeace . Retrieved 2013-08-22.
  61. "Apple is leaving Microsoft and Amazon in 'dust' for its clean internet efforts – Greenpeace". Greenpeace . Retrieved 2013-08-22.
  62. "Salesforce Announces Commitment to a Cloud Powered by 100% Renewable Energy". Greenpeace. 2013-03-06. Archived from the original on 2018-10-22. Retrieved 2013-08-22.
  63. Finland – First Choice for Siting Your Cloud Computing Data Center. Archived 2013-07-06 at the Wayback Machine . Retrieved 4 August 2010.
  64. Swiss Carbon-Neutral Servers Hit the Cloud.. Retrieved 4 August 2010.
  65. Berl, Andreas, et al., Energy-Efficient Cloud Computing, The Computer Journal, 2010.
  66. Farrahi Moghaddam, Fereydoun, et al., Low Carbon Virtual Private Clouds, IEEE Cloud 2011.
  67. Alpeyev, Pavel (2011-05-14). "Amazon.com Server Said to Have Been Used in Sony Attack". Bloomberg. Retrieved 2011-08-20.
  68. Goodin, Dan (2011-05-14). "PlayStation Network hack launched from Amazon EC2". The Register. Retrieved 2012-05-18.
  69. Hsu, Wen-Hsi L., "Conceptual Framework of Cloud Computing Governance Model – An Education Perspective", IEEE Technology and Engineering Education (ITEE), Vol 7, No 2 (2012) "Conceptual Framework of Cloud Computing Governance Model - an Education Perspective | Hsu | IEEE Technology and Engineering Education (ITEE)". Archived from the original on 2013-03-03. Retrieved 2014-07-03.
  70. Stackpole, Beth, "Governance Meets Cloud: Top Misconceptions", InformationWeek, 7 May 2012
  71. Joha, A and M. Janssen (2012) "Transformation to Cloud Services Sourcing: Required IT Governance Capabilities", ICST Transactions on e-Business 12(7-9)
  72. 1 2 Gardner, Jake (2013-03-28). "Beware: 7 Sins of Cloud Computing". Wired. Retrieved 2013-06-20.
  73. S. Stonham and S. Nahalkova (2012) "What is the Cloud and how can it help my business?" "What is the Cloud? How can the Cloud help my business? | OVASTO - Business and Marketing Strategy". Archived from the original on 2014-03-17. Retrieved 2014-07-03.
  74. S. Stonham and S. Nahalkova (2012), Whitepaper "Tomorrow Belongs to the Agile (PDF)" "Developing Cloud Strategies for Business Agility | OVASTO". Archived from the original on 2013-11-06. Retrieved 2014-07-03.
  75. George Kousiouris, Tommaso Cucinotta, Theodora Varvarigou, "The Effects of Scheduling, Workload Type and Consolidation Scenarios on Virtual Machine Performance and their Prediction through Optimized Artificial Neural Networks", The Journal of Systems and Software (2011), Volume 84, Issue 8, August 2011, pp. 1270–1291, Elsevier, doi:10.1016/j.jss.2011.04.013.
  76. http://www.cloudwave-f7.eu/ . Retrieved 2022-06-29.{{cite web}}: Missing or empty |title= (help)
  77. Slavoj Žižek (May 2, 2011). "Corporate Rule of Cyberspace". Inside Higher Ed. Retrieved July 10, 2013.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.