|By Paul Diamond||
|April 5, 2014 04:00 PM EDT||
The proliferation of cloud-based applications for the enterprise grows each day, and more and more professionals have grown dependent on these apps as the consumerization of IT flourishes in today's mobile enterprise. With the consumerization of IT, employees have become their own IT experts and demand that their IT departments add cloud services or enable them to use a particular app with the corporate network. IT departments, naturally, want to use the latest technologies to make the entire company more efficient and productive - and they see how the cloud can help accomplish this. What employees don't often see is that there are roadblocks to rolling out a new service or enabling an app to work with the network. Everything from budget to security to integration issues may cause the IT department to turn down the requests. However, unlike in the past, employees now have the power and the means to just use these services anyway, without IT's approval.
Similar to BYOD, this concept of bring-your-own-cloud (BYOC) is not going anywhere. Just think - it's incredibly easy for employees to access preferred technology offerings on a mobile or personal device, but it's still on the company network. Just download it, watch a YouTube video on how to make it work and voila - you have your cloud service. Any professional with a smartphone is enabled by cloud, social computing, analytics and mobile - and wants to transfer that experience seamlessly between their personal and professional computing.
This obviously poses a huge problem for the company network. IT staff either doesn't know this happened, or is forced to quickly address network and security issues, often leading to Band-Aid fixes. Results from Forrester's Forrsights Workforce Employee Survey, Q4 2012 indicate that at least 85 percent of employees use phone/tablet applications and web-based services, which is putting corporate information security under serious threat. Just to start, BYOC could hypothetically:
- Denigrate the network - Deploying cloud technologies and operating models muddies the role that networking plays. Further, the impact of the cloud on the networks may not always be clear, and while the network is indeed important to cloud computing, the network also must change in order to facilitate these preferences. In a hybrid environment, the relationship and connection between a user's cloud and the provider's network must be secure - but the structure should be in place beforehand. The bottom line is, no network means no cloud - without networks, users cannot access their cloud services.
- Challenge traditional security practices - It's really hard to ensure that information on employee-owned hardware and software is secure. For security professionals, BYOC seems like a nightmare. Personal devices are getting smarter and are better able to store and do more with corporate data, especially with the proliferation of personal cloud storage like Evernote, Amazon S3 and even Facebook. They also become a bigger target for hackers.
- Introduce viruses - In BYOC environments you will inevitably have one employee who leisurely browses the web, opens email attachments, stores phantom files, freely clicks on links, and can't - or rarely - updates their security software. Without a policy in place, this is a veritable virus breeding ground.
- Expose critical company data over unsecure networks and devices - This one seems pretty obvious, right? Downloading sensitive company files to an iPad, saving it to iCloud, and then connecting to the Starbucks Wi-Fi network down the street is not an ideal scenario - but it's a likely one.
Where does an enterprise start? The pros and cons are clear, and while it's important in this day and age to be accommodating and supportive of the innovative models that professionals take to accomplish their work, day-in and day-out, it's also very important to have a policy and framework in place that keeps all constituents on the same page while living on the same network. Let's start there - what frame of mind when devising a BYOC policy is reasonable and will be accepted by employees?
It's important to have a solid understanding of the stage at which cloud applications have infiltrated the organization. Once an organization understands the true level of cloud adoption across the board, they can better understand the true implications for their network and security, and how critical an organization-wide policy is to institute rules and regulations.
Network Monitoring and Inventory
Solutions exist that will take a complete look at your network and take stock of what is connected to your network (wired and wireless). It will know who owns it, what kind of memory it has, if and what software is installed and running, user information, network configurations and more. This is step one in your diagnosis, but also important throughout to keep track of the state of your network and to dissuade rogue users.
From there, your IT organization can determine how to protect itself from this phenomenon. Users are both the champions for this, as well as the weakest link - they likely own the device and they likely own the storage and access of the corporate data - so it's most important to invest in their knowledge, understanding and commitment to the policy.
Train and Instruct
Let employees know that they are responsible for their devices and cloud service from a cost and upkeep perspective, but also for what happens as a result of any personal computing or professional computing over personal assets. If an employee is not a good fit for any BYOC policy, such as a legal professional, instruct them of a revised policy.
Regardless, physical training of employees should happen over digital programs that they can quickly skip through and provide a digital signature without fully understanding or comprehending the responsibility that is in their hands - literally.
Security, Security, Security
Many companies are aware of how to secure devices that are introduced onto the network. For instance, there are a plethora of mobile device management solutions available that secure, monitor, manage and support mobile devices deployed across a corporate network. But for the cloud, to secure data and applications, it's important to invest in solutions with built-in data loss prevention (DLP), giving users an encrypted storage space on the mobile device to safely store business critical data.
For the network, there are a variety of network access control solutions that will give administrators the ability to enforce role-based access. In some cases, these types of solutions might just be viewed as Band-Aid fixes to a larger problem. Depending on your organization, however, these can be good first steps, building up to the implementation of a more holistic hybrid cloud environment that offers employees a full-scale cloud solution to support such bandwidth.
The bottom line, you must be in the know - you must know where your network stands at all times; you must know what your employees want from a cloud perspective; you must know what they currently have from a cloud perspective; and you must know what the best path is to take for your organization - be that a six-month path of quick-fixes and BYOC policies, or a full-fledged cloud offering that puts your mind at ease and keeps your employees happy.
Today’s connected world is moving from devices towards things, what this means is that by using increasingly low cost sensors embedded in devices we can create many new use cases. These span across use cases in cities, vehicles, home, offices, factories, retail environments, worksites, health, logistics, and health. These use cases rely on ubiquitous connectivity and generate massive amounts of data at scale. These technologies enable new business opportunities, ways to optimize and automate, along with new ways to engage with users.
Oct. 8, 2015 03:45 PM EDT
The IoT market is on track to hit $7.1 trillion in 2020. The reality is that only a handful of companies are ready for this massive demand. There are a lot of barriers, paint points, traps, and hidden roadblocks. How can we deal with these issues and challenges? The paradigm has changed. Old-style ad-hoc trial-and-error ways will certainly lead you to the dead end. What is mandatory is an overarching and adaptive approach to effectively handle the rapid changes and exponential growth.
Oct. 8, 2015 03:30 PM EDT
The buzz continues for cloud, data analytics and the Internet of Things (IoT) and their collective impact across all industries. But a new conversation is emerging - how do companies use industry disruption and technology enablers to lead in markets undergoing change, uncertainty and ambiguity? Organizations of all sizes need to evolve and transform, often under massive pressure, as industry lines blur and merge and traditional business models are assaulted and turned upside down. In this new data-driven world, marketplaces reign supreme while interoperability, APIs and applications deliver un...
Oct. 8, 2015 03:30 PM EDT Reads: 208
The Internet of Things (IoT) is growing rapidly by extending current technologies, products and networks. By 2020, Cisco estimates there will be 50 billion connected devices. Gartner has forecast revenues of over $300 billion, just to IoT suppliers. Now is the time to figure out how you’ll make money – not just create innovative products. With hundreds of new products and companies jumping into the IoT fray every month, there’s no shortage of innovation. Despite this, McKinsey/VisionMobile data shows "less than 10 percent of IoT developers are making enough to support a reasonably sized team....
Oct. 8, 2015 03:30 PM EDT Reads: 126
You have your devices and your data, but what about the rest of your Internet of Things story? Two popular classes of technologies that nicely handle the Big Data analytics for Internet of Things are Apache Hadoop and NoSQL. Hadoop is designed for parallelizing analytical work across many servers and is ideal for the massive data volumes you create with IoT devices. NoSQL databases such as Apache HBase are ideal for storing and retrieving IoT data as “time series data.”
Oct. 8, 2015 02:45 PM EDT Reads: 489
Clearly the way forward is to move to cloud be it bare metal, VMs or containers. One aspect of the current public clouds that is slowing this cloud migration is cloud lock-in. Every cloud vendor is trying to make it very difficult to move out once a customer has chosen their cloud. In his session at 17th Cloud Expo, Naveen Nimmu, CEO of Clouber, Inc., will advocate that making the inter-cloud migration as simple as changing airlines would help the entire industry to quickly adopt the cloud without worrying about any lock-in fears. In fact by having standard APIs for IaaS would help PaaS expl...
Oct. 8, 2015 02:30 PM EDT Reads: 641
There are so many tools and techniques for data analytics that even for a data scientist the choices, possible systems, and even the types of data can be daunting. In his session at @ThingsExpo, Chris Harrold, Global CTO for Big Data Solutions for EMC Corporation, will show how to perform a simple, but meaningful analysis of social sentiment data using freely available tools that take only minutes to download and install. Participants will get the download information, scripts, and complete end-to-end walkthrough of the analysis from start to finish. Participants will also be given the pract...
Oct. 8, 2015 02:15 PM EDT Reads: 219
SYS-CON Events announced today that ProfitBricks, the provider of painless cloud infrastructure, will exhibit at SYS-CON's 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. ProfitBricks is the IaaS provider that offers a painless cloud experience for all IT users, with no learning curve. ProfitBricks boasts flexible cloud servers and networking, an integrated Data Center Designer tool for visual control over the cloud and the best price/performance value available. ProfitBricks was named one of the coolest Clo...
Oct. 8, 2015 01:00 PM EDT Reads: 756
Organizations already struggle with the simple collection of data resulting from the proliferation of IoT, lacking the right infrastructure to manage it. They can't only rely on the cloud to collect and utilize this data because many applications still require dedicated infrastructure for security, redundancy, performance, etc. In his session at 17th Cloud Expo, Emil Sayegh, CEO of Codero Hosting, will discuss how in order to resolve the inherent issues, companies need to combine dedicated and cloud solutions through hybrid hosting – a sustainable solution for the data required to manage I...
Oct. 8, 2015 01:00 PM EDT Reads: 469
NHK, Japan Broadcasting, will feature the upcoming @ThingsExpo Silicon Valley in a special 'Internet of Things' and smart technology documentary that will be filmed on the expo floor between November 3 to 5, 2015, in Santa Clara. NHK is the sole public TV network in Japan equivalent to the BBC in the UK and the largest in Asia with many award-winning science and technology programs. Japanese TV is producing a documentary about IoT and Smart technology and will be covering @ThingsExpo Silicon Valley. The program, to be aired during the peak viewership season of the year, will have a major impac...
Oct. 8, 2015 01:00 PM EDT Reads: 251
Apps and devices shouldn't stop working when there's limited or no network connectivity. Learn how to bring data stored in a cloud database to the edge of the network (and back again) whenever an Internet connection is available. In his session at 17th Cloud Expo, Bradley Holt, Developer Advocate at IBM Cloud Data Services, will demonstrate techniques for replicating cloud databases with devices in order to build offline-first mobile or Internet of Things (IoT) apps that can provide a better, faster user experience, both offline and online. The focus of this talk will be on IBM Cloudant, Apa...
Oct. 8, 2015 12:45 PM EDT Reads: 504
WebRTC is about the data channel as much as about video and audio conferencing. However, basically all commercial WebRTC applications have been built with a focus on audio and video. The handling of “data” has been limited to text chat and file download – all other data sharing seems to end with screensharing. What is holding back a more intensive use of peer-to-peer data? In her session at @ThingsExpo, Dr Silvia Pfeiffer, WebRTC Applications Team Lead at National ICT Australia, will look at different existing uses of peer-to-peer data sharing and how it can become useful in a live session to...
Oct. 8, 2015 12:00 PM EDT Reads: 600
As a company adopts a DevOps approach to software development, what are key things that both the Dev and Ops side of the business must keep in mind to ensure effective continuous delivery? In his session at DevOps Summit, Mark Hydar, Head of DevOps, Ericsson TV Platforms, will share best practices and provide helpful tips for Ops teams to adopt an open line of communication with the development side of the house to ensure success between the two sides.
Oct. 8, 2015 12:00 PM EDT Reads: 571
SYS-CON Events announced today that IBM Cloud Data Services has been named “Bronze Sponsor” of SYS-CON's 17th Cloud Expo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. IBM Cloud Data Services offers a portfolio of integrated, best-of-breed cloud data services for developers focused on mobile computing and analytics use cases.
Oct. 8, 2015 11:00 AM EDT Reads: 724
"Matrix is an ambitious open standard and implementation that's set up to break down the fragmentation problems that exist in IP messaging and VoIP communication," explained John Woolf, Technical Evangelist at Matrix, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
Oct. 8, 2015 07:00 AM EDT Reads: 5,865
WebRTC has had a real tough three or four years, and so have those working with it. Only a few short years ago, the development world were excited about WebRTC and proclaiming how awesome it was. You might have played with the technology a couple of years ago, only to find the extra infrastructure requirements were painful to implement and poorly documented. This probably left a bitter taste in your mouth, especially when things went wrong.
Oct. 8, 2015 06:00 AM EDT Reads: 756
Nowadays, a large number of sensors and devices are connected to the network. Leading-edge IoT technologies integrate various types of sensor data to create a new value for several business decision scenarios. The transparent cloud is a model of a new IoT emergence service platform. Many service providers store and access various types of sensor data in order to create and find out new business values by integrating such data.
Oct. 8, 2015 04:00 AM EDT Reads: 540
The broad selection of hardware, the rapid evolution of operating systems and the time-to-market for mobile apps has been so rapid that new challenges for developers and engineers arise every day. Security, testing, hosting, and other metrics have to be considered through the process. In his session at Big Data Expo, Walter Maguire, Chief Field Technologist, HP Big Data Group, at Hewlett-Packard, will discuss the challenges faced by developers and a composite Big Data applications builder, focusing on how to help solve the problems that developers are continuously battling.
Oct. 8, 2015 04:00 AM EDT Reads: 485
WebRTC converts the entire network into a ubiquitous communications cloud thereby connecting anytime, anywhere through any point. In his session at WebRTC Summit,, Mark Castleman, EIR at Bell Labs and Head of Future X Labs, will discuss how the transformational nature of communications is achieved through the democratizing force of WebRTC. WebRTC is doing for voice what HTML did for web content.
Oct. 8, 2015 03:00 AM EDT Reads: 1,376
Developing software for the Internet of Things (IoT) comes with its own set of challenges. Security, privacy, and unified standards are a few key issues. In addition, each IoT product is comprised of at least three separate application components: the software embedded in the device, the backend big-data service, and the mobile application for the end user's controls. Each component is developed by a different team, using different technologies and practices, and deployed to a different stack/target - this makes the integration of these separate pipelines and the coordination of software upd...
Oct. 8, 2015 03:00 AM EDT Reads: 279