Government

Conference submissions for government.

Privacy in the Cloud: Client-Side Encryption and Online Key Management for Cloud-Based Collaboration.

Session Date and Time: Day 2, March 24, 13:00pm EST (10:00am West Coast) (30min)
Keywords: collaboration, Encryption, Key Management, Privacy, security.
Authors: David Sussman and Charles Chung and Qiang Lin, PhD, Bits Republic Technologies (Canada).
Abstract: Enterprises of all sizes share, and collaborate on, digital information: both within their organizations, as well as with clients and strategic partners. A variety of technologies exist to meet this need, notably local and Internet-based email servers, FTP servers, third party hosted application services, data storage systems, and peered data networks. Most organizations use a combination of these technologies, but each has limitations. Businesses inevitably find that they face compromises among flexibility, portability, functionality, affordability, and (perhaps most importantly) security.

Cloud Security and Privileged Identities in the Cloud

Keywords: security, privileged identities, password management, identity management.
Authors: Philip Lieberman, founder and CEO of Lieberman Software.
Abstract:
Major ISPs and cloud vendors have begun the difficult task of integrating security solutions that are capable of managing the
large number of privileged identities that make up their infrastructure (hardware, VM hosts, VM Image OS, application stacks). How can we trust in the cloud if the vendors of cloud-based infrastructure neglect to implement both process and technology to assure that segregation of duties is enforced as well as the management of identities between customer and cloud vendor? What about security auditing of cloud-based solutions in a multi-tenancy environment?

Managing Private and Hybrid Clouds For Data Storage

Keywords: Hybrid Clouds, private clouds .
Authors: Mark Carlson, Sun Microsystems, Inc. and Marty Foltyn, SNIA Cloud Storage Initiative.
Abstract: Many organizations, driven by the opportunities for significant cost-savings, are considering cloud computing and cloud storage solutions, which take advantage of Web-based technologies to allow scalable, virtualized IT resources to be provided as a service over the network. Not a new technology in itself, cloud computing is a new business model wrapped around existing technologies, such as server virtualization, to make the use of information technology resources more efficient.

Federal Department leads the way with enterprise-level Cloud Computing Solution

Keywords: federal financial management, cloud financial management, financial transparency, financial compliance, Enterprise Share Service Provider.
Authors: Ray Musilmani, CEO for GCE and David Lucas, Chief Strategy Officer for GCE.
Abstract: With the new administration there is plenty of discussion around accountability, compliance and financial responsibility, but few agencies have been able to point to public successes.
Government transformation, critically needed in financial management, can be implemented within federal agencies with the right solution. Utilizing tools such as a commercial Shared Service Provider for government agencies in a cloud computing-based solution will allow an agency to drive efficiencies in financial management and compliance, with a seamless transition from an existing environment to a new solution. Ultimately, the solution will enable an agency to focus on its core mission.

Impact of Cloud Computing on e-discovery

Session Date & Time: Day 2, March 24, 8.30pm EST (5.30pm West Coast) (45min)
Keywords: e-discovery.
Authors: Shawn Waggoner, Director, Archiving and eDiscovery, Terremark.
Abstract: Cloud Computing has a range of meanings and used to describe everything from Software as a Service (SaaS) to Infrastructure as a Service (Iaas). Regardless of which aspect you are describing, the cloud is here and companies are moving quickly to this new technology. Private and Public sector organizations are migrating their data and information to the cloud. Legal regulations that require keeping certain records versus delegating other types of data to cloud services create confusion in the e-discovery process. Terremark’s presentation will address the commonplace conundrums for today’s organizations considering cloud:

  • What does this mean for e-discovery?
  • Who is responsible for the data?
  • How do you find information on these platforms?
  • How is the data preserved for litigation holds?

Machine-to-Machine (M2M) Meets "The Cloud": A Mandate Emerges.

Keywords: PaaS, Cloud computing benefits, Machine-to-Machine (M2M), asset tracking, SaaS.
Authors: Michael Campbell, President and CEO of SensorLogic™.
Abstract: The potential number of connected devices will reach billions within a small number of years. What’s driving this explosive growth is power of visibility (what is something, where is it, what condition is it in) and the ability to control assets, or change a business process based on this information. Cost and complexity have been inhibitors until now. Michael Campbell, President and CEO of SensorLogic will provide insight as to how delivering Machine-to-Machine (M2M) applications through a Cloud platform (PaaS) make business sense as well as address the unique aspects of tracking and monitoring applications that almost mandate a shift to the Cloud Computing model.

Auditing for Cloud Computing

Keywords: Cloud Auditing, Compliance, governance, Regulation.
Authors: Jonathan Sinclair, SAP Research.
Abstract: Cloud computing is a paradigm evolution that benefits from virtualization technologies and introduces “everything-as-a-service” as a technical and business concept supported by pay-per-use pricing models. Whilst the on-demand characteristics of this novel paradigm provide revolutionary advances in technical ability, the changes while incorporating this into an IT infrastructure raise many complex problems and risks with regards to auditing. Auditing is the process of tracing and logging significant events the take place during the system run-time for analysis, and can be seen as a vital tool in validating and securing systems.

Data Anonymizers: One Approach to Privacy in Cloud Computing.

Keywords: Security, Privacy, Anonymizer, SaaS.
Authors: Sergio Loureiro and Matthias Jung, secludit(France).
Abstract: Web-applications and SaaS (Software as a Service) become more popular not only for end-users, but also for enterprises. As a consequence, mission critical and potentially confidential data is stored on the premises of service providers. Privacy of data has therefore become a major concern for companies that consider to use web-services. But given the lack of control over the infrastructure (hardware, software, databases), what are the options besides trusting the service provider and paying attention to the service level agreements (SLA)? Is it possible and technically feasible to manage privacy within the web?

Taxation & Regulatory Security in the Cloud

Keywords: Regulatory Security, Taxation.
Authors: Saraiah Gujjunoori, Research Scholar, CSE, NITW and Asoke K. Talukder, Director & Mentor, Geschickten Solutions Pvt. Ltd and Prahalad H.A, Director, Geschickten Solutions Pvt. Ltd. and B.B Amberker, Professor, CSE, NITW .
Abstract: Cloud computing has generated lot of interest and tractions in recent times. Cloud computing is an emerging computing paradigm where data and applications reside in the cyberspace, it allowing users to access them through any web-connected device [1] be it fixed or mobile. Cloud can be private cloud or public cloud. Private cloud will be implemented by enterprises for their own private use. This will mainly be to reduce the cost and have a centralized management of the data. At a later time a private cloud will also be commissioned to get carbon credit. Private cloud will be an extension of the data centre within the control of the enterprise; in private cloud an enterprise can implement a security policy and control people and hardware resource with respect to privacy, security, and access. However, the cloud in this paper refers to public cloud where data, processor, or applications are running in the public cloud, the user does not have knowledge of where the data is stored, and how is it transmitted.

Data Protection Law Requirements to Cloud Computing Agreements in the European Union (EU).

Session Date and Time: Day 2, March 24, 20:30pm EST (17.30PM West Coast) –(45min)
Keywords: Agreement, Data Protection, European Union, Law, Privacy.
Authors: Thomas Helbing, Law Firm Dr. Helbing.
Abstract: The presentation gives an overview over the requirements of the EU Data Protection Directive for cloud computing services with examples from national laws, in particular Germany. No legal background knowledge is required.

The session shall help compliance managers, privacy and IT security officers, legal counsel, contract manager and sales/procurement teams to understand EU privacy compliance requirements. It is addressed to vendors and customers of cloud services in and outside the EU. An understanding of the basic concept of data protection laws is important for customers when analyzing terms and conditions of cloud providers and for providers when targeting customers in the EU.

Key questions will be: What is the role of the EU Data Protection Directive? What legal requirements must be fulfilled by cloud computing agreements in relation to privacy? Which security measures are required? What special rules apply if cloud providers are located outside the EU?

We will also analyze the new EU standard contractual clauses for data export which the EU Commission has updated in February 2010.

Bio

Dr. Thomas Helbing is an IT and data protection lawyer from Germany, holding a PhD in Telecommunications Law. He practiced from 2004 to 2009 at Lovells LLP, a leading international commercial law firm, in the practice group "Technology, Media and Telecommunications". In 2009 he has founded his own law firm. Thomas advises both medium sized and international companies on IT and data protection matters and has comprehensive experience in drafting and negotiating IT contracts. Visit his website at www.thomashelbing.com

Register Now and Get Full Access to All Sessions and Recordings.

Thank you for your interest in Cloud Slam 2010. Please use form below to register for the access. If you experience problems with the form above not rendering at all, try registering directly at http://postcloudslam10.eventbrite.com/?ref=eweb

Note: If you experience problems with the form above not rendering at all, try registering directly at http://postcloudslam10.eventbrite.com/?ref=eweb

Syndicate content