Legislation

Cloud computing conference presentation for legislation.

Cutting to the Chase: Cloud Computing from the Customer’s Perspective

Session Date and Time: Day 3, March 25, 20:15pm EST (17.15pm West Coast)- (45min)
Keywords: Legal.
Authors: Janine Anthony Bowen, Esq.
Abstract: cloud computing This presentation, taken from the cloud customer’s perspective (as opposed to the vendor’s perspective) is aimed at those looking to purchase cloud services. It will provide a business context to considerations cloud customers should think through when contemplating the integration of cloud computing in its business and IT strategy. It will also set forth considerations and strategies to work through when negotiating cloud deals. No specialized legal knowledge is necessary; however it will be informative to those with backgrounds in law and compliance. The context of the technology evolution will be set by distinguishing cloud from outsourcing and ASPs. Additionally, a discussion of the various cloud contracting models will be covered. In order to develop an understanding of the customer-focused landscape, we will discuss the interaction of the Cloud (how SaaS, PaaS, and IaaS might work together), practical data privacy and security considerations (with due consideration of the risks that a customer should consider mitigating), and other commercial and business considerations. The key points around which a cloud customer should develop a negotiation strategy will also be covered.

Bio:

Privacy in the Cloud: Client-Side Encryption and Online Key Management for Cloud-Based Collaboration.

Session Date and Time: Day 2, March 24, 13:00pm EST (10:00am West Coast) (30min)
Keywords: collaboration, Encryption, Key Management, Privacy, security.
Authors: David Sussman and Charles Chung and Qiang Lin, PhD, Bits Republic Technologies (Canada).
Abstract: Enterprises of all sizes share, and collaborate on, digital information: both within their organizations, as well as with clients and strategic partners. A variety of technologies exist to meet this need, notably local and Internet-based email servers, FTP servers, third party hosted application services, data storage systems, and peered data networks. Most organizations use a combination of these technologies, but each has limitations. Businesses inevitably find that they face compromises among flexibility, portability, functionality, affordability, and (perhaps most importantly) security.

Legal Storms Forecast for Cloud Computing.

Session Date & Time Day 1, March 23, 15.15pm EST (12.15pm West Coast) - (45min).
Keywords: Legal.
Authors: Cheree McAlpine, General Counsel at Wyse Technology.
Abstract: Cloud computing has the potential to revolutionize how we invent, develop, deploy, scale, update, maintain and pay for data, applications and the infrastructure on which they run. This emerging field is poised for significant growth in 2010 and beyond. Many enterprises are now incorporating cloud computing into their core business operations. However, a highly optimized public cloud presents a variety of legal risks that companies must consider before deployment.

Keeping Your Options Open, Even if the Cloud is Not.

Session Date and Time: Day 3, March 25, 5:30pm EST (2.30pm PST) – 60 min
Keywords: standards, cloud use cases, programming, design patterns.
Authors: Doug Tidwell, Senior Software Engineer in IBM’s Emerging Technology group.
Abstract: cloud computing conference Cloud computing is a major shift in the way applications and data are deployed and managed. Once you've chosen a cloud vendor, how do you avoid being locked in to a proprietary API or service? And even if you're happy with your cloud provider, what happens when you partner with someone who uses a different provider? In this session we'll look at design patterns and running code that will make your cloud applications as robust, vendor-independent and open as possible. We'll also take a look at the efforts of various standards bodies and talk about how you can get involved. To maximize flexibility, speed of development and return on your investments in the cloud, the right level of standardization is crucial.

cloud computing conference 2010Doug Tidwell is a Senior Software Engineer in IBM’s Emerging Technology group.

He was a speaker at the first XML conference in 1997, and has been working with markup languages, Web services and SOA technologies for many years. His job as a technology evangelist is to explain the standards and technologies behind Cloud Computing and to help customers integrate them into their overall business architectures and strategies. He is the author of many articles on IBM’s developerWorks site (ibm.com/developerWorks).

Impact of Cloud Computing on e-discovery

Session Date & Time: Day 2, March 24, 8.30pm EST (5.30pm West Coast) (45min)
Keywords: e-discovery.
Authors: Shawn Waggoner, Director, Archiving and eDiscovery, Terremark.
Abstract: Cloud Computing has a range of meanings and used to describe everything from Software as a Service (SaaS) to Infrastructure as a Service (Iaas). Regardless of which aspect you are describing, the cloud is here and companies are moving quickly to this new technology. Private and Public sector organizations are migrating their data and information to the cloud. Legal regulations that require keeping certain records versus delegating other types of data to cloud services create confusion in the e-discovery process. Terremark’s presentation will address the commonplace conundrums for today’s organizations considering cloud:

  • What does this mean for e-discovery?
  • Who is responsible for the data?
  • How do you find information on these platforms?
  • How is the data preserved for litigation holds?

Securing the Cloud

Date & Time: Day 3, March 25, 5:30 pm EST / 2:30 pm PST- (60min)
Keywords: Cloud Computing Security, Data Security.
Authors: Pete Nicoletti, VP of Secure Information Services at Terremark.
Abstract: With data moving beyond the physical walls of an organization, data security has become exponentially more complex with rapidly evolving risks. The introduction of cloud computing brings new questions around sensitive data protection. In this session, Terremark will present strategies for achieving data security within the different virtual environments—public, private, and hybrid clouds – and the technology behind it.

Auditing for Cloud Computing

Keywords: Cloud Auditing, Compliance, governance, Regulation.
Authors: Jonathan Sinclair, SAP Research.
Abstract: Cloud computing is a paradigm evolution that benefits from virtualization technologies and introduces “everything-as-a-service” as a technical and business concept supported by pay-per-use pricing models. Whilst the on-demand characteristics of this novel paradigm provide revolutionary advances in technical ability, the changes while incorporating this into an IT infrastructure raise many complex problems and risks with regards to auditing. Auditing is the process of tracing and logging significant events the take place during the system run-time for analysis, and can be seen as a vital tool in validating and securing systems.

Data Anonymizers: One Approach to Privacy in Cloud Computing.

Keywords: Security, Privacy, Anonymizer, SaaS.
Authors: Sergio Loureiro and Matthias Jung, secludit(France).
Abstract: Web-applications and SaaS (Software as a Service) become more popular not only for end-users, but also for enterprises. As a consequence, mission critical and potentially confidential data is stored on the premises of service providers. Privacy of data has therefore become a major concern for companies that consider to use web-services. But given the lack of control over the infrastructure (hardware, software, databases), what are the options besides trusting the service provider and paying attention to the service level agreements (SLA)? Is it possible and technically feasible to manage privacy within the web?

Taxation & Regulatory Security in the Cloud

Keywords: Regulatory Security, Taxation.
Authors: Saraiah Gujjunoori, Research Scholar, CSE, NITW and Asoke K. Talukder, Director & Mentor, Geschickten Solutions Pvt. Ltd and Prahalad H.A, Director, Geschickten Solutions Pvt. Ltd. and B.B Amberker, Professor, CSE, NITW .
Abstract: Cloud computing has generated lot of interest and tractions in recent times. Cloud computing is an emerging computing paradigm where data and applications reside in the cyberspace, it allowing users to access them through any web-connected device [1] be it fixed or mobile. Cloud can be private cloud or public cloud. Private cloud will be implemented by enterprises for their own private use. This will mainly be to reduce the cost and have a centralized management of the data. At a later time a private cloud will also be commissioned to get carbon credit. Private cloud will be an extension of the data centre within the control of the enterprise; in private cloud an enterprise can implement a security policy and control people and hardware resource with respect to privacy, security, and access. However, the cloud in this paper refers to public cloud where data, processor, or applications are running in the public cloud, the user does not have knowledge of where the data is stored, and how is it transmitted.

Data Protection Law Requirements to Cloud Computing Agreements in the European Union (EU).

Session Date and Time: Day 2, March 24, 20:30pm EST (17.30PM West Coast) –(45min)
Keywords: Agreement, Data Protection, European Union, Law, Privacy.
Authors: Thomas Helbing, Law Firm Dr. Helbing.
Abstract: The presentation gives an overview over the requirements of the EU Data Protection Directive for cloud computing services with examples from national laws, in particular Germany. No legal background knowledge is required.

The session shall help compliance managers, privacy and IT security officers, legal counsel, contract manager and sales/procurement teams to understand EU privacy compliance requirements. It is addressed to vendors and customers of cloud services in and outside the EU. An understanding of the basic concept of data protection laws is important for customers when analyzing terms and conditions of cloud providers and for providers when targeting customers in the EU.

Key questions will be: What is the role of the EU Data Protection Directive? What legal requirements must be fulfilled by cloud computing agreements in relation to privacy? Which security measures are required? What special rules apply if cloud providers are located outside the EU?

We will also analyze the new EU standard contractual clauses for data export which the EU Commission has updated in February 2010.

Bio

Dr. Thomas Helbing is an IT and data protection lawyer from Germany, holding a PhD in Telecommunications Law. He practiced from 2004 to 2009 at Lovells LLP, a leading international commercial law firm, in the practice group "Technology, Media and Telecommunications". In 2009 he has founded his own law firm. Thomas advises both medium sized and international companies on IT and data protection matters and has comprehensive experience in drafting and negotiating IT contracts. Visit his website at www.thomashelbing.com

Register Now and Get Full Access to All Sessions and Recordings.

Thank you for your interest in Cloud Slam 2010. Please use form below to register for the access. If you experience problems with the form above not rendering at all, try registering directly at http://postcloudslam10.eventbrite.com/?ref=eweb

Note: If you experience problems with the form above not rendering at all, try registering directly at http://postcloudslam10.eventbrite.com/?ref=eweb

Syndicate content