Upload File

australian cio summit 2012: architecting a secure castle in the clouds by dr tim redhead, director,...

  • Home
  • Technology
  • Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec
15
Architecting a secure castle in the clouds Dr Tim Redhead Dr Tim Redhead DotSec DotSec [email protected] [email protected]

Upload: marcus-evans

Post on 28-Jan-2018

376 views

Category:

Technology


1 download

Report

TRANSCRIPT

Page 1: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Architecting a secure castlein the clouds

Dr Tim RedheadDr Tim RedheadDotSecDotSec

[email protected]@dotsec.com

Page 2: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Strong requirements

Clear understanding of risk

Some very good architecture

Page 3: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Security architecture

● Identity and Access Management● Mobile and ubiquitous devices● The cloud and as-a-service model

Page 4: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

I think therefore... IAM!

● Identity and Access Management● Great opportunities for IAM in your SecArch● Rally to me!● Kicking the devil's dog

Page 5: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

IAM benefits

● Cost-effective● e.g. Limited budget; fixed-price projects.

● Robust● e.g History of fault-tolerance and HA.

● Secure● No option: Owners and providers want assurance.

● Claims based● Flexible, extensible, aligned

Page 6: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

We can leave the 20th century

Database 1Database 1

Services 1Services 1

InternetInternet

Client 1Client 1

Dir 1Dir 1 Database 2Database 2

Services 2Services 2

InternetInternet

Client 2Client 2

Dir 2Dir 2 Database 3Database 3

Services 3Services 3

InternetInternet

Client 3Client 3

Dir 3Dir 3Mergesome

directories

Aggregate some services

Page 7: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Infrastructural sec services

And then we can have nice things

Prov1

Internet

Client ClientClient

Prov2 Prov3

Prov4

DirIdP Etc

Page 8: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Fun with mobiles

● Rocks and hard places● Opportunities for enhanced services● Marty McFly still lives!● Platforms and lava lamps● The users are all primed to go● I want a flashing one, with the lot!

Page 9: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec
Page 10: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Who's to know?

● Dr Gerry McCartney● Stuxnet, Flame, Duqu and Zeus● Bangs and whispers

Page 11: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Don't be sad

● RDRBA is your key● Fight the battles you can win● Thin out the threatscape● Coral the zombies● Two is better than one

Page 12: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Forecasting clouds

● Mostly fairly well understood components● Risky relationships but not bad per se● 20 people and 20 answers... sans wine

Dilbert ©2012, Universal Uclick

Page 13: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Our uses

Page 14: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Monoliths and memorials

● RDRBA will guide you● Clouds, silver bullets and planning

● What will you get and what will you lose?

Client

Presentation

Logic

Data store

Network

Vir

tua

lisa

tion

Ba

cku

p a

nd

DR

Se

curi

ty in

fra

stru

ctu

re

Page 15: Australian CIO Summit 2012: Architecting a Secure Castle in the Clouds by Dr Tim Redhead, Director, DotSec

Strong requirements

Clear understanding of risk

Some very good architecture


Agreed undertaking Centennial Myuna Sandvik Redhead and ... · (c) Sandvik Mining & Construction Redhead Pty Ltd (ACN 000 596 403) a corporation whose registered address is 60-62

Architecting Social Media

Pam Meatheringham, The Sanctuary, Redhead COMMUNITY

Tall Russian Redhead In Closeup Hardcore | DiddleRegan.Ovh

A Ravishing Redhead (Wedded Women Quarte - Eaton, Jillian

Redhead Coastal Corridor Project Case Study rev · PDF fileThe Redhead Coastal Corridor Project ... The lake is a large coastal estuarine lake of 22 km ... Redhead Coastal Corridor

Newsletter - redhead-p.schools.nsw.gov.au

Macrofungus Species of British Columbia · Redhead (1997) documented 1250 species of provincial macrofungi, com-piled entirely from literature reports. Redhead included the previously

REDHEAD VILLAGE NEWSLETTER MARCH 2013 · The” Redhead Men's Shed” and the “Friends of Lambton Colliery” projects which have been two key projects in the Redhead Sustainable

Architecting the Enterprise

CIO Event - Equinix - Architecting an Enterprise from the Future

From CIO to CIO

Redhead To Go Menu Winter 041320 - Grillredheadlakesidegrill.businesscatalyst.com/assets/redhead-to-go-men… · REDHEAD BURGER* Prime ground beef patty with gruyere, bacon jam and

Redhead 111500pdf

Architecting a vCloud - Bitpipedocs.media.bitpipe.com/.../VMware-Architecting-vCloud-WP.pdf · TECHNICAL WHITE PAPER / 7 Architecting a vCloud VCLOUD COMPONENT DESCRIPTION VMware

Chrysomphalina grossula (Pers.) Norvell, Redhead … - 44 Chrysomphalina grossula (Pers.) Norvell, Redhead & Ammirati ROD name Chrysomphalina grossula Family Tricholomataceae Morphological

Architecting extremelylargescalewebapplications

Filename: REDHEAD BARRACKS - a poem by Richard Careen.txt

Vanderlande Warehousing Platform “new paradigm ahead”€¦ · Architecting Systems Concepting Product Architecting Integration & Solution Architecting Competence Architecting

System Architecting

Architecting Cloudy Applications

Architecting Web Services

Architecting iOS Project

2011 RedHead Gun Safe Manual

Redhead Surf Life Saving Club 2020 ~ 2021 113th Annual

Module 3 Architecting & Transformation...Module 3 Architecting & Transformation Appreciate VariousVarious architecting architecting transformationtransformation with with tthhee businessbusiness

FINANCE THEORY AND FINANCIAL By Keith Redhead

Architecting estonia

2015 ACDCA Specialty Conformation Judge: Connie Redhead · 2015 ACDCA Specialty Conformation Judge: Connie Redhead Event #2015220313 Australian Cattle Dogs Puppy Dogs 6 mos Under

Architecting Speed

Architecting happiness

Architecting a robust manufacturing network for the ...dsg.files.gecom.digital.com.s3.amazonaws.com/Architecting a Robu… · Architecting a robust manufacturing network for the Internet

Redhead 074175a

Newsletter - redhead-p.schools.nsw.gov.au · carers and extended family for coming and supporting our choir. Newsletter. Redhead Public School . Hutchinson Street Redhead NSW 2290

Redhead, L., Zaldua, A., Gisby, S., Stone, S., Performing ...€¦ · Redhead, L., Zaldua, A., Gisby, S., Stone, S., Performing Temporal Processes 113 Article received on: August