government and cloud
DESCRIPTION
Government and Cloud. The current thinking on the technical architecture for the UK government’s proposed G-Cloud and App Store Kate Craig-Wood CEO, Memset Dedicated Hosting Technical Architecture Co-lead, G-Cloud Project. Who is Kate?. UK G-Cloud & App Store. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/1.jpg)
@Memset_Kate
Government and Cloud
The current thinking on the technical architecture for the UK government’s proposed
G-Cloud and App Store
Kate Craig-WoodCEO, Memset Dedicated Hosting
Technical Architecture Co-lead, G-Cloud Project
![Page 2: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/2.jpg)
@Memset_Kate
Who is Kate?
![Page 3: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/3.jpg)
@Memset_Kate
UK G-Cloud & App StoreIn order to reduce cost & carbon without compromising
service quality, UK public sector wants:• Like-for-like service comparability• Resources pooling from multiple providers• Workload pooling for peak load curtailment• Pay-as-you-use billing• Access to cost benefits of massively automated ICT services• Interoperability to avoid vendor lock-in
Likely answer: A government ICT services marketplace into a hybrid of several private community clouds.
![Page 4: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/4.jpg)
@Memset_Kate
NIST’s Cloud, on a cube
![Page 5: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/5.jpg)
@Memset_Kate
G-Cloud view of the stack
![Page 6: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/6.jpg)
@Memset_Kate
Possible G-Cloud architecture
![Page 7: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/7.jpg)
@Memset_Kate
G-Cloud maturity model
![Page 8: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/8.jpg)
@Memset_Kate
Cloud Computing and Information Assurance (Security)• “Cloud” often considered insecure, but why?
• In 8 years Memset have had zero VM break-outs.• Can be more secure, eg. security through obscurity.• Bigger concern is perhaps organisational threat.
• Though network virtualisation is okay, GCHQ has not certified the hypervisor layer as a suitable barrier.• Physical segregation still required for some services.
![Page 9: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/9.jpg)
@Memset_Kate
Some public cloud services will suitable for some pub. sec. needs
DATA & SERVICE LOCATION
Agnostic Specific
SERV
ICE
LEVE
L AG
REEM
ENT
Fixe
dFl
exib
le
Public Cloud Services
Private Cloud Services
Public Cloud services with enough location-specific assurance at SLA we’re able to accept
![Page 10: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/10.jpg)
@Memset_Kate
A cloud for each Impact Level (IL)
![Page 11: Government and Cloud](https://reader035.vdocument.in/reader035/viewer/2022070423/56816762550346895ddc3a42/html5/thumbnails/11.jpg)
@Memset_Kate
Security summary
• Some public cloud suitable for IL0, perhaps IL1 & 2• Secure G-Cloud: Probably 1 private cloud per IL > 1
• Additional complicating factors:• 3 IL aspects: Confidentiality / Integrity / Assurance• IL-threat combinations• Risk aggregation
• All tractable problems, though!