CloudAsia 2013 Highlights

May 23rd 2013

www.alanquayle.com/blog

Conference Highlights

• Strong Government Support to leapfrog the APAC IT gap

o Cloud Computing Policy in Korea

o Overview of Cloud Adoption in Singapore

• Case Studies in Cloud Adoption

o Steps in Cloud Adoption in SATS (Singapore Airport)

o Diners World Travel’s Experience

o Unified Communications in Healthcare

• Technologies and Frameworks

o Cloud Security Alliance’s Open Security Framework

o 2013 Data Break Report by Verizon

o Role of Identity management

o Complex Analytics using Array DBMS

2

3

Seong Il Seo gave a 5 min review of the state of cloud computing in Korea as part of the panel session I ran. Bottom-line, cloud computing is growing fast across

most of developed APAC countries.

4

Like most APAC governments they see cloud computing as a way of leapfroging the IT gap compared with some western nations.

5

Khoong Hock Yun gave a 5 min review of the state of cloud computing in Singapore as part of the panel session I ran. Bottom-line, cloud computing is

growing fast across most of developed APAC.

6

The Singapore government has tax incentives that have accelerated cloud adoption in many small and medium businesses in Singapore. The later Diners

World Travel case study will explain this in more detail.

7

All of the APAC countries on the panel (Korea, HK, Thailand and Singapore) where claiming similar cloud computing penetration rates across enterprise.

8

As always the difference between the figures presented is who does the measuring and the questions asked and whether a technically strict (see NIST slides in Cloud

Asia 2012 summary) or loose marketing definition is used for cloud computing.

9

10

Focus is security, but security can not be looked at just from just the cloud, need an end to end approach. Often security is an excuse for the underlying and much

more difficult issue of business case.

11

Great update on SATS Cloud Migration (Singapore Airport). See Cloud Asia 2012 Highlights for last year’s presentation.

12

13

The move to a hybrid cloud was a theme throughout Cloud Asia – which means security must be viewed end to end and not just within the cloud.

14

15

Most enterprises are using a mix of public cloud (analytics workloads), private cloud (trading systems) and hybrid cloud (CRM workloads)

16

These are very common issues. Partner selection is everything, PoC (Proof of Concept) beats any amount of tendering and RFI/P/Qs (Request For Information

/ Product / Quote), Business units want to retain control, and the migration to cloud is not simple as discussed in my Workshop on Cloud Computing.

17 Another great case studies in Cloud Computing adoption

18

I’ve seen many similar incremental migrations, analytics, then some desktop applications (cost saving and mobilization) and then CRM. Sometimes Unified Communications will be the first or second step, especially when a Telco Cloud

provider is used.

19

20

21

22

23

24

25

26

This is a key point – there’s a BIG tax incentive to adopt cloud computing in Singapore!!!

27 Unified Communication is also a popular workload to move to the cloud.

28 Users of the UC Cloud

29

30 Maxis plays an important role in this solution

31

32

A trend over the past year has been the creation of security frameworks, security certifications and auditing around cloud computing

33

34

35

36

This is true, and security is sometimes used as an excuse when the underlying reason is lack of clarity around the business case of moving a specific workload

onto the cloud.

37

38

But regardless of the your cloud providers certification, every enterprise must have an end to end security framework . Next slides highlight some interesting

results from Verizon on Data Breaches

39

http://www.verizonenterprise.com/DBIR/2013/

This is an excellent report, URL shown above. It came up in many of the discussions around security in the conference.

40

41

42

43

44

45

46

47

Vocabulary for Event Recording and Incident Sharing (VERIS) is a set of metrics designed to provide a common language for describing security incidents in a

structured and repeatable manner.

48

And in taking an end to end approach to ecurity Identity management becomes critical

49

50

51

52

Great review on the emergence of complex analytics and the challenges we’re seeing with Hadoop for some complex analytic tasks

53

54

55

56

I am seeing with some implementations the limitations of Hadoop being discovered as organizations start looking within their data for covariance to better

predict customer behavior and addressable services.

57

Granted Michael is selling his technology, but I am seeing a gap emerging between RDBMS and Hadoop as the analytics gets more sophisticated, and

correlation between variables becomes a topic of study. Whether an Array DBMS fills the gap, or the ecosystems extend their capabilities to better fill this gap will likely take a few years to resolve. As always nothing remains still… All we can do

is focus on solving today’s problems without locking ourselves in.