When companies consider cloud computing services, each good project manager should ask the following questions:
"In the cloud, who does my data belong to?" ”
"What happens when I need to migrate this data?" ”
For a private cloud, hardware, software, and data are all inside the company, so ownership is clear. However, there are a number of complex issues to consider when migrating data to the outside of a private cloud.
The entire industry is focused on cloud security, privacy and dominance. The blurring of data ownership is the root cause of all cloud-related problems.
10 questions to figure out if data is stored in the cloud
Even if a provider can 100% to ensure that the data belong to customers, there are still many problems to be properly resolved, including legal issues and data portability of technical issues. When it comes to storing data in the cloud, the following 10 questions are the best to ask.
Who controls the ownership of the data?
This question requires a simple answer. If the provider's answer is not "you," then it's best to leave now and never look back.
Do you use the data for your own purposes?
Based on billing and marketing reasons, almost every cloud provider keeps track of the number of customers, the type of customers, the use of storage space, and the use of the processor. Be sure to find out where the information ends up. Although you have the data, some providers may use the data to customize the ads.
Does the provider have strict control over who can access the data, including employees or other cloud tenants?
It's not just your cloud provider that can access your data. It is important to ensure that the provider's partners-including IT and equipment contractors or upstream or downstream technology providers (such as networks, storage technology providers, etc.)-cannot "manipulate" the data at will.
What does the provider do with access logs and other statistical data?
There is no doubt that the journals and other statistics that the providers collect are their own data, not yours. Providers have the power to collect data about the use of their systems ... Just as you have the power to ask a provider what they will do with these logs.
Where will the data be stored?
Your power depends largely on where the data will be stored. If your data is stored in the lawless East Pirateostan small country, then don't expect to get any protection. If your data is eventually stored in a place where laws and regulations are completely different, you may lose some power. For example, a Las Vegas casino stores data related to gambling in the cloud, and then knows that the data is stored in a country that prohibits gambling.
Are your data separated from other customer data?
As with the first question, if the provider's answer is not "yes", leave immediately. The next good question is "what is the specific way to isolate?" ”
Who does the backup belong to?
If the data is yours, logically, the backup data should also be yours. But in a contract, this may not be the case. Make sure that this clause is written into the contract.
What laws and regulations do cloud providers promise to comply with their services?
Following the famous Fisma (Information Security Management Act: Federal Information Safety Management Act), HIPAA (Tiyatien ping Portability and Accountability Act: The health Insurance Circulation and Responsibility Act) and SOX (Oxley Act: Kansas Act) will add a lot of complexity to the provider's data security efforts. The next issue should be the compensation policy when there is a problem with regulation. It is important to ensure that the provider is able to keep the regulatory work in place.
If data needs to be migrated back to the enterprise, what form can be used to deliver the data?
Ideally, a complete cloud product is a three-storey "big cake": infrastructure as a service, Platform as a service and Software as a service, in which case This problem can be solved through complete and comprehensive data control. Unfortunately, ideals are not reality. If a company stores CRM (Customer relationship Management) data in the cloud and only reclaims it in paper form, it's likely to have a lot of negative effects on your career. If the data can be recycled in the form of a database backup file that can be mounted and read in Oracle, SQL, MySQL, or other databases, it would be much better.
Finally, the most important question that comes up at the outset is: "What happens when I need to migrate this data?" "There is no suspense, followed by the second important question is:" Who does this data belong to? ”
Sometimes a company realizes that it has to replace a provider or directly migrate a cloud project back to the company. Without the right plan, these exit strategies run into a lot of technical difficulties--from incompatible file formats and access to missing data to the problem of too much latency in the simple process of retrieving data.
12 Next