Welcome!

Government Cloud Authors: Elizabeth White, Pat Romanski, Dana Gardner, Liz McMillan, Gopala Krishna Behara

Related Topics: @CloudExpo, Microservices Expo, Containers Expo Blog, Agile Computing, Cloud Security, Government Cloud

@CloudExpo: Blog Feed Post

Government SaaS Entrepreneur

What are these high security standards, where and how are they defined?

As the name suggests our Government SaaS Entrepreneur program tailors their venture accelerator for apps for the public sector.

Examples of apps that have already gone through this process include Huddle IL3, referring to it being suitable for the UK’s information security classification IL3. This has resulted in the Huddle app grabbing the lions share of the G-Cloud market.

In this interview with Dave Nicholl, CIO for Ontario Province, talks about how they would consider this type of service for key requirements like their Drivers Licence applications, with a critical point about security:

“Typically, software as a service providers don’t create applications tailored for governments, he said. That said, “if we could find a drivers [licence] system that was software as a service we’d absolutely look at it,” he added – if it had adequate security.”

Secure Government SaaS – Specifications

So what are these high security standards, where and how are they defined?

This is the purpose of our new OASIS open standards group, called PACR, read more here in the launch briefing. This encompasses:

  • Cloud Security Alliance best practices - The CSA provides a comprehensive framework for securing Cloud environments, the backbone of which is the use of encryption at different levels: Encrypting VMs, data at rest and also in transit from the Cloud to the corporate data centre.
  • Cloud Identity Ecosystem - In the USA the NSTIC experts are pioneering the ‘Identity Ecosystem‘, where online service access is streamlined for citizens through “Social sign-on”. Microsoft provides a thorough expanation of how Government can apply these principles and technologies in this PPT presentation (42-page PDF)
  • Cloud Archiving and Compliance – A critical piece for governments is the Cloud Providers ability to meet their compliance needs. In line with standards like ISO 27037 this encompasses being able to verify digital evidence-ready record keeping, implementing litigation holds, maintaining an always-on irrefutable record of all transactions and other chain-of-custody features required for e-discovery.

Service Innovation and Solution Accelerators

The above technical capabilities are enabled by an ecosystem of vendor partners offering new technology products, that can be adopted by Cloud Providers and integrated into their environments to achieve a Government Secure SaaS platform.

This opens up opportunities for new service innovations, which can be pre-packaged into Solution Accelerators that helps entrepreneurs fast-track their venture

Guardtime – Keyless Signatures

This solution development process provides a context for the innovations that our Vendor partners are creating.

For example Guardtime has invented ‘Keyless Signatures’ that can play a major role in securing the integrity of information, the fundamental requirement for legally admissible materials.

It can be built into Cloud environments, as described here, and enable a variety of new services relevant to government. For example cMail, for Certified Email, that could be used for financial transactions through to doctors eReferals.

Read the original blog entry...

More Stories By Cloud Best Practices Network

The Cloud Best Practices Network is an expert community of leading Cloud pioneers. Follow our best practice blogs at http://CloudBestPractices.net

IoT & Smart Cities Stories
IoT is rapidly becoming mainstream as more and more investments are made into the platforms and technology. As this movement continues to expand and gain momentum it creates a massive wall of noise that can be difficult to sift through. Unfortunately, this inevitably makes IoT less approachable for people to get started with and can hamper efforts to integrate this key technology into your own portfolio. There are so many connected products already in place today with many hundreds more on the h...
The best way to leverage your Cloud Expo presence as a sponsor and exhibitor is to plan your news announcements around our events. The press covering Cloud Expo and @ThingsExpo will have access to these releases and will amplify your news announcements. More than two dozen Cloud companies either set deals at our shows or have announced their mergers and acquisitions at Cloud Expo. Product announcements during our show provide your company with the most reach through our targeted audiences.
CloudEXPO New York 2018, colocated with DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
Andrew Keys is Co-Founder of ConsenSys Enterprise. He comes to ConsenSys Enterprise with capital markets, technology and entrepreneurial experience. Previously, he worked for UBS investment bank in equities analysis. Later, he was responsible for the creation and distribution of life settlement products to hedge funds and investment banks. After, he co-founded a revenue cycle management company where he learned about Bitcoin and eventually Ethereal. Andrew's role at ConsenSys Enterprise is a mul...
DXWorldEXPO | CloudEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.
Disruption, Innovation, Artificial Intelligence and Machine Learning, Leadership and Management hear these words all day every day... lofty goals but how do we make it real? Add to that, that simply put, people don't like change. But what if we could implement and utilize these enterprise tools in a fast and "Non-Disruptive" way, enabling us to glean insights about our business, identify and reduce exposure, risk and liability, and secure business continuity?
DXWorldEXPO LLC announced today that Telecom Reseller has been named "Media Sponsor" of CloudEXPO | DXWorldEXPO 2018 New York, which will take place on November 11-13, 2018 in New York City, NY. Telecom Reseller reports on Unified Communications, UCaaS, BPaaS for enterprise and SMBs. They report extensively on both customer premises based solutions such as IP-PBX as well as cloud based and hosted platforms.
The deluge of IoT sensor data collected from connected devices and the powerful AI required to make that data actionable are giving rise to a hybrid ecosystem in which cloud, on-prem and edge processes become interweaved. Attendees will learn how emerging composable infrastructure solutions deliver the adaptive architecture needed to manage this new data reality. Machine learning algorithms can better anticipate data storms and automate resources to support surges, including fully scalable GPU-c...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
@DevOpsSummit at Cloud Expo, taking place November 12-13 in New York City, NY, is co-located with 22nd international CloudEXPO | first international DXWorldEXPO and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time t...