Welcome!

Cloud Security Authors: Elizabeth White, Liz McMillan, Ram Sonagara, Rishi Bhargava, Pat Romanski

Related Topics: @CloudExpo, Java IoT, Microservices Expo, Cloud Security, @BigDataExpo, SDN Journal

@CloudExpo: Article

Cloud as Delivery Vehicle – The Next Wave of the Internet

Meet FireHost at Cloud Expo New York

"While cost has traditionally been a foundational benefit of the cloud, we believe that other factors can play a more important part in defining the cloud of tomorrow," said Todd Gleason, Vice President of Technology at FireHost, in this exclusive Q&A with Cloud Expo conference chairs Larry Carvalho and Vanessa Alvarez. "We believe that the generalist cloud provider - those low-cost commodity clouds that created price competition and insecure clouds - are going to either be gobbled up or beaten up as the industry evolves from this generalist mentality to focus on specialist clouds that have a particular focus."

Cloud Computing Journal: How are cloud standards playing a role in expanding adoption among users? Are standards helping new business models for service providers?

Todd Gleason: Standardization is important, but we're concerned because security desperately needs to be part of this effort. It is not addressed enough, if at all. Much of the open standards work in cloud and other IT technologies traditionally is not security-conscious, making adoption riskier than many want to admit or truly understand. So, while standards are a good thing, we believe security should be baked in at their inception. We advocate for innovation, but it's important that the innovative spirit is not blind to the need to protect vendors and customers.

Cloud Computing Journal: How are hybrid clouds evolving to allow the coexistence of private and public clouds? What are the challenges to meeting a true hybrid cloud scenario?

Gleason: Too much attention and marketing real estate has been paid to debating the merits of public, private and hybrid clouds. Definitions of what's public, what's private and what's hybrid are wide-reaching and are often created to suit a vendor's point of view rather than an educational, objective delineation for the industry. From where we sit, use cases and security are key to disarming this debate. The conversation needs to shift from which model is best in general to which one is appropriate for an individual vendor, provider, or customer, and it must address and incorporate security because regardless of the model chosen, a cloud is insecure unless it's built secure. Use cases vary for industries and individual companies, but security is a common denominator and applicable for all of them. This is where the industry discussion needs to shift.

Cloud Computing Journal: Are on-premise software vendors successfully migrating their business model to a SaaS model? What are the challenges faced in this journey?

Gleason: Most are and the bigger question is how effective will they be at delivering from the cloud and will it be secure. Will they expand their business model and provide infrastructure, or will they stay in their niche as software only players? And for those who do not migrate, will they become more inefficient and outdated?

Cloud as a delivery vehicle is the next wave of the Internet, especially as automation, software techniques, and infrastructures adapt toward applications and servicing their performance more and more. The efficiencies of today are miles ahead of an insulated, on-premise software solution - a situation that gets much sweeter when security is architected into the infrastructure. However, we are not even close to being a truly application-centric world.

Truthfully, though, we need to focus on what the customer wants. Every model will be viable to various customers, so some software vendors may become irrelevant due to the cloud providing a better way to service the customer's needs. The cloud industry can be too hung up on terms such as hybrid, public, SaaS or PaaS. Instead, we have to focus on the customers' needs and their applications that run their business and give them competitive advantages operationally and provide a truly seamless experience.

Cloud Computing Journal: What are the challenges for end users to adopt a new model for application development using Platform as a Service? Are vendors doing enough to meet their needs?

Gleason: Platforms are important to reduce time-to-market for SaaS or internal use cases, and it's good to see the industry shifting from infrastructures being the center of the universe to how they can be architected to service applications in a more on-demand, dynamic, intelligent manner. But, again, where is security in the discussion? It's not anywhere to be found in the majority of industry conversations and vendor communications. It badly needs to be.

In addition to security, there are two other big to-dos that need to be addressed: orchestration and inter-cloud technology. To make applications work well across infrastructures, those infrastructures must work well together in an inter-cloud fashion. This brings us back to security. Businesses will have many clouds, as will their customers. The weakest link is the most insecure cloud, so change must happen to bring security into the larger, strategic conversations rather than focusing so much on architecting an infrastructure or specific software techniques.

Cloud Computing Journal: With several vendors lowering costs for infrastructure, is there a way for new cloud service providers entering this space to make money?

Gleason: While cost has traditionally been a foundational benefit of the cloud, we believe that other factors can play a more important part in defining the cloud of tomorrow. We believe that the generalist cloud provider - those low-cost commodity clouds that created price competition and insecure clouds - are going to either be gobbled up or beaten up as the industry evolves from this generalist mentality to focus on specialist clouds that have a particular focus. For FireHost, that's security. We evolved out of the need for security and have created an infrastructure that provides an advanced security architecture, top security personnel and compliance expertise for customers that are security- and compliance-driven.

•   •   •

Todd Gleason, Vice President of Technology at FireHost, is a central figure in continuously innovating and architecting the secure cloud infrastructure for FireHost and its customers. He brings 15 years of global IT and R&D experience, including deep knowledge of security, cloud, networking, compute, virtualization, storage, and application delivery technologies.

Gleason is driven by the notion that customers ultimately care about servicing their applications to perform efficiently in a secure environment. With this in mind, Gleason has displayed a knack for understanding the latest technology trends in the industry, synthesizing what is applicable for FireHost's customers, and incorporating relevant technology into the company's cloud infrastructure to ensure businesses' applications and data are protected in a cutting-edge, secure cloud. Gleason has helped redefine industry expectations about performance, security, and compliance in the cloud. His creative approach to architecting FireHost's secure cloud proves that security can be incorporated without compromising infrastructure performance, which improves customers' risk management while maintaining thrifty usage of infrastructure resources.

Prior to his role with FireHost, Gleason worked as director of information technology at Panini America, formerly Donruss Trading Cards, which is now a subsidiary of the global Panini conglomerate. There he implemented a high-performance infrastructure and unique business applications enabling rapid high-quality production workflows and integration into the Panini global business. Gleason holds a degree in computer information systems from Remington College.

More Stories By Pat Romanski

News Desk compiles and publishes breaking news stories, press releases and latest news articles as they happen.

Comments (1)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@ThingsExpo Stories
SYS-CON Events announced today that LeaseWeb USA, a cloud Infrastructure-as-a-Service (IaaS) provider, will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. LeaseWeb is one of the world's largest hosting brands. The company helps customers define, develop and deploy IT infrastructure tailored to their exact business needs, by combining various kinds cloud solutions.
The best-practices for building IoT applications with Go Code that attendees can use to build their own IoT applications. In his session at @ThingsExpo, Indraneel Mitra, Senior Solutions Architect & Technology Evangelist at Cognizant, provided valuable information and resources for both novice and experienced developers on how to get started with IoT and Golang in a day. He also provided information on how to use Intel Arduino Kit, Go Robotics API and AWS IoT stack to build an application tha...
Whether your IoT service is connecting cars, homes, appliances, wearable, cameras or other devices, one question hangs in the balance – how do you actually make money from this service? The ability to turn your IoT service into profit requires the ability to create a monetization strategy that is flexible, scalable and working for you in real-time. It must be a transparent, smoothly implemented strategy that all stakeholders – from customers to the board – will be able to understand and comprehe...
It’s 2016: buildings are smart, connected and the IoT is fundamentally altering how control and operating systems work and speak to each other. Platforms across the enterprise are networked via inexpensive sensors to collect massive amounts of data for analytics, information management, and insights that can be used to continuously improve operations. In his session at @ThingsExpo, Brian Chemel, Co-Founder and CTO of Digital Lumens, will explore: The benefits sensor-networked systems bring to ...
SYS-CON Events announced today that Venafi, the Immune System for the Internet™ and the leading provider of Next Generation Trust Protection, will exhibit at @DevOpsSummit at 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Venafi is the Immune System for the Internet™ that protects the foundation of all cybersecurity – cryptographic keys and digital certificates – so they can’t be misused by bad guys in attacks...
"Tintri was started in 2008 with the express purpose of building a storage appliance that is ideal for virtualized environments. We support a lot of different hypervisor platforms from VMware to OpenStack to Hyper-V," explained Dan Florea, Director of Product Management at Tintri, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Identity is in everything and customers are looking to their providers to ensure the security of their identities, transactions and data. With the increased reliance on cloud-based services, service providers must build security and trust into their offerings, adding value to customers and improving the user experience. Making identity, security and privacy easy for customers provides a unique advantage over the competition.
Is your aging software platform suffering from technical debt while the market changes and demands new solutions at a faster clip? It’s a bold move, but you might consider walking away from your core platform and starting fresh. ReadyTalk did exactly that. In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, will discuss why and how ReadyTalk diverted from healthy revenue and over a decade of audio conferencing product development to start an innovati...
For basic one-to-one voice or video calling solutions, WebRTC has proven to be a very powerful technology. Although WebRTC’s core functionality is to provide secure, real-time p2p media streaming, leveraging native platform features and server-side components brings up new communication capabilities for web and native mobile applications, allowing for advanced multi-user use cases such as video broadcasting, conferencing, and media recording.
Large scale deployments present unique planning challenges, system commissioning hurdles between IT and OT and demand careful system hand-off orchestration. In his session at @ThingsExpo, Jeff Smith, Senior Director and a founding member of Incenergy, will discuss some of the key tactics to ensure delivery success based on his experience of the last two years deploying Industrial IoT systems across four continents.
There will be new vendors providing applications, middleware, and connected devices to support the thriving IoT ecosystem. This essentially means that electronic device manufacturers will also be in the software business. Many will be new to building embedded software or robust software. This creates an increased importance on software quality, particularly within the Industrial Internet of Things where business-critical applications are becoming dependent on products controlled by software. Qua...
SYS-CON Events has announced today that Roger Strukhoff has been named conference chair of Cloud Expo and @ThingsExpo 2016 Silicon Valley. The 19th Cloud Expo and 6th @ThingsExpo will take place on November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. "The Internet of Things brings trillions of dollars of opportunity to developers and enterprise IT, no matter how you measure it," stated Roger Strukhoff. "More importantly, it leverages the power of devices and the Interne...
"There's a growing demand from users for things to be faster. When you think about all the transactions or interactions users will have with your product and everything that is between those transactions and interactions - what drives us at Catchpoint Systems is the idea to measure that and to analyze it," explained Leo Vasiliou, Director of Web Performance Engineering at Catchpoint Systems, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York Ci...
The Internet of Things will challenge the status quo of how IT and development organizations operate. Or will it? Certainly the fog layer of IoT requires special insights about data ontology, security and transactional integrity. But the developmental challenges are the same: People, Process and Platform. In his session at @ThingsExpo, Craig Sproule, CEO of Metavine, demonstrated how to move beyond today's coding paradigm and shared the must-have mindsets for removing complexity from the develo...
The IETF draft standard for M2M certificates is a security solution specifically designed for the demanding needs of IoT/M2M applications. In his session at @ThingsExpo, Brian Romansky, VP of Strategic Technology at TrustPoint Innovation, explained how M2M certificates can efficiently enable confidentiality, integrity, and authenticity on highly constrained devices.
SYS-CON Events announced today that MangoApps will exhibit at the 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. MangoApps provides modern company intranets and team collaboration software, allowing workers to stay connected and productive from anywhere in the world and from any device.
"We've discovered that after shows 80% if leads that people get, 80% of the conversations end up on the show floor, meaning people forget about it, people forget who they talk to, people forget that there are actual business opportunities to be had here so we try to help out and keep the conversations going," explained Jeff Mesnik, Founder and President of ContentMX, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Internet of @ThingsExpo has announced today that Chris Matthieu has been named tech chair of Internet of @ThingsExpo 2016 Silicon Valley. The 6thInternet of @ThingsExpo will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
When people aren’t talking about VMs and containers, they’re talking about serverless architecture. Serverless is about no maintenance. It means you are not worried about low-level infrastructural and operational details. An event-driven serverless platform is a great use case for IoT. In his session at @ThingsExpo, Animesh Singh, an STSM and Lead for IBM Cloud Platform and Infrastructure, will detail how to build a distributed serverless, polyglot, microservices framework using open source tec...
The 19th International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Digital Transformation, Microservices and WebRTC to one location. With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportuni...