On enterprise SaaS, On outsourcing, On the IT Industry

Security certifications for cloud applications, will it help adoption?

I just read this, a tad old pre-finance-crisis, but still relevant and good article on “Gartner prediction misses today’s enterprise cloud action” when I realized it was automatically linked to my post “Enterprise cloud computing and security, the missing debate or solved” – it actually still gives me hits, nice!

The post refers to security certifications for cloud applications and it also provides a nice grouping of applications with a timeline of when the author expects the cloud to be ready to handle this type of apps.

  1. Low security sites such as marketing apps and batch computations on public data with public algorithms
  2. Massive compute jobs that use proprietary algorithms that are not super-sensitive and operate on public data.
  3. Super secret data and very sensitive algorithms

I certainly believe that certifications that document security and processes, and new good architectural solutions will bring us to a point where cloud-sourcing bullet three is considered ok sometime in the future, but it still comes down to the level of trust one is able to build.

If you are the owner of business critical data that is “super secret and sensitive” a certificate doesn’t help much when your competitor got hold of your customer base and attacked all your customers with their marketing machinery, but of course a certificate helps documenting and is good in the sales process.

Who knows, your data might be more secure in the cloud than in your basement server room, which is normally most certainly not certified and it will provide documentation to hide behind. To conclude, yes, I think it will help adoption.

Security officer, courtesy to erotikknett.no

Security officer, courtesy to erotikknett.no

Meanwhile, be aware of social hacking amongst your trusted security officers 😉

Advertisements
Standard
On collaboration, On enterprise SaaS, On outsourcing

Projectplace flies high on SaaS model

projectplace

I am referring to Swedish SaaS Company Projectplace International AB, which proves the Enterprise SaaS model absolutely viable. I was flying home from Tromsø the other day and read an 8 page insert to SAS inflight magazine Scanorana (a nice advertising media by the way).

More than 300 000 projects are currently run on projectplace. I have used it in a project – it works great, but I think it provides less flexibility than for instance a well set up Sharepoint site. However a couple of nice features extend those of Sharepoint, being the time and issue registration features.
I have had several skeptical comments to SaaS, but obviously it works very well for Projectplace. I do not think they have higher security than username and password. That seems to be enough for the projects mentioned above, so perhaps it is enough for Innovation also, ref Induct Softwares SaaS model?

Standard