Open Government Portal
Found 10 records similar to Models of Cloud Computing (ITSAP.50.111)
To enable the adoption of cloud computing, the Government of Canada (GC) developed an integrated risk management approach to establish cloud-based services. ITSM.50.062 outlines this approach which can be applied to all cloud based services independently of the cloud service and deployment models.
This document is part of a suite of documents that the Cyber Centre has developed to help secure cloud-based services. Security categorization, the selection of a security control profile, and the selection of a cloud deployment model and a cloud service model are the first three steps of the Cloud Security Risk Management approach. This approach is defined in ITSM.50.062 Cloud Security Risk Management.
This document introduces the benefits and the risks of using cloud-based services, which deliver computer processing capabilities as a service rather than as a product. Cloud service providers (CSPs) provide on-demand and scalable computing environments. Overall, cloud-based services offer your organization more flexibility than on-premises IT solutions. Cloud-based services can also provide your organization with a richer set of capabilities and free up your organization’s IT resources.
The purpose of this document is to describe CCCS’s Cloud Service Provider (CSP) Information Technology Security (ITS) Assessment Program. The objective of the CSP ITS Assessment Program is to assist Government of Canada (GC) departments and agencies in their evaluation of CSP services being procured for use by the GC. The resulting assessments will show whether the subject CSP’s security processes and controls meet the GC public cloud security requirements for information and services up to Protected B, Medium Integrity, and Medium Availability (PB/M/M) as published by the Treasury Board of Canada Secretariat
"Cloud computing has the potential to provide your organization with flexible, on-demand, scalable and self-service IT services. To benefit from cloud computing, your organization must ensure that security risks are properly managed, cloud specific security considerations are addressed, and security controls of cloud-based services are properly assessed before authorized.
You organization can use the guidance in this document to assist with its security assessment and authorization of cloud-based services. "
"Lately, everyone is talking about The Cloud. Have you moved to The Cloud? Where, exactly, is this mystical place called The Cloud? Is that where Cloud Computing happens?
The information provided in this document is intended to assist in the mitigation of threats associated with a Wireless Local Area Network (WLAN) deployment by offering security advice to be used during the high-level design phase.
The Government of Canada (GC), as well as other organizations, are turning to cloud services to improve service delivery and information management. Cloud services provide on-demand access to applications and services from commercial data centres instead of in-house GC information systems. Cloud services will help the GC provide online services to Canadians and timely access to information. While these qualities make cloud services enticing, they also make cloud services an attractive target for cyber threat actors.
When selecting an approach to deploy mobile devices in your organization, you can choose from different deployment models, each of which comes with its own benefits and risks. With mobile devices, managing risk depends partly on employee cooperation (i.e. willingness to allow use restrictions, monitoring, and security access by the organization) and partly on the inherent risks and vulnerabilities in the types of devices included. To select a deployment model that best balances these elements for your organization, consider user experience, privacy, and security requirements.
The Data Centre Services (DCS) Reference Architecture Document (RAD) has been developed to describe the reference architecture models for a common, shared and consolidated DC environment for the Government of Canada (GC) as an enterprise. The DCS RAD defines the end-to-end architectural model and the components that will form the basis for developing the Shared Services Canada (SSC) target end-state DC services for the Data Centre Consolidation Program (DCCP). The architecture will support the delivery of DCCP services for SSC's partner organizations over the near term (less than three years), with an evolutionary capability to encompass a hybrid cloud service delivery model for long-term strategic planning.