Confidential Computing & Sovereign Cloud, Slides of Information Technology

Cloud sovereignty focuses on a cloud-computing environment that is owned, deployed, governed, and managed locally or regionally within a single nation or jurisdiction.

Typology: Slides

2022/2023

Available from 10/18/2023

Konrad_R_Oniladgi
Konrad_R_Oniladgi 🇺🇸

8 documents

1 / 39

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Confidential
Computing &
Sovereign Cloud
30-3-30
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27

Partial preview of the text

Download Confidential Computing & Sovereign Cloud and more Slides Information Technology in PDF only on Docsity!

Confidential

Computing &

Sovereign Cloud

Sovereign Cloud 30-3-

Name

Version February 2023

Department or Event NameDepartment or Event Name Intel Confidential^44 Key focus areas for Sovereign Cloud

Data Sovereignty

Operational

Sovereignty

Technology

Sovereignty

Allows organizations to keep control of their data in the cloud, prevent unsolicited third-party access, and maintain regulatory rules for stored data. Allows organizations to have visibility and control of their operations while maintaining continuity of operations and regulatory compliance Allows organizations to run workloads unhibited by considerations of critical software, hardware, supply chain, and API dependencies. Cloud sovereignty focuses on a cloud-computing environment that is owned, deployed, governed, and managed locally or regionally within a single nation or jurisdiction.

There are three key areas within Cloud Sovereignty

Department or Event Name 55 3 minute

Department or Event NameDepartment or Event Name Intel Confidential^77 Key focus areas for Sovereign Cloud

Data Sovereignty

Operational

Sovereignty

Technology

Sovereignty

Allows organizations to keep control of their data in the cloud, prevent unsolicited third-party access, and maintain regulatory rules for stored data. Allows organizations to have visibility and control of their operations while maintaining continuity of operations and regulatory compliance Allows organizations to run workloads unhibited by considerations of critical software, hardware, supply chain, and API dependencies. Cloud sovereignty focuses on a cloud-computing environment that is owned, deployed, governed, and managed locally or regionally within a single nation or jurisdiction.

There are three key areas within Cloud Sovereignty

Department or Event NameDepartment or Event Name Intel Confidential^88 What is a Sovereign Cloud

Data Sovereignty

Operational

Sovereignty

Software Sovereignty

  • Data Localization : Hosting, using, storing or processing of cloud data in preferred location or jurisdiction (usually home country/region/ territory)
  • (^) Data Ownership : Data is always under the control and ownership of its originator/ producer
  • (^) Data Traceability : Focus on management and transparency of data across the lifecycle
  • Data Access Controls : It is about who can access the data, from where and for what purpose - Operational Resilience : Ensuring continuity of cloud service in case of unplanned disruptions - (^) Regulatory Compliance : Focus on alignment with region/ sector-specific regulations and laws - (^) Sovereignty of ecosystem of partners including telcos/ network provider or API calls - (^) Following the security objectives , controls, governance management; detection of and reaction to cyber attacks - Portability and Reversibility : Ability to move applications and data from one cloud- computing environment to another with minimal disruption - (^) Interoperability : Solution follows integration standards and can be easily connected to existing and/or future solutions from another provider

Department or Event NameDepartment or Event Name Intel Confidential^1010 Sovereign Cloud Overview Protecting and Unlocking the value of critical data

Ensure all data (customer

data and meta data)

remains on sovereign soil.

Enable policy leaders to

deliver a national

capability for data

sovereignty.

Prevent foreign access to

national, corporate,

regulated or personal

data.

Deliver social value and

positive impact for local

communities.

Department or Event NameDepartment or Event Name Intel Confidential^1111 Key focus areas for Sovereign Cloud

Data Sovereignty

Operational

Sovereignty

Technology

Sovereignty

Allows organizations to keep control of their data in the cloud, prevent unsolicited third-party access, and maintain regulatory rules for stored data. Allows organizations to have visibility and control of their operations while maintaining continuity of operations and regulatory compliance Allows organizations to run workloads unhibited by considerations of critical software, hardware, supply chain, and API dependencies. Cloud sovereignty focuses on a cloud-computing environment that is owned, deployed, governed, and managed locally or regionally within a single nation or jurisdiction.

There are three key areas within Cloud Sovereignty

Department or Event NameDepartment or Event Name Intel Confidential^1313 Factors driving Cloud Sovereignty Digital records containing personal data can easily be moved across jurisdictions either deliberately or mistakenly Data in the hands of foreign entities cannot be easily retrieved or recovered requiring legal requests in many cases. Cloud Act means US subpoenas US Hyperscale dominance is increasing in terms of usage and functionality with insufficient legal agreements Unencrypted data can be accessed by foreign governments once it’s in their jurisdiction Multiple privacy legislations can lead to mishandling of PII in different locations leading to mishandling of data Data visibility is generally low if data is constantly moving around cloud environments.

Department or Event NameDepartment or Event Name Intel Confidential^1414 Growing need for Sovereign Cloud Deploying the Right Data to the Right Cloud Confidential data is very or extremely vulnerable in a public cloud Very or extremely concerned critical data managed by a US company given a changing geo- political landscape Very or extremely concerned about the authority of the Cloud Act and blind subpoena’s Very important to have a cloud solution that provides complete jurisdictional control and authority over the data

IDC : Deploying the Right Data to the Right Cloud in Regulated Industries (June 2021)

Department or Event NameDepartment or Event Name Intel Confidential^1616 Typical Sovereign Cloud Stack Key characteristics of a Sovereign Cloud Collaboration on Sovereign data sets to drive output and learnings Security and protection of data locally to prevent external access Compliance with local laws and regulations (GDPR, Schrems ii) Local Support External Key Manageme nt Data Residency Controls Security Operations Centre Identity Manageme nt Access Control Transparen cy

Cloud Providers

Specific

Capabilities

Foundational

Principles

Department or Event NameDepartment or Event Name Intel Confidential^1717 Sovereign Cloud Types

Restricted

Confidential

General

Dedicated Cloud

Sovereign Private

Cloud

Trusted Public Cloud

Department or Event NameDepartment or Event Name Intel Confidential^1919 Sovereign Cloud Types

Restricted

Confidential

General

Dedicated Cloud

Sovereign Private

Cloud

Trusted Public Cloud

Level 3 with Confidential Computing Level 1 & 2 with Confidential Computing

Horizontal domains –

data spaces. Sovereign

Data exchange

Department or Event NameDepartment or Event Name Intel Confidential^2020 What about the Hyperscaler's