How can the storage industry prevent cloud bursts?
Out of sight, out of mind - but not out of harm's way
Unsuitable for mass market
Dan Conlon, MD of UK cloud storage provider CSP Humyo, had this to say about branding or badging of CSPs:
We find that our customers feel secure knowing that their data is stored in a bullion vault but don't feel any affinity with the technological aspects of our service in terms of resilience, security, redundancy and controls. A stamp or badge if communicated directly might wrap all those techy aspects up in a package which the mass market understands, but there's always a risk with these things that they never really guarantee to the end user what they claim to.
Could the SNIA (Storage Networking Industry Association) be the body we need to certify, regulate and police cloud storage service providers?
What does the SNIA think?
We went and talked to the vice chairman of the SNIA, Vincent Franceschini. He doesn’t think the SNIA, a standards-encouraging and education body, is right for the job: "[The] SNIA does have a passionate interest in having users trust storage service providers but it is not the vehicle to drive the industry and represent it."
The SNIA would clearly want to talk to any industry body, much as it talks to the US EPA today. But it is not the EPA and shouldn't be, and the same goes for any cloud storage provider body. The SNIA is a source of industry expertise for it to use but it is not the driver for the body to form or the body itself.
Franceschini is not keen on the threat model - the idea of a trade body policing its members: "The individual professional can be policed and certified and ejected. The big company cannot. No trade bodies exist which can police, certify and regulate big companies providing a service. It takes a Nellie Kroes to take on Microsoft."
The threat model doesn't work unless the State or the EU is involved: "You need to have the big hammer."
There will be some level of public sector oversight: "The public sector will have something to say about it, if it becomes as widespread as we hope it will. The EU (European Union) will want service providers to the public sector to be properly organised; maybe regulated is too strong a word."
Sponsored: 2016 Cyberthreat defense report