Neil MacDonald

A member of the Gartner Blog Network

Neil MacDonald
VP & Gartner Fellow
15 years at Gartner
25 years IT industry

Neil MacDonald is a vice president, distinguished analyst and Gartner Fellow in Gartner Research. Mr. MacDonald is a member of Gartner's information security and privacy research team, focusing on operating system and application-level security strategies. Specific research areas include Windows security…Read Full Bio

Coverage Areas:

Since We Still Need Diesel Generators for Backup Power, Are Utilities Useless?

by Neil MacDonald  |  May 9, 2011  |  Comments Off

I don’t think so and I doubt many people would agree with this either.

File:Generator sets.JPG

The reason I bring this up is that I was having an interesting discussion with colleagues on Cloud security and availability (spurred by the recent Amazon outage) and a statement was made something along the lines of

“If I must have on-premises backup systems to backup cloud-based services when they go down, what is the purpose of using cloud-based services?”

My response:

It is precisely because something is critical that we have backup plans in place for when they fail – and this is true independent of location (on premises or cloud, it’s the same fundamental underlying issue)

I quickly drew up this diagram:

image

The point is, Cloud or no Cloud, critical services need backup plans — and that these backup capabilities can be cloud-based or on-premises.

That’s the big takeaway from the Amazon outage. Well-designed applications services that were designed to take advantage of Amazon’s geo-redundancy remained available (the upper right hand corner of this diagram). Or, the service could have been designed to be moved (with some cost and effort) to an alternative cloud platform provider. Either way, it will likely cost more for this type of service availability and require a bit more planning at design time, but that would be true even if the critical service was kept on-premises.

Moving to cloud-based services hasn’t relieved you of the responsibility to plan for service unavailability.

Comments Off

Category: Cloud Security     Tags: , ,