Cloud Security: a Comprehensive Guide to Secure Cloud Computing

Total Page:16

File Type:pdf, Size:1020Kb

Cloud Security: a Comprehensive Guide to Secure Cloud Computing ffirs.indd ii 6/24/2010 2:47:19 PM Contents at a Glance Foreword xxi Introduction xxiii Chapter 1 Cloud Computing Fundamentals 1 Chapter 2 Cloud Computing Architecture 33 Chapter 3 Cloud Computing Software Security Fundamentals 61 Chapter 4 Cloud Computing Risk Issues 125 Chapter 5 Cloud Computing Security Challenges 153 Chapter 6 Cloud Computing Security Architecture 177 Chapter 7 Cloud Computing Life Cycle Issues 217 Chapter 8 Useful Next Steps and Approaches 259 Glossary of Terms and Acronyms 279 References 345 Index 349 i ffirs.indd i 6/24/2010 2:47:18 PM ffirs.indd ii 6/24/2010 2:47:19 PM Cloud Security ffirs.indd iii 6/24/2010 2:47:19 PM ffirs.indd iv 6/24/2010 2:47:19 PM Cloud Security A Comprehensive Guide to Secure Cloud Computing Ronald L. Krutz Russell Dean Vines ffirs.indd v 6/24/2010 2:47:19 PM Cloud Security: A Comprehensive Guide to Secure Cloud Computing Published by Wiley Publishing, Inc. 10475 Crosspoint Boulevard Indianapolis, IN 46256 www.wiley.com Copyright © 2010 by Wiley Publishing, Inc., Indianapolis, Indiana Published simultaneously in Canada ISBN: 978-0-470-58987-8 Manufactured in the United States of America 10 9 8 7 6 5 4 3 2 1 No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or autho- rization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions. Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifi cally disclaim all warranties, including without limitation warranties of fi tness for a particular purpose. No warranty may be created or extended by sales or promotional materials. The advice and strategies contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or Web site may provide or recommendations it may make. Further, readers should be aware that Internet Web sites listed in this work may have changed or disap- peared between when this work was written and when it is read. For general information on our other products and services please contact our Customer Care Department within the United States at (877) 762-2974, outside the United States at (317) 572-3993 or fax (317) 572-4002. Wiley also publishes its books in a variety of electronic formats. Some content that appears in print may not be avail- able in electronic books. Library of Congress Control Number: 2010930374 Trademarks: Wiley, the Wiley logo, Wrox, the Wrox logo, Programmer to Programmer, and related trade dress are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affi liates, in the United States and other countries, and may not be used without written permission. All other trademarks are the property of their respective owners. Wiley Publishing, Inc., is not associated with any product or vendor mentioned in this book. ffirs.indd vi 6/24/2010 2:47:19 PM I thank God for His greatest gift of all—my family. — Ronald L. Krutz Dedicated to Elzy, for now and forever. — Russell Dean Vines ffirs.indd vii 6/24/2010 2:47:19 PM ffirs.indd ii 6/24/2010 2:47:19 PM ffirs.indd viii 6/24/2010 2:47:19 PM About the Authors Ronald L. Krutz is a senior information system security consultant. He has over 30 years of experience in distributed computing systems, computer architectures, real-time systems, information assurance methodologies, and information security training. He holds B.S., M.S., and Ph.D. degrees in Electrical and Computer Engineering and is the author of best selling texts in the area of information system security. He co-authored the CISSP Prep Guide for John Wiley and Sons and is co-author of the Wiley Advanced CISSP Prep Guide, the CISSP Prep Guide, Gold Edition, the Security+Certifi cation Guide, the CISM Prep Guide, the CISSP Prep Guide, 2nd Edition: Mastering CISSP and ISSEP, the Network Security Bible, the CISSP and CAP Prep Guide, Platinum Edition: Mastering CISSP and CAP, the Certifi ed Ethical Hacker (CEH) Prep Guide, and the Certifi ed Secure Software Lifecycle Prep Guide. He is also the author of Securing SCADA Systems and of three textbooks in the areas of microcomputer system design, computer interfacing, and computer architecture. Dr. Krutz has seven patents in the area of digital systems and has published over 40 technical papers. Dr. Krutz also serves as consulting Editor for John Wiley and Sons Information Security Certifi cation Series, is a Distinguished Visiting Lecturer in the University of New Haven Henry C. Lee College of Criminal Justice and Forensic Sciences, and is an Adjunct Professor in Midway College, Kentucky. Dr. Krutz is a Registered Professional Engineer in Pennsylvania. ix ffirs.indd ix 6/24/2010 2:47:19 PM x About the Authors Russell Dean Vines has been in the information systems industry for over 20 years, and has a unique ability to disseminate complex security issues to a wider audience, from CEOs to home Internet surfers. He is also the author or co-author of 10 previous books, including the CISSP Prep Guide, which reached #25 on Amazon’s best-sellers list. He co-authored the Advanced CISSP Prep Guide, the CISSP Prep Guide, Gold Edition, the Security+Certifi cation Guide, the CISM Prep Guide, the CISSP Prep Guide, 2nd Edition: Mastering CISSP and ISSEP, the CISSP and CAP Prep Guide, Platinum Edition: Mastering CISSP and CAP, and the Certifi ed Ethical Hacker (CEH) Prep Guide. He is also the author of Wireless Security Essentials, and Composing Digital Music for Dummies. In addition to being a Certifi ed Information Systems Security Professional (CISSP), Mr. Vines is a Certified Information Systems Manager (CISM), a Certifi ed Ethical Hacker (CEH), certifi ed in CompTIA’s Security+ program, and is a Payment Card Industry (PCI) Qualifi ed Security Assessor (QSA). Russ also has vendor security certifi cations from RSA, Websense, McAfee, Citrix, VMware, Microsoft, and Novell, and has been trained in the NSA’s Information Assurance Methodology (IAM). Mr. Vines is a frequent contributor to Web and trade publications; dis- cusses Information Security Threats and Countermeasures as a member of SearchSecurityChannel.com’s Ask the Experts panel, frequently speaks at industry events such as Comdex and Networld+Interop, and teaches CISSP, CEH, and Websense classes. ffirs.indd x 6/24/2010 2:47:19 PM Credits Executive Editor Vice President and Executive Carol Long Publisher Barry Pruett Project Editor Ed Connor Associate Publisher Jim Minatel Technical Editor David Chapa Project Coordinator, Cover Production Editor Lynsey Stanford Daniel Scribner Proofreader Editorial Director Nancy Bell Robyn B. Siesky Indexer Editorial Manager Robert Swanson Mary Beth Wakefi eld Cover Designer Marketing Manager Ryan Sneed David Mayhew Cover Image Production Manager © istockphoto.com/ Tim Tate GodfriedEdelman Vice President and Executive Group Publisher Richard Swadley xi ffirs.indd xi 6/24/2010 2:47:20 PM Acknowledgments I want to thank my wife, Hilda, for her support and encouragement during the writing of this text. — Ronald L. Krutz I’d like to give a big shout-out to the gang at Gotham Technology Group, in particular Ken Phelan, Joe Jessen, and Nancy Rand, for their assistance during this project. I’d also like to thank doctors Paul M. Pellicci and Lawrence Levin for the rare gift of health. But my greatest thanks is reserved for my wife, Elzy, for her continuous and unwavering support throughout my life. — Russell Dean Vines Both authors would like to express their gratitude to Carol Long and Ed Connor of John Wiley and Sons for their support and assistance in developing this text. xii ffirs.indd xii 6/24/2010 2:47:20 PM Contents Foreword xxi Introduction xxiii Chapter 1 Cloud Computing Fundamentals 1 What Cloud Computing Isn’t 7 Alternative Views 8 Essential Characteristics 9 On-Demand Self-Service 9 BroadNetwork Access 10 Location-Independent Resource Pooling 10 Rapid Elasticity 10 Measured Service 11 Architectural Infl uences 11 High-Performance Computing 11 Utility and Enterprise Grid Computing 14 Autonomic Computing 15 Service Consolidation 16 Horizontal Scaling 16 Web Services 17 High-Scalability Architecture 18 Technological Infl uences 18 Universal Connectivity 18 Commoditization 19 Excess Capacity 20 Open-Source Software 21 Virtualization 22 Operational Infl uences 23 Consolidation 23 xiii ffirs.indd xiii 6/24/2010 8:00:45 AM xiv Contents Outsourcing 26 Outsourcing Legal Issues 26 Business Process Outsourcing (BPO) Issues 28 IT Service Management 30 Automation 31 Summary 31 Chapter 2 Cloud Computing Architecture 33 Cloud Delivery Models 34 The SPI Framework 34 SPI Evolution 34 The SPI Framework vs.
Recommended publications
  • SBC-410 Half-Size 486 All-In-One CPU Card with Cache
    SBC-410 Half-size 486 All-in-One CPU Card with Cache FCC STATEMENT THIS DEVICE COMPLIES WITH PART 15 FCC RULES. OPERA- TION IS SUBJECT TO THE FOLLOWING TWO CONDITIONS: (1) THIS DEVICE MAY NOT CAUSE HARMFUL INTERFER- ENCE. (2) THIS DEVICE MUST ACCEPT ANY INTERFERENCE RECEIVED INCLUDING INTERFERENCE THAT MAY CAUSE UNDESIRED OPERATION. THIS EQUIPMENT HAS BEEN TESTED AND FOUND TO COMPLY WITH THE LIMITS FOR A CLASS "A" DIGITAL DEVICE, PURSUANT TO PART 15 OF THE FCC RULES. THESE LIMITS ARE DESIGNED TO PROVIDE REASON- ABLE PROTECTION AGAINTST HARMFUL INTERFER- ENCE WHEN THE EQUIPMENT IS OPERATED IN A COMMERCIAL ENVIRONMENT. THIS EQUIPMENT GENER- ATES, USES, AND CAN RADIATE RADIO FREQENCY ENERGY AND , IF NOT INSTATLLED AND USED IN ACCOR- DANCE WITH THE INSTRUCTION MANUAL, MAY CAUSE HARMFUL INTERFERENCE TO RADIO COMMUNICA- TIONS. OPERATION OF THIS EQUIPMENT IN A RESIDEN- TIAL AREA IS LIKELY TO CAUSE HARMFUL INTERFER- ENCE IN WHICH CASE THE USER WILL BE REQUIRED TO CORRECT THE INTERFERENCE AT HIS OWN EX- PENSE. Copyright Notice This document is copyrighted, 1997, by AAEON Technology Inc. All rights are reserved. AAEON Technology Inc. reserves the right to make improvements to the products described in this manual at any time without notice. No part of this manual may be reproduced, copied, translated or transmitted in any form or by any means without the prior written permission of AAEON Technology Inc. Information provided in this manual is intended to be accurate and reliable. However, AAEON Technology Inc. assumes no responsibility for its use, nor for any infringements upon the rights of third parties which may result from its use.
    [Show full text]
  • Using Blockchain Technology to Secure the Internet of Things
    Using Blockchain Technology to Secure the Internet of Things Presented by the Blockchain/ Distributed Ledger Working Group © 2018 Cloud Security Alliance – All Rights Reserved. You may download, store, display on your computer, view, print, and link to Using Blockchain Technology to Secure the Internet of Things subject to the following: (a) the Document may be used solely for your personal, informational, non- commercial use; (b) the Report may not be modified or altered in any way; (c) the Document may not be redistributed; and (d) the trademark, copyright or other notices may not be removed. You may quote portions of the Document as permitted by the Fair Use provisions of the United States Copyright Act, provided that you attribute the portions to the Using Blockchain Technology to Secure the Internet of Things paper. Blockchain/Distributed Ledger Technology Working Group | Using Blockchain Technology to Secure the Internet of Things 2 © Copyright 2018, Cloud Security Alliance. All rights reserved. ABOUT CSA The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. The Cloud Security Alliance is led by a broad coalition of industry practitioners, corporations, associations and other key stakeholders. For further information, visit us at www.cloudsecurityalliance.org and follow us on Twitter @cloudsa. Blockchain/Distributed Ledger Technology Working Group | Using Blockchain Technology to Secure the Internet of Things 3 © Copyright 2018, Cloud Security Alliance. All rights reserved.
    [Show full text]
  • Models to Evaluate Service Provisioning Over Cloud
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Archives of the Faculty of Veterinary Medicine UFRGS Revista de Informatica´ Teorica´ e Aplicada - RITA - ISSN 2175-2745 Vol. 26, Num. 3 (2019) 65-74 RESEARCH ARTICLE Models to evaluate service Provisioning over Cloud Computing Environments - A Blockchain-As-A-Service case study Modelos para o provimento de Servic¸os em Ambientes de Computac¸ao˜ em Nuvem - Um estudo de caso aplicado a Blockchain como Servic¸o Carlos Melo1*, Jamilson Dantas2, Paulo Pereira3, Ronierison Maciel4, Paulo Maciel5 Abstract: The strictness of the Service Level Agreements (SLAs) is mainly due to a set of constraints related to performance and dependability attributes, such as availability. This paper shows that system’s availability values may be improved by deploying services over a private environment, which may obtain better availability values with improved management, security, and control. However, how much a company needs to afford to keep this improved availability? As an additional activity, this paper compares the obtained availability values with the infrastructure deployment expenses and establishes a cost × benefit relationship. As for the system’s evaluation technique, we choose modeling; while for the service used to demonstrate the models’ feasibility, the blockchain-as-a-service was the selected one. This paper proposes and evaluate four different infrastructures hosting blockchains: (i) baseline; (ii) double redundant; (iii) triple redundant, and (iv) hyper-converged. The obtained results pointed out that the hyper-converged architecture had an advantage over a full triple redundant environment regarding availability and deployment cost.
    [Show full text]
  • A Scoping Review of Integrated Blockchain-Cloud (Bcc) Architecture for Healthcare: Applications, Challenges and Solutions
    sensors Review A Scoping Review of Integrated Blockchain-Cloud (BcC) Architecture for Healthcare: Applications, Challenges and Solutions Leila Ismail 1,2,∗ , Huned Materwala 1,2 and Alain Hennebelle 3 1 Intelligent Distributed Computing and Systems Research Laboratory, Department of Computer Science and Software Engineering, College of Information Technology, United Arab Emirates University, Al Ain, Abu Dhabi 15551, United Arab Emirates; [email protected] 2 National Water and Energy Center, United Arab Emirates University, Al Ain, Abu Dhabi 15551, United Arab Emirates 3 Independent Researcher, Al Ain, Abu Dhabi 15551, United Arab Emirates; [email protected] * Correspondence: [email protected] Abstract: Blockchain is a disruptive technology for shaping the next era of a healthcare system striving for efficient and effective patient care. This is thanks to its peer-to-peer, secure, and transparent characteristics. On the other hand, cloud computing made its way into the healthcare system thanks to its elasticity and cost-efficiency nature. However, cloud-based systems fail to provide a secured and private patient-centric cohesive view to multiple healthcare stakeholders. In this situation, blockchain provides solutions to address security and privacy concerns of the cloud because of its decentralization feature combined with data security and privacy, while cloud provides solutions to the blockchain scalability and efficiency challenges. Therefore a novel paradigm of blockchain-cloud integration (BcC) emerges for the domain of healthcare. In this paper, we provide an in-depth Citation: Ismail, L.; Materwala, H.; analysis of the BcC integration for the healthcare system to give the readers the motivations behind Hennebelle, A.
    [Show full text]
  • Defense and Detection Strategies Against Internet Worms
    Defense and Detection Strategies against Internet Worms For quite a long time, computer security was a rather narrow field of study that was populated mainly by theoretical computer scientists, electri- cal engineers, and applied mathematicians. With the proliferation of open systems in general, and of the Internet and the World Wide Web (WWW) in particular, this situation has changed fundamentally. Today, computer and network practitioners are equally interested in computer security, since they require technologies and solutions that can be used to secure applications related to electronic commerce. Against this background, the field of com- puter security has become very broad and includes many topics of interest. The aim of this series is to publish state-of-the-art, high standard technical books on topics related to computer security. Further information about the series can be found on the WWW at the following URL: http://www.esecurity.ch/serieseditor.html Also, if you’d like to contribute to the series by writing a book about a topic related to computer security, feel free to contact either the Commissioning Editor or the Series Editor at Artech House. For a listing of recent titles in the Artech House Computer Security Series, turn to the back of this book. Defense and Detection Strategies against Internet Worms Jose Nazario Artech House Boston • London www.artechhouse.com Library of Congress Cataloging-in-Publication Data A catalog record of this book is available from the U.S. Library of Congress. British Library Cataloguing in Publication Data Nazario, Jose Defense and detection strategies against Internet worms. — (Artech House computer security library) 1.
    [Show full text]
  • A Centralized Ledger Database for Universal Audit and Verification
    LedgerDB: A Centralized Ledger Database for Universal Audit and Verification Xinying Yangy, Yuan Zhangy, Sheng Wangx, Benquan Yuy, Feifei Lix, Yize Liy, Wenyuan Yany yAnt Financial Services Group xAlibaba Group fxinying.yang,yuenzhang.zy,sh.wang,benquan.ybq,lifeifei,yize.lyz,[email protected] ABSTRACT certain consensus protocol (e.g., PoW [32], PBFT [14], Hon- The emergence of Blockchain has attracted widespread at- eyBadgerBFT [28]). Decentralization is a fundamental basis tention. However, we observe that in practice, many ap- for blockchain systems, including both permissionless (e.g., plications on permissioned blockchains do not benefit from Bitcoin, Ethereum [21]) and permissioned (e.g., Hyperledger the decentralized architecture. When decentralized architec- Fabric [6], Corda [11], Quorum [31]) systems. ture is used but not required, system performance is often A permissionless blockchain usually offers its cryptocur- restricted, resulting in low throughput, high latency, and rency to incentivize participants, which benefits from the significant storage overhead. Hence, we propose LedgerDB decentralized ecosystem. However, in permissioned block- on Alibaba Cloud, which is a centralized ledger database chains, it has not been shown that the decentralized archi- with tamper-evidence and non-repudiation features similar tecture is indispensable, although they have been adopted to blockchain, and provides strong auditability. LedgerDB in many scenarios (such as IP protection, supply chain, and has much higher throughput compared to blockchains. It merchandise provenance). Interestingly, many applications offers stronger auditability by adopting a TSA two-way peg deploy all their blockchain nodes on a BaaS (Blockchain- protocol, which prevents malicious behaviors from both users as-a-Service) environment maintained by a single service and service providers.
    [Show full text]
  • 586 Vs. 586 CPU Proliferation Creates Need for Benchmarks to Sort Them Out
    MICROPROCESSOR REPORT THE PUBLISHER’S VIEW Coming Next Year: 586 vs. 586 CPU Proliferation Creates Need for Benchmarks To Sort Them Out Not so long ago, the name—or, more likely, the tion. Unlike the Nx586, these two chips will have FPUs, number—for a microprocessor was a technical issue of and they will be pin-compatible with Pentium. little importance. Beyond providing an association with Based on the design techniques used—such as reg- the supplier, microprocessor designations were chosen to ister renaming and out-of-order execution—the Nx586, reflect the technical features of the chip. K5, and M1 all go beyond Pentium. In some ways, they The emergence of personal computers as consumer may resemble Intel’s P6 more than Pentium. Neverthe- items has brought a new set of priorities for micropro- less, none of them qualify as a 686, because they don’t cessor names. Intel is investing hundreds of millions of come close to doubling Pentium performance and fall dollars to establish the Pentium name, and the Intel short of P6’s expected performance. name itself, as household words. At the same time, a pro- The 586 name won’t refer to a particular pin config- liferation of differing microprocessor designs from half a uration, feature set, or microarchitecture. What it does dozen vendors has made the naming challenge more refer to is a performance level, what we have called Pen- complex than ever before. tium-class performance: 60–100 SPECint92 today, with The x86 naming scheme used to be simple. From floating-point scores modestly lower than integer.
    [Show full text]
  • Accelerating Software Delivery with Cloudbees
    BLOCKCHAIN-AS-A-SERVICE ACCELERATINGTaking POCs to production with SOFTWARE BlockApps and Red DELIVERY Hat WITH CLOUDBEES JENKINS & RED HAT OPENSTACK SOLUTION BRIEF SOLUTION BRIEF BLOCKAPPS EXPERIENCE BUILD AND TEST NEW ENTERPRISE BLOCKCHAIN APPS RAPIDLY • Over 1,000 BlockApps blockchain Pressure to meet the growing demands of international customers are driving financial services organi- projects in development zations to look for innovative software solutions to distinguish themselves in the marketplace. One of the • Over 100 enterprises building most significant technologies to emerge is the blockchain application, a disruptive shift in architecture solutions on BlockApps that will change how enterprises manage their data, applications, transactions, and business processes. • Contributing member of Ethereum developer community Until now, it has been costly to test and prove the value of blockchain applications in a secure, enterprise- ready environment built on proprietary software. Red Hat and BlockApps are removing those barriers. We have joined forces to help you build innovative proofs-of-concepts and enterprise-ready blockchain applications— RED HAT OPENSHIFT all running on Red Hat® Enterprise Linux® in an OpenShift container. BUSINESS VALUE According to IDC,1 Red Hat The BlockApps STRATO Blockchain Platform includes Ethereum-based features and tools that are designed OpenShift customers experienced: specifically for enterprise businesses to build proofs-of-concepts (POCs) quickly and cost-effectively. Using Red • 66% faster application Hat Enterprise Linux and Red Hat OpenShift Container Platform, you can seamlessly move from development development life cycles and test to full production of your blockchain applications. • 35% less IT staff per applications • 38% lower IT infrastructure costs per application BLOCKAPPPS STRATO BLOCKCHAIN PLATFORM The BlockApps STRATO Blockchain Platform offers customizable transaction processing capabilities and con- 1 IDC White Paper – “The Business Value of Red Hat OpenShift,” Oct.
    [Show full text]
  • Embedded Intel486™ Processor Hardware Reference Manual
    Embedded Intel486™ Processor Hardware Reference Manual Release Date: July 1997 Order Number: 273025-001 The embedded Intel486™ processors may contain design defects known as errata which may cause the products to deviate from published specifications. Currently characterized errata are available on request. Information in this document is provided in connection with Intel products. No license, express or implied, by estoppel or oth- erwise, to any intellectual property rights is granted by this document. Except as provided in Intel’s Terms and Conditions of Sale for such products, Intel assumes no liability whatsoever, and Intel disclaims any express or implied warranty, relating to sale and/or use of Intel products including liability or warranties relating to fitness for a particular purpose, merchantability, or infringement of any patent, copyright or other intellectual property right. Intel products are not intended for use in medical, life saving, or life sustaining applications. Intel retains the right to make changes to specifications and product descriptions at any time, without notice. Contact your local Intel sales office or your distributor to obtain the latest specifications and before placing your product order. Copies of documents which have an ordering number and are referenced in this document, or other Intel literature, may be obtained from: Intel Corporation P.O. Box 7641 Mt. Prospect, IL 60056-7641 or call 1-800-879-4683 or visit Intel’s web site at http:\\www.intel.com Copyright © INTEL CORPORATION, July 1997 *Third-party brands and names are the property of their respective owners. CONTENTS CHAPTER 1 GUIDE TO THIS MANUAL 1.1 MANUAL CONTENTS ..................................................................................................
    [Show full text]
  • Blockchain Deployment Toolkit
    Redesigning Trust: Blockchain Deployment Toolkit Supply Chain Focus April 2020 EXPERIENCE THE INTERACTIVE VERSION AT: wef.ch/blockchain-toolkit World Economic Forum 91-93 route de la Capite CH-1223 Cologny/Geneva Switzerland Tel.: +41 (0)22 869 1212 Fax: +41 (0)22 786 2744 Email: [email protected] www.weforum.org © 2020 World Economic Forum. This publication has been published by the World Economic Forum All rights reserved. No part of this as a contribution to a project, insight areas or interaction. The publication may be reproduced findings, interpretations and conclusions expressed herein area or transmitted in any form or by result of a collaborative process facilitated and endorsed by the any means, including World Economic Forum, but whose results do not necessarily photocopying and recording, or represent the views of the World Economic Forum, nor the entirety of by any information storage and its Members, Partners or other stakeholders. retrieval system. Preface The emergence of blockchain technology holds great promise for supply-chain organisations, perhaps as much as any new development in the industry’s infrastructure since it switched to standardised containers decades ago. The case for blockchain is stronger as the COVID-19 pandemic underscores the need for more resilient global supply chains, trusted data and an economic recovery enabled through trade digitization. At the same time, blockchain may engender a fair share of puzzlement and anxiety among supply-chain leaders unfamiliar with it as a new and unfamiliar digitisation tool. This toolkit is designed to help with the deployment journey, whether your organisation is seeking to gain increased efficiency, greater trust with counterparties, or other potential benefits offered by blockchain technology.
    [Show full text]
  • Blockchain As a Service for Iot Cloud Versus Fog
    2016 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData) Blockchain as a Service for IoT Cloud versus Fog Mayra Samaniego, Uurtsaikh Jamsrandorj Ralph Deters Department of Computer Science Department of Computer Science University of Saskatchewan University of Saskatchewan Saskatoon, Canada Saskatoon, Canada [email protected], [email protected] [email protected] Abstract—A blockchain is a distributed and decentralized ledger that preceding block is entered. Once a new block is formed, any contains connected blocks of transactions. Unlike other ledger changes to a previous block would result in different hashcode approaches, blockchain guarantees tamper proof storage of approved transactions. Due to its distributed and decentralized organization, and would thus be immediately visible to all participants in the blockchain is beeing used within IoT e.g. to manage device configuration, blockchain. Consequently, blockchains are considered store sensor data and enable micro-payments. A key challenge in the tamperproof distributed transaction ledgers. Originally deployment of blockchain technology is the hosting location. This paper designed as the distributed transaction ledger for BitCoin [3], evaluates the use of cloud and fog as hosting platforms. the idea of using blockchains has spread. Keywords—IoT, Virtual Resource, Software-Defined IoT, Edge The ability to create/store/transfer digital assets in a distributed, Computing, Multi-Tenancy decentralized and tamper-proof way is of a large practical value for IoT systems. While micro-payments in IoT may be the most obvious use of blockchain technology, we consider the I.
    [Show full text]
  • Openbsd Ports...What the Heck?!
    OpenBSD ports...what the heck?! Jasper Lievisse Adriaanse [email protected] pkgsrcCon, Basel, May 2010 Agenda 1 Introduction 2 Hackathons 3 pkg add(1) 4 Recent developments 5 Differences with pkgsrc 6 Conclusion Agenda 1 Introduction 2 Hackathons 3 pkg add(1) 4 Recent developments 5 Differences with pkgsrc 6 Conclusion Who am I? Jasper Lievisse Adriaanse (jasper@). Developer since 2006. Code in all parts of the system. Terminology Port Platform OpenBSD... Unix-like, multi-platform operating system. Derived from 4.4BSD, NetBSD fork. Kernel + userland + documentation maintained together. 3rd party applications available via the ports system. Anoncvs, OpenSSH, strlcpy(3)/strlcat(3). One release every 6 months, regardless. OpenBSD... (cont.) 16 platforms: alpha, amd64, armish, hp300, hppa, i386, landisk, loongson, mvme68k, mvme88k, sgi, socppc, sparc, sparc64, vax, zaurus. OpenBSD... (cont.) 13 binary architectures: alpha, amd64, arm, hppa, i386, m68k, mips64, mips64el, powerpc, sh, sparc, sparc64, vax. OpenBSD... (cont.) W.I.P. platforms aviion, hppa64, palm, solbourne. Agenda 1 Introduction 2 Hackathons 3 pkg add(1) 4 Recent developments 5 Differences with pkgsrc 6 Conclusion What is...a Heckethun? Hackathons do not have talks, or a specific schedule. People hack and discuss... ...and drink (Humppa!). Hackathons General hackathon Mini hackathons Hardware, network, ports, filesystem/uvm, routing. Heckethuns ere-a fur sterteeng sumetheen oor feenishing sumetheeng, nut but. Su dun’t bork zee tree-a! Bork bork bork! Ports hackathons Ports hackathons Yearly event. Very creative and productive atmosphere. No presentations. Just hacking, fun and beer... ...and wine! Agenda 1 Introduction 2 Hackathons 3 pkg add(1) 4 Recent developments 5 Differences with pkgsrc 6 Conclusion µ history Common ancestor; the FreeBSD ape.
    [Show full text]