Digital Discourse / Software / Government

The European Cloud Computing Strategy: A Promising Step

September 27, 2012 By

Today, the European Commission announced the release of its long-awaited cloud strategy in a communication entitled “Unleashing the Potential of Cloud Computing in Europe.” The Commission clearly recognizes cloud computing’s capacity to allow people, businesses and governments to rent services and data storage for much cheaper than buying new equipment and software. Indeed, combined with the emergence of big data analytics, cloud computing represents a sea-change in the business and technical opportunities for the information technology industry and its myriad customers, business and consumer, large and small. The Commission’s strategy report is a major step forward by policymakers in coming to grips with the policy thinking needed to foster this new development and to deal with its many challenges in Europe and around the world.

SIIA particularly welcomes the Commission’s focus on the use of cloud computing in government. The Commission’s encouragement of the use of cloud computing is the counterpart of the US government’s Cloud First approach.

Unfortunately, some parts of the Commission’s communication go in a direction SIIA warned against in its report to policy makers last year. In places, the communication treats cloud computing as a discrete entity that is potentially subject to specific government regulation. In reality, cloud computing is a variety of evolving business and technical developments that share only a rough similarity. NIST has described three different service models for cloud computing (Software as a Service, Platform as a Service, and Infrastructure as a Service); and four different deployment models (private, community, public and hybrid). There is also the enormous difference between consumer uses of cloud computing and its business uses, and within the latter, still further important differences between uses by large organizations and by small and medium sized businesses. Cloud computing is used in industries ranging from financial services, to energy to telecommunications.

The European Commission’s cloud strategy document recognizes this issue, noting that cloud computing has a “range of defining features (which make a general definition elusive)…” Despite this it goes on to propose a series of government regulations that can be effectively implemented only if there is a reasonably precise legal definition of cloud computing.

Privacy rules, security rules, intellectual property, and consumer protection rules apply when cloud computing is used, but there is no need for special privacy, security, intellectual property or consumer protection rules that apply just to cloud computing. Generalized rules, indeed, globally interoperable rules, are best suited to the global, borderless nature of cloud computing.

Some of the specific suggestions in the report are good in themselves. This is the case for example in the idea that security guidelines should be developed that take into account the special characteristics of cloud computing. But again there is no need for European regulations that mandate specific security requirements just for cloud computing. Security standards should be market-driven and global, not just European, in character

Another concern is the possible development of privacy rules just for the cloud. The Commission and the Parliament are working on a new data protection regulation that would apply across the board, but the cloud strategy suggests the development of alternative or competing privacy rules just for cloud computing.

The Commission also seems to be interested in mandating specific consumer protections such as data portability, interoperability and reversibility in standardized service level agreements. But it is a leap to jump from a concern for consumer protection to the conclusion that specific European consumer protection rules need to be incorporated into standardized terms of service. Industry groups, not European-wide regulators, are best situated to fill any perceived need for optional model contracts.

SIIA welcomes the Commission’s strategy and intends to engage in the process of working with the Commission to see that the benefits of cloud computing are fully realized in the European single market and throughout the world.

Mark MacCarthy, Vice President, Public Policy at SIIA, directs SIIA’s public policy initiatives in the areas of intellectual property enforcement, information privacy, cybersecurity, cloud computing and the promotion of educational technology. Follow the SIIA Public Policy team on Twitter at @SIIAPolicy

Share|
Filed Under: Cloud Computing, Cloud Computing: Education, Government, Policy, Policy - Cloud Computing, Software Tagged With: ,

SIIA Announces Five Recommendations to Make Federal IT Reform a Reality

June 5, 2012 By

SIIA’s Public Sector Innovation Group (PSIG) today released an authoritative guide to help Federal CIOs and IT companies work together to effectively transition to a new cloud-based environment. SIIA crafted the guide to provide specific recommendations for fostering the development of the cloud in the Federal government and harnessing its full economic potential.

PSIG released the guide as part of the NIST Cloud Computing Forum and Workshop beginning today, and to coincide with the June 9th deadline for the 18-month deliverables for the 25 Point Plan to Reform Federal IT.

With budgets tightening, and the 25 Point Plan deadline looming, this is a critical time for Federal IT reform. Working closely with both Federal IT executives and so many companies that do business with the government gives us a unique perspective on the future of IT reform. At this important time, our goal is to help focus attention on what we see as the core priorities.

This guide provides recommendations around many of the central opportunities and challenges that are being debated among leaders in both the public and private sectors. We believe the development of a comprehensive IT strategy roadmap, along with consistent implementing guidance, will allow agencies to prioritize IT initiatives in order to make the original vision of the 25 Point Plan a reality.

The report offers five key recommendations for Federal decision makers:

1. Continue to promote the “Cloud First” policy developed in 2010
2. OMB and GSA should work together and with industry to remove barriers to effective planning and procurement.
3. Promote changes to federal acquisition process and culture that to ensure they keep pace with technology
4. Lower the barrier of market entry for small businesses
5. Develop a comprehensive Federal IT strategy roadmap

The full report, which includes detailed discussion of each recommendation, is available here.

Michael Hettinger is VP for the Public Sector Innovation Group (PSIG) at SIIA. Follow his PSIG tweets at @SIIAPSIG.

Share|
Filed Under: Cloud Computing, Government, Policy, Policy - Cloud Computing, PSIG, Software

SIIA, Industry Gather at White House to Pledge Leadership Role in Stopping Botnets

May 30, 2012 By

At a White House event today, the Software & Information Industry Association (SIIA) expressed a commitment to working with the Administration to address the growing dangers posed by botnets. SIIA is part of a multi-industry group that today announced its Principles for Voluntary Efforts to Reduce the Impact of Botnets in Cyberspace. SIIA President Ken Wasch and representatives of other industry groups were joined by Cybersecurity Coordinator Howard Schmidt, Secretary of Homeland Security Janet Napolitano, other administration officials and industry leaders including Michael DeCeasare CEO of McAfee.

As the leading organization representing software and digital media companies, SIIA and its members are at the forefront of the fight against botnets and other forms of Internet security threats. For example, McAfee provides a suite of tools for consumers and businesses to keep their systems free of infections and to remove malware and botnets from their infected systems. And Google recently launched a notification effort for users of computers and routers infected with the DNSChanger malware.

SIIA is committed to addressing botnet security threats by working collaboratively with the government and by promoting the work of our members. It is vital that industry and government work together to ensure that public policy encourages private sector innovation and flexibility. After all, it is the products and tools produced by companies such as McAfee and Google that are empowering consumers and businesses to fight Internet security threats.

To that aim, SIIA is part of the Industry Botnet Group (“IBG”), which was formed earlier this year to collaborate on and encourage voluntary efforts to reduce the effectiveness of botnets. Botnets infect computers, threatening the trust and confidence of online users and undermining the efficiencies and economic growth spurred by the Internet. The IBG’s principles call on Internet participants to coordinate and communicate with each other and voluntarily work to fight the effectiveness of botnets across the botnet lifecycle. More information is available at www.industrybotnetgroup.org.

Ken WaschKen Wasch is President of SIIA.

Share|
Filed Under: Government, Policy, Policy - Cybersecurity, Security, Software Tagged With: , ,

SIIA Public Sector Innovation Group Announces Founding Board of Directors

May 24, 2012 By

SIIA today announced the founding members of the Public Sector Innovation Group (PSIG) Board of Directors. PSIG is a newly formed division of SIIA dedicated to helping technology firms take advantage of the evolving federal investment in cloud-related technologies.

Newly appointed board members are executives from SIIA member companies and will add a critical voice to the ongoing debate on a host of key issues affecting the government IT industry, including cloud computing, FedRAMP, mobility, security, big data, procurement and innovation. The PSIG Board will help develop the Division’s initiatives and determine the projects, activities and events—which will include thought leadership around the implementation of cloud computing and an executive roundtable series with key decision-makers.

The Public Sector Innovation Group Board of Directors will be chaired by Doug Bourgeois, Vice President and Chief Cloud Executive at VMware, Inc.

All executives were appointed to serve one‐year terms.

Public Sector Innovation Group Board of Directors 2012:
• Mike Binko, President and CEO, kloudtrack
• Doug Bourgeois, VP & Chief Cloud Executive, VMware, Inc.
• Bart Epstein, SVP and GM, Military and Federal, Tutor.com
• Mark Forman, Founder, Government Transaction Services
• Tom Gann, Vice President, Government Relations, McAfee
• Gunnar Hellekson, Chief Technology Strategist, RedHat US Public Sector
• Joel Hinzman, Senior Director, Federal Affairs, Oracle
• Robert Hodges, Federal Business Development Lead, Bancroft Technology Group
• John Landwehr, VP Digital Government Solutions, Adobe
• David Lucas, Chief Strategy Officer, Global Computer Enterprises
• Preston McGee, Director of Business Development, Peniel Solutions LLC
• David Mihalchik, Business Development Executive – Federal, Google
• Michelle Rudnicki, VP, Cloud Computing IBM
• Jeff Ward, Vice President – Federal, Fiberlink

Laura Greenback is Communications Director at SIIA.

Share|
Filed Under: Cloud Computing, Government, Policy, Policy - Cloud Computing, PSIG, Software Tagged With: ,

Forced Localization: The New Protectionism

May 22, 2012 By

What do the following examples have in common?

  • In 2009, China proposed an indigenous innovation policy that would have explicitly restricted government contracts to goods whose embodied intellectual property was domestically owned.
  • In 2010, Norway ruled that cities could not use cloud computing services unless the servers were located domestically. Denmark followed suit in 2011.
  • In 2011, Kazakhstan attempted to require all .kz domains to operate on domestic servers.
  • In 2012, India proposed a requirement that government agencies purchase electronic goods and services with 30% local content.

These cases are examples of required localization: governments attempt to restrict the sale of goods and services within their territory to those which have been produced locally. The localization can be in terms of embodied intellectual property rights, manufacturing facilities, or facilities providing cloud computing services.

Governments cite national security concerns, or consumer protection issues or privacy and government access worries when imposing these restrictions. From a trade and economic point of view, however, they increase economic nationalism at the expense international trade.

What seemed like a series of isolated incidents now seems to be a trend, which if left unchecked, could seriously undermine the goal of increasing the flow of goods and services across borders. The 2012 Special 301 Report (p. 18) and the 2012 Section 1377 telecom trade report document the extent to which these localization initiatives could hinder bi-lateral, regional and global economic integration.

SIIA and other worldwide businesses and trade associations are seeking an effective response to the growing threat of a new protectionism based on localization initiatives.

Two principals that are gaining wide currency among industry and NGOs stand in stark opposition to this new protectionism. These principles are embodied in the agreement between the Office of the United States Trade Representative and the European Commission on a set of trade-related principles for information and communication technology (ICT) services:

  • Cross-Border Information Flows: Governments should not prevent service suppliers of other countries, or customers of those suppliers, from electronically transferring information internally or across borders, accessing publicly available information, or accessing their own information stored in other countries.
  • Local Infrastructure: Governments should not require ICT service suppliers to use local infrastructure, or establish a local presence, as a condition of supplying services. In addition, governments should not give priority or preferential treatment to national suppliers of ICT services in the use of local infrastructure, national spectrum, or orbital resources.

Since this agreement was made in April 2011, several intergovernmental, industry and non-governmental civil society groups have endorsed these principles, including SIIA, the Aspen Institute, the Organization for Economic Cooperation and Development (OECD), and a group of trade associations and companies lead by the National Foreign Trade Council.

There is momentum in both the private sector and the U.S. government to take on this issue in the strongest possible way. The US government is ramping up its efforts to move these principles forward. For instance, they are embodied in the electronic commerce chapter of the U.S. proposal in the Trans-Pacific Partnership (TPP) trade negotiations.

SIIA urges that this issue be moved to the highest levels of U.S. government decision making and raised in all significant international venues including economic gatherings of heads of state such as the recent G-8 meeting, meetings of the ministers of the Asia Pacific Economic Cooperation group, committees of the World Trade Organization, OECD working groups and trade discussions such as TPP. Only a sustained, high-level commitment from the U. S. government will turn the tide against this new form of economic nationalism.

Mark MacCarthy, Vice President, Public Policy at SIIA, directs SIIA’s public policy initiatives in the areas of intellectual property enforcement, information privacy, cybersecurity, cloud computing and the promotion of educational technology.

Share|
Filed Under: Cloud Computing, Government, Policy, Policy - Cloud Computing, Software Tagged With: , , ,

This week in the Federal Cloud: May 13-18

May 18, 2012 By

There was big news in cloud this week with the announcement by GSA on May 14th of the first certified 3rd Party Assessment Organizations (3PAOs). The initial 3PAOs include a federal agency (DOT Enterprise Service Center), SRA International, and a number of small to mid-size companies specializing in FISMA certification. The 3PAOs are an integral part of the FedRAMP process so this action represents a major step forward for the FedRAMP program and vendors wishing to go through the FedRAMP process can now hire one of these approved 3PAOs to assess the security of their system. The link below will take you to GSA’s list of accredited 3PAOs.

Also this week, we began to get some clarity around the role of industry in the shared services initiative, with public comments from OMB Officials about how the strategy will be implemented and what role industry and government shared service providers will play in the initiative. According to OMB, they are not distinguishing public and private sector service providers. Read more from Federal News Radio.

Michael Hettinger is VP for the Public Sector Innovation Group (PSIG) at SIIA. Follow his PSIG tweets at @SIIAPSIG.

Share|
Filed Under: Government, Policy, Policy - Cloud Computing, PSIG, Software Tagged With: , ,

Lorraine Landfried, Deputy CIO for Product Development at VA to speak to SIIA Public Sector Group

May 16, 2012 By

Lorraine Landfried

As part of its ongoing Executive Roundtable Series, SIIA will host Lorraine Landfried, Deputy CIO for Product Development at the Department of Veterans Affairs for a roundtable discussion on the latest developments around IT enhancement and strategy within VA.

In her role at VA, Landfried facilitates all IT development activities, including planning and oversight of the IT projects supporting the Secretary’s 16 major initiatives.

The roundtable will be the first executive discussion before SIIA’s new Public Sector Innovation Group, a newly created division of SIIA comprised of innovative software and IT services firms seeking to take advantage of the evolving Federal investment in Cloud-related technologies.

The event is open to all SIIA members and invited guests. Please contact Mike Hettinger for more information.

Event details:
What: SIIA Public Sector Innovation Group Executive Roundtable
When: May 24, 2012, 11:00am
Where: SIIA Offices, 1090 Vermont Avenue, Suite 600, Washington, DC

Michael Hettinger is VP for the Public Sector Innovation Group (PSIG) at SIIA. Follow his PSIG tweets at @SIIAPSIG.

Share|
Filed Under: Government, Policy, Policy - Cloud Computing, PSIG, Software Tagged With: , ,
« Older Posts
Newer Posts »