Please provide the responses to below discussions in 75 to 100 words for each discussion
Post1#
Federated architecture in cloud systems is also referred to as the Cloud Federation Architecture. It is a system that provides an intercloud service where heterogeneous cloud gets capacitated to interoperate. All the clouds participating ‘adopt unique techniques to describe the different services obtained from their platforms’ (Liu, Zhang, Song, & Letaief, 2020). Users, on the other hand, are enabled to use the created mechanism or system to benefit from the common as well as available services within the cloud, this being after the conclusive application of the federation’s architecture within the interface. There are specialist service brokers whose mandate is to provide a platform for translating services between and amongst the interfaces, thus providing the necessary updates for its successful operations.
Cloud federation architecture applies brokerages, including the most common, typical objective request broker architecture (Liu et al., 2020). Others that have gained notoriety in the market amongst consumers include the Object Request Broker, which acts as middleware, especially after introducing the XML. It is now possible to apply similar technologies in processing similar languages while avoiding unnecessary translations. Brokers play a core role in the cloud federation, ‘whereas other service providers such as the CPSs facilitate the broker-to-broker communications’ (Liu et al., 2020). Such a function can be matched with those offered under the federation resources and have to be operated using a user command just as it is done while considering the SLAs parties. It is incumbent upon the brokers to identify the unique ways cloud services and resources ca. n be applied before gathering information seamlessly and smoothly. Service pricing information is another crucial benefit that can be gained from brokerage services.
For cloud federation architecture to function correctly as designed, the engaging parties, as well as those that are interested, need to ‘subscribe for the FLA services’ (Wu, He, & Chen, 2020). This service guarantees particular interconnections, laws, and rules of operation, which also dictates the unique roles and responsibilities of the parties. Only acceptable behaviors are allowed leading to more significant financial gains. There are administrative penalties, however, following violations of the laid down protocols, which equally encourages smaller parties to subscribe and unsubscribe at will. All the pros and cons of cloud federation architecture, however, serve to ensure that the system as developed promotes interoperability, collaboration, and cooperation.
Research on the intercloud services reveals a growing interest and concern for the use of cloud federations. Some of the factors that have been cited for this ever-increasing urge include its power-efficiency, cost-effectiveness, and even the dynamism associated with it when it comes to sharing and disseminating information, services, and resources (Wu et al., 2020). It is required of the members in a federation to sign up for the Sign Service-Level Agreements, which is depended upon for continued availability as well as QoS. Other things to consider include defining the marketing system based on the costs of utilities, determine the geographic dispersion that will dictate how resources are distributed. Equally important is that it will eliminate any likely problems within the network ass that would interrupt normal services or alter access to services through delays.
Post#2
Identity and access management (IAM) in enterprise IT is about defining and managing the roles and access privileges of individual network users and the circumstances in which users are granted (or denied) those privileges. Those users might be customers (customer identity management) or employees (employee identity management). The core objective of IAM systems is one digital identity per individual. Once that digital identity has been established, it must be maintained, modified and monitored throughout each user’s access lifecycle. Identity and management technologies include but aren’t limited to password-management tools, provisioning software, security-policy enforcement applications, reporting and monitoring apps and identity repositories. Identity management systems are available for on-premises systems, such as Microsoft SharePoint, as well as for cloud-based systems, such as Microsoft Office 365.
“An Identity and Access Management (IAM) framework manages these different slices of your profile, including your memberships, groups and organizations, roles, resources, resource-level roles, risk, history, status, and so on” (Scheidel, 2010). IAM systems provide administrators with the tools and technologies to change a user’s role, track user activities, create reports on those activities, and enforce policies on an ongoing basis. These systems are designed to provide a means of administering user access across an entire enterprise and to ensure compliance with corporate policies and government regulations.
“Unlike manual new-user access and subsequent modification controls, the primary benefit of centralized and automated IAM controls is the enforcement of organizational security policies at the point of use” (George, Aldhizer, Paul & Dale, 2008). Specifically, security policies are enforced through the real-time monitoring of employee and third-party access and use of sensitive data across multiple enterprise resource planning (ERP) databases in numerous locations. Additional benefits of centralized and automated IAM controls include improved operational efficiency, increased userproductivity, enhanced internal audit efficiency, and improved compliance with federal privacy laws and regulations.
“Implementing centralized authentication is a great method when there are too many users and servers, although this itself needs a good amount of time to implement and maintain. Thus, depending on operational benefits, you can give a thought” (Vora, & Pruteanu, 2017). Many organizations should consider automating the following five IAM processes and related controls: password changes or resets, new-user access, subsequent modifications to existing user access, termination of user access, and third-party access. While the benefits of deploying a robust IAM solution are clear, the cost and complexity of implementation can derail even the most well-intentioned organization. However, when enterprises consider the cost of a potential security breach or study the inefficiencies inherent to the manual provisioning and de-provisioning of access to corporate resources, the imperative is clear. In addition, enterprises can ensure security by deploying solutions with strong multifactor authentication, while eliminating user frustration by delivering seamless access to cloud-based applications.
Identity and access management (IAM) in enterprise IT is about defining and managing the roles and access privileges of individual network users and the circumstances in which users are granted (or denied) those privileges. Those users might be customers (customer identity management) or employees (employee identity management). The core objective of IAM systems is one digital identity per individual. Once that digital identity has been established, it must be maintained, modified and monitored throughout each user’s access lifecycle. Identity and management technologies include but aren’t limited to password-management tools, provisioning software, security-policy enforcement applications, reporting and monitoring apps and identity repositories. Identity management systems are available for on-premises systems, such as Microsoft SharePoint, as well as for cloud-based systems, such as Microsoft Office 365.
“An Identity and Access Management (IAM) framework manages these different slices of your profile, including your memberships, groups and organizations, roles, resources, resource-level roles, risk, history, status, and so on” (Scheidel, 2010). IAM systems provide administrators with the tools and technologies to change a user’s role, track user activities, create reports on those activities, and enforce policies on an ongoing basis. These systems are designed to provide a means of administering user access across an entire enterprise and to ensure compliance with corporate policies and government regulations.
“Unlike manual new-user access and subsequent modification controls, the primary benefit of centralized and automated IAM controls is the enforcement of organizational security policies at the point of use” (George, Aldhizer, Paul & Dale, 2008). Specifically, security policies are enforced through the real-time monitoring of employee and third-party access and use of sensitive data across multiple enterprise resource planning (ERP) databases in numerous locations. Additional benefits of centralized and automated IAM controls include improved operational efficiency, increased userproductivity, enhanced internal audit efficiency, and improved compliance with federal privacy laws and regulations.
“Implementing centralized authentication is a great method when there are too many users and servers, although this itself needs a good amount of time to implement and maintain. Thus, depending on operational benefits, you can give a thought” (Vora, & Pruteanu, 2017). Many organizations should consider automating the following five IAM processes and related controls: password changes or resets, new-user access, subsequent modifications to existing user access, termination of user access, and third-party access. While the benefits of deploying a robust IAM solution are clear, the cost and complexity of implementation can derail even the most well-intentioned organization. However, when enterprises consider the cost of a potential security breach or study the inefficiencies inherent to the manual provisioning and de-provisioning of access to corporate resources, the imperative is clear. In addition, enterprises can ensure security by deploying solutions with strong multifactor authentication, while eliminating user frustration by delivering seamless access to cloud-based applications.