Cloud-based solutions have a scandalous reputation. Yet, companies, even those who provide services for public safety, continue to push cloud-based solutions. But for mission-critical operations, is the Cloud stable and reliable? Is it secure? Does it put sensitive information at risk?

The following addresses some frequent questions and concerns regarding cloud-based services and software as it relates to mission-critical communications within public safety and beyond.

Firstly, What is Cloud Computing?

The cloud computing model refers to the availability of computer resources, usually computing power and data storage, that is available on-demand via the internet. Many cloud deployment models and services are available from companies like Amazon, Microsoft, and Google. Software companies can leverage these services and resources, instead of standard computing hardware, operating system, and software, to provide next-generation solutions to their customers. Typically, the end customer of these solutions does not have to manage any of these resources directly.

Cloud Based Solutions Public Safety

Components of Cloud Computing Services

Cloud computing consists of three services: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).

Types of Cloud Deployment Models

There are only a few common types of cloud models:

Is The Public Cloud Risky for Public Safety & Government Agencies?

In short: NO, it is less risky than how we’ve been doing things. There are many aspects that make the Public Cloud a much safer and reliable option, in fact, than traditional on-premise solutions.

  • Built-In System & Resource Monitoring
    Public cloud services offer a variety of built-in tools that can help solution providers and vendors monitor unusual system or resource activity. Cyber-attacks often have familiar patterns of packet activity, which can trigger alarms.

  • Software Updates & Security Patches
    When the Log4j Vulnerability was discovered in 2021, suddenly every on-premise and cloud-based solution leveraging Apache had to be evaluated, and patched if required, to mitigate risk. On-premise solutions prove difficult and time-intensive to update manually. However, public cloud-based solution providers almost immediately deployed patches for their services and already had layers of security services in place to help their customers limit risk (read AWS response here). As IT departments scrambled to update their on-premise or self-hosted applications, nearly all cloud-hosted applications had already been patched.

  • Automated Backups
    Public cloud solutions are automatically backed up at consistent intervals, and storage is not limited to a single on-premise server or location, so data can never be lost due to hardware failure.

  • Reliable Uptime & Availability
    Organizations and vendors can configure their cloud-based solutions for up to 99.999% (5 nines) uptime, or even further. Cloud companies leverage various combinations of technologies and services to make this possible. Each cloud provider and software vendor will have their own SLAs and SLOs which will vary, but typically the expected uptime is higher than traditional deployments.

  • Security Standards & Compliance
    Many major public cloud providers have worked directly with governing bodies, like Criminal Justice Information Services (CJIS) officials, to implement offerings for their customers that satisfy a variety of standards and certifications. For example, according to Amazon, their standard AWS cloud is compliant with CJIS, PCI-DSS, HIPAA/HITECH, FedRAMP, GDPR, FIPS 140-2, and NIST 800-171. They also offer GovCloud, which offers a whole other level of security for qualifying entities. This extends to the state and federal level for FedRAMP and StateRAMP certifications.

Cloud: The Way Forward

Technology has always paved the way for innovation, and the Cloud is no exception. With Public Cloud offerings, the lower costs means that public safety personnel can stretch their resources further without sacrificing the quality of their services. In fact, The Cloud not only offers organizations cheaper and faster ways to do what they do now, but the vast marketplace of cloud-based technologies also allows agencies to innovate and automate.

When the first major public cloud services were launched in 2006, the market was still new, and much of the security, compliance, and monitoring functionality had not been developed or implemented. In the 14 years since then, however, cloud offerings have evolved as there have been learning opportunities for these major public cloud providers. They have had to release security patches urgently and at scale, develop prevention, mitigation, and response tools, rearrange their services to optimize uptime, and implement new processes to meet various compliance requirements. Additionally, vendors who leverage cloud services in their software have had time to learn about and adapt to these new environments, allowing them to fully leverage modern technologies in what they offer to public safety agencies.

cloud-computing
Email Me Articles Like This
Contents
Related Resources
  • Evaluating Cloud Data Centers for Public Safety, Part 2

    2,835 Views

  • Evaluating Cloud Data Centers for Public Safety, Part 1

    2,246 Views