Slashdot Mirror

← Back to Stories (view on slashdot.org)

Feds To Adopt 'Cloud First' IT Policy

Posted by Soulskill on from the what-happens-when-the-cloud-wants-to-move-to-the-cloud dept.

theodp writes "The White House Thursday announced plans to restructure IT by consolidating federal government data centers and applications, and adopting a so-called 'cloud first' policy. Unveiled by federal CIO Vivek Kundra, the 25-Point Plan (PDF) calls for cutting 800+ data centers by 2015, as well as shifting work to cloud computing systems. The new 'Cloud First' policy cites the ability of Animoto.com to scale vs. the government's short-lived Cars.gov (Cash for Clunkers), although Google Trends suggests this may be somewhat of an apple-to-oranges comparison for justifying a national IT strategy. As long as we're talking clouds, a tag cloud of the 25-Point Plan underscores that the Feds are counting more on IT Program and Contract Management rather than Computer Science wizardry to deliver 'the productivity improvements that private industry has realized from IT.' Not to be a buzzkill, but those of you celebrating CS Education Week might be advised to consider an MBA if you want a Federal IT career."

37 of 142 comments (clear)

  1. not a terrible idea by Trepidity · · Score: 4, Interesting

    We're moving this way in academia as well: it used to be that every research group doing anything of note with computers had to have its own servers, but the vast majority just sit idle all the time, and the maintenance overhead and potential for maintenance disruptions is very large (if your one main server has a hard drive failure, everything is on hold until you scramble to fix it). The trend has been to virtualize those, unless you're a research group with particularly high or specific computational needs, like doing cluster-computing or systems research.

    The main open question is whether the virtualization will go mainly internally or externally. Should we just buy some EC2 instances from Amazon? Or should the department (or school, or university) maintain some compute resources that individual research groups can request virtual-machines on?

    --
    10 PRINT CHR$(205.5+RND(1)); : GOTO 10
  2. Re:So sad by squiggleslash · · Score: 5, Interesting

    It means third party, Internet connected, managed services.

    For example, a company that offers network connected scalable processing and bandwidth services is offering "cloud" services.

    Like Amazon.com, for example. Amazon.com offers this as one of their services. They used to sell this service to some-one called "Wikileaks".

    Interesting fact: Amazon stopped selling those services to Wikileaks, and lied about why. Amazon claimed they were suspending the hosting because Wikileaks had published 250,000 embassy cables without vetting them first. But this was untrue. Questions have been asked as to why Amazon.com did this, and Amazon.com claimed this false smear in order to deflect the allegation that they had done so under government pressure, something they denied in the same press release.

    Now the Feds are announcing a massive move over to cloud computing, a move that will result in hundreds of millions of dollars to those companies who get the contracts.

    I wonder why Amazon.com dropped Wikileaks as a customer. And why they felt the need to lie about why. And why they did this just before hundreds of millions of dollars became available for services like the ones they offer, from an organization that really doesn't like Wikileaks.

    --
    You are not alone. This is not normal. None of this is normal.
  3. Sounds like a plan by 0123456 · · Score: 3, Insightful

    I heard some place called 'Wikileaks' was offering the government a good deal for cheap cloud hosting.

  4. As a fan of WikiLeaks... by MasterOfMagic · · Score: 4, Insightful

    I welcome this move. Sure hope you have enough of an infrastructure to keep, say, taxpayer SSNs, DOBs, mother's maiden names out of the cloud, not to mention the inevitable access to this cloud resource by the SIPRnet.

    It's a good time for government transparency, whether intentional or not.

    1. Re:As a fan of WikiLeaks... by Haeleth · · Score: 2

      It's a good time for government transparency, whether intentional or not.

      Except in all the countries that would really benefit from more transparency, like China.

      Oh well, I guess all those oppressed people don't really matter -- let's keep on showing the dictatorships of the world exactly why they don't want to give their people free speech and a free press!

    2. Re:As a fan of WikiLeaks... by Anonymous Coward · · Score: 3, Interesting

      agreed. congress is going to step into siprnet too.
      http://whatsbrewin.nextgov.com/2010/05/hill_wants_access_to_secret_siprnet.php
      its time for more transparency with more people having access to siprnet and cloud based infrastructure supporting public information access to government stored data.

  5. Clouds don't leak right? by Peverbian · · Score: 4, Insightful

    Clouds don't leak right? I mean, there's no way any sensitive information could make its way out of there on some Root Access Inter-Node something.

    1. Re:Clouds don't leak right? by PhrostyMcByte · · Score: 3, Interesting

      There is less surface area to cover, and the architecture has potential to be more standardized. I'd say it will probably be easier to maintain security with a few big clouds than with 800 random smaller datacenters. (Note, nothing says they need to use Amazon or Microsoft's cloud -- they can make their own.)

  6. Big buzzkill, over-dramatized by adosch · · Score: 5, Interesting

    I work as a federal contractor at a Department of Interior funded datacenter that is actually suppose to be taking on the 'work' from some of the downsized datacenters. Comical bit is, we've known about this for well over a year prior to TFA, and it's a total bean-counter move. The goal is "use less servers, and less operating systems". We still have zero idea what we are getting in, who we're getting it from, what it'll be, ect. To me, we're preparing more for straight P2V virtualization than we at all worried about some desk jockey's 'cloud' buzzword he put in his report.

    1. Re:Big buzzkill, over-dramatized by Xeger · · Score: 2

      No doubt, cloud is a huge buzzword at the moment. No reason you can't use that to your advantage, however.

      "Cloud computing" in common parlance means at least three things at the moment:

      * A marginal-cost pricing model for compute resources (pay for only what you use)
      * Making use of virtualization in one's app architecture
      * Pervasive use of automation in the architecture and throughout the software lifecycle (dev/test/deploy)

      #1 is a bit of a fad; some workloads can be shoved out into a public cloud with no risk to security or availability, but many workloads will never be suited for that.

      However, #2 and #3 are here to stay for the next decade -- and even if computer architecture makes another massive swing (e.g. massive parallelism or quantum computing or some hooey) and virtualization is no longer as sexy as it is right now, automation always has been, and will always continue to be, a key component of successful IT operations. Automation = productivity!

      Even a large part of what we call the "virtualization benefit" is actually due to automation-related productivity. The fact that I can take my pre-built OS + app stack and deploy it on whichever hardware I wish -- and in some cases even migrate it between two differently-capable host systems WHILE my guest is running! -- is all a flavor of automation. We've always been able to migrate servers, but it used to require a screwdriver and lots of patience.

      So -- my advice is, don't look down your nose at the sudden cloudiness! Take advantage of this buzzword-laden atmosphere to justify your sound technical decisions to the businessfolk, in terms that their feeble minds can understand. ;-)

  7. slashdot.com vs. cars.gov vs. animoto.com by theodp · · Score: 2

    Daily unique visitors: slashdot.com vs. cars.gov vs. animoto.com

  8. Re:So sad by Frosty+Piss · · Score: 2

    It means third party, Internet connected, managed services.

    I would hope that the government used their own "cloud" datacenters, either managed by GS employees or a contractor, rather than a completely commercial facility...

    --
    If you want news from today, you have to come back tomorrow.
  9. Remote sites don't have a lot of bandwidth to by Joe+The+Dragon · · Score: 5, Interesting

    Remote sites don't have a lot of bandwidth to do mass cloud and with only a few data centers all it takes is one back hoe to lead to a shut down while the cable is being fixed.

    Management productivity improvements are a lot of BS that leads to alot paper work and people waiting a long just to get the tools to they need to do there job. Just what we need more MBA PHB's.

    Some remote sites are on Satellite Internet that with FAP and high lag will suck when the on side data sever goes away.

  10. Re:So sad by KingMotley · · Score: 2

    Simple minded people tend to think all decisions are simple. Sorry, but in the real world, decisions are usually for a number of reasons, not just one. Sometimes there is one issue that is the final one that spurred action, but that doesn't mean there wasn't an avalanche of reasons in addition to it that was the basis of even considering it.

  11. What cloud? by xnpu · · Score: 3, Informative

    "Cloud" is just a way of saying you have a standardized, generic way of scaling your systems. The new buzzword adds an excuse to outsource the whole thing to a "reputable" supplier and avoid taking any responsibility. If your needs are small this is a great concept. You get to use the same iron as the big boys, without the up front investments.

    For someone the size of the government however, I think it's rather strange they are not using clouds already. They may never have called them clouds, but surely they have some reasonable in-house systems architects, no?

    1. Re:What cloud? by Natales · · Score: 5, Informative

      No. The term "cloud" may have started as a buzz word but it has taken some serious shape in less than a year. For a serious, comprehensive definition, check a short document posted by NIST.

      In short, "Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction".

      It doesn't have to be necessarily hosted on external providers. It may very well be an internal, Private Cloud. And if it's built on top of open standards such as the vCloud API, you may end up with vApps that can be moved from internal to external clouds and back, as well as hybrids.

    2. Re:What cloud? by cetialphav · · Score: 2

      For someone the size of the government however, I think it's rather strange they are not using clouds already.

      Clouds work well when several departments can consolidate computing resources on a single data center. That kind of thing does not happen well between government agencies. Part of that may be due to inept bureaucracies, but much of that is due to the way that money is allocated and tracked around the government. The law will often designate funds for very specific purposes so that means you can't have the money dedicated for the Department of Interior paying for the electricity used by a computer for the Department of Homeland Security. This kind of thing requires everybody to have their own servers and data centers. Outsourcing this actually makes things easier because a third party can charge a fixed rate for computer usage and worry about how to best aggregate services without having to tied up with government red tape.

    3. Re:What cloud? by EaglesNest · · Score: 3, Interesting
      I am a reasonable, in-house system architect for a major federal agency. Yes, we use virtual servers for most of our applications. This doesn't reduce the number of operating systems that we have, but it certain reduces the number of physical servers and disk arrays that we have to maintain. It's a scalable environment and allows for redundancy between data centers. Most of our users who access our systems are scattered nationwide, so network outages either affect only them, or must be so severe that they take down mutiple data centers each with multiple ISP connections, power sources and HVAC. I supposed that you could call this operating our own "cloud." I don't really care what you call it. I believe it's the among the most efficient and effective solutions for our needs, but doesn't hold us hostage to any one service provider. During out last phase of the migration to our current architecture, our P2V process was straightforward and comfortable. The tools are robust and mature.

      If you are thinking of replacing physical servers with virtual or a "cloud," please either build the cloud yourself, or encrypt at the LUN or virtual disk level. For God's sake don't allow any data at rest or in transit to reside or cross over networks owned by third-parties, contractors, etc.

      BTW, yes, an MBA or MPP or even PMP probably would go father to get to up to the higher grades in federal public service than a computer science degree. Then again, a CCIE wouldn't hurt either.

  12. Perhaps someone can explain to me by jimicus · · Score: 2

    as someone who's allergic to buzzwords - WTF is the difference between "cloud computer services" and "a VMWare instance on a suitably redundant infrastructure with a reputable hosting firm"?

    This makes some sense if you're a relatively small company which could neither afford nor justify that sort of infrastructure for themselves. But the government?

    1. Re:Perhaps someone can explain to me by ColdWetDog · · Score: 4, Funny

      WTF is the difference between "cloud computer services" and "a VMWare instance on a suitably redundant infrastructure with a reputable hosting firm"?

      9 words

      --
      Faster! Faster! Faster would be better!
  13. Security is NOT an issue with The Cloud. by Anonymous Coward · · Score: 4, Funny

    Wait a minute. I'm a manager, and I've been reading a lot of case studies and watching a lot of webcasts about The Cloud. Based on all of this glorious marketing literature, I, as a manager, have absolutely no reason to doubt the safety of any data put in The Cloud.

    The case studies all use words like "secure", "MD5", "RSS feeds" and "encryption" to describe the security of The Cloud. I don't know about you, but that sounds damn secure to me! Some Clouds even use SSL and HTTP. That's rock solid in my book.

    And don't forget that you have to use Web Services to access The Cloud. Nothing is more secure than SOA and Web Services, with the exception of perhaps SaaS. But I think that Cloud Services 2.0 will combine the tiers into an MVC-compliant stack that uses SaaS to increase the security and partitioning of the data.

    My main concern isn't with the security of The Cloud, but rather with getting my Indian team to learn all about it so we can deploy some first-generation The Cloud applications and Web Services to provide the ultimate platform upon which we can layer our business intelligence and reporting, because there are still a few verticals that we need to leverage before we can move to The Cloud 2.0.

    1. Re:Security is NOT an issue with The Cloud. by rtfa-troll · · Score: 2

      The interesting thing is that it seems that this was actually originally posted on slashdot before the first related blog posting. It's even been noted before that this comment keeps repeating

      --
      =~ s,(.*),<sarcasm>$1</sarcasm>,g if any_point_you_wish();
  14. Is this the new security policy? by JockTroll · · Score: 4, Funny

    "We can leak ourselves way better than any upstart Wikileaks wannabe, ha!"

    --
    Geeks are so full of shit that "beating the crap out of them" takes a whole new meaning.
  15. Re:So sad by squiggleslash · · Score: 4, Insightful

    What was untrue?

    The statement I quoted. Which is still on their website several days later.

    If it had been withdrawn at the time, you might have a case for claiming they believed someone else's lie, but it's still up there, long after everyone at Amazon have been made aware that the statement is factually false.

    --
    You are not alone. This is not normal. None of this is normal.
  16. We had that setup in the 1960s and the 1970s. by Anonymous Coward · · Score: 5, Insightful

    We had just that setup in the 1960s and the 1970s at the universities I worked at. We called them "mainframes".

    Then we spent most of the 1980s and 1990s trying to get rid of them, because highly centralized systems are often extremely expensive to build and maintain, and usually don't actually provide what each of the many users actually requires.

    In terms of reliability, it's better for a single department or lab to be unable to get their work done due to software or hardware failure of some sort, rather than the entire campus being shit out of luck when the mainframe, err, "cloud", has issues.

    You fools will spend the next decade getting this "cloud" bullshit put in place. Then around 2020 or so, you'll have had 10 years worth of problems. You'll then spend until 2030 trying to undo the mess. Sometime around 2040 you'll succeed, but by that time the current IT staff will have forgotten the problems that "cloud computing" caused between 2010 and 2020, and then by 2050 they'll be in the process of centralizing again...

    1. Re:We had that setup in the 1960s and the 1970s. by internewt · · Score: 2

      You fools will spend the next decade getting this "cloud" bullshit put in place. Then around 2020 or so, you'll have had 10 years worth of problems. You'll then spend until 2030 trying to undo the mess. Sometime around 2040 you'll succeed, but by that time the current IT staff will have forgotten the problems that "cloud computing" caused between 2010 and 2020, and then by 2050 they'll be in the process of centralizing again...

      Solving one problem whilst making another is the basis of capitalism!

      Industry knows the situation you have illustrated, and hence why this US government policy has come up: it has been lobbied for by the very companies that stand to benefit from the modern mainframe.

      --
      Car analogies break down.
    2. Re:We had that setup in the 1960s and the 1970s. by Trepidity · · Score: 4, Informative

      There's some truth to that, I agree. I think one major reason for the changeover, though, was a period in which there was no great centralized solution. By the late 1990s, and especially early 2000s, the centralized big-iron stuff that many universities ran was just not that impressive compared to commodity x86: we could buy a relatively cheap x86 server for $2000 that ran circles around the UltraSPARC behemoth that the department was still maintaining. But virtualization and clustering on commodity hardware circa 2001 was not that great, so it wasn't particularly easy for central IT to switch. I mean, their UltraSPARC was slow, but it had 64 gigs of RAM and could support dozens of simultaneous users, something that was hard to replicate on a 2001-era x86 machine. So there was a period when everyone just bought a Dell machine and stuck it under their office desk, as the easiest upgrade path.

      It's not clear to me that's still the optimal solution, though. If I just want some server that's always on and has decent hardware, we're back again at the point where central IT can fairly easily provide it to me, by giving me a VM. Or I can buy that VM myself from Amazon or some VPS provider if I want. I'm sympathetic to the argument that everything old is new again, but for my needs, the Dell-under-the-desk approach to server provisioning just doesn't seem optimal currently, though there were a few years where it was.

      --
      10 PRINT CHR$(205.5+RND(1)); : GOTO 10
    3. Re:We had that setup in the 1960s and the 1970s. by Daishiman · · Score: 2

      In the 1960s and 70s there were no minicomputers that could do scientific computing effectively. Centralized systems today are far cheaper than having your own setup. Times change.

    4. Re:We had that setup in the 1960s and the 1970s. by dachshund · · Score: 3, Informative

      All very good points. I would add that there's a big difference between the old days where you had one local mainframe, and a situation where you have a dozen cloud providers. Even within a single cloud provider (say, Amazon), the service is run across several geographically-distributed datacenters. The failure of one shouldn't take everything down. In an ideal world you could move your server images from place to place, provider to provider, and even to local hardware if that proved necessary. This is a benefit of modern virtualization.

      Of course this isn't exactly how things work yet --- you can't easily migrate between services and local hardware. But it's early days and some clients will probably demand that kind of flexibility.

  17. Vivek Kundra is a fraud by Coolhand2120 · · Score: 4, Interesting

    ...calls for cutting 800+ data centers by 2015, as well as shifting work to cloud computing systems.

    Correction:
    ...call for cutting 800+ data centers by 2015 as well as shifting work to privately owned data centers.

    If I hear someone talk about cloud computing again I think I’ll lose my lunch.

    That said, Vivek Kundra is a fraud. Anything coming from his mouth is tainted. At the very least the guy lied on his resume about having a degree in biology, then all of a sudden his bio changed and he LOST the degree! Good thing there’s an internet archive!

    Others agree:

    But his degree in biology has yet to appear as his record shows a degree from College Park Campus for Psychology and nothing more.

    http://www.dvorak.org/blog/2009/08/12/special-report-is-us-chief-information-officer-cio-vivek-kundra-a-phony/
    http://www.businessinsider.com/americas-cio-vivek-kundra-must-go-2009-3
    http://www.economicpopulist.org/content/obamas-cio-vivek-kundra-previous-close-employees-arrested-fraud-bribery
    http://tech.rightpundits.com/?p=36

    1. Re:Vivek Kundra is a fraud by Coolhand2120 · · Score: 4, Informative

      Anyone who has taken any sort of networking class knows the internet is the cloud. In any network diagram the internet is represented as the cloud, hence the name cloud computing, using the internet instead of your local servers. The government invented the internet, not Al Gore as some may think. The DOD need a way to run a network in a decentralized way in case of nuclear attack. They didn't want their computers to stop working if the central hub went down. That's why every packet says DOD in it. The internet was a DARPA project. Now I'm just summing this up for those who haven't heard about it, yes I know they didn't invent everything, but they got it going. Now the people (government) who invented the cloud, and have been using it since its inception, are now going to stop using the cloud and move to the cloud? It's uneducated drivel, and speaks volumes of Vivek Kundra's knowledge of the cloud. Even if he’s not a fraud, and I believe he is, he shouldn’t be our nations CIO.

    2. Re:Vivek Kundra is a fraud by jsepeta · · Score: 3, Insightful

      And anyone who's done the least bit of research on outsourcing knows that it may actually _increase_ costs in the long-term, because the security of the data and the proper management of the data is worth far more than the savings found by giving your nuts to some other squirrel to fuck around with.

      --
      Remember kids, if you're not paying for the service, YOU ARE THE PRODUCT THAT IS BEING SOLD.
  18. Re:So sad by jav1231 · · Score: 4, Insightful

    First of all, there is no cloud. A "cloud computing system" is a server and/or group of servers. All they're doing is closing down data centers and moving the data to either someone else's or other government centers. Second, if it "is" managed services who's managing it? If I have a data center in Houston run by say the IRS and I'm an employee in Bridgport and my files are on servers in Houston then I'm "cloud" computing. This is an over-hyped bunch of crap. While everyone is drooling over the new marketing term think about the big elephant in the room. Yeah, we call him Tim. Know what he's doing? Firing all those people in those data centers that are closing down. The nice thing about "moving to the cloud" or more correctly "outsourcing" is that eventually, they come back. Why? Because putting your stuff in someone else's hands just to free yours eventually makes you wonder about what you had in your hands. It's like sending your friend shopping with your girlfriend. You start to wonder what they're doing when they've been gone too long.

  19. Re:So sad by geminidomino · · Score: 3, Funny

    It's like sending your friend shopping with your girlfriend. You start to wonder what they're doing when they've been gone too long.

    Your points are all perfectly salient, but this makes me think you need better friends and/or a better girlfriend.

  20. In Cloud We Trust by sanman2 · · Score: 2

    E Cumulonimbus Unum

  21. Politics-driven IT by PaulMeigh · · Score: 2

    My dad spent most of his career as a developer for a federal agency. He always lamented that the direction of the organization would change according to electoral results. Not so much because R's and D's disagree on how to run IT, but because a new regime means new appointees at the top. The tendency is for them to advocate for the latest and greatest (buzzword) so that they can show cool bullet-points for their bosses. In reality, the IT planning/testing/implementation cycle in a federal bureaucracy turns out to usually be longer than the election cycle so the impact is minimal. By the time it's conclusively proven that the .NET/Java/Oracle/Cloud solution does not work, there's a new boss in place and a new hype-cycle to chase.

  22. Re:So sad by Rasvar · · Score: 2

    The US Government version of the cloud will have a direct line to Wikileaks to save time.