Cloud Hosting

With the proliferation of generative AI, much of it consumer-oriented, it may be inevitable that such platforms and tools find their way into the workplace -- even if they are not designed to meet the oversight businesses require in their technology.

From proprietary code to sensitive data, the stakes can be high for organizations. Generative AI (genAI) that is not built specifically for the rigors businesses face could be a liability when it comes to regulatory compliance on information security and access. Moreover, what consumer-focused generative AI produces might be fraught with AI hallucinations, errors, and simply not measure up to the standards businesses require.

Amusing tools for spawning digital content might leave a few windows, doors, and ventilation ducts open -- potentially compromising digital security.

Anton Chuvakin, security advisor at the Office of the CISO with Google Cloud, spoke with InformationWeek about how consumer-oriented generative AI might bring more headaches than efficiency to businesses.

Consumer technology, such as smartphones, worked their way into the workplace, sometimes before folks really thought about how device management or security was going to be dealt with. Organizations might be caught up in the shiny new object of generative AI now, and not asking how they can actually police this. Can they shift to something else, potentially stop the use of consumer-oriented generative AI?

Related:How Generative AI Is Changing the Nature of Cyber Insurance

I think that the cases weve encountered are kind of fun and occasionally quite irrational. Wasnt there the classic case in the media about the lawyer who was using ChatGPT, and it was giving him made-up data? To me this is like the top of the iceberg of consumer-grade AI being used for business. In many cases what I would have to deal with as part of the Office of the CISO is the security leader calling me and saying, We need security guidance. And then they ask about these controls and those controls. And then they, Oh, by the way, we use ChatGPT-3.

Im like, But its a toy.

A very fun toy. The point is that these are toys for fun and personal education. But youre describing the levels of control, granular access between teams at your organization, but then you say you use ChatGPT-3. That makes absolutely no sense, but to him it did because his business was pushing him -- that they want to use this tool.

In essence, these stories are quite surreal at times because what we encounter from clients is just a lack of understanding of whats a consumer toy -- probably inaccurate, but still good.

Related:Selipsky at AWS re:Invent on Securing Data in the GenAI World

I was writing a letter to my former dance teacher using Bard [Googles chat-based AI tool. Today, Google announced it was changing Bard's name to "Gemini."] Its like a belated Christmas message. Bard [Gemini] is doing great with that. Would I do it for security advice given my realities to a customer? No. General advice would probably be good, but you need to have precision; you need to have certainty; you need to have provenance of data. But this intermixing is kind of endemic and sometimes it pops up not only as mismatch of use cases, but also people demanding controls, which they expect in enterprise technology from consumer-grade technology.

The result is even more hilarity is generated because its not going to fit.

When our field teams talk to customers about Vertex AI [Googles tool for testing and prototyping generative AI models], there are many, many layers of controls -- technology, procedural controls explaining how we do things.

What I want to invent, ultimately what we want to invent, is more than just education. We dont just want to tell people, Hey, youre really doing it wrong. It only goes so far. I feel like building an enterprise stack so that its as easy to adopt as consumer-grade tech but has all the controls is going to be the direction, probably for the future.

Related:Generative AI an Emerging Risk as CISOs Shift Cyber Resilience Strategies

Another common enterprise theme is people say, Would it learn from my prompts? And the answer is, Yes, of course for consumer-grade; no, of course not for enterprise.

Its like complete polar opposites. Yes, it would. No, it would not. Absolutely, yes. Absolutely, no. You see these forks in the road and if you really want an enterprise AI for enterprise use cases, you push vendors to build things, require things, require controls, require privacy controls, require governance controls -- a long list of things versus just go and sign up.

There are mindsets about being aware of security, visibility, access, and what is going on within an IT infrastructure or cloud infrastructure. For whatever reason, did that just kind of get forgotten once generative AI came onto the scene?

If you look at some of the online reports about some people who are trying to create an enterprise AI out of consumer AI, you would see some hilarity in the access permissions. For example, your function at an enterprise shouldnt see what my function in the enterprise does with the AI. It may be compliance; it may be just practical. It may be that mine is less sensitive than yours, but this type of cross-pollination, cross-learning is sort of assumed in consumer because you wanted to learn from everything. But its assumed to not be there in enterprise.

For example, if I am a security incident responder and you are an IT guy, I dont want you looking at my tickets (a very 1990s example), because it is possible that Im investigating you for leaking corporate data. There are many other reasons why security data is more sensitive. Imagine the same thing with genAI where youre training AI on tickets.

Some companies would say, AI -- tickets. Push the button. Did they think, Whoa, wait a second. Their permissions, the level of sensitivity here, its not just like a ticket database. Ive been telling a story -- it didnt happen to a client, but its something Ive heard from industry contacts where something vaguely similar happened. If they didn't have genAI, if they were just playing in enterprise, they would think, OK, what are the access rules? Who would access what?

But with this particular AI, not only they didnt think about it, the actual tech stack they used did not have a way to do it because it was kind of a derived from ultimately consumer genAI. To me this type of permissioning, and Im not talking about like fine permissioning, but more like, Just give it all the data.

What are the consequences for enterprises? Whats at stake here if organizations dont make it clear within their operations how theyre going to use gen AI, whether or not theyre going to allow use of the consumer-facing options? Have we learned lessons from examples in the earlier days for ChatGPT when proprietary code from Samsung got into the wild?

In essence they went to ChatGPT, and they submitted pieces of Samsung code and wanted to improve it or whatever the use case was -- I vaguely recall that. It wasnt really an accident from their point of view. They really did want to do exactly that. It was just the wrong tool.

The problem is that at the time, there were no right tools. I think that the excitement to use new technology is obviously a feature of many IT technologists. Maybe less so in security. Frankly, just the other day, I was polling security leaders about what they care more about: securing AI or using AI for security?

I expected them to go full-on paranoia and say, Hey, were all securing AI. But in reality, it split half and half. It was a very informal poll, not Google-sponsored. The point is that the balance wasnt, Im a CISO; I care about secure use of AI by my company. The result was one CISO, "yes," another CISO is, I care about using AI for security now. The motivation to move quickly is very strong and I sense that the fear of missing out here is stronger. This is my guess, based on my experience.

More:
Google Cloud's Anton Chuvakin Talks GenAI in the Enterprise - InformationWeek

Cloud computing is an excellent tool for companies that need to provide employees with simple and secure collaboration. Utilizing The Cloud allows companies to access and store important data even while on the go. There are many benefits to implementing The Cloud into the workplace such as streamlined workflow, real-time editing, collaboration, and scalability.

The top 5 benefits of utilizing The Cloud for your business are broken down below:

1. Better Access

Employees will be able to access important files from anywhere when you utilize The Cloud. As long as employees have a stable internet connection, they will be able to get the information they need as well as edit and update documents. With The Cloud, collaboration is easier than ever before.

2. Real Time Editing by Multiple Parties

With The Cloud, your employees will not only be able to work from anywhere, they will also all have the ability to access and edit documents at the same time. Each team member will be represented by their initials and everyone accessing the document will be able to see changes happen in real time and implement their own changes as well.

3. Increased Security

Many cloud computing services offer robust security and data protection. Depending on which cloud computing service you choose, moving over to The Cloud could increase your cybersecurity company-wide. When trusting a service to handle such a large amount of sensitive data, its important to make sure they are reputable. Talk to your local IT expert to find out which cloud computing service is right for you.

4. Scalability

The Cloud offers the ability to increase or decrease storage as needed depending on your business needs. You will be able to scale for growth without the need to physically implement new equipment for your office. This is a perfect option for businesses that need flexibility with their data storage.

5. Data Loss Prevention

Some cloud computing services provide backup and disaster recovery. While backing up to The Cloud should never be your only form of backup, it can provide an extra copy of data in the event of hardware failure, user error, or cyber-attack.

In conclusion, ensuring your business is utilizing Cloud Computing capabilities can increase your workflow and keep your business running securely.

For more information about implementing Cloud Computing for your business, contact us at Computek. We can help you transition over to The Cloud with ease. Call 512-869-1155 or book an initial consultation online at Computekonline.com.

Thats all for this week, well see you next time for Tech Tip Tuesday!

Go here to read the rest:
Tech Tip Tuesday: 5 Ways the Cloud Can Help Streamline Your Business - Hello Georgetown

Technology is constantly evolving, and the telecoms space is no exception as communications become ever more important. Therefore, communications service providers (CSPs) must constantly evolve and innovate to stay front of mind in such a competitive space.

To navigate this and stay ahead of the curve, telcos must anticipate emerging trends and understand how these forces will reshape our digital future.

Here are the top five telecom trends I believe will lead the way in 2024 and beyond.

#1: AI will continue to redefine the landscape

Generative AI is reaching its full potential, as vendors rush to integrate it into their applications.

Open-source language models like Googles Bard and OpenAIs ChatGPT are democratizing access to this powerful technology and propelling a wave of innovation. The impending arrival of ChatGPT 5 promises to further disrupt the status quo, and a new contender has emerged in the form of Elon Musk's x.AI, poised to challenge the existing language model hierarchy.

Simultaneously, Europe is tightening its grip on AI regulation with the rise of sovereign cloud solutions, sending ripples across the globe. This will also impact non-European providers, necessitating a strategic approach from businesses that want to navigate this evolving landscape. While regulations may reign them in, AI CoPilots will become indispensable companions, aiding us all when it comes to decision-making and streamlining complex tasks.

#2: Cloud computing's quantum leap

As 2024 unfolds, we stand on the brink of a cloud computing transformation. The convergence of AI and computing power is making Digital Twins a reality and these virtual replicas of real-world systems will unlock unprecedented capabilities for simulation and real-time data analysis. Imagine optimizing capacity, predicting overload, or testing new features all within a digital sandbox, powered by the cloud.

Specialized functional clouds are also emerging, tailored for specific tasks such as AI and Generative AI training. These functions offer bespoke performance and resource allocation for these demanding workloads.

Hardware isn't staying idle either: Intel and AMD's Confidential Computing-enabled processors are becoming as affordable as their traditional counterparts, ensuring data privacy and security remain at the forefront of cloud innovation.

Finally, enter a new era of cloud interaction with GenAI integration at the OPS/ADMIN level. This will enable you to converse with your public cloud platform in plain English, issue complex commands, and navigate its intricacies with the ease of a natural conversation.

#3: Data fabrics adoption

The explosion of data, fueled by the rapid increase of connected devices and sensors, is creating a complex web of information. To navigate this, organizations must adopt intelligent solutions for data management.

Enter Data Fabrics, a framework that seamlessly integrates data across various sources, locations, and formats. When driven by ML and AI, Data Fabrics will be essential in an Industry v4.0 future, with adoption targeted for 2024 and beyond to handle the required data complexity, management, and automation. This will make it easier to enforce data privacy regulations like the GDPR and implement data masking for security, as well as other measures. Gartner estimates that by 2024, 25% of data management vendors will offer a complete Data Fabric framework, a significant jump from the 5% we see today.

#4: NaaS unleashed: A pioneering breakthrough transforms the networking landscape

The telecoms industry is set for a dramatic shift with Network-as-a-Service (NaaS) set to become a valuable solution this year. Deployed and pioneered by Verizon, NaaS delivers a fully functional internal cloud equipped with the entire networking stack and gear, all packaged within highly optimized, energy-efficient servers. This enables the deployment of a mobile 5G network at large-scale events, without the need for complex infrastructure setup.

But NaaS is not just about speed and convenience, it's also about efficiency. The low-voltage, energy-efficient servers reduce operating costs and minimize environmental impact, making NaaS a sustainable solution for the future. With Verizon leading the charge, we can expect other major players to follow suit, transforming how we think about and deploy networks.

#5: Igniting the quantum computing inferno

The race to quantum computing supremacy will continue to intensify in 2024, with tech giants IBM and Google leading the pack. As quantum computers become more powerful, the need for post-quantum-resistant encryption will become paramount. Public cloud providers are already taking proactive measures to implement innovative mitigation strategies to protect sensitive data in this emerging quantum era.

These five distinct trends each form part of a grander technological evolution. The convergence of AI, cloud computing, data management, network advancements, and quantum computing will create unimaginable possibilities this year and beyond. Therefore, CSPs must prepare to be agile, data-driven, and digitally fluent to thrive in this interconnected landscape and meet the ever-increasing expectations placed upon them. As the industry embraces these innovations, the future promises to be brighter, more efficient, and more connected than ever before, with CSPs unlocking ever more amazing user experiences.

The key takeaway is to embrace this evolution, remain curious and adaptable, and see challenges as opportunities for growth.

Here is the original post:
2024 in Telecoms: A Look Ahead with Amdocs Featured - The Fast Mode

IBM's Red Hat business unit is updating its flagship JBoss Enterprise Application Platform (EAP) with a series of new capabilities for building, running, deploying, and managing enterprise Java applications.

JBoss EAP 8 is the first enterprise Java platform release from Red Hat to support the open source Jakarta EE 10 specification. Jakarta EE is the open source successor to the platform that has had multiple names over the last two decades, including J2EE and more recently Java EE. The Jakarta EE name and platform came about in 2019 with a governance move for the effort from Oracle to the Eclipse Foundation. Jakarta EE 9 came out in 2020, but it was not supported by Red Hat JBoss EAP.

Related:Should Developers Learn Java Programming Language?

With Jakarta EE 10 support, companies can modernize legacy Java applications while continuing to leverage their existing investments. The platform's improved provisioning tools also empower developers to more easily manage and optimize Jakarta EE application deployments across bare metal, virtual machines, cloud environments, and Red Hat's OpenShift platform for Kubernetes container management.

In addition to Jakarta EE advancements, JBoss EAP 8 provides security enhancements such as native support for OpenID Connect.

With Jakarta EE 10, there are a number of new critical capabilities that JBoss EAP users will now benefit from.

"Much of the new innovation in Jakarta EE 10 is in the area of lightweight, cloud-native Java development and an effort to bring the specification in line with how developers are building and deploying modern applications," James Labocki, senior director of product management for Red Hat Runtimes & Migration Tools, told ITPro Today.

Related:What Is the State of the Java Ecosystem?

For example, Labocki explained that Jakarta EE 10 introduces a new Core Profile, defined as a small subset of the most useful Jakarta EE features needed when building lightweight Java microservices. But what's more important is that this also reduces the friction of modernizing existing enterprise Java applications by not requiring developers to learn a new framework to bring apps forward, he said.

Another key feature highlighted, according to Labocki, is CDI Lite, which enables the rising trend of using ahead-of-time (AOT) compilation techniques and natively compiled Java applications, first popularized by GraalVM and implemented by next-generation Java frameworks such asQuarkus and Spring Native.

"This has brought new life to Java in the age of cloud and containers, and represents another path forward to extend the life of enterprise Java apps," Labocki said.

Beyond supporting Jakarta EE 10, the new JBoss EAP release integrates improved provisioning tools.

Labocki said that the new provisioning system includes a new installation manager for bare-metal or virtual machine installations and a new Apache Maven plug-in for OpenShift builds. He explained that for OpenShift, the JBoss EAP Maven plug-in allows users to specify what they want in their server footprint and configuration for example, to specify a feature pack to include database drivers. The JBoss EAP Maven plug-in uses Galleon trimming capability to reduce the size and memory footprint of the server; it also supports the execution of JBoss EAP CLI script files to customize server configuration.

"For bare-metal or virtual machine installations, the new installation manager allows users to install JBoss EAP, apply patches, revert patches, and apply feature packs," he said.

In addition to making it easier for operations teams to install and maintain JBoss EAP instances, Labocki said the installation manager introduces similar layering concepts to container deployments, providing a more consistent experience across bare metal, VMs, and OpenShift.

Going a step further, JBoss EAP 8's OpenShift integration includes new lightweight OpenShift container images for running the server and the ability to build even lighter-weight containers with a smaller attack surface.

Labocki added that the new release also includes an update to the JBoss EAP Operator, which is similar to the Kubernetes Operator concept, that can manage container images for this release as well as the previous release (JBoss EAP 7.4), and includes new support for managing health probes directly in the custom resource managed by the Operator.

"Prior to JBoss EAP 8, this had to be done in the application container itself, which could result in configuration drift or developers specifying values outside of IT policy," he said.

About the author

More here:
Red Hat Extends Enterprise Java to the Cloud with JBoss EAP 8 - ITPro Today