CLOUD APP DEVELOPMENT

Uneven Adoption of Emerging Tech Found in a New Cloud Security Alliance Survey

Cloud Security Alliance | February 07, 2022

Cloud Security Alliance (CSA), the world's largest organization dedicated to creating standards, certifications, and best practices that ensure a secure cloud computing environment, revealed the results of its most recent poll, Cloud Security and Technology Maturity, today. The poll, which was commissioned by CyberRes, a microfocus line of business and one of the world's top corporate software vendors, provides insight into enterprises' current and future intentions for cloud strategy, security, cloud services, and cloud-related technology.

"Cloud is a continuously evolving space with new services, strategies, and technologies springing up seemingly overnight. It's imperative, therefore, that organizations regularly change and adapt their approach to cloud and cloud security. While many of the survey's findings were in line with what we would expect, it was surprising that some technologies that have garnered the most hype are not, in fact, what organizations are planning to implement,"


Hillary Baron, lead author, and research analyst, Cloud Security Alliance

Despite introducing the General Data Protection Regulation (GDPR) in 2018, privacy-by-design is still in its early stage of development. With two-thirds of organizations (65%) either developing or planning to develop strategies, only 8% of respondents indicated that they have a fully implemented privacy-by-design strategy. Similarly, the survey also found that while blockchain and distributed ledger technology have been hyped for years, implementation rates have stagnated, owing to high failure rates caused by a lack of technical understanding combined with a high demand for resources.

Quantum-safe security and 5G aren't widely used yet, and additional research is required to determine the root causes and forecast a more reliable adoption timeframe.

"The growing popularity of artificial intelligence, machine learning, and Zero Trust, for instance, was definitely in keeping with what we have been hearing anecdotally across the industry, but there were also some surprises in what companies aren't using. While multi-cloud adoption is strongly favored, many organizations are facing challenges in taking deployments to a next level," said Satya Divadari, Head of Enterprise Security Architecture, CyberRes, a Micro Focus line of business.

Spotlight

Cloud computing first emerged in the form of Infrastructure-as-a-Service (IaaS), boosted by the birth of Amazon Web Services (AWS). AWS began offering IT infrastructure services to businesses in the form of web services in 2006. At the same time, Salesforce.com was offering Software-as-a-Service (SaaS), based on the idea of application service provision (ASP). Its offering included a customization layer, force. com. Soon, driven by the existence of force.com and the entrance of Google’s App Engine, the market erupted and it became clear that there was a need for a middleware layer (Platform as a Service – PaaS) between IaaS and SaaS. PaaS enables the simplified consumption of Cloud infrastructure and supports the viability of more complex and configurable Cloud applications.

Spotlight

Cloud computing first emerged in the form of Infrastructure-as-a-Service (IaaS), boosted by the birth of Amazon Web Services (AWS). AWS began offering IT infrastructure services to businesses in the form of web services in 2006. At the same time, Salesforce.com was offering Software-as-a-Service (SaaS), based on the idea of application service provision (ASP). Its offering included a customization layer, force. com. Soon, driven by the existence of force.com and the entrance of Google’s App Engine, the market erupted and it became clear that there was a need for a middleware layer (Platform as a Service – PaaS) between IaaS and SaaS. PaaS enables the simplified consumption of Cloud infrastructure and supports the viability of more complex and configurable Cloud applications.

Related News

CLOUD SECURITY

Dynatrace Extends Cloud Security to Provide Vulnerability Analysis Across All Layers of the Application Stack

Dynatrace | August 12, 2022

Software Intelligence company Dynatrace announced today it has extended its Application Security Module to detect and protect against vulnerabilities in runtime environments, including the Java Virtual Machine (JVM), Node.js runtime, and .NET CLR. In addition, Dynatrace has extended its support to applications running in Go, one of the fastest-growing programming languages, with adoption increasing by 23 percent last year. With these enhancements, the Dynatrace® platform becomes the only solution providing real-time visibility and vulnerability analytics across the entire application stack, which includes custom code, open-source and third-party libraries, language runtimes, container runtimes, and container orchestrators. Dynatrace not only identifies vulnerabilities across each of these layers automatically but also analyzes them to provide actionable and precise answers out-of-the-box. This empowers development and security teams to assess risk better, prioritize and remediate threats more effectively, and innovate faster and with increased security. “We have a proud heritage as a cloud-native business that harnesses agile delivery practices, the latest technology, and a state-of-the-art, secure development lifecycle to bring continuous innovation to our customers, Dynatrace Application Security helps to make this possible by giving us comprehensive visibility and analytics across all layers of our complex application ecosystem, ensuring no vulnerability escapes our secure DevOps lifecycle. In addition, it helps us instantly understand the risk and potential impact of zero-day vulnerabilities, such as Log4Shell, and automatically prioritizes the steps required to resolve them. This saves our teams from wasting weeks triaging alerts and enables them to resolve new vulnerabilities in just days or less, so they can stay focused on innovating.” Luca Domenella, Head of Cloud Operations and DevOps at Soldo Language runtimes are a critical layer of the application stack as they ensure apps are available and well-executed on any platform without having to be rewritten or recompiled. By extending its Application Security Module to support runtimes in the most widely adopted programming languages, Dynatrace delivers the industry’s most comprehensive application vulnerability analysis, spanning all potential entry points in pre-production and production environments. “The number of entry points attackers use to target applications continues to expand. Vulnerabilities can creep into applications from any part of the software supply chain, including open-source or third-party components and application runtimes,” said Steve Tack, SVP of Product Management at Dynatrace. “Traditional approaches can’t accurately surface vulnerabilities at runtime or analyze their potential exploitability and impact. Dynatrace is the only solution that provides runtime vulnerability analysis across the entire application stack and AI-assisted prioritization for the most popular cloud-native application technologies, now including Golang. With these capabilities, DevSecOps teams can focus on remediating the most impactful vulnerabilities. This helps them innovate faster, with the confidence that all layers of their applications are vulnerability-free.” About Dynatrace Dynatrace exists to make the world’s software work perfectly. Our unified software intelligence platform combines broad and deep observability and continuous runtime application security with the most advanced AIOps to provide answers and intelligent automation from data at an enormous scale. This enables innovators to modernize and automate cloud operations, deliver software faster and more securely, and ensure flawless digital experiences. That’s why the world’s largest organizations trust the Dynatrace® platform to accelerate digital transformation.

Read More

CLOUD SECURITY

Yosh.AI Named Certified Delivery Partner for UJET and Google Cloud Contact Center Platform

UJET, Inc | August 25, 2022

UJET, Inc., the world’s most advanced cloud contact center platform, today announced Yosh.AI as the latest Certified Delivery Partner (CDP). As a delivery partner, Yosh.AI will offer and deploy UJET and Google Cloud’s enterprise-grade, AI-powered cloud contact center solution globally. “As demand for our AI-powered contact center technology continues to surge, welcoming Yosh.AI as a CDP positions us to help more enterprises integrate conversational AI into their operational business processes,” said Vasili Triant, COO of UJET. “Yosh.AI will enable brands to transform and elevate how they serve customers and ensure the best experience possible.” UJET and Google’s partnership expands Google’s Contact Center AI solution suite and provides a more unified and intelligent technology experience for contact centers. Powered by an award-winning, one-of-its-kind architecture, UJET delivers the most modern, innovative CX technology in the market. UJET’s CDP program invites qualified third parties to apply for certification and directly provide Contact Center as a Service (CCaaS) implementation to end customers. “The last few years have accelerated companies' openness to implementing automation and AI solutions, We’ve seen the readiness of enterprises to implement AI-assisted customer interactions, especially in the areas of e-commerce and online communication, as well as a surge in demand for greater customer responsiveness and experiences in retail, banking, insurance and healthcare.” Katarzyna (Kasia) Dorsey, Founder and CEO of Yosh.AI As a delivery partner of choice for the UJET and Google CCAI solution, Yosh.AI brings new insights and ability to re-invent communication between companies and their clients through conversational AI. Yosh.AI helps enterprises implement automation into their communication streams using speech recognition and speech synthesis, as well as natural language processing (NLP). Its collaborative and flexible approach helps customers leverage the full power of AI and automation to maximize revenue, improve operational efficiency, and deliver powerful customer experiences. UJET’s CDP certification is a rigorous training program that enables consultants like Yosh.AI to successfully manage, implement and train users on ujet.cx’s CCaaS and complementary solutions. Companies are considered based on their existing Google CCAI partnership, geographic coverage, language skills and existing customer relationships in ujet.cx’s target markets. About UJET: UJET is reimagining the contact center for modern consumers and brands. Our one-of-a-kind architecture delivers an entirely new foundation for security, reliability, and scale across customer service operations. A full voice and digital engagement suite is complemented by powerful AI and advanced analytics capabilities, and easy-to-use, intuitive design to make life easier for everyone involved - from customers and agents to supervisors and executives - all while driving meaningful operational efficiencies. Smart device capabilities like channel blending, photo and video sharing, and biometric authentication are available to deploy for full CX transformation when you’re ready. Innovative brands like Instacart, Turo, Wag!, and Atom Tickets trust UJET to deliver exceptional CX, no matter their size or location. So can you.

Read More

CLOUD SECURITY

SoundHound Unveils Full Suite of Edge and Cloud Connectivity Solutions to Boost Accuracy and Privacy in Voice AI

SoundHound | September 19, 2022

SoundHound AI, Inc. (“SoundHound”), a global leader in voice artificial intelligence, today announced the availability of a whole suite of Edge and Cloud connectivity solutions that will allow brands to voice-enable almost any product, device, or service. Businesses looking to deploy voice AI can choose from options that match their available processing power and end-user needs. These include fully-embedded Edge technology (including a new EdgeLite option), exclusively Cloud-connected technology, or a hybrid combination of Edge+Cloud. The new offerings mean that automakers, smart device manufacturers, and service providers can select for faster and more accurate response delivery, reduced manufacturing costs, and improved flexibility. Businesses embracing these connectivity options include car brands like Hyundai and prominent smart device manufacturers. SoundHound’s selection of on-device Edge solutions allow brands adopting voice technology to grant their end-users greater levels of privacy by keeping data stored locally, so it never reaches the cloud. For cloud connectivity, SoundHound allows brands (and not third parties) full control over data privacy so that they can communicate transparently with their users about how information is managed. “Voice technology is now a must for products destined for the consumer market, but that doesn’t mean it’s one-size-fits-all. Here we’re offering a range of connectivity options that deliver fast and accurate voice AI to meet different needs, The availability of more Edge options will allow businesses to store and protect sensitive data locally – which could help brands build customer trust. Our hybrid options help supercharge speed and accuracy. So whatever the use case or computing capacity, we can match it for optimal results.” James Hom, Co-Founder and Chief Product Officer at SoundHound Available connectivity options: EdgeLite With this fully-embedded voice solution companies can process data locally without cloud-related data privacy concerns. Developers have access to natural language commands with less memory and CPU impact, a bundled wake word, and the ability to instantly update commands. EdgeLite+Cloud All the capabilities of EdgeLite, with the added flexibility to access the cloud to answer queries or push product updates. Edge Fully-embedded voice AI solution with as much Natural Language Understanding (NLU) capabilities to meet customer demand for hands-free convenience – without cloud-related data privacy concerns. Includes full accessibility to custom commands and the ability to create custom domains for proprietary on-device functionality. Edge+Cloud The capabilities of Edge with the flexibility and power of cloud connectivity. Allows companies to deliver the level of cloud connectivity that best matches their products and users. Cloud-Only Equips voice assistants with real-time data and information from the cloud for delivery of the most relevant responses to user queries, with no restrictions from device CPU and memory capabilities (while retaining ownership of your customer relationships and access to data and analytics). SoundHound’s Edge+Cloud solutions use Active Arbitration™ technology to ensure that – regardless of the query – the voice assistant will always return the most accurate answer, fast. Before Active Arbitration, users had to settle for solutions that took several seconds to search one platform and then the other looking for a response. SoundHound's Active Arbitration technology delivers a query to the cloud and the embedded system simultaneously, which facilitates a faster, more accurate conversational experience. “Increasingly, consumers are using their voices to interact with products and devices, and yet many brands are still struggling to settle on the best path when it comes to adopting voice AI,” says Keyvan Mohajer, Co-Founder and Chief Executive of SoundHound. “We’re providing this range of solutions to help any company meet customer expectations of speed and accuracy, with results delivered in the style of natural conversation. And with the right technology in place, voice quickly becomes a new channel to strengthen a brand’s relationship with its customers.” From EdgeLite to Edge to Cloud-only, manufacturers can now use the same implementation software to provide any level of voice-enablement possible. For small device manufacturers and those looking for a smaller processing footprint, EdgeLite solutions allow them to add voice commands to make their equipment safer and easier to use—and the users of the product more efficient. Our EdgeLite+Cloud and Edge+Cloud is ideal for circumstances where a cloud connection may not always be reliable—but where the voice user interface is still required to control the equipment or get critical information. Both solutions also use our Active Arbitration technology to get the best, most accurate results by sending the query to the Cloud and embedded system simultaneously. About SoundHound SoundHound a leading innovator of conversational intelligence, offers an independent voice AI platform that enables businesses across industries to deliver best-in-class conversational experiences to their customers. Built on proprietary Speech-to-Meaning® and Deep Meaning Understanding® technologies, SoundHound’s advanced voice AI platform provides exceptional speed and accuracy and enables humans to interact with products and services like they interact with each other—by speaking naturally. SoundHound is trusted by companies around the globe, including Hyundai, Mercedes-Benz, Pandora, Qualcomm, Netflix, Snap, Square, LG, VIZIO, KIA, and Stellantis.

Read More