The KIT ─ Knowledge & Information Technology
No. 182 - 16 December 2016
Was this forwarded to you?
In This Issue
Cloud Security Architecture
Data Residency
OMG and IIC Coronado Meeting Recap
Ethical Rules for AI and Autonomous Systems
Seen Recently
Claude Baudoin

Consulting Services
  • IT Strategy
  • Enterprise Architecture Roadmap 
  • Business Process Modeling & Analysis 
  • Enterprise Software Selection 
  • IT Innovation Briefings
  • IT Due Diligence
  • Executive IT Seminars
  • Cloud Computing
  • Security Maturity
  • Software Process 
  • Knowledge Strategy
  • Technical Communities
  • Knowledge Capture
  • Taxonomy development 
  • Enterprise Social Media 
Contact Us:
cébé IT and Knowledge Management

+1 281 460 3595
Twitter: @cbaudoin
Forward this issue to colleagues and friends: use the "forward email" link below at left, rather than "Forward" in your email software, to preserve your privacy, give the recipient more options (their own unsubscribe link, etc.) and to give us better click-through data. Thanks!
Security Architecture for Cloud Services
The Cloud Standards Customer Council's Security Working Group is working on a new deliverable, the Security Architecture for Cloud Services. If you are interested in this subject, it would be a great time to join the CSCC (it's free), join the WG if you are already a CSCC member, or volunteer to participate in reviewing the existing draft of the paper. For guidance on how to contribute, contact Tracie Berardi.
Data Residency Discussion Paper
A team of contributors is being assembled to work on a white paper which will now be a joint deliverable of the Object Management Group (OMG) and of the Cloud Standards Customer Council (CSCC). Claude Baudoin is leading the effort. A skeletal first draft of the paper is available here. If you want to be invited to the contributors' conference calls in January and February, please let us know. We aim to enlist enough co-authors and reviewers to have a complete draft ready for review and possibly approval by the time of the OMG's March 20-24 technical meetings. Even if you do not wish to join the team, all comments and suggestions about the paper are welcome.

Incidentally, the November 17 ban against accessing LinkedIn from Russia has shown again the potential ramifications of the issue, and the potential for a "deglobalization" of certain IT services. In the social networking domain, localizing services make little sense. In other areas, data residency may be seen as helpful to labor protectionists (who may be behind some of the data residency regulations), but it can also hurt some economic sectors including of course IT outsourcing but also e-commerce and others.
Coronado Recap
The OMG and the Industrial Internet Consortium (IIC) held their last 2016 quarterly meetings in Coronado, Calif., last week. Here are some of the highlights:
  • The IIC is considering a request to establish a formal liaison with the Society of Petroleum Engineers (SPE), given the enormous potential impact of the IoT on automation in the upstream (exploration and production) oil and gas industry.
  • The IIC now has over 20 testbeds -- demonstration vehicles that showcase the integration of solutions from multiple suppliers and prove the "use cases" of the Industrial IoT.
  • The IIC meeting included a one-day Smart Factory Forum with guest speakers from Boeing, Bosch, Nestlé and General Mills. The PDFs of the presentations are hyperlinked to the titles in the event's agenda.
  • At the OMG, we've identified a convergence of needs for the tagging and labeling of data, allowing more automated implementation of data policies. The use cases for such tagging and labeling include data residency, "information pedigree and provenance" tracking, and controlling the exchange of information between governments. The OMG already has a working group on an Information Exchange Framework (IEF), and a standard Information Exchange Packaging Policy Vocabulary (IEPPV). We're looking at how to leverage these efforts more broadly.
  • The OMG's Healthcare Task Force is looking at using OMG's standards for process modeling (BPMN), case management (CMMN) and decision modeling (DMN) to make healthcare workflows more repeatable and portable across public and private care facilities.
  • At the June 2017 meeting, there will be another interoperability demonstration between BPMN-compliant workflow management tools. 12 vendors of such tools are already on board.
  • The need to address cybersecurity was omnipresent during the week. It was of course the subject of the Cybersecurity Forum on December 6, but it was also key to the Systems Assurance Task Force meeting, the "OMG Standards for the Industrial IoT" workshop, the IIC's Security Working Group sessions, and more.
Channeling Isaac Asimov
In his sci-fi novels, Isaac Asimov famously proposed three "laws of robotics" to ensure that robots would be both obedient and safe. Autonomous systems and artificial intelligence programs (including virtual assistants) cover a broader range of functions than even Asimov could have dreamed, so the ethical issues of what such a system should and should not do are finally coming to the forefront. The IEEE has issued a first draft of a document with the cumbersome title of "Ethically Aligned Design: A Vision for Prioritizing Human Wellbeing with Artificial Intelligence and Autonomous Systems (AI/AS)" and is inviting people to comment. This ZDnet article provides an overview.
Seen Recently...
"A sufficiently advanced threat actor is indistinguishable from a competent system administrator."
-- Matt Graeber, @mattifestation on Twitter
"Every year up to 30% of email addresses, 20% of postal addresses, 18% of phone numbers change"
-- from a Twitter ad by information management company Informatica