Web commerce giant Amazon is apparently building a cloud-computing network for the CIA. Trade publication Federal Computer Week has reported that the agency will pay the online retail pioneer up to $600 million to develop its own private cloud over the next decade.
This would make plenty of sense. Amazon is well-known for providing cloud-computing services to the private sector, and government agencies dealing with classified information are pushing to adopt cloud services as a way of consolidating thousands of network "enclaves" that are hard to defend. The Pentagon, for example, is building what it says will be a defendable, upgradable network, known as the Joint Information Environment.
While the CIA declined to comment to FCW about the project, an agency official revealed in a public forum that Langley is adopting commercial software in order to keep up with the pace of innovation in the private sector.
Speaking to the Northern Virginia Technology Council Board of Directors on March 12, Central Intelligence Agency Chief Information Officer Jeanne Tisinger told an audience of several dozen people how the CIA is leveraging the commercial sector's innovation cycle, looking for cost efficiencies in commodity IT, and using software-as-a-service for common solutions.
Two audience members who asked not to be named told FCW that Tisinger said the CIA was working "with companies like Amazon."
The piece goes on to cite CIA Chief Technology Officer Gus Hunt's February comments saying that Amazon had a software-as-a-service model that "really works." Remember, software-as-a-service (SaaS) means that businesses buy web/cloud-hosted software accounts rather than making a onetime purchase of software that is installed on their computers. Think of all the features your Google account gives you -- email, document creation and sharing, Web site analytics, etc. That's a very basic example of a mix of free and premium software-as-a-service.
"Think Amazon - that model really works," regarding the purchasing of software services on a "metered" basis for which Amazon is well-known for. Hunt has also spoken publicly in the past about the potential for leveraging public cloud infrastructure for non-classified information.
Historically, the CIA's cloud computing strategy centered on a number of smaller, highly specific private clouds. While the full scope of its current contract with Amazon is not yet clear, it is likely this contract essentially brings a public cloud computing environment inside the secure firewalls of the intelligence community, thereby negating concerns of classified data being hosted in any public environment.
Expect this trend to continue as the government moves to purchase technology -- especially in cloud and mobile tech -- that can keep up the extremely rapid pace of innovation at a time of declining military budgets. NSA and the Defense Information Systems Agency (DISA) -- the Pentagon's Internet service provider -- are working to field commercially-available smart phones and tablets that use secure cloud software to allow them to handle classified information.
Keep in mind that all this commercially available tech will need to be tweaked to be extra secure against cyber attack
"We've got to be able to do this securely. We cannot give up the security, the confidentiality, the pedigree of our data at the unclassified level, because of [the need to protect personal information about users]. But at the classified levels, consistent themes are going to be not only security but identification and access management," said DISA's Chief Technology Officer, Dave Mihelcic, said while discussing the DOD's efforts to adopt such technology at an industry luncheon in February.