tag:blogger.com,1999:blog-7023484431672164937.post629949589063824896..comments2008-04-05T10:13:31.525+13:00David Frenchhttp://www.blogger.com/profile/09850658569729205096noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-7023484431672164937.post-28552063763650975672008-04-05T10:13:00.000+13:002008-04-05T10:13:00.000+13:00My concerns are about organisations not thinking deeply about these issues rather than any intrinsic problems with Intalio|On Demand. Apart from availablity and performance issues that we may face in New Zealand, which at times seems the end of internet universe, keeping the business going through service loss is an increasing problem especially if the business operations are 'through the all encompassing BPMS' rather than 'reported to the back-office systems'. <BR/>Point 2 was more concerned with having a key part of an information flow going where it is under different legislative control than you may be used to. By using systems and servers hosted in US could expose data in ways that may not be desirable as privacy and security-related legislation is not universal. (for example, use of Blackberry devices was restricted by some governments because of the offshore servers). <BR/>At a technical level, where the BPMS is managing the flow of content that should be protected (consider health information), a systems designer may have to give consideration to end-end encryption/decryption of content routed through the BPMS messages ... which is a bit beyond the network layer protections of https, ssh, and virtual private networks.<BR/>I actually think Intalio BPMS is a great technical solution and Intalio|On Demand a really good way of delivering it. However, I think that there are some peripheral issues to be resolved by any serious business that takes it on. I was hoping that you would simply point me a piece of research that pointed out the risks and why they were not an insurmountable problem!David Frenchhttp://www.blogger.com/profile/09850658569729205096noreply@blogger.comtag:blogger.com,1999:blog-7023484431672164937.post-87644196352636400312008-04-05T09:25:00.000+13:002008-04-05T09:25:00.000+13:00On point 1:<BR/>The Intalio|On Demand servers are no more vulnerable than local servers. Better yet, since they are maintained by people who know the server and product in gory details, the chance of failure is likely less. In that event, however, we guarantee one (1) business day response time. In most cases, the response time is under 1 hour. As for backups, the data is backed up every minute for the past hour, every hour for the past day, and every day for the past month.<BR/><BR/>On point 2:<BR/>This is a concern to all that do business over the Internet, and if you do not trust established security protocols like https, ssh, and virtual private networks, than we recommend you use our on premise version to install locally.<BR/><BR/>Does that answer your concerns?Sebastian Stadilhttp://www.blogger.com/profile/17434568852139580710noreply@blogger.com