Back to Resources

Blog

Posted May 30, 2017

Should I Use a Public or a Private Mobile Cloud?

quote

Software projects have a special way of creeping and taking over like a kudzu vine. A company might start making an iPad app that Doctors use to document their cases. Pretty soon, a new version of iOS comes out, and then two new versions of the iPad. Nurses are added to the user base 6 months later and they have a few different versions of the iPhone in mind. Supporting a couple of devices is no problem. Most test and development groups will need a virtual service past that.

But which type of virtual service - public or private mobile cloud?

Expertise or Management

Private mobile clouds are full environments used by you, encased in a data center with a physical lock. Companies that want a private cloud will get their own servers (or at least their own Virtual Machines), their own databases, and their own personal bank of real mobile devices. There is no time-sharing involved. Once a company has a private cloud, whether it is local or a service, it is all theirs all of the time.

Of course, building your own personal version of Amazon Web Services takes time, money, and expertise.

Instead of logging on to a pre-made service, the environments have to be created. Fragments of a development team -- ops, developers, IT -- will have to work in tandem to create the platform, set up and manage all of the test devices, and orchestrate software versioning on all of them. Companies can save time by using a public mobile cloud, a platform available to anyone that has paid for the service and wants to log into a mobile device. Yes, technologies like OpenStack do make it easier, but the time and people involved in creating a private cloud will still be large.

If an out of the box solution that anyone can log into at any time is Okay, then public clouds will do the trick. Private clouds are better for people that want to configure and customize their mobile device bank at any time.

Security and Compliance

Companies involved in healthcare, or finance, or any sort of sales transactions have to answer to a higher power, the auditor. Sarbanes Oxley (SOX), Payment Card Industry Data Security Standard (PCI), and Health Insurance Portability and Accountability Act (HIPAA) all regulate who has access to data and how. Each of these regulatory standards use auditing processes to assess whether or not companies are operating with their customer's privacy in mind.

Let's consider a large hospital group. Every day for 24 hours a day, doctors, nurses, and admitting staff is entering new patient information into their mobile devices. This has identifying information, billing information like credit cards and bank accounts, and information about their health conditions. A public mobile cloud will have that data getting entered into a system that also hosts an accounting system and a point of sale system for a car wash. There is no chance of data accidentally getting published to the wrong database, but anyone with security credentials on that cloud, which could be a lot of people, could figure out a way to access that patient information. The private cloud, on the other hand, builds a fortress around the patient data. There are no other clients on that server, no one else has access to the server, and special security protocols keep things safe.

Companies that are making software used in a regulated space will need a private mobile cloud.

Hybrid Environments

Some companies might want the best of both worlds, also known as cloud busting. Imagine a private mobile cloud. It is configured with the max available processing power, memory, and storage. But, during peak hours this just isn't enough. Members of your development team log on to the cloud to check on something and get a rejected session because there are no more resources available. The hybrid model is based on overflow or load balancing. The cloud bust happens when a private mobile cloud is maxed out, and new sessions seamlessly roll over to a public cloud. No sessions are lost, and customers and developers never know the difference.

Development and test groups have to balance things to figure out where they belong. Do they have the internal skill and staff to manage all of the infrastructure required for a private cloud? Does the product being developed need to pass Sarbanes Oxley or HIPAA auditing? How much server time does your development team, or customer really need? Is the team Okay with logging into a ready-made environment and paying based on the server resources they use?

Answer those questions and the public or private mobile cloud question may just answer itself.

Published:
May 30, 2017
Share this post
Copy Share Link
© 2023 Sauce Labs Inc., all rights reserved. SAUCE and SAUCE LABS are registered trademarks owned by Sauce Labs Inc. in the United States, EU, and may be registered in other jurisdictions.