The WebPal Wire

Get our latest updates as we bring you new insight on how cloud computing is already changing in its infancy. Security, content and business process are just a few categories within of wide range of topics covered in our blog

Archive for the ‘Cloud Software’ Category

Canadian Career Colleges Powered by Cloud Solutions

08-10-2015 Rachel

When the National Association of Career Colleges (NACC) came to Palomino for managed hosting services, it was soon after that NACC’s existing online examination system, NOEL, was not operating as efficiently and smoothly as they had hoped. Knowing WebPal Cloud Server offers a framework for custom education applications, WebPal was a clear fit for the rebuild of NOEL v.2.0.

Deployment was a breeze – NOEL is extremely stable and career colleges from across Canada are now using it with ease. “On behalf of NACC, I would like to extend our thanks and congratulations for the launch of Noel v.2.0 this month.  We at NACC are happy with the time and care you took with each of the staff involved, making sure that all of the needs of the updated exam system would meet with not only our but our members’ expectations,” says Debbie Archer, Director, Finance and Administration, NACC.

“The feedback from our member colleges has been nothing but positive.  The ease of use and the time saved is a big bonus to the day-to-day users of the program.  It looks great! It is very exciting to see how the development of each of the upgrade components was put in place and how each revision helped reach the goals that we were hoping to accomplish.”

We will be showcasing our education and learning platforms at the BC Career College Association (BCCCA) Annual Conference from October 7th-9th at the Marriott Downtown Vancouver. Be sure to stop by our booth to learn more about WebPal Cloud Servers managed solutions. If you are unable to attend and want to learn more about WebPal, contact, 1-866-360-0360 or visit

How Bus Transportation to meet Pope Francis is Made Possible

23-09-2015 Rachel

The World Meeting of Families 2015 is officially underway, with Pope Francis currently in Washington DC, and making his way to Philadelphia on Saturday, September 26th through Sunday, September 27th. The WMOF will bring together hundreds of thousands of families, and over 150 nations represented. With the Congress taking place now, and closing events including the Festival of Families on September 26th, and the Papal Mass to be held on Sunday, September 27th, it is anticipated that 1.5 million people will attend the Sunday Mass alone.


Palomino is working with GO GROUND, the official transportation management partner of the WMOF, to develop a web portal for the transportation logistics for all private and commercial charter buses for the Papal visit this weekend. After months of development, the portal allows trip organizers, passengers and bus operators to register, book seats, locate event locations, parking spots, and routes, track GPS coordinates of bus drivers, issue parking credentials and permits, all using the WebPal Cloud Server platform.

We are not doing this all alone. The GO GROUND portal has been integrated with Stripe and Acceptiva for payment processing, Glympse to track the GPS coordinates of drivers, as well as Twilio for SMS text messaging and real time updates.

To date, there have been over 100,000 passengers registered via the WebPal GO GROUND portal, planning over 2,500 bus movements from hundreds of Parishes.

Overall, the visit of Pope Francis to Philadelphia is projected to be the single largest bus transportation event in the history of North America. The Palomino team is very proud to be the technology provider for this event and welcome Pope Francis to Philadelphia!

For more information on the World Meeting of Families – Philadelphia 2015, visit and see the Palomino GO GROUND press release here.

How we dealt with a GHOST

10-02-2015 Rachel

Every once in a while, security vulnerabilities are discovered on the most secure platforms, and when that happens, the IT community worldwide becomes abuzz with information, warnings, and security advice within hours. This is the time when vulnerabilities – small cracks in the thick mantle of security software protecting the integrity of a cloud server – are called zero-day vulnerabilities, indicating the time period in which the crack has been found, but a fix is still pending.

Luckily, this fix is usually available very fast. Most zero-day vulnerabilities have a patch available by the time the general excitement starts. Patches generally are full, definite fixes of the problem, they close the “crack” and prevent any future exploitation.

Acting fast is important

The recent GHOST and Heartbleed vulnerabilities were an example of this. The problem is, once a risk has been disclosed to the general public, so will explanations on how to exploit it. Within a very short time, tools are available for download that can easily be morphed into automatic hack-bots, scanning the Internet for unpatched servers.

Thus, the real exposure is in these hours right after the announcement. During this time, system administrators, hosting providers, devops and client service managers need to work together to patch systems as quickly as possible.

How the WebPal Cloud is protected

Of course, as with many providers, our team has a standard procedure for these cases. When GHOST was discovered, we followed our standard risk mitigation checklist:

  1. Are we affected at all?
    Check whether in fact WebPal Servers were affected and if so, which ones. In the case of Heartbleed for example, our strategy of late adoption of OS version paid off and we were not affected at all.
  2. Is a patch available and applied?
    WebPal Servers automatically update nightly with latest security patches provided by our OS distributors. Nonetheless, we make sure that the latest patch (if available) is applied to all servers, in all data centres. If a patch is not available yet, we weigh the benefits of disabling affected software on the servers. 
  3. Has any data been compromised already?
    All attacks leave traces. Depending on the vulnerability, there are patterns in network traffic, process history and server behavior that would let us ascertain whether a server has already been attacked or, worse, compromised. A thorough scan is performed to ensure that this is not the case.
  4. Downtime required and when?
    Some security patches are to subsystems so widely used in a cloud server such that a full reboot is recommended to ensure that no un-patched code is still running on the server. GHOST was an example of this. As system restarts are very disruptive, we generally schedule these as rolling overnight reboots.
  5. Have actions been communicated?
    At all times, we communicate with our clients over our blog, twitter and email alerts to disclose risks and notify of any anticipated downtimes.

We don’t cry wolf

We appreciate that WebPal clients generally are business-level users and care not so much about the technical details of the vulnerability, but for the disruptions the fix causes, versus the potential risk of complacency.  WebPal clients rely on us to fend off serious threats, but forcing unnecessary reboots for every security update (there are dozens a month) would merely be a method of offloading risk management onto them and thus not provide any added value. Our advantage is that we know the business use of WebPal Cloud Servers very well, and with this knowledge, can make risk mitigation decisions that are in line with our client’s needs.



How Cloud Data is Changing the Way We Live and Work

24-01-2014 Chris

Data-driven technologies are dominating corporate IT because, as Canadian Communications Expert Marshall McCluhan says, “A point of view can be a dangerous luxury when substituted for insight and understanding.” We are better able to do business, make informed decisions, and reduce risk when we have access to more information. It is affecting every facet of business operations: marketing, sales, and customer relations departments are now entering into IT territory to ensure the company’s IT aligns perfectly with their goals.

Less time collecting, more time analyzing

In an interview with Data Informed, one executive says “There’s been an 80-20 rule that 80 percent of IT’s time is spent gathering data, and 20 percent analyzing it, but cloud services flip this on its head.” With the cloud, data can be updated and accessed in real-time, and can be easily imported and exported for easy analysis.

Better customer relationships

Flexible cloud data tools integrate seamlessly with third-party platforms, including payment systems and CRM tools. With unparalleled access to insights on their customers and performance of their sales departments, companies are better able to respond to evolving customer preferences. Not only does it help salespeople build better relationships with their customers, it is changing how their roles are defined: “cloud analytics provides a deeper understanding of a customer’s entire relationship with the company. In fact, companies are 136 percent more likely to use the cloud to reinvent customer relationships, according to a new IBM survey.”

Mobile apps are powering personal cloud data

The average smartphone user accesses several apps on a regular basis, and they are constantly feeding their personal data through these applications. Whether they realize it or not, they are establishing their personal data on the cloud. App developers are themselves hosting their products on the cloud, so both end-users and product owners depend on the cloud. Even while data security is still a concern for many users, that’s not stopping them for using the cloud to house their personal data.

WebPal’s Secure Data Management allows import, management and connectivity of business process data, giving you the ability to query and interact online from anywhere – even your smart phone! Import and export your data, and integrate with third-party platforms to bring the power of the cloud to all your important business processes. 

Cloudy Highlights From CES 2014

10-01-2014 Chris

The consumer electronics show is arguably the biggest tech conference of the year. The fact that it occurs at the outset of the year means it is the perfect opportunity to see the consumer products that will shape the tech year ahead. There were a few cloud technologies announced during the conference, and some cloud-based discussions occurred, that made headlines throughout the week. Here are the top cloud headlines of CES:

Sony Makes Cloud Content a Priority for Playstation

On Tuesday, Sony announced two new cloud-based services that will be used across its range of devices. In line the new trend towards cloud-based gaming, Playstation Now will be a way for gamers to play legacy PS2 and PS3 games on their new consoles. Playstation Now is the rename given to the cloud-based gaming service, Gaikai, which Sony acquired in 2012. Sony also announced a new cloud-based TV service that will enable PS4 owners to view live and on demand video content on their TVs. Details of the product are still underwraps, but will surely be revealed in the coming weeks.

DVR Without the Cord

Simple.TV brings you one step closer to a cordless life. It is a cloud-based DVR that allows users to access Netflix, Hulu, and other streaming services through your TV. Many people have noted that it follows a similar business model as the now-defunct Box, but the Simple.TV execs insist they are going their own route when it comes to cordless DVR. It isn’t in stores yet, but will be soon, although a price is yet to be determined.

An industry analysis on cloud hardware

In his keynote address following their announcement of two new cloud-based services, Sony CEO Kazuo Hirai says hardware manufacturers are still not ready to adopt the cloud enmasse until new ideas emerge for how they can be implemented. He would like to see more cloud product manufacturers consider the experience for the user more holistically, rather than simply think of functionality.

“Even though the cloud promises a connected future, it’s not a wow in itself,” says Hirai. “It needs a connected experience, one where people can feel and see it through a device, hear the sounds and are amazed at the technology and what it offers… It’s not just technology or services, but emotional value, emotional involvement.”

Kazuo says a paradigm shift might be difficult to instigate, but the cloud is an easy sell to those who understand the its unparalleled ability to connect people across countries and continents, and provide a centralized source for all your computing needs.

WebPal Cloud Content Server is a business solution for secureprivate, and powerful web content managementdocument storage and online collaboration. Learn more about WebPal’s cloud solutions for enterprises. 

The Importance of Collaboration Tools in the 21st Century Workplace

15-11-2013 Chris

The workplace of the 21st century needs to ask itself, “How do we create a culture of innovation?” Innovation is now being treated as a science, as corporate executives seek new answers to the oldest problems known to business. One of the most common answers to this question is providing access to collaboration tools, and there are a few reasons why.

The 21st Century Worker Seeks Collaboration

To understand collaboration in the 21st century workplace, you must first understand the 21st century worker. Take a look at this infographic on the most sought after skills in today’s worker. Collaboration, communication, leadership, productivity and accountability are all keywords that can help organizations empower their employees. “Many businesses are adopting a participative management style, which involves employees in decision making,” says George DeMetropolis, a professor at the University of Phoenix. By creating this kind of environment, employees are motivated to go beyond their standard job description to add value to the company.

The Rize of the Social Workplace

It’s not just an organization’s workplace that needs to use collaboration tools to succeed, its the organization itself. More corporate environments are focusing on developing communities for the customers, as well as their employees. Social networks and social tools are used by large companies in multiple capacities: customer service, product updates, and employee communication. According to IDC, about 75 million instant messaging (IM) accounts were active in business in 2003.

Breaking Down Silos With Collaboration Tools

In the traditional workplace, it was common for multiple departments to become siloed. To achieve innovation, all these moving parts have to be working towards a common goal, and collaboration tools are the most effective way to do that. This is especially true with content management and creation. A 2008 IBM white paper on collaboration recognized this soon after social networks were adopted en masse, and in today’s workplace “content is developed through participation; it is fluid, contextual and leveraged to create opportunities through ongoing collaboration… Participatory capabilities can provide businesses with user-driven innovation, simpler and more productive solutions, integration of tasks, reduced cost and higher employee satisfaction.”

WebPal helps you manage all your important documents on a secure cloud server, while allowing your employees to collaborate

The Current State of Global Cloud Regulations

07-11-2013 Chris

Each country has their own unique cloud regulation policies that can be confusing to users, especially those who share their content across borders. As global Information Cloud Technology (ICT) innovation occurs, cloud policies and regulations need to constantly adapt to keep up. Here is an idea of cloud regulation policies in the U.S., Europe, and Canada

The United States of America

There are a number of specific laws that govern the use of the cloud in the United States, and each of them pertain to a specific vertical or industry. The Health Insurance Portability and Accountability Act (HIPAA) helps protect the privacy and security of health information using three types of safeguards: administrative measures to manage the selection, development, implementation, and maintenance of systems; physical measures used to protect electronic information systems and related buildings and equipment; and the technology and the policies and procedures that govern its use.

Meanwhile, the Gramm-Leach-Bliley Act (GLBA) encompasses two rules for storing financial data in the cloud: the Financial Privacy Rule and the Safeguards Rule. The Financial Privacy Rule requires financial institutions to provide their customers with details of the information they have gathered and where it is stored. The Safeguards Rule means they must outline in clear and unambiguous language their document storage policies regarding customers’ non-public information.

In education, the Family Educational Rights and Privacy Act (FERPA) requires educational institutions to get consent from students before placing their information on the cloud. Although the U.S. has been the number one cloud provider for many years, but the recent NSA surveillance scandal may change that. Some analysts are predicting American cloud providers could suffer more that $22 billion in lost revenue due to surveillance concerns.


Edward Snowden shook things up with his revelations that the National Security Agency of the United States was monitoring information on cloud systems like Amazon Web Services. Since then, the European Union is proposing new legislation to protect the digital privacy of their citizens. These legislative amendments to existing laws include launching user notifications and consent agreements when data is transferred from a cloud inside the E.U. to a cloud outside of it, which details the possibility of surveillance by a third-country authority. Although it is uncertain if all these laws will pass, there is general consensus in Europe that more regulation is needed to protect their citizens.


Canada has recently risen as a world leader in ICT innovation, from 12th place in 2012 to 9th place this year. The 2012 copyright bill, Bill C-11, helped instigate this improvement, and places Canada in a position to ratify the WIPO Copyright agreement. The bill allows content distribution and software companies to place “digital locks” on their creative content to guard it from unlawful use. Access to broadband internet still needs to improve if Canada is going to continue to raise its international rankings, as the digital divide is still a prominent issue in this country. Users Are Concerned About Security

24-10-2013 Chris

Last week, we discussed the history of cloud computing to see how far we have come. While many enterprise CIOs top concerns are more related to user experience and downtime, users are still concerned about the cloud. A customer recently relayed the story of his scary security breach on the cloud.

The customer, named Dan, prefaces his story on by saying, “I am a bit of a nut about cloud storage. The ability to store all my data online, automatically sync it, and access it from virtually any machine has changed my life in a number of ways.”

Dan uses many public cloud services, like Dropbox, SkyDrive, Google Drive, in addition to When he could not access his account, he was told that the organization “had no record of his account,” and it had “vanished into thin air,” with three years’ worth of files.

After questioning corporate further, he found out that because he had shared some folders with his wife, his account had be “rolled in” with accounts belonging to her PR firm. The PR firm had deleted his account, as they didn’t recognize his credentials.

Luckily, was able to recover his files, after they were in limbo for 6 months. Dan says he will continue to use the cloud, despite the hassle he experienced.

This isn’t the first time has had to deal with security concerns from users; late last year, a user noticed that anyone can access his corresponding file or folder if they have the correct URL – no password or ID needed. didn’t respond to the issue until April, and said “Once someone has access to the user’s auth-token they are able use that for browser login. This is a known issue and was a product decision to leave in for Box Sync.”

There are many things users can do to protect their cloud content. IT security experts suggest having a two-factor verification on public cloud accounts like Google. Large organizations should have an approved cloud vendor list to help departments follow organizational policies and guidelines, while still providing flexibility. Of course, choosing a secure and flexible vendor that you trust can really deliver peace of mind.

Learn more about WebPal secure enterprise content management options.

The History of Cloud Computing

18-10-2013 Chris

Every cloud analyst wants answers for where cloud computing will go next, and what trends they can expect. The cloud computing industry is experiencing unprecedented growth; according to Gartner, estimated spending on cloud services between 2013 and 2016 will reach $677 billion. Over its history, cloud computing has faced skepticism from industry experts, but it has now matured into a full-fledged business tool that is used by organizations across industries. To truly understand where cloud computing is going, you have to understand its origins.

Mainframe computers in the 1960s

Today, cloud computing is defined as a number of computers that are connected via a real-time communication network. The first instance of this concept was in the 1960s, when big businesses built computer mainframes to replace the vacuum-tube machines. This required expensive on-site hardware to establish a consolidated computer system that supported all the computers on their network.

Shared web hosting and the first uses of the term “cloud computing”

The next move towards cloud computing was shared web hosting, which gained popularity in 1995. Multiple sites could “sit” on one server and share the hosting service. This soon morphed into VPS hosting which provided more flexibility and “root access” to server files. The MIT Technology Review tracked the first usage to a group of technology executives from Compaq Computer who were “plotting the future of the Internet business and calling it ‘cloud computing.’” They postulated that all business software would move to the web, which spurred them to “start a $2-billion-a-year business selling servers to Internet providers.”

Amazon Web Services

2006 was the year that Amazon launched its grid utility computing system Amazon Web Services, and is still considered a number one cloud provider. For the first time, IT companies could access the resources they needed from the Internet, rather than building expensive on-site infrastructure. Companies like Google and IBM began delving further into research on cloud computing – the same year AWS was launched, Google CEO Eric Schmidt introduced the term cloud computing at an industry conference.

The cloud reaches maturity

By 2009, the cloud computing industry had reached 68.3 billion in revenue. There is no telling where the industry will go in the next 40 years.

What is the Role of IT in Cloud Computing?

09-10-2013 Chris

For business leaders who are looking for ways to reduce their staffing fees using technology, cloud content management appears to be the perfect solution. Because cloud infrastructure helps reduce the amount of on-site hardware and automates certain processes, some business leaders mistakenly believe that the role of IT is becoming less significant. While cloud content management systems certainly provide some much needed relief for IT departments, it is only through a hybrid approach involving both cloud content managements systems and a team of IT experts that you can achieve true productivity. Here are a few roles that IT departments should play after a cloud content management system has been introduced.

CIOs and CTOs should become cloud experts

As a PWC report correctly states, “Cloud computing is about more than IT cost savings; the technology create new avenues for revenue and innovation.” Again, cloud computing should enhance, rather than replace, existing IT infrastructure, and CIOs and CTOs should be prepared to discover new ways to leverage the power of the cloud. It will undoubtedly impact the functions of the IT department, and the CIO or CTO should be prepared to mitigate those impacts for their team.

CIOs and CTOs should get more involved in “business discussions”

CIOs and CTOs are often relegated to pure technology discussions. Mobile and social technology now goes hand-in-hand with marketing and advertising strategy. Since technology is playing an increasingly significant role in business, they have valuable insights that can help your company stay on the cusp of innovative industry trends.

What type of in-house development do you need?

For larger organizations, a more complex IT infrastructure is needed. A blog on says “In-house application developers must be capable of crafting solutions that span both the cloud and on-premise resources, securing and leveraging the opportunities inherent in technology without giving up the processes that differentiate and deliver competitive advantage.” Cloud software shouldn’t stop you from innovating – it should help you achieve innovation.

Learn more about WebPal’s secure and flexible cloud content management solutions.