Transcription
The Road to Cloud Standards via aReference ArchitectureRobert BohnNIST Information Technology LaboratoryMAGIC MeetingNCO/NITRDJune 1, 2011NIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
2Background Technological Maturity Economic Standards Driven––––Data PortabilityService InteroperabilitySecurityCloud to Cloud interaction USG needs a starting point – A ReferenceNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
3ObjectiveDevelop a vendor neutral reference architectureconsistent with the NIST Cloud Computing definition3 Service Models- SaaS, PaaS, IaaS4 Deployment models- Public, Private, Community, Hybrid5 Essential CharacteristicsOn demand self-serviceBroad network accessResource PoolingRapid ElasticityMeasured ServiceDetermine the “What” of Cloud Computing, not the “How”A CloudNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
4NIST Cloud Computing Reference ArchitectureActors and their RolesCloud ConsumerPerson or organizationthat maintains abusiness relationshipwith, and uses servicefrom Cloud Providers.Cloud ProviderPerson, organization or entity responsible for making a serviceavailable to Cloud Consumers.Cloud AuditorA party that can conductindependent assessmentof cloud services,information systemoperations, performanceand security of the cloudimplementation.Cloud CarrierThe intermediary that provides connectivity and transport of cloud servicesfrom Cloud Providers to Cloud Consumers.NIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAMCloudBrokerAn entity thatmanages the use,performance anddelivery of cloudservices, andnegotiatesrelationshipsbetween CloudProviders andCloud Consumers.
5The NIST Cloud ComputingReference ArchitectureCloud ProviderCloudConsumerCloudBrokerService LayerSaaSCloud tPrivacyImpact AuditBusinessSupportIaaSResource Abstraction andControl LayerPhysical Resource teroperabilityFacilityCloud CarrierNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAMServiceAggregationServiceArbitrage
6TaxonomiesTaxonomy: The science of categorization, or classification, ofthings based on a predetermined system. (Webopedia)Main Attributes: Typically a controlled vocabulary with a hierarchical tree-like structure Terms in a taxonomy have relationships with other terms Usually in the form of a parent (broader) / child (narrower)Benefits: Encompasses and labels all significant concepts within a given domain Allows users to understand the context of each labelNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
7RA TaxonomyNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
8Examples Terms and DefinitionsLevel 1: Cloud Service Provider – Person, organization or higher-level system responsible for makinga service available to service consumers.Level 2: Cloud Service Management – Cloud Service Management includes all the service-relatedfunctions that are necessary for the management and operations of those services requiredby or proposed to customers.Level 3: Public Cloud - The cloud infrastructure is made available to the general public or a largeindustry group and is owned by an organization selling cloud services. [NIST Definition ofCloud Computing]Level 4: Data Portability – The ability to transfer data from one system to another without beingrequired to recreate or reenter data descriptions or to modify significantly the applicationbeing transported. [Federal Standard 1037C]NIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
9Next Steps Version 2.0 of NIST Cloud Computing Reference Architecture––––Includes a more detailed description of security and privacy.Maps USG Target BUC to RADeep Dive into NIST Service ModelsCloud Data Issues Version 2.0 of NIST Cloud Computing Taxonomy whichincludes– Security & Privacy– Updated SaaS taxonomy to reflect USG Business Use Cases.– Newly identified additional taxonomies to support USG Business UseCaseNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
10AcknowledgementsDr. Fang Liu, Jin Tong, Dr. Jian Mao: Knowcean Consulting Inc.Dr. Robert Bohn, John Messina: NIST ITLDawn Leaf, NIST Senior Executive for Cloud ComputingWith broad contributions from members of the NIST ReferenceArchitecture and Taxonomy Working Group and the ReferenceArchitecture Analysis Team:Randy Baklini, Gregg Brown, Frederic De Vaulx, Michele Drgon,Anne Frantzen, Babak Jahromi, Dean Kemp, Cary Landis,Eugene Luster, Bob Marcus, Gary Mazzaferro, Hung Nguyen,Marlin Pohlman, Alan Sill, Ken Stavinoha, Pat Stingley, TomYoung and Jay LevineNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
11Questions?NIST Cloud Computing Collaboration ing/NIST Cloud Computing Home Pagehttp://www.nist.gov/itl/cloudContact:Dawn Leafdawn.leaf@nist.govLee Badger lee.badger@nist.govRobert Bohn robert.bohn@nist.govNIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM
NIST INFORMATION TECHNOLOGY LABORATORY CLOUD COMPUTING PROGRAM Next Steps Version 2.0 of NIST Cloud Computing Reference Architecture -Includes a more detailed description of security and privacy. -Maps USG Target BUC to RA -Deep Dive into NIST Service Models -Cloud Data Issues Version 2.0 of NIST Cloud Computing Taxonomy which .
