Cloud Computing Theory and Practice 22 March 2012 Phil Mustaphi, Colin Ashford, Larkland Morley
Cloud Computing NIST Definition 22 March 2012 Phil Mustaphi
NIST Cloud Computing Definition NIST Special Publication 800-145 Sep 2011 http://csrc.nist.gov/publications/nistpubs/800-145/sp800-145.pdf NIST defines: Cloud computing is an evolving paradigm. 5 Essential Characteristics 3 Service Models 4 Deployment Models Non-prescriptive, non-constraining
Defining Cloud Computing Essential Characteristics 5 Essential Characteristics of the Cloud: On demand, self-service Broad network access Resource pooling Rapid elasticity (up and down) Measured service (usage and billing)
SPI Cloud Computing Model 3 service models for Cloud Computing Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS) Can extend to Anything/Everything as a Service (XaaS) E.G. Combine layers of the model: Platform and Infrastructure as a combined service Split Infrastructure into Software and Hardware: server, network virtualization - Software Infrastructure as a Service-SIaaS - Hardware Infrastructure as a Service-HIaaS
Modified Cloud Model Infrastructure as a Service
Cloud Deployment Models Private Cloud Exclusive use by a single organization, operated and supported on or off premises Public Cloud Non-exclusive use by many organizations, off premises and offered by a cloud provider Community Cloud Used by several organizations with a shared relationship (Customers/Suppliers, Intranet/Extranet) Hybrid Cloud Composite of two or more cloud deployment methods (private, public, community)
Implementation Considerations Governance Business Processes Security (NIST have additional materials for this topic) Data Management Service Provisioning Business and Technology Service Relationship Management In-sourcing from the Cloud
Security is the Major Issue 9
General Security Challenges Trusting vendor s security model Customer inability to respond to audit findings Obtaining support for investigations Indirect administrator accountability Proprietary implementations can t be examined Loss of physical control 10
CLOUD STANDARDS Colin Ashford 22 March 2012 Presentation to insert name here 11
Cloud Standards Interfaces Users end-user, administrators, brokers ❶ ❹Architectures, frameworks, requirements, use cases ❺Sector-specific agreements Management SaaS PaaS IaaS Resource Control Layer ❷ ❸ provisioning, monitoring, security, billing, lifecycle Virtualization Hypervisor Resources Storage, Networking, Hardware Presentation to insert name here 12
Cloud Standards and Agreements ❶ User interface (end-user, administrator, brokers) IETF Cloud Service Broker; OGF Open Cloud Computing Interface (IaaS); SNIA Cloud Data Management Interface; CCIF unification of cloud APIs. ❷ Virtualization interface (storage, network, hardware) DMTF Open Virtualization Format; OGF Open Grid Services Architecture. ❸ Management interface (provisioning, monitoring, security, billing, lifecycle) DMTF Cloud Management Working Group; OpenStack Compute; OASIS IDCloud; TM Forum Cloud Initiative; CSA security and identity; SNIA Cloud Data Management Interface: ISO cloud security controls; itsmf cloud lifecycle. ❹ Architectures, frameworks, requirements, use cases ODCA unified customer vision for data centre; IETF Cloud Reference Framework; CSCC drive client requirements into standards. ❺ Sector-specific agreements ITU-T Focus Group on Cloud Computing telecommunications aspects; ATIS Cloud Service Forum the provision of cloud services by service providers; NIST Cloud Computing Program adoption of cloud computing in the US government; ARTS Cloud Computing for Retailers; ETSI standards requirements (IaaS). Presentation to insert name here 13
Standards and Industry Groups ARTS Association for Retail Technology Standards ATIS Alliance for Telecommunications Industry Standards CCIF Cloud Computing Interoperability Forum CSA Cloud Security Alliance CSCC Cloud Standards Customer Council DMTF Distributed Management Task Force ETSI European Telecommunications Standards Institute itsmf IT Service Management Forum OASIS Organization for the Advancement of Structured Information Standards ODCA Open Data Center Alliance OpenStack OGF Open Grid Forum TM Forum Telecommunications Management Forum IETF Internet Engineering Task Force ITU-T International Telecommunications Union-Telecommunications Sector ISO International Organization for Standardization NIST National Institute of Standards and Technology SNIA Storage Network Industry Association Presentation to insert name here 14
Cloud Infrastructure Cloud Infrastructure Larkland Morley MBCS CITP CEng Presentation to insert name here 15
Cloud Infrastructure Virtualization Virtualization has become a driving force in providing efficient cloud infrastructure This means virtualization of both the compute and networking elements Components Compute - Hypervisors Vmware, Citrix, Microsoft and OpenStack - Server OS LINUX, Windows and others - Virtual Machines (VM) runs on hypervisors Networking - OpenFlow New standard for networking - Tunneling Protocols GRE, NVGRE, VXLAN and CAPWAP Larkland Morley MBCS C.Eng 16
Cloud Infrastructure Cloud Infrastructure Considerations Connectivity Provide basic connections between the cloud provider and client locations Reliability Application Services are offsite, needs to ensure continuity despite link failures (SLA) Performance Despite the location of cloud services, clients want same level of service as when services were localized Trends Metro Ethernet and 4G LTE will improve connectivity options Management Provisioning Creating and Deleting Services at all layers Monitoring Keep track of resource usage and availability Statistics Migration The ability to move services between locations and physical infrastructure (use case NTT Japan) Standards This is critical requirement for long term cloud success The need for interoperability between vendors Larkland Morley MBCS C.Eng 17
Cloud Infrastructure Cloud Infrastructure Example (taken from Nicira.com) Larkland Morley MBCS C.Eng 18
Cloud Infrastructure Cloud Infrastructure Example Glossary Virtual Networks (1) Common set of network components defined by common rules Tunnel Mesh (2) Tunneling Protocols used to create virtual network boundaries Network Services (3) These are specific network appliances that operates within a given Virtual network For example a firewall appliance Gateway (4) This is a device that sits at the boundary of the virtualized network and a traditional network. Physical Fabric (5) The basic network infrastructure with standard connectivity to enable virtualization Controller Cluster (6) This is the Management system that provisions virtual networks and network services Larkland Morley MBCS C.Eng 19
Cloud Infrastructure Resources OpenFlow New standard to configuring network flows - openflow.org OpenStack Open source Hypervisor and CMS openstack.org Compute Virtualization - vmware.com and citrix.com (Microsoft as well) Network Virtualization nicira.com, Cisco.com, hp.com, juniper.net Network Storage netapp.com, emc.com, ibm.com etc Direct Questions Larkland.morley@gmail.com Larkland Morley MBCS C.Eng 20
Questions / Answers.. Discussion... Thank You.