Defining InterCloud Architecture Framework (ICAF) for Interoperability and Integration

Similar documents
ISOD BCP Document Discussion and Recommendations

On-Demand Provisioning of Cloud and Grid based Infrastructure Services for Collaborative Projects and Groups

KoM WP3 Task3.2 Overview and Next steps. Yuri Demchenko University of Amsterdam

PoS(ISGC 2011 & OGF 31)115

Intercloud Architecture Framework for Heterogeneous Cloud based Infrastructure Services Provisioning On-Demand

Topics of Discussion

Professional Education on Cloud Computing Technology and Services Engineering

Cloud Standardization

Introduction to Cloud Computing. [thoughtsoncloud.com] 1

NIST Cloud Computing Security Working Group

Overview of International Standards for Cloud Computing

Open Cloud exchange (OCX): Architecture and Functional Components

Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud

Copyright 2011 EMC Corporation. All rights reserved.

Cloud Standards: Vincent Franceschini CTO Intelligent Data Fabrics, Hitachi Data Systems Chairman Emeritus, SNIA

CLOUD COMPUTING. Lecture 4: Introductory lecture for cloud computing. By: Latifa ALrashed. Networks and Communication Department

Fundamental Concepts and Models

Cloud Computing. Theory and Practice. 22 March 2012 Phil Mustaphi, Colin Ashford, Larkland Morley

Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC)

Cloud Computing and Service-Oriented Architectures

Cloud Computing and Service-Oriented Architectures

Cloud Computing introduction

A Holistic View of Telco Clouds

A guide for IT professionals. implementing the hybrid cloud

Security Models for Cloud

Cloud Computing An IT Paradigm Changer

Future Shifts in Enterprise Architecture Evolution. IPMA Marlyn Zelkowitz, SAP Industry Business Solutions May 22 nd, 2013

Computing as a Service

United States Government Cloud Standards Perspectives

Chapter 4. Fundamental Concepts and Models

Cloud Computing: The Next Wave. Matt Jonson Connected Architectures Lead Cisco Systems US and Canada Partner Organization

Cloud First Policy General Directorate of Governance and Operations Version April 2017

ALI-ABA Topical Courses ESI Retention vs. Preservation, Privacy and the Cloud May 2, 2012 Video Webcast

Why the cloud matters?

The intelligence of hyper-converged infrastructure. Your Right Mix Solution

Enhanced Privacy ID (EPID), 156

1/10/2011. Topics. What is the Cloud? Cloud Computing

Chapter 3 Virtualization Model for Cloud Computing Environment

Large Scale Computing Infrastructures

Accelerate Your Enterprise Private Cloud Initiative

Practical Guide to Cloud Computing Version 2. Read whitepaper at

The Virtual Brick Road Achievements and Challenges in NFV Space. Diego R. Lopez Telefónica NFV ISG Technical Manager October 2013

Developing, Deploying and Managing Applications on the Cloud

Module Day Topic. 1 Definition of Cloud Computing and its Basics

[MS10992]: Integrating On-Premises Core Infrastructure with Microsoft Azure

DISTRIBUTED SYSTEMS [COMP9243] Lecture 8a: Cloud Computing WHAT IS CLOUD COMPUTING? 2. Slide 3. Slide 1. Why is it called Cloud?

CLOUD COMPUTING. Rajesh Kumar. DevOps Architect.

Cisco Virtualized Multi-Tenant Data Center Cloud Consumer Models

Privacy hacking & Data Theft

VMware Hybrid Cloud Solution

OFFICE OF THE ASSISTANT SECRETARY OF DEFENSE HEALTH AFFAIRS SKYLINE FIVE, SUITE 810, 5111 LEESBURG PIKE FALLS CHURCH, VIRGINIA

SIMPLIFY, AUTOMATE & TRANSFORM YOUR BUSINESS

Leveraging the Cloud for Law Enforcement. Richard A. Falkenrath, PhD Principal, The Chertoff Group

Government IT Modernization and the Adoption of Hybrid Cloud

Introduction to the Intercloud

Cloud Essentials for Architects using OpenStack

The Latest EMC s announcements

Use Case Brief BUILDING A PRIVATE CLOUD PROVIDING PUBLIC CLOUD FUNCTIONALITY WITHIN THE SAFETY OF YOUR ORGANIZATION

Journey to the Cloud Next Generation Infrastructure for the future workforce.

Cloud forensics definitions and critical criteria for cloud forensic capability: An overview of survey results

Transport SDN at OIF Assuring a Seamless Evolution to Interoperable Transport Networks of the Future

Fast IT - Policy Driven Infrastructure for the Intercloud World

Automate the Lifecycle of IT

Intelligent WAN: Leveraging the Internet Secure WAN Transport and Internet Access

SDN for Multi-Layer IP & Optical Networks

Udaipur, Rajasthan, India. University, Udaipur, Rajasthan, India

NEC Virtualized Evolved Packet Core vepc

Inter-Cloud Computing and Networking for Secure Social Infrastructure

Applications and Challenges of Cloud Computing, Networking, and Services Track B Human / Computer Interfaces; Hardware and Software

Technology for a Changing World

BT Innovate. Service Oriented Networks. John Wittgreffe, ICT Chief Researcher

Part III: Evaluating the Business Value of the Hybrid Cloud

DEEP DIVE INTO CLOUD COMPUTING

SD-WANs and Lifecycle Service Orchestration (LSO) October Daniel Bar-Lev Director, Office of the CTO

Cisco Unified Data Center Strategy

The End of Storage. Craig Nunes. HP Storage Marketing Worldwide Hewlett-Packard

THE DATA CENTER AS A COMPUTER

CHARTING THE FUTURE OF SOFTWARE DEFINED NETWORKING

ITU-T Y Next generation network evolution phase 1 Overview

Practical Guide to Hybrid Cloud Computing. Cloud-Computing.

Integrating Autonomic Slice Networking in NFV

Analytics in the Cloud Mandate or Option?

INTO THE CLOUD WHAT YOU NEED TO KNOW ABOUT ADOPTION AND ENSURING COMPLIANCE

Reconstruct to re-energize

Cloud Infrastructure and Operations Chapter 2B/8 Page Main concept from which Cloud Computing developed

Extend your datacenter with the power of Citrix Open Cloud

CSA GUIDANCE VERSION 4 S TAT E O F T H E A R T CLOUD SECURITY AND GDPR NOTES. Hing-Yan Lee (Dr.) EVP, APAC, Cloud Security Alliance

2-4 April 2019 Taets Art and Event Park, Amsterdam CLICK TO KNOW MORE

Introduction to Device Trust Architecture

Accelerate your Azure Hybrid Cloud Business with HPE. Ken Won, HPE Director, Cloud Product Marketing

NIST Public Working Group on Federated Cloud (PWGFC) IEEE P2302 Intercloud Kickoff

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

VMWARE SOLUTIONS AND THE DATACENTER. Fredric Linder

CLOUD GOVERNANCE SPECIALIST Certification

Matrix IT work Copyright Do not remove source or Attribution from any graphic or portion of graphic

PERFORMANCE TECHNOLOGIES A.E. July 2016

Transform Your Business with Hybrid Cloud

In this unit we are going to look at cloud computing. Cloud computing, also known as 'on-demand computing', is a kind of Internet-based computing,

Modelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer

* Inter-Cloud Research: Vision

Transcription:

Defining InterCloud Architecture Framework (ICAF) for Interoperability and Integration Yuri Demchenko SNE Group, University of Amsterdam CloudComputing2012 22--23 July 2012, Nice, France InterCloud Architecture 2012 InterCloud Architecture Framework 1

Outline Cloud Computing Architecture research at SNE group (Univ Amsterdam) General use cases for Intercloud Architecture Related standardisation initiatives NIST Cloud Computing Reference Architecture (CCRA) and extension for network aware cloud resources provisioning IEEE Intercloud Working Group ITU-T Cloud Interest Group final report OGF ISOD-RG infrastructure services definition IETF Internet-Draft on Cloud Architecture Framework Intercloud Architectural Framework (ICA/ICAF) components Multi-layer/Layered Cloud Services Model (CSM) Intercloud Control and Management Plane (ICCMP) Intercloud Federation Framework (ICFF) Intercloud Operations Framework (ICAF) Abstract Model for Cloud IaaS Provisioning Further research and standardisation contribution InterCloud Architecture 2012 InterCloud Architecture Framework Slide_2

SNE Cloud Architecture Research Intercloud Architecture for Interoperability and Integration, Release 1, Draft Version 0.4. SNE Technical Report 2012-03-02, 19 June 2012 http://staff.science.uva.nl/~demch/worksinprogress/sne2012-techreport-12-05-intercloud-architecturedraft04.pdf Main contributing research: (1) Generic Cloud IaaS Architecture, Release 1, 15 April 2011 Published as http://staff.science.uva.nl/~demch/worksinprogress/sne2011-techreport-2011-03-clouds-iaasarchitecture-release1.pdf Virtual Infrastructure Composition and Management (VICM) layer Infrastructure Services Modeling Framework (ISMF) Composable Services Architecture (CSA) Service Delivery Framework (SDF) (2) InterCloud OS/Middleware (low level Intercloud integration) Targeting for Intercloud BGP-like protocol (3) Security Infrastructure for Cloud (dynamically provisioned) Dynamic Access Control Infrastructure (DACI) Contributing to cloud standardisation by OGF, NIST, IEEE, IETF Implementation EU projects GEYSERS, GEANT3 Telco and NREN driven core network and last mile InterCloud Architecture 2012 InterCloud Architecture Framework 3

General use cases for Intercloud Architecture Clouds are evolving as a common way of provisioning infrastructure services on-demand In this way, clouds add a new type of services, in addition and on the top of currently existing network based and distributed services Intercloud Architecture Framework (ICAF) provides a framework to support provisioning of cloud based project oriented infrastructures on-demand and distributed virtualised applications mobility Hybrid Cloud/Grid e-science collaborative environment Scientific Data Infrastructure for Big Data Enterprise/campus cloud infrastructure evolution and migration/mobility Infrastructure disaster recovery (Vodafone NL Datacenter Incident) Data require supporting infrastructure Educational Lab deployment in clouds ICAF intends to open Cloud market to more players and rise socalled cloud curtain InterCloud Architecture 2012 InterCloud Architecture Framework 4

InterCloud: Related standardisation activities OGF ISOD-RG BCP on existing on-demand network and cloud infrastructure resources provisioning systems (including GEYSERS) NIST Cloud definition (NIST SP 800-145), and Cloud Computing Reference Architecture (CCRA), v1.0 (NIST SP 500-292) IEEE - WGs on InterCloud issues and Cloud Profiles IEEE ICWG/2302 WG - Intercloud WG (ICWG) Working Group http://standards.ieee.org/develop/wg/icwg-2302_wg.html ITU-T Focus Group on Cloud: Technical Report (Part 1 to 7) http://www.itu.int/en/itu-t/focusgroups/cloud/documents/fg-coud-technical-report.zip IETF Internet Drafts Cloud Reference Framework. Internet Draft, by B. Khasnabish, J. Chu, S. Ma, Y. Meng, N. So, P. Unbehagen, M. Morrow, M. Hasan, Y. Demchenko http://tools.ietf.org/html/draft-khasnabish-cloud-reference-framework-03.txt Cloud Service Broker, Internet Draft by Shao Weixiang, Hu Jie, Bhumip Khasnabish. http://tools.ietf.org/html/draft-shao-opsawg-cloud-service-broker-03.txt InterCloud Architecture 2012 InterCloud Architecture Framework 5

Work on I-Draft Cloud Reference Framework (Version 0.3) http://tools.ietf.org/html/draft-khasnabish-cloud-reference-framework-03.txt 1. Introduction......................... 4 2. Terminology......................... 5 3. Cloud Services Reference Model............... 6 3.1. HORIZONTAL LAYERS.................... 7 3.1.1. Application/Service Layer.............. 7 3.1.2. Resources Control Layer............... 8 3.1.3. Resources Abstraction and Virtualization Layer.... 9 3.1.4. Physical Resources Layer............... 10 3.2. VERTICAL LAYERS (planes?)................ 10 3.2.1. Cloud Management Layer................ 10 4. Inter-Cloud Framework.................... 17 4.1. Inter-Cloud Requirements................. 17 4.2. Intercloud Framework Components 4.3. Intercloud Control and Management Plane (ICCMP) 4.4. Intercloud Federation Framework (ICFF) 4.5. Intercloud Operation Framework (ICOF) 5. Use Cases.......................... 19 5.1. Virtual Network Management................ 19 5.2. Telecom Network Virtualization.............. 19 5.3. Virtual Data Center................... 21 5.4. Security infrastructure for on-demand provisioned cloud-based services/infrastructures 6. Security Framework for Clouds................ 22 7. Conclusion.......................... 24 8. Security Considerations................... 25 9. Acknowledgement....................... 26 10. IANA Considerations..................... 27 12. Normative references..................... 28 B. Khasnabish (ZTE USA) J. Chu S. Ma Y. Meng (ZTE) N. So (Verizon) P. Unbehagen Avaya M. Morrow (Cisco Systems Switzerland) M. Hasan (Cisco Systems) Y.Demchenko University of Amsterdam Version 0.3 29 June 2012 Version 0.4 End July 2012 Version 0.5 October 2012 (To be considered) InterCloud Architecture 2012 InterCloud Architecture Framework 6

Intercloud Architecture - Requirements Intercloud Architecture (ICA) should address interoperability and integration of different cloud service platforms and multi-cloud integration, including with legacy campus/enterprise infrastructure Be compatible and provide multi-layer integration of existing cloud service models IaaS, PaaS, SaaS and Apps clouds Facilitate interoperable and measurable intra-provider infrastructures Provide a framework for heterogeneous inter-cloud federation Common Intercloud Control Plane and signalling for better cloud services and network integration Explicit/Guaranteed intra- and inter-cloud network infrastructure provisioning and performance (as NaaS service model) Support existing Cloud operational and business models and provide a basis for new forms of services provisioning and operation InterCloud Architecture 2012 InterCloud Architecture Framework 7

General use case for infrastructure provisioning: Workflow => Logical (Cloud) Infrastructure (1) Enterprise/Scientific workflow Input Data Storage Data Instrum. Data Data Filtering Special Proc 1 Special Proc 2 Data Archive Visual Present Campus A CE Visualisation Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 8 Cloud IaaS Cloud PaaS

General use case for infrastructure provisioning: Workflow => Logical (Cloud) Infrastructure (2) Enterprise/Scientific workflow Input Data Storage Data Instrum. Data Data Filtering Special Proc 1 Special Proc 2 Data Archive Visual Present Campus A CE Visualisation Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 9 Cloud IaaS Cloud PaaS

General use case for infrastructure provisioning: Logical Infrastructure => Network Infrastructure (1) Resource and Cloud Domains Cloud 1 IaaS Cloud 2 PaaS Campus A Infrastructure VR1 VR3 VR5 VR7 Campus B Infrastructure VR2 VR4 VR6 Campus A CE Visualisation Cloud Carrier Network Infrastructure Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 10 Cloud IaaS Cloud PaaS

General use case for infrastructure provisioning: Logical Infrastructure => Network Infrastructure (2) Resource and Cloud Domains Campus A Infrastructure VR1 VR3 VR5 VR7 Campus B Infrastructure VR2 VR4 VR6 Network 1 Campus A CE Visualisation Network 2 Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 11 Cloud IaaS Cloud PaaS

Intercloud Applications Interaction (1) - ICCMP IaaS Domain Cloud Layers PaaS Domain Campus A CE Visualisation InterCloud Control and Management Plane (ICCMP) defined Platform and SW&Apps Layer 3 - IaaS defined Virt&OS Platform Layer 7 - Applications Layer 6 SaaS/Apps Layer 5 - PaaS Cloud based Platform Layer 4 - IaaS Cloud Infrastructure Layer 3 Composition Layer 2 - Virtualisation Layer 1 - Physical HW Platform/Network defined SW&Apps Layer 4 - PaaS defined Infrastr. and Virt&OS Platform Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 12 Cloud IaaS Cloud PaaS

Intercloud Applications Interaction (2) - ICFF IaaS Domain Intercloud Federation Infrastructure PaaS Domain SW&Apps Registry Discovery SW&Apps Campus A CE Visualisation Layer C3-IaaS Virt&OS Platform GW Attribs Broker Broker Trust Broker IdP Trust Broker Trust GW LayerC4-PaaS Virt&OS Platform Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 13 Cloud IaaS Cloud PaaS

SW&Apps Layer C3-IaaS Virt&OS Platform SW&Apps LayerC4-PaaS Virt&OS Platform Intercloud Applications Integration (3) - ICOF Storage Data Special Proc 1 Data Archive Business Processes Management and Services Operation Support SLA Management Business roles and Actors Business level Service Registry and Broker Intercloud Federation Infrastructure Registry Disco-very Input Data Instrum. Data Data Filtering Special Proc 2 Visual Present GW Attribs IdP Broker Broker Trust Broker Trust Broker GW IaaS Domain Cloud Layers PaaS Domain Trust Campus A CE Visualisation defined Platform and SW&Apps Layer 3 - IaaS defined Virt&OS Platform Layer 7 - Applications Layer 6 SaaS/Apps Layer 5 - PaaS Cloud based Platform Layer 4 - IaaS Cloud Infrastructure Layer 3 Composition Layer 2 - Virtualisation Layer 1 - Physical HW Platform/Network defined SW&Apps Layer 4 - PaaS defined Infrastr. and Virt&OS Platform Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 14 Cloud IaaS Cloud PaaS

InterCloud Architecture components Multi-layer Cloud Services Model (CSM) Combines IaaS, PaaS, SaaS into multi-layer model with inter-layer interfaces Including interfaces definition between cloud service layers and virtualisation platform InterCloud Control and Management Plane (ICCMP) Allows signaling, monitoring, dynamic configuration and synchronisation of the distributed heterogeneous clouds Including management interface from applications to network infrastructure and virtualisation platform InterCloud Federation Framework (ICFF) Defines set of protocols and mechanisms to ensure heterogeneous clouds integration at service and business level Addresses Identity Federation, federated network access, etc. InterCloud Operations Framework (ICOF) RORA model: Resource, Ownership, Role, Action RORA model provides basis for business processes definition, SLA and access control Broker and federation operation InterCloud Architecture 2012 InterCloud Architecture Framework 15

Management Security Infrastructure Multilayer Cloud Services Model (CSM) IaaS Cloud Management Software (Functional Definition - Proposed) Applications Cloud Management Software/Platforms VM OpenNe bula PaaS PaaS-IaaS Interface IaaS Virtualisation Platform Interface OpenSta ck Other CMS SaaS SaaS-PaaS IF VM VPN Layer C7 Client/ Application Layer C6 Cloud Applications (SaaS) Layer C5 Cloud Platform (PaaS) Layer C4 Cloud Infrastructure (IaaS) Layer C3 Virtual Resources Composition and Control (Orchestration) CSM layers (C7) Client/Application (C6) Cloud Application (SaaS) (C5) Cloud Platform (PaaS) (C4) Cloud Infrastructure (IaaS) (C3) Virtual Resources Composition and Orchestration (C2) Virtualisation Layer (C1) Hardware platform and dedicated network infrastructure Virtualisation Platform KVM XEN VMWare Network Virt Layer C2 Virtualisation Storage Resources Proxy (adaptors/containers) - Component Services and Resources Compute Resources Hardware/Physical Resources Network Infrastructure Layer C1 Physical Hardware Platform and Network Control/ Mngnt Links Data Links InterCloud Architecture 2012 InterCloud Architecture Framework Slide_16

InterCloud Control and Management Plane (ICCMP) Supports messages delivery/routing, signaling, monitoring, dynamic configuration and synchronisation between the distributed heterogeneous cloud instances Includes management interfaces from upper layers and applications to network infrastructure and virtualisation platform (virtualised resources) Layer 1 - Layer 4 interfaces are being developed and prototyped in the framework of the GEYSERS project InterCloud Architecture 2012 InterCloud Architecture Framework 17

Intercloud Control and Management (1) IaaS Domain Cloud Layers PaaS Domain Campus A CE Visualisation InterCloud Control and Management Plane (ICCMP) defined Platform and SW&Apps Layer 3 - IaaS defined Virt&OS Platform Layer 7 - Applications Layer 6 SaaS/Apps Layer 5 - PaaS Cloud based Platform Layer 4 - IaaS Cloud Infrastructure Layer 3 Composition Layer 2 - Virtualisation Layer 1 - Physical HW Platform/Network defined SW&Apps Layer 4 - PaaS defined Infrastr. and Virt&OS Platform Visualisation Campus B CE Group A Resource/ Service VR1 VR2 VR3 VR6 VR4 VR5 Cloud 1 IaaS Cloud 2 PaaS VR7 Enterprise/Project based Intercloud Infrastructure Group B Resource/ Service InterCloud Architecture 2012 InterCloud Architecture Framework 18 Cloud IaaS Cloud PaaS

Intercloud Control and Management (2) IaaS Domain Cloud Layers PaaS Domain defined Platform and SW&Apps Layer 4 - IaaS IaaS Mware defined OS&Virt Platform Layer 7 Applications defined Applications Layer 6 SaaS/Apps Cloud based Apps/Software Layer 5 - PaaS Cloud based Platform Layer 4 - IaaS Cloud Infrastructure Layer 3 - Composition Virtual Resources Composition Layer 2 - Virtualisation Resources Abstraction and Virtualisation Layer 1 - Physical HW Platform/Network defined SW&Apps Layer 5 - PaaS PaaS Mware defined Infrastructure and OS&Virt Platform InterCloud Control and Management Plane (ICCMP) Standard Interface Non-standard/proprietary Interface InterCloud Architecture 2012 InterCloud Architecture Framework 19

InterCloud Control and Management Plane (ICCMP) Allows signaling, monitoring, dynamic configuration and synchronisation of the distributed heterogeneous clouds Including management interface from applications to network infrastructure and virtualisation platform Main functional components include Cloud Resource Manager Network Infrastructure Manager Possible ICCMP Interfaces include Signaling Control Monitoring Management Location Message routing InterCloud Architecture 2012 InterCloud Architecture Framework 20

InterCloud Federation Framework (ICFF) Defines set of protocols and mechanisms to ensure heterogeneous clouds integration at service and business level Addresses Identity Federation, federated network access, etc. Main functional components include Service and Trust brokers Intercloud gateway including attribute/namespace translator Attribute/namespace resolver Service Registry Service discovery service Identity provider Trust manager/router Possible ICFF Interfaces Naming, Addressing and Translation (if/as needed) Publishing Discovery Attributes management Trust/key management InterCloud Architecture 2012 InterCloud Architecture Framework 21

InterCloud Operations Framework (ICOF) Defines the main roles and actors RORA model: Resource, Ownership, Role, Action Provides basis for business processes definition, SLA management and access control policy definition Broker and Federation operation Main functional components include Cloud Service, Cloud Operator, Cloud (physical) Resource provider, Cloud Carrier Service Registry Service Broker Possible ICOF Interfaces Provisioning, Deployment, Decommissioning/Termination SLA management and negotiation Services Lifecycle management Services deployment InterCloud Architecture 2012 InterCloud Architecture Framework 22

Main Actors in Cloud/InterCloud Architecture Cloud Service Intercloud (Cloud Service) Operator Cloud Customer Cloud Cloud Carrier Cloud Broker Cloud Auditor Cloud Resource Physical Resource Can also be a fixed resources provider Ownership/Management model needs to be applied to these actors using extended RORA model InterCloud Architecture 2012 InterCloud Architecture Framework 23

Implementation: Architectural Framework for Cloud IaaS Abstracted from the GEYSERS LICL (Logical Infrastructure Composition Layer) architecture Includes Composable Services Architecture (CSA) being developed in GEANT3 JRA3 Incorporates RDF based Network and Infrastructure Description Languages (NDL, NML, INDL) research at SNE/UvA Includes the following main components Infrastructure Services Modeling Framework (ISMF) Composable Services Architecture (CSA) Service Delivery Framework (SDF) Additional components (orthogonal) Cloud Security Infrastructure Control and Management Plane Published as SNE Technical Report (2011) http://staff.science.uva.nl/~demch/worksinprogress/sne2011-techreport-2011-03-clouds-iaasarchitecture-release1.pdf InterCloud Architecture 2012 InterCloud Architecture Framework 24

Logical Infrastructure Composition Layer (LICL) GEYSERS Layered Architecture CSM and ICCMP Service Consumer Service Middleware Layer (SML) Virtual IT Management (VITM) IT-aware Network Control Plane (NCP+) Inter-layer communication Virtual IT node controller Virtual Network node controller Virtual IT resource Virtual Infrastructure Virtual Resource Pool Physical IT resource Virtual Network resource Physical Network resource Physical Infrastructure Developed and implemented in the GEYSERS project http://www.geysers.eu/ InterCloud Architecture 2012 InterCloud Architecture Framework 25

IT infrastructure virtualisation Ctrl & Mngnt (Orchestratn) Composition Logical Rsr Abstract (Cloud) IaaS Provisioning Model Virtual Infrastructure (VI) (operated by VIO1) VRI2 VRI5 Application/Service Layer Service Middleware Layer (SML) VI Comp & Mngnt (Upper LICL) VI/VR Adaptation Layer / Applic A VRI1 VRI3 VIO1 VRI4 VRI6 / Applic B VI Operator Layer AAI/Policy Security VR1 VR2 VR3 VR4 VR5 VR6 SLC Metadada Logical Abstraction Layer VI1 VI2 VI Layer PR Virtualis & Mngnt (Lower LICL) Pi/PR Adaptation Layer Resource Config SLA/ SLM Pi/PR Layer Security Context PIP1 PIP2 PIP3 PIP4 PI Layer Network Infrastructure Provisioning Resource Config Network Control Plane SLA/ SLM Security Context ND-A ND-PIP1 ND-PIP2 ND-PIP3-PIP4 ND-VIP1 ND-VIP2 Network Domain ND-VIO1 Network Infrastructure virtualisation and instantiation ND-B Legend ND* - Network Domain VIR* - VI Resource (deployed) VR Virtual Resource LR Logical Resource PR Physical Resource InterCloud Architecture 2012 InterCloud Architecture Framework 26

IT infrastructure virtualisation Ctrl & Mngnt (Orchestratn) Composition Logical Rsr Abstract (Cloud) IaaS Provisioning Model Virtual Infrastructure (VI) (operated by VIO1) VRI2 VRI5 Application/Service Layer Service Middleware Layer (SML) VI Composition & Management Layer VI/VR Adaptation Layer / Applic A VRI1 VRI3 VIO1 VRI4 VRI6 / Applic B VI Operator Layer AAI/Policy Security VR1 VR2 VR3 VR4 VR5 VR6 SLC Metadada Logical Abstraction Layer VI1 VI2 VI Layer PR Virtualis & Mngnt (Lower LICL) Pi/PR Adaptation Layer Resource Config SLA/ SLM Pi/PR Layer Security Context PIP1 PIP2 PIP3 PIP4 PI Layer Network Infrastructure Provisioning Resource Config Network Control Plane SLA/ SLM Security Context ND-A ND-PIP1 ND-PIP2 ND-PIP3-PIP4 ND-VIP1 ND-VIP2 Network Domain ND-VIO1 Network Infrastructure virtualisation and instantiation ND-B Legend ND* - Network Domain VIR* - VI Resource (deployed) VR Virtual Resource LR Logical Resource PR Physical Resource InterCloud Architecture 2012 InterCloud Architecture Framework 27

IT infrastructure virtualisation Ctrl & Mngnt (Orchestratn) Composition Logical Rsr Abstract (Cloud) IaaS Provisioning Model Virtual Infrastructure (VI) (operated by VIO1) VRI2 VRI5 Application/Service Layer Service Middleware Layer (SML) VI Comp & Mngnt (Upper LICL) VI/VR Adaptation Layer / Applic A VRI1 VRI3 VIO1 VRI4 VRI6 / Applic B VI Operator Layer AAI/Policy Security VR1 VR2 VR3 VR4 VR5 VR6 SLC Metadada Logical Abstraction Layer en PR Virtualisation & Management Pi/PR Adaptation Layer VI1 VI2 VI Layer Resource Config SLA/ SLM Pi/PR Layer Security Context PIP1 PIP2 PIP3 PIP4 PI Layer Network Infrastructure Provisioning Resource Config Network Control Plane SLA/ SLM Security Context ND-A ND-PIP1 ND-PIP2 ND-PIP3-PIP4 ND-VIP1 ND-VIP2 Network Domain ND-VIO1 Network Infrastructure virtualisation and instantiation ND-B Legend ND* - Network Domain VIR* - VI Resource (deployed) VR Virtual Resource LR Logical Resource PR Physical Resource InterCloud Architecture 2012 InterCloud Architecture Framework 28

IT infrastructure virtualisation Ctrl & Mngnt (Orchestratn) Composition Logical Rsr Abstract (Cloud) IaaS Provisioning Model Virtual Infrastructure (VI) (operated by VIO1) VRI2 VRI5 Application/Service Layer Service Middleware Layer (SML) VI Comp & Mngnt (Upper LICL) VI/VR Adaptation Layer / Applic A VRI1 VRI3 VIO1 VRI4 VRI6 / Applic B VI Operator Layer AAI/Policy Security VR1 VR2 VR3 VR4 VR5 VR6 SLC Metadada Logical Abstraction Layer VI1 VI2 VI Layer PR Virtualis & Mngnt (Lower LICL) Pi/PR Adaptation Layer Resource Config SLA/ SLM Pi/PR Layer Security Context PIP1 PIP2 PIP3 PIP4 PI Layer Network Infrastructure Provisioning Resource Config Network Control Plane SLA/ SLM Security Context ND-A ND-PIP1 ND-PIP2 ND-PIP3-PIP4 ND-VIP1 ND-VIP2 Network Domain ND-VIO1 Network Infrastructure virtualisation and instantiation ND-B Legend ND* - Network Domain VIR* - VI Resource (deployed) VR Virtual Resource LR Logical Resource PR Physical Resource InterCloud Architecture 2012 InterCloud Architecture Framework 29

Virtual Infrastructure Composition and Management Main actors involved into provisioning process Physical Infrastructure (PIP) Virtual Infrastructure (VIP) Virtual Infrastructure Operator (VIO) Virtual Infrastructure Composition and Management (VICM) layer includes VICM middleware - defined as CSA Logical Abstraction Layer and the VI/VR Adaptation Layer facing correspondingly lower PIP and upper Application layer. The infrastructure provisioning process is defined by the Service Delivery Framework (SDF) Defines services lifecycle VICM redefines Logical Infrastructure Composition Layer (LICL) proposed by GEYSERS project Basic functionality is implemented as GEMBus/ESB/CSA InterCloud Architecture 2012 InterCloud Architecture Framework 30

Services Lifecycle/Provisioning Workflow Re-Planning/ Re-Composition Recovery/ Migration Service Request/ (SLA Negotiation) Composition/ Reservation (SLA enforcement) Deployment Registr&Synchro (Security Bootstrap) Operation (Monitoring) (SLA enforcement) Decommissioning (Security Recycling) Service Lifecycle Metadata Service (SL MD) Provisiong Session Managnt Main stages/phases Service Request (including SLA negotiation) Composition/Reservation (aka design) Deployment, including Reqistration/Synchronisation Operation (including Monitoring and SLA enforcement) Decommissioning (including Dynamic Security Associations destroying/recycling) Additional stages Re-Planning/Re-Composition should address incremental infrastructure changes Recovery/Migration can use SL- MD to initiate resources resynchronisation but may require recomposition The whole workflow is supported by the Service Lifecycle Metadata Service (SL MD) Provisioning session provides a framework for services context and security context management InterCloud Architecture 2012 InterCloud Architecture Framework Slide_31

Summary and Future works The proposed ICAF is based on existing standards and proposes their integration and extension Includes 4 components: CSM, ICCMP, ICFF, ICOF Addresses cloud services/infrastructure lifecycle management Future research and development primarily focused on inter-layer and inter-cloud interfaces definition Re-factor GEYSERS Infrastructure virtualisation interfaces Testbeds: IaaS (GEYSERS) and PaaS (GEANT3) Standardisation activity in IETF, OGF, TMF Partnership with industry InterCloud Architecture 2012 InterCloud Architecture Framework 32

Questions and Discussion InterCloud Architecture 2012 InterCloud Architecture Framework 33

Additional Information NIST Cloud definition and standardisation activity Useful links on Cloud standardisation and practice InterCloud Architecture 2012 InterCloud Architecture Framework 34

Virtual Infrastructure ISMF Virtual Resource Lifecycle Network Segment Network Segment Topology Pool Network Segment LR2 -> VR VI Deployment {LR0} -> LR2 Planning Composition Reservation PR-LR1 Config& Instantiation LR0 Re-usable (Published) PRs Deployed VRs. Composed LRs Registered PRs Physical Resource Logical Resource Virtual Resource PIP1 PIP2 InterCloud Architecture 2012 InterCloud Architecture Framework 35

ISMF - Relation between PR-LR-VR-VI Virtual Resource lifecycle defines relations between different resource presentations along the provisioning process Physical Resource information is published by PIP to the Registry service serving VICM and VIP Logical Resource representing PR includes also properties that define possible (topological) operations on the PR, such as e.g. partitioning or aggregation. Published LR information presented in the commonly adopted form (using common data or semantic model) is then used by VICM/VIP composition service to create requested infrastructure as combination of (instantiated) Virtual Resources and interconnecting them with the available network infrastructure Network infrastructure can be composed of a few network segments (from the network topology pool) run by different network providers. Composed LRs are deployed as VRI/VI to VIP/VIO and as virtualised/instantiated PR-LR to PIP Resource/service description format considered NDL/NML (Network Description Language / Network Markup Language at OGF) Compatibility with VXDL infrastructure service request format by INRIA InterCloud Architecture 2012 InterCloud Architecture Framework 36

NIST Publications on Cloud Computing [NIST CC] NIST SP 800-145, A NIST definition of cloud computing, [online] Available: http://csrc.nist.gov/publications/nistpubs/800-145/sp800-145.pdf [NIST CCRA] NIST SP 500-292, Cloud Computing Reference Architecture, v1.0. [Online] http://collaborate.nist.gov/twiki-cloud- computing/pub/cloudcomputing/referencearchitecturetaxonomy/nist_sp_500-292_- _090611.pdf [NIST Synopsis] DRAFT NIST SP 800-146, Cloud Computing Synopsis and Recommendations. [online] Available: http://csrc.nist.gov/publications/drafts/800-146/draft- NIST-SP800-146.pdf Draft SP 800-144 Guidelines on Security and Privacy in Public Cloud Computing. [online] Available: http://csrc.nist.gov/publications/nistpubs/800-144/sp800-144.pdf [NIST CC Roadmap] DRAFT NIST SP 800-293, US Government Cloud Computing Technology Roadmap, Volume I, Release 1.0. [online] http://www.nist.gov/itl/cloud/upload/sp_500_293_volumei-2.pdf NIST SP500-291 NIST Cloud Computing Standards Roadmap. [online] Available: http://collaborate.nist.gov/twiki-cloudcomputing/pub/cloudcomputing/standardsroadmap/nist_sp_500-291_jul5a.pdf InterCloud Architecture 2012 InterCloud Architecture Framework 37

NIST Cloud definition Draft SP 800-145 (1) NIST Definition of Cloud missing network provisioning, just limited control over network Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five essential characteristics, three service models, and four deployment models. Cloud Infrastructure as a Service (IaaS). The capability provided to the consumer is to provision processing, storage, networks, and other fundamental computing resources where the consumer is able to deploy and run arbitrary software, which can include operating systems and applications. The consumer does not manage or control the underlying cloud infrastructure but has control over operating systems, storage, deployed applications, and possibly limited control of select networking components (e.g., host firewalls). InterCloud Architecture 2012 InterCloud Architecture Framework 38

NIST Cloud definition Draft SP 800-145 (2) Draft SP 800-145 A NIST Definition of Cloud Computing (published) http://csrc.nist.gov/publications/nistpubs/800-145/sp800-145.pdf Five essential clouds characteristics On-demand self-service Broad network access Resource pooling Rapid elasticity Measured Service 3 service/provisioning models Software as a Service (SaaS) Platform as a Service (PaaS) Infrastructure as a Service (IaaS) 4 deployment models Public cloud Private cloud Community cloud Hybrid cloud InterCloud Architecture 2012 InterCloud Architecture Framework 39

NIST Cloud Computing Reference Architecture (CCRA) 2.0 - Main Roles (1) Cloud Carrier as a role to accommodate telco s interests InterCloud Architecture 2012 InterCloud Architecture Framework 40

NIST Cloud Computing Reference Architecture (CCRA) 2.0 - Functions (2) Add: Service Delivery (Framework) Request&SLA Reservation/ Composition Deployment Operation Decommissioning functions Defined ambiguously Need clear separation between Delivery process, Operation and Control&Mngnt functions Service Orchestration is a Control function InterCloud Architecture 2012 InterCloud Architecture Framework 41

NIST Cloud Computing Reference Architecture (CCRA) 2.0 Consolidated View (3) txt InterCloud Architecture 2012 InterCloud Architecture Framework 42

Dedicated Network Provisioning in Clouds This issue is not addressed in details in any of currently proposed CC architectures It can not be consistent infrastructure QoS without (dedicated) network provisioning Specifically for Optical networks Telco, network providers and telecom equipment vendors are working in this direction GEYSERS project is an example of network+it infrastructure virtualisation InterCloud Architecture 2012 InterCloud Architecture Framework 43

Extending NIST Cloud IaaS definition to support NaaS (in the context of Network Infrastructure provisioning) The suggested extensions to the Cloud IaaS model to meet requirements of the critical enterprise services: Define layered cloud services model that should be suitable for defining main inter-layer and inter-service (functional) interfaces Add topology aware infrastructure view Define resources and services virtualisation as one of generic cloud features (TBD) Include improved network services definition capable of provisioning required QoS and allowing control from user run applications At the business/operational level, the CCRA should be extended to address the following features: Improved definition of the Cloud Carrier role, operational model and interaction with other key actors Extended set of basic roles to reflect typical for telecom operators/providers business relations: Cloud/infrastructure Operator, Customer, and (in place of the currently used consumer role) Other cloud service models PaaS and SaaS should also allow management of QoS and other network related parameters InterCloud Architecture 2012 InterCloud Architecture Framework 44

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback