Cloud ComputingTheory and Practice22 March 2012

Phil Mustaphi, Colin Ashford, Larkland Morley

Cloud ComputingNIST Definition22 March 2012

Phil Mustaphi

NIST Cloud Computing Definition

• NIST Special Publication 800-145 Sep 2011

– http://csrc.nist.gov/publications/nistpubs/800-145/SP800-145.pdf

• NIST defines:– “Cloud computing is an evolving paradigm.”

– 5 Essential Characteristics

– 3 Service Models

– 4 Deployment Models

– Non-prescriptive, non-constraining

Defining Cloud Computing – Essential Characteristics

• 5 Essential Characteristics of the Cloud:

–On demand, self-service

–Broad network access

–Resource pooling

–Rapid elasticity (up and down)

–Measured service (usage and billing)

SPI Cloud Computing Model

• 3 service models for Cloud Computing

– Software as a Service (SaaS)

– Platform as a Service (PaaS)

– Infrastructure as a Service (IaaS)

• Can extend to Anything/Everything as a Service (XaaS)

– E.G. Combine layers of the model: Platform and Infrastructure as a combined service

– Split Infrastructure into Software and Hardware: server, network virtualization - Software Infrastructure as a Service-SIaaS

- Hardware Infrastructure as a Service-HIaaS

Modified Cloud Model

Infrastructure as a Service

Cloud Deployment Models

• Private Cloud– Exclusive use by a single organization, operated and supported on or off

premises• Public Cloud

– Non-exclusive use by many organizations, off premises and offered by a cloud provider

• Community Cloud– Used by several organizations with a shared relationship

(Customers/Suppliers, Intranet/Extranet) • Hybrid Cloud

– Composite of two or more cloud deployment methods (private, public, community)

Implementation Considerations

• Governance

• Business Processes

• Security – (NIST have additional materials for this topic)

• Data Management

• Service Provisioning – Business and Technology

• Service Relationship Management

• In-sourcing from the Cloud

9

Security is the Major Issue

10

General Security Challenges

• Trusting vendor’s security model

• Customer inability to respond to audit findings

• Obtaining support for investigations

• Indirect administrator accountability

• Proprietary implementations can’t be examined

• Loss of physical control

CLOUD STANDARDS

Colin Ashford 22 March 2012

Presentation to insert name here 11

Cloud Standards Interfaces

Presentation to insert name here 12

Resources—Storage, Networking, Hardware

❷

Virtualization—Hypervisor

Resource Control Layer

❶Management

provisioning, monitoring,

security, billing, lifecycle❸

SaaS PaaS IaaS

Users—end-user, administrators, brokers ❹Architectures, frameworks, requirements, use cases

❺Sector-specific agreements

Cloud Standards and Agreements

❶ User interface (end-user, administrator, brokers)– IETF—Cloud Service Broker; OGF—Open Cloud Computing Interface (IaaS); SNIA—Cloud Data Management

Interface; CCIF—unification of cloud APIs.❷ Virtualization interface (storage, network, hardware)

– DMTF—Open Virtualization Format; OGF—Open Grid Services Architecture.❸ Management interface (provisioning, monitoring, security, billing, lifecycle)

– DMTF—Cloud Management Working Group; OpenStack—Compute; OASIS—IDCloud; TM Forum—Cloud Initiative; CSA—security and identity; SNIA—Cloud Data Management Interface: ISO—cloud security controls; itSMF—cloud lifecycle.

❹ Architectures, frameworks, requirements, use cases– ODCA—unified customer vision for data centre; IETF—Cloud Reference Framework; CSCC—drive client

requirements into standards.❺ Sector-specific agreements

– ITU-T Focus Group on Cloud Computing—telecommunications aspects; ATIS Cloud Service Forum—the provision of cloud services by service providers; NIST Cloud Computing Program—adoption of cloud computing in the US government; ARTS—Cloud Computing for Retailers; ETSI—standards requirements (IaaS).

Presentation to insert name here 13

Standards and Industry GroupsARTS—Association for Retail Technology StandardsATIS—Alliance for Telecommunications Industry StandardsCCIF—Cloud Computing Interoperability ForumCSA—Cloud Security AllianceCSCC—Cloud Standards Customer CouncilDMTF—Distributed Management Task ForceETSI—European Telecommunications Standards Institute itSMF—IT Service Management Forum OASIS—Organization for the Advancement of Structured Information StandardsODCA—Open Data Center AllianceOpenStackOGF—Open Grid ForumTM Forum—Telecommunications Management ForumIETF—Internet Engineering Task ForceITU-T—International Telecommunications Union-Telecommunications SectorISO—International Organization for StandardizationNIST—National Institute of Standards and TechnologySNIA—Storage Network Industry Association

Presentation to insert name here 14

Presentation to insert name here 15

Cloud Infrastructure

Cloud InfrastructureLarkland Morley MBCS CITP CEng

Larkland Morley MBCS C.Eng 16

Cloud Infrastructure

Virtualization• Virtualization has become a driving force in providing efficient

cloud infrastructure– This means virtualization of both the compute and

networking elements• Components

– Compute- Hypervisors – Vmware, Citrix, Microsoft and OpenStack- Server OS – LINUX, Windows and others- Virtual Machines (VM) runs on hypervisors

– Networking- OpenFlow – New standard for networking- Tunneling Protocols – GRE, NVGRE, VXLAN and

CAPWAP

Larkland Morley MBCS C.Eng 17

Cloud Infrastructure

Cloud Infrastructure Considerations• Connectivity

– Provide basic connections between the cloud provider and client locations– Reliability – Application Services are offsite, needs to ensure continuity despite link failures (SLA)– Performance – Despite the location of cloud services, clients want same level of service as when

services were localized– Trends – Metro Ethernet and 4G LTE will improve connectivity options

• Management– Provisioning – Creating and Deleting Services at all layers– Monitoring – Keep track of resource usage and availability – Statistics– Migration – The ability to move services between locations and physical infrastructure (use case –

NTT Japan)– Standards – This is critical requirement for long term cloud success – The need for interoperability

between vendors

Larkland Morley MBCS C.Eng 18

Cloud Infrastructure

Cloud Infrastructure Example (taken from Nicira.com)

Larkland Morley MBCS C.Eng 19

Cloud Infrastructure

Cloud Infrastructure Example – Glossary

• Virtual Networks (1) – Common set of network components defined by common rules• Tunnel Mesh (2) – Tunneling Protocols used to create virtual network boundaries• Network Services (3) – These are specific network appliances that operates within a given

Virtual network – For example a firewall appliance• Gateway (4) – This is a device that sits at the boundary of the virtualized network and a

traditional network.• Physical Fabric (5) – The basic network infrastructure with standard connectivity to enable

virtualization• Controller Cluster (6) – This is the Management system that provisions virtual networks and

network services

Larkland Morley MBCS C.Eng 20

Cloud Infrastructure

Resources• OpenFlow – New standard to configuring network flows - openflow.org• OpenStack – Open source Hypervisor and CMS – openstack.org• Compute Virtualization - vmware.com and citrix.com (Microsoft as well)• Network Virtualization – nicira.com, Cisco.com, hp.com, juniper.net• Network Storage – netapp.com, emc.com, ibm.com etc

• Direct Questions– Larkland.morley@gmail.com

Thank You.

Questions / Answers . . Discussion . . .