Cloud up to business processes



Similar documents
Attacking the roadblocks preventing aggressive adoption of Cloud Standards:

ISO/IEC JTC 1 SC 38 Cloud Works & Issues

Interoperability & Portability for Cloud Computing: A Guide.

Cloud Computing ISO Security and Privacy Standards: 27017, 27018, Mike Edwards (Chair UK Cloud Standards Committee)

Standardised SLAs: how far can we go? DIHC, Euro-Par 2013, Aachan John Kennedy Intel Labs Europe

Cloud Computing Actionable Standards An Overview of Cloud Specifications

Agenda. Background and cloud portability and interoperability concepts Distributed computing reference model. development Conclusions

Cloud Standards. Arlindo Dias IT Architect IBM Global Technology Services CLOSER 2102

The Standardisation Environment for Cloud Computing

Cloud Computing Standards: Overview and ITU-T positioning

Federated Service Oriented Architecture for Effects-Based Operations

Securing The Cloud. Russ Fellows, Managing Partner - Evaluator Group Inc.

Cloud Standards - A Telco Perspective

Standards Acceleration to Jumpstart Adoption of Cloud Computing (SAJACC)

Web Services Strategy

Cloud Data Management Interface Extension: CIMI

Interoperable Cloud Storage with the CDMI Standard

Mobile Identity and Edge Security Forum Sentry Security Gateway. Jason Macy CTO, Forum Systems

Interoperability and Portability for Cloud Computing: A Guide

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY

API Management: Powered by SOA Software Dedicated Cloud

TECHNOLOGY TRANSFER PRESENTS MAX DOLGICER IT S ALL ABOUT CLOUD CONCEPTS, STRATEGIES, ARCHITECTURES, PLAYERS, AND TECHNOLOGIES

September 2009 Cloud Storage for Cloud Computing

Preparation Guide Content. EXIN Cloud. 1. Overview 4 2. Exam Requirements 6 3. List of Basic Concepts 9 4. Exam Literature 13. Computing Foundation

WEB SERVICES SECURITY

A Service Oriented Security Reference Architecture

Virtualized, Converged Data Centers and Cloud Service Providers

ITU- T Focus Group Cloud Compu2ng

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab

Latest in Cloud Computing Standards. Eric A. Hibbard, CISSP, ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

It s All About Cloud Key Concepts, Players, Platforms And Technologies

SPML (Service Provisioning Markup Language) and the Importance of it within the Security Infrastructure Framework for ebusiness

Escaping Vendor Lock-in with TOSCA, an Emerging Cloud Standard for Portability

Cloud Infrastructure Planning. Chapter Six

Oracle Application Server 10g Web Services Frequently Asked Questions Oct, 2006

Cloud Security & Standardization. Markku Siltanen Tietoturvakonsultti CISA, CGEIT, CRISC

Standards for Identity & Authentication. Catherine J. Tilton 17 September 2014

Cloud Standardization, Compliance and Certification. Class 2012 event 25.rd of October 2012 Dalibor Baskovc, CEO Zavod e-oblak

The Role of Identity Enabled Web Services in Cloud Computing

Preparation Guide. EXIN Cloud Computing Foundation

Data Security and Privacy Protection Issues in Cloud Computing

Digital Signature Web Service Interface

An Introduction to SCIM: System for Cross-Domain Identity Management

Run-time Service Oriented Architecture (SOA) V 0.1

Service Oriented Architecture (SOA) Architecture, Governance, Standards and Technologies

TrustedX: eidas Platform

Authentication and Authorization Systems in Cloud Environments

SECURE CLOUD COMPUTING

Web Services Advanced Topics

Mobile Payment Ecosystem ITI

Virtual Desktop Infrastructure (VDI)

Cloud Security. Let s Open the Box. Abu Shohel Ahmed ahmed.shohel@ericsson.com NomadicLab, Ericsson Research

This project was supported by Grant No DB-BX-K105 awarded by the Bureau of Justice, Office of Justice Programs in collaboration with the U.S.

NIST s Guide to Secure Web Services

CLOUD COMPUTING OVERVIEW OF CLOUD COMPUTING PRINCIPLES AND TECHNOLOGIES

2 Transport-level and Message-level Security

Standard Interfaces for Open Source Infrastructure as a Service Platforms

DMTF TELCO WORKING GROUP ON CLOUD MANAGEMENT AND VIRTUAL NETWORK. Alex Zhdankin, Cisco Systems

Core Feature Comparison between. XML / SOA Gateways. and. Web Application Firewalls. Jason Macy jmacy@forumsys.com CTO, Forum Systems

Open Source Toolchains for Cloud and OVF Management

Outsourcing security in service ecosystems with evolving security deployment as a service

Service-oriented architecture in e-commerce applications

This Working Paper provides an introduction to the web services security standards.

Java Security Web Services Security (Overview) Lecture 9

Leveraging Service Oriented Architecture (SOA) to integrate Oracle Applications with SalesForce.com

White Paper Delivering Web Services Security: The Entrust Secure Transaction Platform

STUDY ON IMPROVING WEB SECURITY USING SAML TOKEN

Transcription:

Chris Francis IBM Technical Relations and Regulatory Affairs Cloud up to business processes Chris Francis

Existing state of play Conventional solutions Software as a Service Platform as a Service Infrastructure as a Service Technology orientated User Orientated Infrastructure

Existing state of play Cloud Specific reference projects and standards (indicative) Software as a Service Platform as a Service Apache Nuvem CSA Cloud Trust Protocol Oasis Open Group Cloud Reference Architecture Identity in the cloud Infrastructure as a Service DMTF OVF Apache Libcloud Openstack Object Storage DMTF Cloud Auditing Federation WG SNIA CDMI CSA Cloud controls Matrix ISO/IEC JTC1 WG Data Privacy/ Protection NWIP CSA Cloud Audit Openstack Image Service Openstack Compute Apache DelatCloud OCCI Infrastructure DMTF Cloud Management

Existing state of play Cloud Relevant standards (indicative) Software as a Service Platform as a Service Infrastructure as a Service IETF OAuth OASIS SAML Open ID Authentication ISO 27001 W3C XML Digital DMTF WS- signature ISO 27002 Management IETF X.509 W3C XML Certificates and Encryption PKI OASIS KMIP OASIS WS- Reliable Messaging ISO 19770-3 OASIS XACML OASIS WS- Security OASIS WS-I Web Services Profile REST OGF GridFTP W3C SOAP W3C WSDL W3C WS- Addressing IETF TCP/IP OASIS WS- Security Profiles IETF HTTP/HTTPS IETF FTP W3C WS-Transfer JSON Data & Document Standards

Existing state of play key issues Identify priorities for resources Limit replicating work Identify and limit overlap Encourage unification and liaison Encourage appropriate representation and key requirements into existing efforts especially public sector User input essential especially higher up the stack

Cloud Computing Reference Architecture (submitted to Open Group) Cloud Service Consumer Cloud Service Provider Cloud Service Creator Cloud Services Common Cloud Management Platform (CCMP) Cloud Service Integration Tools Existing & 3 rd party services, Partner Ecosystems Business-Processas-a-Service Sof tware-as-a-service Platf orm-as-a-service Operational Support Services (OSS) Business Support Services (BSS) Service Creation Tools Consumer In-house IT Inf rastructure-as-a-service Inf rastructure Security, Resiliency, Performance & Consumability Governance

Up to Business Process Conventional solutions Software as a Service Platform as a Service Infrastructure as a Service Business + service components and business logic = Business Process as a Service Infrastructure

Business Process as a Service key issues No longer cloud specific for Policy Regulation Certification Highly Sector or cluster orientated Normally common criteria or non-competitive focus Highly relevant to public sector Club Clouds clusters of users using either the same cloud or using clouds built to common specifications Unlocking scale efficiencies on a sector wide basis CUSTOMER LEADERSHIP CRITICAL

Cloud Standards Customer Council http://www.cloud-council.org There is a lack of a customer driven prioritization and focus within the cloud standards development process The Cloud Standards Customer Council will: Drive customer requirements into the development process to gain acceptance by the Global 2000 Deliver customer-focused content in the form of best practices, patterns, case studies, use cases, and standards roadmaps. Influence the standards development process for new cloud standards. Facilitate the exchange of real-world stories, practices, lessons and insights.

Principles for an Open Cloud Open Cloud Manifesto: A statement of principles for openness in cloud computing Existing standards should be reused, All standards efforts should be based on customer requirements, Standards development efforts should stay coordinated The Goal is to raise awareness and educate customers on dangers of potential vendor lock-in associated with proprietary cloud technologies. A catalyst for standards organization coordination. More than 400 businesses are supporting. The social networking Community consists of over 1800 Individuals. Become a supporter at opencloudmanifesto.org IBM Confidential

Barriers to club cloud Avoid market fragmentation Existing standards, regulations and certifications need to be cloud ready not cloud specific. International basis for standards, regulations and certifications is key Public sector input into technical requirement and common user criteria Single market in services for cross border provision Communications networks and services E-commerce Data protection Privacy

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information