INFRASTRUCTURE ARCHITECTURE BLUEPRINT MESYUARAT PENGURUS-PENGURUS ICT SEKTOR AWAM BIL.3 TAHUN 2010 26 Oktober 2010 BERSAMA MELAKSANA TRANSFORMASI
Table of Content Introduction Current Environment Overview Global Leading Practices To-Be Strategies Infrastructure Architecture Blueprint To-Be Governance Model ICT Infrastructure Conclusion 2
Introduction ICT Infrastructure Business Drivers Enhancing Service Delivery Good Governance Information Sharing IT Resiliency IT Sustainability Cost Effectiveness of ICT
Current Environment Overview The current policy has allowed for and resulted in : Disparate network services & connectivity Disparate data centre & disaster recovery centre infrastructure Non-standardised end-user computing infrastructure Requirement to develop and retain skilled in-house personnel High cost of maintenance Inefficient public sector infrastructure spending Inefficiencies in ICT infrastructure operations Non optimised resource utilisation 4
Infrastructure Architecture Global Leading Practices United Kingdom Singapore Taiwan South Korea Public Sector Network (PSN) Cloud computing (G-Cloud) Data Centre consolidation Common desktop designs Greening Government ICT strategy Broadband Infrastructure for Government (BIG) Government Access Infrastructure (GATE) Government Cloud Government PKI & Government Root CA Consolidation of network and Data Centre infrastructure through the National Computing and Information Administration (NCIA) Information Security initiatives by Korea Information Security Agency (KISA) Canada Japan Secure Channel United States Cloud computing (Kasumigaseki cloud) Kasumigaseki WAN Green data centres Federal Cloud Computing Initiative Data Centre consolidation Federal PKI Australia Data Centre Strategy 5
Infrastructure Architecture Global Leading Practices Categories of Initiatives Cloud Computing Kasumigaseki Cloud ( Japan ) Federal Cloud Computing Initiative (USA) G Cloud (UK) Government Cloud (Taiwan) Data Centre Federal Data Centre Consolidation (USA) Data Centre Rationalisation (UK) Data Centre Strategy (Australia) Green Data Centers (Japan) NCIRA (Korea) Network Kasumigaseki WAN (Japan) Government Access Infrastructure (Singapore) Security Secure Channel (Canada) Government Root CA (Taiwan) 6
Infrastructure Architecture Global Leading Practices Key Highlights Governments are moving towards consolidated and common infrastructure. Green IT practices are increasingly being put as an agenda in managing governments ICT infrastructure. Whole-of-government approach in service delivery are increasingly being adopted, requiring government agencies to inter-connect their application systems. Governments are increasingly adopting cloud computing infrastructure to provide shared services for multiple agencies. Government ICT security are moving towards centralised model for increased data confidentiality and integrity. 7
To Be Strategies Overview Objective To increase public sector productivity, add value and improve efficiencies through a whole-ofgovernment approach on ICT infrastructure. Areas of Concern Public Sector ICT infrastructures are currently not fully optimised due to redundancies and inefficiencies resulting from disparate ICT Infrastructure. Strategy Consolidation of Public Sector Network Consolidation of Data Centres and Disaster Recovery Centres Establishment of Public Sector Cloud Computing Infrastructure Standardise End User Computing Infrastructure Development of Common Security Infrastructure Deployment of Mobile Computing Solutions Increasing usage of Open Source 8
Strategy 1: Consolidation of Public Sector Network Key Concepts To support policy purpose specified in RMK10 - Consolidation of WAN. Integrated whole-of-government network connecting federal, state and local government. Agencies may access government applications from any government office locations. Agencies may access all government applications from a single network access. Foundation to enable infrastructure consolidation & support future technology infrastructure (e.g. cloud computing). Key Benefits Reduced cost of procurement and services. Increased responsiveness to organisational change. Enhanced service standards. Greater assurance of interoperability and security. New opportunities for more efficient information sharing. Implementation Approach Impact Assessment Integration Simulation Network migration 9
Strategy 2: Consolidation of Data Centres and Disaster Recovery Centres Conceptual Model Data Centre Consolidation This strategy to support policy purpose specified in RMK10 - Consolidation of DC and DRC. Consolidation of data centres across the states accordingly under different regions for Federal agencies (e.g. Northern, Southern, Central, East Coast, Sabah and Sarawak). Consolidation by states for State Government Local Authorities data centres may be consolidated in either Regional or State data centres. The number of consolidated data centres will depend on the quantity of agency servers and the capability of the data centres. Key Benefits Substantial savings in operating cost and energy consumption. Improved service standards. Encourage sharing of techniques, expertise and innovation among agencies sharing a data centre. Financial investment can be focused on operating high-end data centres. Implementation Approach Target Data Centre Selection Impact Assessment Server Relocation 10
Strategy 3: Establishment of Public Sector Cloud Computing Infrastructure Conceptual Model Public Sector Cloud Computing Infrastructure Development of Private Cloud for the public sector for total control and security. Enables agencies to select and host ICT services from a secure, scalable and costeffective shared environment. Agencies will be able to obtain access to various cloud services through web portal which can be provided on-demand with rapid provisioning. Agencies procurement process will be faster. Key Benefits Substantial savings due to sharing of common services, applications and infrastructure. Enable services to be provided on demand. Enable faster provisioning of resources. Minimise redundancies Implementation Approach Consolidation & Virtualisation Automation Service Operationalisation 11
Strategy 3: Establishment of Public Sector Cloud Computing Infrastructure Proposed Government Cloud Computing Framework EG Apps. OSCC Apps. Virtual Desktop Gov2.0 tools Office Automation Website Hosting Knowledge Management Storage Developer Tools Server Unified Communication Testing Tools Virtual Machines Network Database 12
Strategy 4: Standardise End-User Computing Infrastructure Key Concepts Baseline requirement of ICT infrastructure for all public sector agencies. Each agency places of work should have access to PCs and printers, official email, Internet, office application and end-point security (e.g. antivirus & personal firewall). Common desktop platform and centralised ICT procurement. Standard hardware & software maintenance policy framework. Integration of Green ICT practices. Key Benefits Agencies infrastructure will be at par with latest technology standards and best practices. Reduced procurement costs through economies of scale. Increased efficiency in deployment and maintenance. Greater assurance of up to date end-point security. Implementation Approach Develop Baseline Requirements Policy Development EUC Infrastructure Standardisation 13
Strategy 5: Development of Common Security Infrastructure Key Concepts Centralised Security Management A centralised log and security event management infrastructure. Enabling the automation of log aggregation, correlation, and intelligent analysis centrally. Enables public sector to recognize, investigate, and respond to incidents swiftly. Federated Identity & Access Management Centralised provisioning services, directories, multi-factor authentication identity management. Allows application sharing across different technologies for directory services, security and authentication. Key Benefits Strengthens the overall public sector ICT security. Cost effectiveness in ICT security infrastructure procurement & operations. Centralised reporting for compliance and eliminating vulnerabilities. Facilitates swift and quicker security response. Implementation Approach Develop Centralised Platform Integration Operation 14
Strategy 6: Deployment of Mobile Computing Solutions Key Concepts Development of backend infrastructure to support mobile computing technologies. Development of mobile applications to enhance government service delivery. Enabling business/ citizens as well as government employees to access and use government services and applications anytime, anywhere and anyhow. Key Benefits Access to government applications and services anytime, anywhere and anyhow. Increase delivery of services through various service delivery channels. Increase operational efficiency and productivity. Reduce operational costs. Implementation Approach Develop Backend Infrastructure Develop Mobile Applications Operation 15
Strategy 7: Increasing Usage of Open Source Key Concepts Adopt usage of open source software wherever it gives the best value for money in delivering public services. Increasing public sector IT personnel s exposure to open source standards. Active and fair consideration of open source solutions, alongside proprietary ones, when making procurement decisions. Government uses open standards in its procurement specifications and requires all future solutions to comply with open standards. Integration of OSS with the government cloud. Key Benefits Cost savings delivered via the reuse of applications and solutions. Avoidance to being locked in to costly proprietary software. Increased potential for further development and customization of IT solutions within the public sector. Minimal licensing and development costs. Maximized accessibility to OSS solutions across agencies. Implementation Approach Identify OSS Solutions Strategy Development OSS Standardisation 16
ICT Infrastructure Roadmap 0-1 years Pilot Projects Establish pilot project for Public Sector Network, Cloud Computing Infrastructure, End- User Computing Standardisation and Mobile Computing deployment. 1-2 years Public Sector ICT Infrastructure Integration Consolidation of Data Centers within Putrajaya & Klang Valley areas (Federal agencies). Development of Federated Identity and Access Management to selected agencies. 2-5 years Public Sector ICT Infrastructure Optimisation Complete consolidation of the Public Sector Network. Expansion of cloud computing services. Consolidation of regional Data Centers. Provisioning of Infrastructure as a Service. Provisioning of Platform as a Service. Provisioning of Software as a Service. 17
Service Level Agreement ICT Infrastructure Architecture To-Be Governance Structure ICT Infrastructure Governance Model Centralised Management & Operation Entity coordinates procurement services from service providers & provisioning of services to agencies. Provider A Provider B Provider C Infrastructure Standards Agreement Centralised Management & Operation Entiity Ministry Agency Agency Agency State PBT Infrastructure Provisioning Agreement Infrastructure Procurement Agreement Standardised procurement and service level agreements across public sector. Centralised budget for public sector infrastructure provisioning with chargeback mechanism to agencies. Centralised monitoring of service provision including service levels & infrastructure operations. 18
Conclusion This blueprint would assist all agencies in planning their ICT programs in line with the 7 infrastructure strategies recommended which are network; data centre and DRC; cloud computing, end user computing, common security, mobile computing and usage of open source. 19