Cloud Computing Standards: Overview and ITU-T positioning



Similar documents
Cloud Computing Standards: Overview and first achievements in ITU-T SG13.

ITU- T Focus Group Cloud Compu2ng

Cloud Standards - A Telco Perspective

Attacking the roadblocks preventing aggressive adoption of Cloud Standards:

What Cloud computing means in real life

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab

Copyright 2010 NTT DATA AgileNet L.L.C. 12/06/2010 NTT DATA Agilenet L.L.C. Kenji Motohashi

White Paper on CLOUD COMPUTING

Lifting the Fog Around Cloud Computing. Eric A. Hibbard, CISSP-ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

ITU-T. FG Cloud TR Version 1.0 (02/2012) Part 1: Introduction to the cloud ecosystem: definitions, taxonomies, use cases and highlevel

The standards landscape in cloud

ITU-T. FG Cloud TR Version 1.0 (02/2012) Part 7: Cloud computing benefits from telecommunication and ICT perspectives

Cloud Perspectives. Steven Woodward CFPS, CSQA

Security Issues in Cloud Computing

Title: Interim Study Period Report on Metadata for the Cloud Computing

Public Cloud Workshop Offerings

Security Threats in Cloud Computing Environments 1

Latest in Cloud Computing Standards. Eric A. Hibbard, CISSP, ISSAP, ISSEP, ISSMP, CISA CTO Security & Privacy Hitachi Data systems

Security in the Green Cloud

Cloud Computing Security. Belmont Chia Data Center Solutions Architect

NIST Cloud Computing Reference Architecture

A Strawman Model. NIST Cloud Computing Reference Architecture and Taxonomy Working Group. January 3, 2011

Enterprise Cloud Computing Standards, Innovation & Shifts

Standardised SLAs: how far can we go? DIHC, Euro-Par 2013, Aachan John Kennedy Intel Labs Europe

ISO/IEC JTC 1 SC 38 Cloud Works & Issues

ITU-T. FG Cloud TR Version 1.0 (02/2012) Part 2: Functional requirements and reference architecture. Focus Group on Cloud Computing Technical Report

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY. Eric A. Hibbard, CISSP, CISA Hitachi Data Systems

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

How To Understand The Concept Of A Modern Telecom

Cloud Security & Standardization. Markku Siltanen Tietoturvakonsultti CISA, CGEIT, CRISC

The Magical Cloud. Lennart Franked. Department for Information and Communicationsystems (ICS), Mid Sweden University, Sundsvall.

Interoperable Clouds

Cloud Security Alliance and Standards. Jim Reavis Executive Director March 2012

NETWORK ACCESS CONTROL AND CLOUD SECURITY. Tran Song Dat Phuc SeoulTech 2015

AEIJST - June Vol 3 - Issue 6 ISSN Cloud Broker. * Prasanna Kumar ** Shalini N M *** Sowmya R **** V Ashalatha

cloud computing by Orange séminaire Aristote 17/12/2009

Cloud Security Development and Standardization

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY

SECURITY MODELS FOR CLOUD Kurtis E. Minder, CISSP

Securing The Cloud. Foundational Best Practices For Securing Cloud Computing. Scott Clark. Insert presenter logo here on slide master

Lecture 02b Cloud Computing II

Cloud Computing: Opportunities, Challenges, and Solutions. Jungwoo Ryoo, Ph.D., CISSP, CISA The Pennsylvania State University

Consumption IT. Michael Shepherd Business Development Manager. Cisco Public Sector May 1 st 2014

10/25/2012 BY VORAPOJ LOOKMAIPUN CISSP, CISA, CISM, CRISC, CEH Agenda. Security Cases What is Cloud? Road Map Security Concerns

ISO/IEC JTC 1/SC 38 N 282

Assessing Risks in the Cloud

Perspectives on Cloud Computing and Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

Securing and Auditing Cloud Computing. Jason Alexander Chief Information Security Officer

Key Considerations of Regulatory Compliance in the Public Cloud

Cloud Computing Actionable Standards An Overview of Cloud Specifications

Open Source Is the Key to Cloud Computing

A HYPE-FREE STROLL THROUGH CLOUD STORAGE SECURITY

Hamid Khafagy Executive IT Architect

Improving IT Service Management Architecture in Cloud Environment on Top of Current Frameworks

Interoperability & Portability for Cloud Computing: A Guide.

Accelerating Cloud adoption with Security Level Agreements automation, monitoring and industry standards compliance

How To Get A Better Price For Your Phone In Orange (European)

NIST Cloud Computing Reference Architecture & Taxonomy Working Group

Session 4 Cloud computing for future ICT Knowledge platforms

INTRODUCTION TO CLOUD COMPUTING CEN483 PARALLEL AND DISTRIBUTED SYSTEMS

Navigating Cloud Standards

Validation of a Cloud-Based ERP system, in practice. Regulatory Affairs Conference Raleigh. 8Th September 2014

A Secure System Development Framework for SaaS Applications in Cloud Computing

Public Sector Cloud Services - The Telecom Perspective

6 Cloud computing overview

The Safe Harbor. 1 Copyright 2013, Oracle and/or its affiliates. All rights reserved.

Cloud Essentials for Architects using OpenStack

M2M/IoT, Cloud, Big Data and Analytics: Market Dynamics and Opportunities

CLOUD COMPUTING OVERVIEW OF CLOUD COMPUTING PRINCIPLES AND TECHNOLOGIES

Professional Cloud Solutions and Service Practices

How To Build A Cloud Platform

Defining Generic Architecture for Cloud Infrastructure as a Service Model

Cloud Security. Peter Jopling IBM UK Ltd Software Group Hursley Labs. peterjopling IBM Corporation

Cloud Trends & Security Challenges

CHAPTER 8 CLOUD COMPUTING

Cloud Computing in the Enterprise An Overview. For INF 5890 IT & Management Ben Eaton 24/04/2013

ASETiC and PaaS Taxonomy Overview

EXIN Cloud Computing Foundation

How To Understand Cloud Computing

Securing Data While Leveraging Virtualized and Cloud Storage

Global Efforts to Secure Cloud Computing

Cloud Computing Architecture: A Survey

Clinical Trials in the Cloud: A New Paradigm?

Why Cloud Standards Matter

Emerging Approaches in a Cloud-Connected Enterprise: Containers and Microservices

Cloud Security Standards. Aziza Al Rashdi Director, Cyber Security Professional Services Oman National CERT Information Technology Authority

A study of Cloud Computing Ecosystem

CLOUD COMPUTING DEMYSTIFIED

Cloud Computing and Standards

International Journal of Innovative Technology & Adaptive Management (IJITAM) ISSN: , Volume-1, Issue-5, February 2014

CLOUD COMPUTING SECURITY ISSUES

Cloud Computing in the Enterprise: A Question of Control.. And who has it. INF5210 Ben Eaton 12/11/2013

Federated Community Cloud Team Report

Cloud Computing and Government Services August 2013 Serdar Yümlü SAMPAŞ Information & Communication Systems

AHLA. JJ. Keeping Your Cloud Services Provider from Raining on Your Parade. Jean Hess Manager HORNE LLP Ridgeland, MS

LEGAL ISSUES IN CLOUD COMPUTING

Logical Data Models for Cloud Computing Architectures

Transcription:

ITU Workshop on Cloud Computing (Tunis, Tunisia, 18-19 June 2012) Cloud Computing Standards: Overview and ITU-T positioning Dr France Telecom, Orange Labs Networks & Carriers / R&D Chairman ITU-T Working Party 6 on Cloud Computing, SG 13 Future Networks Core Network & Cloud Standards Manager Tunis June 2012 International Telecommunication Union 1

Outline 1. Understanding Cloud Computing 2. France Telecom Orange Business Services Portfolio 3. FG Cloud Computing: 1. Cloud Standard Cloud definitions Ecosystem and interoperability 2. Cloud Functional Reference Architecture 3. Cloud Security & Privacy 4. Cloud Standards and ITU-T positioning 2

1 Understanding Cloud Computing 3

A simple way to understand Cloud Access a Web based Application from Any connected devices using: 1. Web Browser 2. Internet /VPN network connectivity 3. Secure ID & Payment 2 Infrastructure Compute & Storage Partner Application 1 3 Cloud Provider Cloud Platform Software and Real-time Communication 4

From Internet Service Provider ISP to Application Services Provider ASP and Cloud Computing 1980,1990 2000 ISP-ASP 2008 Cloud Dedicated IT Telecom Services IT & Telecom Services Services IT and Web Services Virtual Machine Web based configurable Cloud Rapid On demand Provisioning Computing Ubiquitous Telecom Network Private Network Leased Line Internet VPN Internet ISP VPN Any Time Any Where Any Device 5 France Telecom Group restricted

2 An example of Telecom Operator view 6

France Telecom /Orange Business Services Cloud services: a complete catalogue to simplify access to solutions delivered as a service with security and end-to-end SLAs 5-Security «as a Service» 4-Software «as a Service» Security 1-Infrastructure «as a Service» SLA End to end QoS 2-«Cloud-ready Networking» 3-Com & Collaboration Real Time «as a Service» end-to-end service with businessrelated SLAs and security across network and IT

3 ITU-T FG Cloud Computing Tunis, June 2012, 8

Focus Group Cloud Computing (June 2010-Dec 2011) Focus Group on Cloud Computing has completed its study into cloud computing s and has released its Technical Report in Seven Parts: 1) Introduction to the cloud ecosystem: definitions, taxonomies, use cases and high-level requirements 2) Functional requirements and reference architecture 3) Requirements and framework architecture of cloud infrastructure 4) Cloud resource management gap analysis 5) Cloud security 6) Overview of SDOs involved in cloud computing 7) Cloud computing benefits from telecommunication and ICT perspectives http://www.itu.int/en/itu-t/focusgroups/cloud/documents/fg-coud-technical-report.zip Tunis, June 2012, 9

Cloud Definitions, Ecosystem and Interoperability 10

ITU-T FG Cloud Definition ITU-T FG Cloud Computing (2011) Cloud Services: Products and solutions that are delivered and consumed on demand (utilizing IT Resources & capabilities of Platform) at any time, through any access network (fixed & mobile) using any connected devices and cloud computing technologies. 5 Cloud service categories (SaaS, CaaS, PaaS, IaaS, NaaS) Cloud Computing*: an emerging IT development, deployment and delivery model, enabling service users to have ubiquitous, convenient and on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services), that can be rapidly provisioned and released with minimal management effort or service-provider interaction. Cloud computing enables cloud services. * Partially based on NIST cloud definition 11

Cloud Ecosystem Three actors playing different roles: 1. Cloud Service Provider CSP: XaaS Provider, Inter-Cloud 2. Cloud Service User CSU: Consumer, Enterprise 3. Cloud Service Partner CSN: Application Developer, Integrator Cloud Service Partner Cloud Service Partner Cloud Service Partner Cloud Service Provider Inter-cloud Cloud Service Provider Inter-cloud Cloud Service Provider Inter-cloud SaaS CaaS PaaS IaaS NaaS SaaS CaaS PaaS IaaS NaaS Cloud Service User Cloud Service User International Telecommunication Union

Cloud interoperability: use cases 1. Service cooperation between Cloud providers 2. Cloud interoperability between private & public clouds 3. Mutual backup and recovery from a disaster Cloud Service User Cloud Service User Cloud Service Provider Inter-cloud Cloud Service Provider Inter-cloud Cloud Service Provider Inter-cloud SaaS CaaS PaaS IaaS NaaS SaaS CaaS PaaS IaaS NaaS Cloud Service Provider Inter-cloud XaaS IaaS NaaS Private Cloud Inter-cloud XaaS XaaS

Cloud Functional Reference Architecture 14

Cloud Functional Architecture First Cloud ICT architecture User Layer End-User Function Partner Function Administrator Function Cross- Layer Functions Access Layer Endpoint Function Inter Cloud Function Operational Management Function Services Layer NaaS IaaS PaaS SaaS / CaaS Service Orchestration Cloud Performance Function Security & Privacy Function Resource Orchestration Resources & Network Layer Pooling & Virtualization Physical Resources VN VS VM Intra Cloud Network Storage Software & Platform Assets Computing Core Transport Network Virtual Path Virtual Circuit Inter Cloud Network 15

Main Cloud Layers and functions Access layer: Endpoint : controls cloud traffic and improves cloud service delivery Inter Cloud: addresses delivering any cloud service across two or more CSPs Services layer: Service Orchestration: is the process of deploying and managing Cloud Services Cloud Services: provides instances (and composition) of CaaS, SaaS, PaaS, IaaS & NaaS Resources & Network Layer: Resource orchestration Pooling Virtualization: compute, storage, network, software & platform assets Physical resources 16

Cloud Security & Privacy Tunis, June 2012, 17

Cloud Security & data Privacy Threats for cloud users: Lack of security Information (data location, backup system, disaster recovery ) Data loss and leakage (encryption, authentication key ) Loss of Account/Service management ID (Attack phishing, fraud..) Requirements For cloud Services provider Method to trust cloud providers' security level shall be provided Confidentiality/integrity of data against loss or leakage shall be required Proper account/identity management against account/service hijacking shall be provided. Data Portability, The capability to change Cloud Service Provider shall be provided Tunis, June 2012,

4 ITU-T Positioning in cloud Standards Tunis, June 2012, 19

Organizations active in cloud standards Management API, Inter-cloud and security DMTF Distributed Management Task Force SNIA - Storage Networking Industry Association OGF Open Grid Forum GICTF - Global Inter-Cloud Technology Forum TM Forum TeleManagement Forum OASIS Cloud Security Alliance Definition, Ecosystem, Network, Access & Architectures APIs for managing cloud resources API for Cloud Storage Inter-Cloud Cloud Services E2E SLA Identity in the Cloud Security aspects ISO IEC-JTC 1; SC 38: Distributed Application Platforms and Services (SOA, WS, Cloud) ITU-T - Cloud Computing Focus Group, SG 13 and SG 17 NIST - National Institute of Standards and Technology W3C activities on HTML-5 (offline mode, multi-device ) IETF - Network & Real Time Communication protocols Portability, Inter-Cloud, Marketplace, Private cloud Tunis, June 2012,

Creation of new Cloud WP-6 in SG 13 Future Networks (Feb 2012) Question 26/13 :Cloud computing ecosystem, inter-cloud and general requirements" Question 27/13 :Cloud functional architecture, infrastructure and networking Question 28/13 :Cloud computing resource management and virtualization New Recommendations: (Next meeting October 2012) Definition and vocabulary Ecosystem, use cases and general requirements Reference Architecture of cloud computing Infrastructure functional requirements Resource Management, DaaS and InterCloud A Collaborative Team is under consideration between ITU-T SG13 and ISO IEC SC 38 for definition and architecture Tunis, June 2012, 21

ITU-T Positioning in cloud standards A JCA-Cloud (Joint Coordination Activity) is created to coordinate the ITU-T cloud computing work with Other standardization Organizations W3C, E-1 IETF Cloud Portal DMTF, SNIA E-2 Inter Cloud GICTF, E-3 ITU-T, IEEE Virtualization Resources & Network Cloud Services ATIS PaaS IaaS NaaS SaaS / CaaS DMTF I-2 SNIA I-3 IETF, I-4 ITU-T Compute Storage Networks TMF DMTF OGF CSA ITU-T I-1 BSS/OSS CRM & Billing Security Service provisioning Monitoring & system management General Requirements & Enabling Technologies NIST, OMG, ISO Tunis, June 2012,

Thank You Tunis,June 2012,

Network Model for cloud infrastructure 2-Intra-Cloud 1-Core Transport 3-Inter-Cloud 2-Intra-Cloud 24

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information