Supporting Japanese Academic Community in Use of Cloud Computing

1 Supporting Japanese Academic Community in Use of Cloud Computing Kento Aida National Institute of Informatics

National Institute of Informatics (NII) 2 The National Institute of Informatics (NII) seeks to advance integrated research and development activities in information-related fields, including networking, software, and content. NII also promotes the creation of a state-of-the-art academic-information infrastructure.

Science Information Network (SINET) n SINET is a Japanese academic backbone network for more than 800 universities and research institutions, and current version, SINET4, started its operation in 2011. Ø SINET4 covers all 47 prefectures. Ø SINET4 covers 100% of national, 71% of public, and 53% of private universities. (As of March 2014) 3 Inter-Univ. National Public Private Junior Colleges of Research Others Universities Universities Universities Colleges Technology Institutes Total Number of Organizations 86 68 333 60 55 16 184 802 : Core Node : Edge Node To Los Angeles : Core Line (40 Gbps) : Core Line (10 Gbps) : Edge Line (40 Gbps) : Edge Line (10 Gbps) : Edge Line (2.4 Gbps) To Singapore To New York To Washington D.C.

New Directions for SINET5 4 Collaboration and Promotion in Research and Education Resource & Service u Promotion of academic information circulation and open access u Collaborative promotion of institutional repository expansion Cloud u Dramatic cost reduction and enhancement of R&E environment by tailored cloud services Gakunin Cloud Security and ID federation u Raise of security level for SINET users u Collaborative enhancement of authentication VPN Access Management Federation HPCI SSO PKI Network u Nationwide 100-Gbps backbone network and scalable network expansion u 100-Gbps international lines to USA, Europe, and Asia u Introduction of new technologies such as SDN in response to user needs

5 Cloud Services in NII

Support for Cloud Use 6 n Support universities/research institutes in starting/using cloud services university/ research institute start use advanced use Cloud Service Marketplace (planned) Direct Connection (in operation) Inter-Cloud (planned) (in operation)

Direct Connection to Cloud DC n 11 service providers directly connect to SINET and offer cloud services. n SINET users expect high-performance, secure, and inexpensive communication Sapporo for cloud services. Sapporo http://www.sinet.ad.jp/ 11 Providers (+1 soon) Cloud Service Providers Sapporo: 2, Tokyo: 6, Osaka: 3, Fukuoka: 2 DC ISP Status Tokyo Tokyo Tokyo 7 Direct Connection Selectable Tokyo Tokyo Tokyo Osaka Osaka Soon University A University B Osaka Fukuoka Osaka Fukuoka

Institutional Repository Hosting (JAIRO Cloud) n NII operates hosting services (SaaS) for institutional repositories of universities/research institutes. n JAIRO Cloud users expect reduce IT costs for their institutional repositories. http://www.nii.ac.jp/irp/repo/ 8 universities/research institutes store/manage contents on JAIRO Cloud. They do not need to install/ operate servers (HW). Open Access 600 500 400 300 #ins%tu%onal repositories in Japan JAIRO Cloudで 公 (planned) 開 予 定 JAIRO Cloud Cloud 利 用 独 on-premise 自 構 築 63 191 130 74 200 100 0 2 10 58 101 143 192 226 257 278 298 307 ü 191 institutes use JAIRO Cloud and 63 institutes plan to use. ü More than 1.4M contents are available.

9 Cloud Service Marketplace

Issues for Using Cloud A lot of issues exist when we start to use clouds. management platform cloud services (providers) research platform management platform SINET5 education & library platform ICT platform ICT platform What are requirements for cloud services (security, reliability, contract issues, ) that we should consider? Which cloud services (or providers) fulfill our requirements? Can we reduce IT costs? Is communication performance enough? è Direct Connection : research platform education & library platform university/research institute 10

Cloud Service Marketplace n NII helps universities/research institutes start to use cloud services: Ø checklist for selecting cloud services and evaluation using the checklist Ø negotiation for discount universities/research institutes making spec. using the the checklist and evaluation results procurement Cloud Service Marketplace checklist evaluation cloud providers evaluation of of services using checklist reference price list list 11 Clou portal committee checklist evaluation negotiation for for discount

Checklist for Cloud Service n a list of criteria/requirements for selecting cloud services Ø It helps universities/research institutes make the specification of cloud services in procurement procedures. The beta version is available. (in Japanese) http://cloud.gakunin.jp contributions from: ü NII ü Hiroshima University ü Hokkaido University ü AXIES cloud working group ü cloud computing working group in 7 supercomputing centers in Japan ü cloud service providers (for simulation of the evaluation using the checklist) 項 目 商 品 / サービスの 概 要 参 加 条 件 成 立 条 件 契 約 申 込 み 学 認 対 応 状 況 信 頼 性 ネットワーク 通 信 機 能 管 理 ツールの 提 供 動 作 保 証 スケーラビリティ データセンター セキュリティ データ 管 理 バックアップ クラウド 事 業 者 の 信 頼 性 契 約 条 件 データの 取 り 扱 い 詳 細 項 目 製 品 概 要,ライセンス 体 系,... 契 約 機 関 数,... 契 約 期 間, 契 約 書 言 語, 支 払 通 貨,... SAML 学 認 対 応 状 況,... サービス 稼 働 率,データ 保 証 率,... SINET 接 続 状 況,VPN 利 用, 通 信 暗 号 化,... 負 荷 分 散,フェイルオーバ,API 互 換 性,... 動 作 保 証 済 OS アプリ,... ネットワーク 帯 域,レスポンス 時 間,... 防 犯, 防 災, 入 退 室 管 理,... セキュリティ 対 策,インシデント 対 応,... 多 重 化,アクセス 制 限, 暗 号 化,ログ,... バックアップ 方 法,バックアップデータのセキュリ ティ,... 経 営 状 況, 第 三 者 認 証,... 責 任 範 囲, 準 拠 法, 管 轄 裁 判 所,... データの 所 有 権 利 用 権, 事 業 終 了 時 のデータ 確 保,... 12

Examples in Checklist (beta): Reliability SLA data durability ü Is service level agreement published? ü the published value (if it is published) ü Is data durability is published? ü the published value (if it is published) ü Is scheduled maintenance is planned? scheduled maintenance ü the frequency and average down time, it is planned. notification of maintenance ü Is the procedure for the scheduled maintenance published? ü Is the procedure for notifying maintenance information published? 13

Examples in Checklist (beta): Data data redundancy access control (whole data) access control (file) encryption log ü Are data redundantly stored? ü methods for data redundancy (if it is applicable) ü Can the user configure access control for whole data? ü methods of access control (if it is applicable) ü Can the user configure access control for each file? ü methods of access control (if it is applicable) ü Are stored data encrypted? ü Can the user or the administrator configure encryption/non-encryption for each file? ü Can the user access log files (e.g. a system log, a security log, an access log)? ü a list of log files (if it is applicable) 14

Examples in Checklist (beta): Contract scope of responsibility data location data location governing law jurisdiction ü Is the scope of responsibility for cloud providers and the user (university/research institute) provided in documents? ü Is a country that hosts user data published? ü the name of country (if it is applicable) ü Can the user designate a country or a region of datacenter to use? ü Is the contract governed by and interpreted in accordance with the laws of Japan? ü the name of country (if it is governed by a foreign law) ü Is a court with jurisdiction determined? ü the name of the court (if it is applicable) 15

Examples in Checklist (beta): Misc SINET connection ü Are DCs directly connected to SINET? SAML Interoperability ü Authentication via SAML? ü Gakunin ready? ü Does the service provide APIs that have interoperability to other cloud services? 16

Portal (Cloud Gateway) n One-stop service for: Ø universities/research institutes è offering checklist, evaluation results, Ø cloud providers è accepting evaluation results, Ø end users è offering a customized cloud service menu cloud services menu customized for the user sign- on 17

Internet2 NET+ 18 By applying the same open principles and community synergies that guided the creation of the Internet2 Network, the Internet2 NET+ initiative is creating a unified, integrated portfolio of cloud and trust solutions, blending both commercial services and community offerings. [source: http://www.internet2.edu/vision-initiatives/ initiatives/internet2-netplus/] [source: http://www.internet2.edu/media/medialibrary/ 2013/08/16/about-internet2-netplus.pdf]

Summary 19 NII will support Japanese universities/research in starting/ using cloud services. roadmap FY 2014 FY2015 FY2016 FY2017 operation Direct Connection operation Cloud Service Marketplace design installation/ test operation operation Inter-Cloud development installation/ test operation operation