Cloud Computing A NIST Perspective and Beyond. Robert Bohn, PhD Advanced Network Technologies Division



Similar documents
Cloud Computing A NIST Perspective & Beyond. Robert Bohn, PhD Advanced Network Technologies Division

Standardizing Cloud Services for Financial Institutions through the provisioning of Service Level Agreements (SLAs)

NIST Cloud Computing Program

The NIST Cloud Computing Program

Highlights & Next Steps

CLOUD SERVICE LEVEL AGREEMENTS Meeting Customer and Provider needs

US Government Cloud Computing Technology Roadmap Volume I

The Road to Cloud Standards via a Reference Architecture

NIST Cloud Computing Security Reference Architecture (SP draft)

US Government Cloud Computing Technology Roadmap Volume II Release 1.0 (Draft)

Cybersecurity. Cloud. and the. 4TH Annual NICE Workshop Navigating the National Cybersecurity Education InterState Highway September 2013

NIST Cloud Computing Program Activities

NIST Cloud Computing Standards Roadmap

Document: NIST CCSRWG 092. First Edition

National Institute of Standards and Technology

Perspectives on Moving to the Cloud Paradigm and the Need for Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

NIST Cloud Computing Reference Architecture & Taxonomy Working Group

ITL BULLETIN FOR JUNE 2012 CLOUD COMPUTING: A REVIEW OF FEATURES, BENEFITS, AND RISKS, AND RECOMMENDATIONS FOR SECURE, EFFICIENT IMPLEMENTATIONS

Cloud Computing and Standards

A Strawman Model. NIST Cloud Computing Reference Architecture and Taxonomy Working Group. January 3, 2011

CHAPTER 8 CLOUD COMPUTING

Perspectives on Cloud Computing and Standards. Peter Mell, Tim Grance NIST, Information Technology Laboratory

CLOUD IN HEALTHCARE EXECUTIVE SUMMARY 1/21/15

Why Private Cloud? Nenad BUNCIC VPSI 29-JUNE-2015 EPFL, SI-EXHEB

Web Application Hosting Cloud Solution Architecture.

Securing and Auditing Cloud Computing. Jason Alexander Chief Information Security Officer

Cloud definitions you've been pretending to understand. Jack Daniel, Reluctant CISSP, MVP Community Development Manager, Astaro

NIST Cloud Computing Reference Architecture

Standards Acceleration to Jumpstart Adoption of Cloud Computing (SAJACC)

Security Issues in Cloud Computing

VMware vcloud Powered Services

6 Cloud computing overview

The Cloud Computing Revolution: Beyond the Hype

NIST Cloud Computing Forensic Science Working Group

The Magical Cloud. Lennart Franked. Department for Information and Communicationsystems (ICS), Mid Sweden University, Sundsvall.

Seeing Though the Clouds

Where in the Cloud are You? Session Thursday, March 5, 2015: 1:45 PM-2:45 PM Virginia (Sheraton Seattle)

Enterprise Architecture and the Cloud. Marty Stogsdill, Oracle

CLOUD COMPUTING. A Primer

Cloud Computing Guide & Handbook. SAI USA Madhav Panwar

White Paper on CLOUD COMPUTING

OFFICE OF AUDITS & ADVISORY SERVICES CLOUD COMPUTING AUDIT FINAL REPORT

OVERVIEW Cloud Deployment Services

Strategic approach to cloud computing deployment

Cloud Computing Technology

Converged Infrastructure to Private Cloud

NATO s Journey to the Cloud Vision and Progress

Cloud computing: the state of the art and challenges. Jānis Kampars Riga Technical University

Private Cloud 201 How to Build a Private Cloud

Public Cloud Workshop Offerings

The Hybrid Cloud: Bringing Cloud-Based IT Services to State Government

Cloud Security Specialist Certification Self-Study Kit Bundle

Cloud Computing Standards: Overview and first achievements in ITU-T SG13.

Cloud Computing. Course: Designing and Implementing Service Oriented Business Processes

Office of the Government Chief Information Officer The Government of the Hong Kong Special Administrative Region

The NIST Definition of Cloud Computing (Draft)

Fundamental Concepts and Models

Topics. Images courtesy of Majd F. Sakr or from Wikipedia unless otherwise noted.

Architecting the Cloud

Tales of Empirically Understanding and Providing Process Support for Migrating to Clouds

Private Cloud Database Consolidation with Exadata. Nitin Vengurlekar Technical Director/Cloud Evangelist

The NIST Definition of Cloud Computing

Planning the Migration of Enterprise Applications to the Cloud

Audit of the CFPB s Acquisition and Contract Management of Select Cloud Computing Services

Cloudy with Showers of Business Opportunities and a Good Chance of. Security. Transforming the government IT landscape through cloud technology

Cloud Computing An Elephant In The Dark

Document NIST XXX-0XX. First Working Draft. October 31, Draft October 31, Draft

Private & Hybrid Cloud: Risk, Security and Audit. Scott Lowry, Hassan Javed VMware, Inc. March 2012

OWASP Chapter Meeting June Presented by: Brayton Rider, SecureState Chief Architect

Hybrid Cloud Architecture: How to Streamline Hybrid Cloud Migration

CSO Cloud Computing Study. January 2012

Enterprise Architecture and the Cloud. Marty Stogsdill, Oracle

Privacy and security in the cloud

ca IT Leaders Forum Working in the Cloud using the new ISO/IEC/ITU-T Cloud Computing Standards Dr David Ross, Chief Information Security Officer,

Cloud Computing Submitted By : Fahim Ilyas ( ) Submitted To : Martin Johnson Submitted On: 31 st May, 2009

OPEN DATA CENTER ALLIANCE SM CLOUD ADOPTION SURVEY

DEPARTMENT AGENCY STATEMENT OF OBJECTIVES FOR CLOUD MIGRATION SERVICES: INVENTORY, APPLICATION MAPPING, AND MIGRATION PLANNING MONTH YYYY TEMPLATE

IS PRIVATE CLOUD A UNICORN?

Validation of a Cloud-Based ERP system, in practice. Regulatory Affairs Conference Raleigh. 8Th September 2014

INTRODUCTION TO CLOUD COMPUTING CEN483 PARALLEL AND DISTRIBUTED SYSTEMS

Cloud Computing Best Practices and Considerations for Project Managers Mike Lamoureux, PMP, MBA. Page 1

Cloud Computing Standards: Overview and ITU-T positioning

TECHNOLOGY GUIDE THREE. Emerging Types of Enterprise Computing

Transcription:

Cloud Computing A NIST Perspective and Beyond Robert Bohn, PhD Advanced Network Technologies Division CASC Fall Meeting 2014 17 September 2014

Federal IT Strategies 2

The NIST Cloud Computing Program Goal To accelerate the federal government s adoption of cloud computing Build a USG Cloud Computing Technology Roadmap which focuses on the highest priority USG cloud computing security, interoperability and portability requirements Lead efforts to develop standards and guidelines in close consultation and collaboration with standards bodies, the private sector, and other stakeholders 3

NIST Definition of Cloud Computing Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. 3 Service Models Software as a Service Platform as a Service Infrastructure as a Service (SaaS) (PaaS) (IaaS) 4 Deployment models Public, Private, Community, Hybrid 5 Essential Characteristics On demand self-service Broad network access Resource Pooling Rapid Elasticity Measured Service Determine the What of Cloud Computing, not the How 4

Public Working Groups How to build a USG Cloud Computing Technology Roadmap Business Use Define Cases Target USG Cloud Computing Use Cases SAJACC priorities risks obstacles Cloud Computing Standards & Technology Roadmap Standards Security Ref Arch & Tax Define Neutral Cloud Computing Reference Architecture & Taxonomy Translate Requirements Identify Gaps Expand CC defn, ref. arch. 5

USG Cloud Computing Technology Roadmap Requirements (NIST SP 500-293) 1. International voluntary consensusbased standards 2. Solutions for High-priority Security Requirements, technically decoupled from organizational policy decisions 3. Technical specifications to enable development of consistent, highquality Service-Level Agreements 4. Clearly and consistently categorized cloud services 5. Frameworks to support seamless implementation of federated community cloud environments 6. Updated Organization Policy that reflects the Cloud Computing Business and Technology model 7. Defined unique government regulatory requirements and solutions 8. Collaborative parallel strategic future cloud development initiatives 9. Defined and implemented reliability design goals 10.Defined and implemented cloud service metrics 6

Initial Accomplishments USG Standards & Technology Roadmap Reference Architecture and Taxonomy for Cloud Computing Cloud Computing Standards Roadmap Security Reference Architecture 7

Since that time Service Level Agreements Cloud Service Metrics Model Advanced Actor Analysis Cloud Security Cloud & Accessibility 8

Future Outlook The convenience of reliable, trusted and measureable cloud services become a foundational element of the global economy. These services, constructed with open standards and metric based building blocks, form the basis for a collection of interconnected clouds to: facilitate world-wide collaboration & shared knowledge drive innovation provide positive environmental and economic impacts 9

Cloud Services Eric Simmon Lead email list: cc_services@nist.gov http://collaborate.nist.gov/twiki-cloud-computing/bin/view/cloudcomputing/cloudservices Explore the foundational characteristics of cloud services and examine the intricacies that exist between cloud service types. Customers will make better selections of cloud services Customers will be able to objectively evaluate, compare, and select between products from cloud vendors, and Cloud Providers will have clear guidance where interoperability and portability must exist within similar categories of cloud services 10

Interoperability & Portability Annie Sokol Lead email list: cc_interop@nist.gov http://collaborate.nist.gov/twiki-cloud-computing/bin/view/cloudcomputing/cloudinteroperability Types of cloud computing interoperability and portability - relationship and interactions Contexts where interoperability and portability are relevant in cloud computing, with respect to the cloud computing reference architecture; and Common terminology and concepts used to describe interoperability and portability. 11

Federated Community Cloud John Messina Lead email list: cc_federated@nist.gov http://collaborate.nist.gov/twiki-cloud-computing/bin/view/cloudcomputing/cloudfederated Developing a common understanding and definition of what a Federated Cloud entails Identifying the requirements needed to reach the achieve a Federated cloud, Identifying the technology and standards gaps that need to be addressed in order to enable the Federated Cloud, A path that will lead to the Federated Cloud 12

One more announcement (new) Constructing High-Quality Cloud Service Level Agreements (SLAs) Wednesday August 6, 2014 9am - 5pm National Science Foundation Arlington, VA 22230 This workshop will explore avenues to assist cloud customer and provider in the procurement of cloud services by determining methods for constructing high-quality SLAs. Explain the concepts behind SLAs Describe current work on standardizing the building blocks of SLAs (concepts, terms, definitions and contexts) Discuss Services in terms of Performance, Management & Security Show the relationship of cloud service metrics and SLAs 13

Dr. Abdella Battou Dr. Robert Bohn John Messina Dr. Michaela Iorga Annie Sokol Mike Hogan Eric Simmon Frederic de Vaulx Lisa Carnahan NIST ITL Cloud Computing Home Page Contacts abdella.battou@nist.gov robert.bohn@nist.gov john.messina@nist.gov micheala.iorga@nist.gov annie.sokol@nist.gov michael.hogan@nist.gov eric.simmon@nist.gov frederic.devaulx@nist.gov lisa.carnahan@nist.gov CC Lead/ANTD Chief Program Mgr RA/Tax Co-Convener Security Standards Standards SLA/Standards Metrics Conformity Assessment http://www.nist.gov/itl/cloud NIST Cloud Computing Collaboration Site (twiki) http://collaborate.nist.gov/twiki-cloud-computing/bin/view/cloudcomputing 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information