NIST Information Technology Laboratory Cloud Computing Program NIST Cloud Computing Program Current Activities Robert Bohn, Ph.D. NIST Cloud Computing.

Download NIST Information Technology Laboratory Cloud Computing Program NIST Cloud Computing Program Current Activities Robert Bohn, Ph.D. NIST Cloud Computing.

Post on 23-Dec-2015

214 views

Category:

Documents

0 download

Embed Size (px)

TRANSCRIPT

  • Slide 1
  • NIST Information Technology Laboratory Cloud Computing Program NIST Cloud Computing Program Current Activities Robert Bohn, Ph.D. NIST Cloud Computing Program Manager ETSI - Cloud Standards Coordination 5 December 2012, Cannes, France
  • Slide 2
  • NIST Information Technology Laboratory Cloud Computing Program Outline Roadmap Activities Updates on PAPs/Working Groups SLA Guidance Cloud Metrics Cloud Broker Security RA Standards Update 2
  • Slide 3
  • NIST Information Technology Laboratory Cloud Computing Program 3 USG Cloud Computing Roadmap Volume I Collaboration through public working groups & Federal Cloud Computing Standards & Technology Working Group Intent is to leverage PAPs that are identified as complete or under way by cloud stakeholder community; some may fall within NIST scope Prioritized strategic and tactical requirements that must be met for USG agencies to further cloud adoption; Interoperability, portability, and security standards, guidelines, and technology needed to satisfy these requirements; Recommended list of Priority Action Plans (PAPs) -- candidates for voluntary self-tasking by the stakeholder community.
  • Slide 4
  • NIST Information Technology Laboratory Cloud Computing Program 4 USG Cloud Computing Technology Roadmap requirements R 1: International voluntary consensus based interoperability, portability and security standards (interoperability, portability, and security standards) R 2: Solutions for high priority Security Requirements (security technology) R 3: Technical specifications to enable development of consistent, high quality Service Level Agreements (interoperability, portability, and security standards and guidance) R 4: Clearly and consistently categorized cloud services (interoperability and portability guidance and technology) R 5: Frameworks to support seamless implementation of federated community cloud environments (interoperability and portability guidance and technology) R 6: Technical security solutions which are de-coupled from organizational policy decisions (security guidance, standards and technology) R 7: Defined unique government regulatory requirements, technology gaps, and solutions (interoperability, portability and security technology) R 8: Collaborative parallel strategic future cloud development initiatives (interoperability, portability, and security technology) R 9: Defined and implemented reliability design goals (interoperability, portability, and security technology) R 10: Defined and implemented cloud service metrics (interoperability and portability standards )
  • Slide 5
  • NIST Information Technology Laboratory Cloud Computing Program 5 USG CC Roadmap Volume II Reference Architecture & Taxonomy Recommend Industry Mapping so that USG agencies & others can more easily and consistently compare cloud services In parallel, support formal standards development process leveraging the reference architecture Standards Provide avenue for USG agency engagement Continue standards roadmap Target Business Use Cases & SAJACC Expand initial use case set & use SAJACC to identify gaps Security leverage working groups to finalize special publication focusing on challenging security requirements Continue technical advisor role e.g. FedRAMP, continuous monitoring, conformity assessment system Use collaboration through public working groups & Federal Cloud Computing Standards & Technology Working Group to continue to validate findings
  • Slide 6
  • NIST Information Technology Laboratory Cloud Computing Program USG CC Roadmap Volume III BUILDS ON the first two volumes of the USG Cloud Computing Technology Roadmap IS FOR USG agency technical planning and implementation teams - AND ANYONE ELSE THAT FINDS IT USEFUL HAS A GOAL to inform decision makers regarding questions and decision factors in the context of Cloud Computing use cases DESCRIBES HOW to leverage the Federal Cloud Computing Strategy Decision Framework for Cloud Migration and the collaborative NIST Cloud Computing Program work 6
  • Slide 7
  • NIST Information Technology Laboratory Cloud Computing Program Decision Framework
  • Slide 8
  • NIST Information Technology Laboratory Cloud Computing Program 8 16 aspects Provision Aggregate demand Integrate services Contract effectively Realize value Manage Shift mindset Actively monitor Re-evaluate periodically Selection Efficiency Agility Innovation Security Requirements Service characteristics Market Characteristics Network infrastructure Government readiness Technology lifecycle
  • Slide 9
  • NIST Information Technology Laboratory Cloud Computing Program Application Categories Collaboration Tools Planning/Management Tools Web Server/Content Management Identity Management Document Retrieval/Library System PaaS IaaS
  • Slide 10
  • NIST Information Technology Laboratory Cloud Computing Program Next Steps for PAPs/Working Groups Goal 1 - Requirement 3: Address Technical Specifications for High-Quality Service-Level Agreements. Goal 2 - Requirement 10: Address Defined & Implemented Cloud Service Metrics. Goal 3 -Advanced Actor Analysis - To further the discussion on the roles of and interactions of cloud computing actors (consumer/auditor/broker/carrier).
  • Slide 11
  • NIST Information Technology Laboratory Cloud Computing Program 11 SLA Taxonomy Chair: John Messina (NIST) and Ken Stavinoha (Cisco) Purpose: Address Roadmap Requirement 3 on Service Level Agreements (SLA)s Goals: Create a mindmap/taxonomy identifying the major elements that should appear within a high-quality SLA. Write report on how to create high-quality SLA Status: Mindmap/taxonomy draft complete (available on NIST CC twiki public website) Report draft complete (available on NIST CC twiki public website) Moving Forward: Establish Federal SLA collaborative activities Submit material to international standards bodies for further development
  • Slide 12
  • NIST Information Technology Laboratory Cloud Computing Program Mind Map of a Master Service Agreement
  • Slide 13
  • NIST Information Technology Laboratory Cloud Computing Program Contents of SLA Business Level Objectives Roles & Responsibilities Requirements Operational Policies Continuity Limitations Financial Glossary of Terms Service Level Objectives Resources Performance Indicators Service Deployment Service Management Description Security Privacy
  • Slide 14
  • NIST Information Technology Laboratory Cloud Computing Program Cloud Business Requirements
  • Slide 15
  • NIST Information Technology Laboratory Cloud Computing Program Performance Indicators
  • Slide 16
  • NIST Information Technology Laboratory Cloud Computing Program Cloud Metrics Chair: Frederic J. de Vaulx and Steve Woodward (CloudPersectives) Purpose: Address Roadmap Requirement 10 on Cloud Metrics Goals: Improve consistency & terminology to facilitate valuable comparative analysis Create a framework to help clarify measures, definitions and collection methods Align with the roadmap high priority goals like SLAs Status: Cloud reference and description list (available on NIST CC twiki public website) Draft concept model for cloud metrics, measures and usages (available on NIST CC twiki public website) Moving Forward: Present the concept model to organizations involved in cloud metrics Write the Cloud Measure document based on the draft outline
  • Slide 17
  • NIST Information Technology Laboratory Cloud Computing Program Cloud Metrics Work Areas & Priorities
  • Slide 18
  • NIST Information Technology Laboratory Cloud Computing Program 18 Goal 3: Advanced Actor Analysis Cloud Broker Cloud Broker Intermediate Cloud Service Provider dd Consumer accesses multiple provider services through a single broker interface The Cloud Consumer retains visibility into the cloud service providers they use Intermediary uses additional providers as invisible components of its own service, presented as integrated offering No consumer visibility into or control over additional cloud providers
  • Slide 19
  • NIST Information Technology Laboratory Cloud Computing Program The NIST Cloud Computing Reference Architecture 19
  • Slide 20
  • NIST Information Technology Laboratory Cloud Computing Program Physical Resource Layer Hardware Facility Resource Abstraction and Control Layer Service Layer IaaS SaaS PaaS Software as a Service Platform as a Service Infrastructure as a Service Cloud Provider IT Infrastructure/ Operation Application Development Biz Process/ Operations App/Svc Usage Scenarios App/Svc Usage Scenarios App/Svc Usage Scenarios App/Svc Usage Scenarios Develop, Test, Deploy and Manage Usage Scenarios Develop, Test, Deploy and Manage Usage Scenarios Create/Install, Manage, Monitor Usage Scenarios Create/Install, Manage, Monitor Usage Scenarios NIST Security Reference Architecture 20
  • Slide 21
  • NIST Information Technology Laboratory Cloud Computing Program Draft NIST CC Reference Architecture Cloud Consumer Cloud Provider Cloud Service Management Cloud Carrier Cloud Auditor Cloud Consumer Provisioning/ Configuration Provisioning/ Configuration Portability/ Interoperability Portability/ Interoperability Security Audit Security Audit Privacy Impact Audit Performance Audit Business Support Business Support Physical Resource Layer Hardware Facility Resource Abstraction and Control Layer Service Layer IaaS SaaS PaaS Cloud Orchestration Cross Cutting Concerns: Security, Privacy, etc Cloud Broker Service Intermediation Service Aggregation Service Arbitrage 21
  • Slide 22
  • NIST Information Technology Laboratory Cloud Computing Program 22 NIST Security Reference Architecture formal model 22
  • Slide 23
  • NIST Information Technology Laboratory Cloud Computing Program 23 ISO/IEC JTC 1 Information Technology SC 27 IT security techniques IEC ISO ISO TC 68 Financial services SC 7 Software & systems engineering SC 38 Distributed application platforms & services SC 2 Financial Services, security PSDO IEEE W3C OASIS TCGOMGSNIA OGFCAOCCATISCSAKantaraTIA Cloud Computing Standards Developers ITU-T IETF SG 17 Security SG 13 Future networks including mobile and NGN SG 11 Signalling requirements, protocols and test specifications JTC 1 PAS Submitters others Key: PSDO = Partner Standards Development Organization; PAS = Publicly Available Specification; = private sector, national member-based international standards body; = UN agency, member state-based international standards body; = international consortium standards developer
  • Slide 24
  • NIST Information Technology Laboratory Cloud Computing Program NIST SP 500-291 Recommendations Accelerating Development and Use of Cloud Standards Contribute Agency Requirements Participate in Standards Development Encourage Compliance Testing to Accelerate Technically Sound Standards-Based Deployments Specify Cloud Computing Standards USG-Wide Use of Cloud Computing Standards Dissemination of Information on Cloud Computing Standards Contribute Agency Requirements Participate in Standards Development Encourage Compliance Testing to Accelerate Technically Sound Standards-Based Deployments Specify Cloud Computing Standards USG-Wide Use of Cloud Computing Standards Dissemination of Information on Cloud Computing Standards
  • Slide 25
  • NIST Information Technology Laboratory Cloud Computing Program New Topics for Consideration Accessibility Conformity Assessment Performance Reliability Forensics Law Enforcement Education
  • Slide 26
  • NIST Information Technology Laboratory Cloud Computing Program NIST Cloud Computing Special Publications CC Standards Roadmap ..500-291 CC Reference Architecture.500-292 USG CC Technology Roadmap Draft......500-293 Guidelines on Security and Privacy .800-144 Definition of Cloud Computing ..800-145 CC Synopsis & Recommendations....800-146 Searchable as NIST SP xxx-nnn
  • Slide 27
  • NIST Information Technology Laboratory Cloud Computing Program 27 Contacts NIST ITL Cloud Computing Home Pagehttp://www.nist.gov/itl/cloudhttp://www.nist.gov/itl/cloud NIST Cloud Computing Collaboration Site (twiki) http://collaborate.nist.gov/twiki-cloud-computing/bin/view/CloudComputing Dr. Chris Greer chris.greer@nist.gov chris.greer@nist.gov Dr. Robert Bohn robert.bohn@nist.gov robert.bohn@nist.gov John Messina john.messina@nist.gov john.messina@nist.gov Dr. Michaela Iorga micheala.iorga@nist.gov micheala.iorga@nist.gov Annie Sokol annie.sokol@nist.gov annie.sokol@nist.gov Mike Hogan michael.hogan@nist.gov michael.hogan@nist.gov Eric Simmon eric.simmon@nist.gov eric.simmon@nist.gov Frederic de Vaulx frederic.devaulx@nist.gov frederic.devaulx@nist.gov Acting SES Program Mgr RA/Tax Co-Convener Security Standards Volume III Metrics

Recommended

View more >