SlideShare une entreprise Scribd logo

Peter Mell Cloud Standards 20090915

GovCloud Network
GovCloud Network

Peter Mell, NIST, Information Technology Laboratory - A Roadmap for Cloud Standards

TechnologieSanté & Médecine
1  sur  16
Télécharger pour lire hors ligne
A Roadmap for Cloud Standards Peter Mell, Tim Grance NIST, Information Technology Laboratory 9-15-2009
NIST Cloud Research Team Peter Mell Lee Badger Project Lead Tim Grance Program Manager Contact information is available from: http://www.nist.gov/public_affairs/contact.htm 2
NIST Cloud Computing Resources • NIST Draft Definition of Cloud Computing • Presentation on Effective and Secure Use of Cloud Computing • http://csrc.nist.gov/groups/SNS/cloud-computing/index.html 3
Caveats and Disclaimers • This presentation is NOT intended to provide official NIST guidance and NIST does not make policy • Any mention of a vendor, product, or standard is NOT an endorsement or recommendation Citation Note: All sources for the material in this presentation are included within the Powerpoint “notes” field on each slide 4
Cloud Standards Mission • Provide guidance to industry and government for the creation and management of relevant cloud computing standards allowing all parties to gain the maximum value from cloud computing 5
NIST and Standards • NIST wants to promote cloud standards: – We want to propose roadmaps for needed standards – We want to act as catalysts to help industry formulate their own standards • Opportunities for service, software, and hardware providers – We want to promote government and industry adoption of cloud standards 6
Goal of NIST Cloud Standards Effort • Fungible clouds – (mutual substitution of services) – Data and customer application portability – Common interfaces, semantics, programming models – Federated security services – Vendors compete on effective implementations • Enable and foster value add on services – Advanced technology – Vendors compete on innovative capabilities 7
A Model for Standardization and Proprietary Implementation • Advanced Proprietary Value features Add Functionality • Core features Standardized Core Cloud Capabilities 8
Proposed Result • Cloud customers knowingly choose the correct mix for their organization of – standard portable features – proprietary advanced capabilities 9
A proposal: A NIST Cloud Standards Roadmap • We need to define minimal standards – Enable secure cloud integration, application portability, and data portability – Avoid over specification that will inhibit innovation – Separately addresses different cloud models 10
Towards the Creation of a Roadmap (I) • Thoughts on standards: – Usually more service lock-in as you move up the SPI stack (IaaS->PaaS->SaaS) – IaaS is a natural transition point from traditional enterprise datacenters • Base service is typically computation, storage, and networking – The virtual machine is the best focal point for fungibility – Security and data privacy concerns are the two critical barriers to adopting cloud computing 11
Towards the Creation of a Roadmap (II) • Result: – Focus on an overall IaaS standards roadmap as a first major deliverable – Research PaaS and SaaS roadmaps as we move forward – Provide visibility, encourage collaboration in addressing these standards as soon as possible – Identify common needs for security and data privacy standards across IaaS, PaaS, SaaS 12
A Roadmap for IaaS • Needed standards – VM image distribution (e.g., DMTF OVF) – VM provisioning and control (e.g., EC2 API) – Inter-cloud VM exchange (e.g., ??) – Persistent storage (e.g., Azure Storage, S3, EBS, GFS, Atmos) – VM SLAs (e.g., ??) – machine readable • uptime, resource guarantees, storage redundancy – Secure VM configuration (e.g., SCAP) 13
A Roadmap for PaaS and SaaS • More difficult due to proprietary nature • A future focus for NIST • Standards for PaaS could specify – Supported programming languages – APIs for cloud services • Standards for SaaS could specify – SaaS-specific authentication / authorization – Formats for data import and export (e.g., XML schemas) – Separate standards may be needed for each application space 14
Security and Data Privacy Across IaaS, PaaS, SaaS • Many existing standards • Identity and Access Management (IAM) – IdM federation (SAML, WS-Federation, Liberty ID-FF) – Strong authentication standards (HOTP, OCRA, TOTP) – Entitlement management (XACML) • Data Encryption (at-rest, in-flight), Key Management – PKI, PKCS, KEYPROV (CT-KIP, DSKPP), EKMI • Records and Information Management (ISO 15489) • E-discovery (EDRM) 15
Questions? • Peter Mell • NIST, Information Technology Laboratory • Computer Security Division • Tim Grance • NIST, Information Technology Laboratory • Computer Security Division Contact information is available from: http://www.nist.gov/public_affairs/contact.htm 16

Recommandé

Cisco UCS with NetApp Storage for SAP HANA Solution
Cisco UCS with NetApp Storage for SAP HANA Solution Cisco UCS with NetApp Storage for SAP HANA Solution
Cisco UCS with NetApp Storage for SAP HANA Solution
NetApp
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
シスコシステムズ合同会社
 
Cloud_Solution_Brief_Texas_040915a (1)
Cloud_Solution_Brief_Texas_040915a (1)Cloud_Solution_Brief_Texas_040915a (1)
Cloud_Solution_Brief_Texas_040915a (1)
Jeremy Pope
 
ODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage ScenariosODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage Scenarios
Open Data Center Alliance
 
Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2
Trish McGinity, CCSK
 
Software-Defined Storage
Software-Defined StorageSoftware-Defined Storage
Software-Defined Storage
NetApp
 
Slide Webinar NetApp 30 Gennaio
Slide Webinar NetApp 30 GennaioSlide Webinar NetApp 30 Gennaio
Slide Webinar NetApp 30 Gennaio
NetApp
 
CSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassageCSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassage
Trish McGinity, CCSK
 

Recommandé

Cisco UCS with NetApp Storage for SAP HANA Solution
Cisco UCS with NetApp Storage for SAP HANA Solution Cisco UCS with NetApp Storage for SAP HANA Solution
Cisco UCS with NetApp Storage for SAP HANA Solution
NetApp
 
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
【Cisco OpenStack Seminar 2015.10.26】 OpenStack as Strategy for future growth
シスコシステムズ合同会社
 
Cloud_Solution_Brief_Texas_040915a (1)
Cloud_Solution_Brief_Texas_040915a (1)Cloud_Solution_Brief_Texas_040915a (1)
Cloud_Solution_Brief_Texas_040915a (1)
Jeremy Pope
 
ODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage ScenariosODCA infrastructure as-a-service Framework & Usage Scenarios
ODCA infrastructure as-a-service Framework & Usage Scenarios
Open Data Center Alliance
 
Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2Shawn Harris - CCSP SAH v2
Shawn Harris - CCSP SAH v2
Trish McGinity, CCSK
 
Software-Defined Storage
Software-Defined StorageSoftware-Defined Storage
Software-Defined Storage
NetApp
 
Slide Webinar NetApp 30 Gennaio
Slide Webinar NetApp 30 GennaioSlide Webinar NetApp 30 Gennaio
Slide Webinar NetApp 30 Gennaio
NetApp
 
CSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassageCSA colorado 2016 presentation CloudPassage
CSA colorado 2016 presentation CloudPassage
Trish McGinity, CCSK
 
Faction IaaS One Pager Daymark
Faction IaaS One Pager DaymarkFaction IaaS One Pager Daymark
Faction IaaS One Pager Daymark
Lincoln Glover
 
Cohesity Data Platform One Pager
Cohesity Data Platform One PagerCohesity Data Platform One Pager
Cohesity Data Platform One Pager
dcVAST
 
IMEXresearch software defined storage
IMEXresearch software defined storageIMEXresearch software defined storage
IMEXresearch software defined storage
IMEX Research
 
IaaS: the past, present and the future
IaaS: the past, present and the futureIaaS: the past, present and the future
IaaS: the past, present and the future
Frank Zhang
 
Infinidat InfiniGuard
Infinidat InfiniGuardInfinidat InfiniGuard
Infinidat InfiniGuard
MarketingArrowECS_CZ
 
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
シスコシステムズ合同会社
 
Microsoft Azure Stack in Tunisia
Microsoft Azure Stack in TunisiaMicrosoft Azure Stack in Tunisia
Microsoft Azure Stack in Tunisia
Aymen Mami
 
Use the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp StorageUse the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp Storage
Proact Netherlands B.V.
 
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
ldangelo0772
 
IaaS Security - Back to the Drawing Board
IaaS Security - Back to the Drawing BoardIaaS Security - Back to the Drawing Board
IaaS Security - Back to the Drawing Board
K Logic Future Marketing
 
A closer look at your data management
A closer look at your data managementA closer look at your data management
A closer look at your data management
Xylos
 
Self-Driving Storage and Applications Integration
Self-Driving Storage and Applications IntegrationSelf-Driving Storage and Applications Integration
Self-Driving Storage and Applications Integration
MarketingArrowECS_CZ
 
All dcVAST Services
All dcVAST ServicesAll dcVAST Services
All dcVAST Services
dcVAST
 
How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012
David Linthicum
 
Successfully Interconnecting Data Centers
Successfully Interconnecting Data CentersSuccessfully Interconnecting Data Centers
Successfully Interconnecting Data Centers
Cisco Canada
 
Predictable Business Continuity for Amazon Web Services
Predictable Business Continuity for Amazon Web ServicesPredictable Business Continuity for Amazon Web Services
Predictable Business Continuity for Amazon Web Services
Veritas Technologies LLC
 
Core Concept: Software Defined Everything
Core Concept: Software Defined EverythingCore Concept: Software Defined Everything
Core Concept: Software Defined Everything
Thanakrit Lersmethasakul
 
Compute Infrastructure for a Hybrid Cloud
Compute Infrastructure for a Hybrid CloudCompute Infrastructure for a Hybrid Cloud
Compute Infrastructure for a Hybrid Cloud
Cisco Canada
 
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
MariaDB plc
 
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace itWebinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
Storage Switzerland
 
The state of the internet
The state of the internetThe state of the internet
The state of the internet
Mateo Budinich
 
Cloud Standards and Virtualization
Cloud Standards and VirtualizationCloud Standards and Virtualization
Cloud Standards and Virtualization
Peter Tröger
 

Contenu connexe

Tendances

Faction IaaS One Pager Daymark
Faction IaaS One Pager DaymarkFaction IaaS One Pager Daymark
Faction IaaS One Pager Daymark
Lincoln Glover
 
Use the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp StorageUse the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp Storage
Proact Netherlands B.V.
 
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
ldangelo0772
 
How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012
David Linthicum
 

Tendances (20)

Faction IaaS One Pager Daymark
Faction IaaS One Pager DaymarkFaction IaaS One Pager Daymark
Faction IaaS One Pager Daymark
 
Cohesity Data Platform One Pager
Cohesity Data Platform One PagerCohesity Data Platform One Pager
Cohesity Data Platform One Pager
 
IMEXresearch software defined storage
IMEXresearch software defined storageIMEXresearch software defined storage
IMEXresearch software defined storage
 
IaaS: the past, present and the future
IaaS: the past, present and the futureIaaS: the past, present and the future
IaaS: the past, present and the future
 
Infinidat InfiniGuard
Infinidat InfiniGuardInfinidat InfiniGuard
Infinidat InfiniGuard
 
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
【Cisco OpenStack Seminar 2015.10.26】 Cisco UCS Integrated Infrastructure - En...
 
Microsoft Azure Stack in Tunisia
Microsoft Azure Stack in TunisiaMicrosoft Azure Stack in Tunisia
Microsoft Azure Stack in Tunisia
 
Use the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp StorageUse the power of Microsoft Azure with NetApp Storage
Use the power of Microsoft Azure with NetApp Storage
 
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
Cisco at VMworld 2015 - Cisco UCS as the Foundation for Software-Defined Data...
 
IaaS Security - Back to the Drawing Board
IaaS Security - Back to the Drawing BoardIaaS Security - Back to the Drawing Board
IaaS Security - Back to the Drawing Board
 
A closer look at your data management
A closer look at your data managementA closer look at your data management
A closer look at your data management
 
Self-Driving Storage and Applications Integration
Self-Driving Storage and Applications IntegrationSelf-Driving Storage and Applications Integration
Self-Driving Storage and Applications Integration
 
All dcVAST Services
All dcVAST ServicesAll dcVAST Services
All dcVAST Services
 
How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012How to get cloud architecture and design right the first time 2012
How to get cloud architecture and design right the first time 2012
 
Successfully Interconnecting Data Centers
Successfully Interconnecting Data CentersSuccessfully Interconnecting Data Centers
Successfully Interconnecting Data Centers
 
Predictable Business Continuity for Amazon Web Services
Predictable Business Continuity for Amazon Web ServicesPredictable Business Continuity for Amazon Web Services
Predictable Business Continuity for Amazon Web Services
 
Core Concept: Software Defined Everything
Core Concept: Software Defined EverythingCore Concept: Software Defined Everything
Core Concept: Software Defined Everything
 
Compute Infrastructure for a Hybrid Cloud
Compute Infrastructure for a Hybrid CloudCompute Infrastructure for a Hybrid Cloud
Compute Infrastructure for a Hybrid Cloud
 
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
Software-definierte Infrastrukturen, DevOps, Digitale Transformation – Neues ...
 
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace itWebinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
Webinar: How To Use Software Defined Storage to Extend Your SAN, Not Replace it
 

En vedette

The state of the internet
The state of the internetThe state of the internet
The state of the internet
Mateo Budinich
 
Cloud Standards: EnablingInteroperability.and.package.delivery
Cloud Standards: EnablingInteroperability.and.package.deliveryCloud Standards: EnablingInteroperability.and.package.delivery
Cloud Standards: EnablingInteroperability.and.package.delivery
Abiquo, Inc.
 
NIST Cloud Computing Standards
NIST Cloud Computing StandardsNIST Cloud Computing Standards
NIST Cloud Computing Standards
GovCloud Network
 
Latest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyLatest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and Privacy
Cloud Standards Customer Council
 
Cloud Customer Architecture for e-Commerce
Cloud Customer Architecture for e-CommerceCloud Customer Architecture for e-Commerce
Cloud Customer Architecture for e-Commerce
Cloud Standards Customer Council
 

En vedette (13)

The state of the internet
The state of the internetThe state of the internet
The state of the internet
 
Cloud Standards and Virtualization
Cloud Standards and VirtualizationCloud Standards and Virtualization
Cloud Standards and Virtualization
 
Cloud Standards in the Real World: Cloud Standards Testing for Developers
Cloud Standards in the Real World: Cloud Standards Testing for DevelopersCloud Standards in the Real World: Cloud Standards Testing for Developers
Cloud Standards in the Real World: Cloud Standards Testing for Developers
 
OGF Cloud Standards: Current status and ongoing interoperability efforts wi...
OGF Cloud Standards: Current status and ongoing interoperability efforts wi...OGF Cloud Standards: Current status and ongoing interoperability efforts wi...
OGF Cloud Standards: Current status and ongoing interoperability efforts wi...
 
Cloud Standards: EnablingInteroperability.and.package.delivery
Cloud Standards: EnablingInteroperability.and.package.deliveryCloud Standards: EnablingInteroperability.and.package.delivery
Cloud Standards: EnablingInteroperability.and.package.delivery
 
NIST Cloud Computing Standards
NIST Cloud Computing StandardsNIST Cloud Computing Standards
NIST Cloud Computing Standards
 
Latest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and PrivacyLatest Developments in Cloud Security Standards and Privacy
Latest Developments in Cloud Security Standards and Privacy
 
The Business Plan: Strategy - For Entrepreneurs
The Business Plan: Strategy - For EntrepreneursThe Business Plan: Strategy - For Entrepreneurs
The Business Plan: Strategy - For Entrepreneurs
 
The Latest in Cloud Computing Standards
The Latest in Cloud Computing StandardsThe Latest in Cloud Computing Standards
The Latest in Cloud Computing Standards
 
Netflix IT Ops 2014 Roadmap
Netflix IT Ops 2014 RoadmapNetflix IT Ops 2014 Roadmap
Netflix IT Ops 2014 Roadmap
 
Disruption of Enterprise IT and DevOps
Disruption of Enterprise IT and DevOpsDisruption of Enterprise IT and DevOps
Disruption of Enterprise IT and DevOps
 
Cloud Customer Architecture for e-Commerce
Cloud Customer Architecture for e-CommerceCloud Customer Architecture for e-Commerce
Cloud Customer Architecture for e-Commerce
 
Technology roadmap 06022014
Technology roadmap 06022014Technology roadmap 06022014
Technology roadmap 06022014
 

Similaire à Peter Mell Cloud Standards 20090915

Data Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtcData Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtc
DataTactics
 
Cloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalCloud Services Integration Automation-External
Cloud Services Integration Automation-External
Sukumar Nayak
 
Cloud - NDT - Presentation
Cloud - NDT - PresentationCloud - NDT - Presentation
Cloud - NDT - Presentation
Éric Dusablon
 
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
sengura
 
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud ComputingDr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
ikanow
 
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
Igor De Souza
 
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
Phil Copperwheat
 
Radu crahmaliuc 23feb2012
Radu crahmaliuc 23feb2012Radu crahmaliuc 23feb2012
Radu crahmaliuc 23feb2012
Agora Group
 

Similaire à Peter Mell Cloud Standards 20090915 (20)

Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
Info Sec 2010 Possibilities And Security Challenges Of Cloud Computing (Han...
 
Data Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtcData Tactics dhs introduction to cloud technologies wtc
Data Tactics dhs introduction to cloud technologies wtc
 
Cloud Services Integration Automation-External
Cloud Services Integration Automation-ExternalCloud Services Integration Automation-External
Cloud Services Integration Automation-External
 
Cloud Computing 101 Issue 1 (Sample)
Cloud Computing 101 Issue 1 (Sample)Cloud Computing 101 Issue 1 (Sample)
Cloud Computing 101 Issue 1 (Sample)
 
Oracle cloud oagi
Oracle cloud oagiOracle cloud oagi
Oracle cloud oagi
 
VTU Open Elective 6th Sem CSE - Module 2 - Cloud Computing
VTU Open Elective 6th Sem CSE - Module 2 - Cloud ComputingVTU Open Elective 6th Sem CSE - Module 2 - Cloud Computing
VTU Open Elective 6th Sem CSE - Module 2 - Cloud Computing
 
Cloud - NDT - Presentation
Cloud - NDT - PresentationCloud - NDT - Presentation
Cloud - NDT - Presentation
 
Avoiding cloud lock-in
Avoiding cloud lock-inAvoiding cloud lock-in
Avoiding cloud lock-in
 
How Data Drives Business at Choice Hotels
How Data Drives Business at Choice HotelsHow Data Drives Business at Choice Hotels
How Data Drives Business at Choice Hotels
 
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
Nist cloud computing-standardsispab-dec2008p-mell-090508165235-phpapp01
 
Cloud computing overview
Cloud computing overviewCloud computing overview
Cloud computing overview
 
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud ComputingDr. Michael Valivullah, NASS/USDA - Cloud Computing
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
 
Cloud Customer Architecture for Big Data and Analytics
Cloud Customer Architecture for Big Data and AnalyticsCloud Customer Architecture for Big Data and Analytics
Cloud Customer Architecture for Big Data and Analytics
 
How to scale your PaaS with OVH infrastructure?
How to scale your PaaS with OVH infrastructure?How to scale your PaaS with OVH infrastructure?
How to scale your PaaS with OVH infrastructure?
 
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
Data Engineer, Patterns & Architecture The future: Deep-dive into Microservic...
 
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
Plenary_three_Cloud_computing_-_is_social_housing_ready_for_it_-_Phil_Copperw...
 
Radu crahmaliuc 23feb2012
Radu crahmaliuc 23feb2012Radu crahmaliuc 23feb2012
Radu crahmaliuc 23feb2012
 
Euro IT Group
Euro IT GroupEuro IT Group
Euro IT Group
 
Winning Governance Strategies for the Technology Disruptions of our Time
Winning Governance Strategies for the Technology Disruptions of our TimeWinning Governance Strategies for the Technology Disruptions of our Time
Winning Governance Strategies for the Technology Disruptions of our Time
 
Key Database Criteria for Cloud Applications
Key Database Criteria for Cloud ApplicationsKey Database Criteria for Cloud Applications
Key Database Criteria for Cloud Applications
 

Plus de GovCloud Network

Staying Safe in Cyberspace
Staying Safe in CyberspaceStaying Safe in Cyberspace
Staying Safe in Cyberspace
GovCloud Network
 
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSAImproving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
GovCloud Network
 
Intrusion Detection on Public IaaS - Kevin L. Jackson
Intrusion Detection on Public IaaS - Kevin L. JacksonIntrusion Detection on Public IaaS - Kevin L. Jackson
Intrusion Detection on Public IaaS - Kevin L. Jackson
GovCloud Network
 
A Framework for Cloud Computing Adoption in South African Government
A Framework for Cloud Computing Adoption in South African GovernmentA Framework for Cloud Computing Adoption in South African Government
A Framework for Cloud Computing Adoption in South African Government
GovCloud Network
 
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
GovCloud Network
 
Government cloud deployment lessons learned final (4 4 2013)
Government cloud deployment lessons learned final (4 4 2013)Government cloud deployment lessons learned final (4 4 2013)
Government cloud deployment lessons learned final (4 4 2013)
GovCloud Network
 

Plus de GovCloud Network (20)

IaaS Price performance-benchmark
IaaS Price performance-benchmarkIaaS Price performance-benchmark
IaaS Price performance-benchmark
 
Cloud computing training what's right for me
Cloud computing training what's right for meCloud computing training what's right for me
Cloud computing training what's right for me
 
ViON Corporation: Surviving IT Change
ViON Corporation: Surviving IT ChangeViON Corporation: Surviving IT Change
ViON Corporation: Surviving IT Change
 
Staying Safe in Cyberspace
Staying Safe in CyberspaceStaying Safe in Cyberspace
Staying Safe in Cyberspace
 
Vets 360 Services - Military Dedication - Corporate Success
Vets 360 Services - Military Dedication - Corporate SuccessVets 360 Services - Military Dedication - Corporate Success
Vets 360 Services - Military Dedication - Corporate Success
 
GovCloud Network LLC Overview - June 25, 2014
GovCloud Network LLC Overview - June 25, 2014GovCloud Network LLC Overview - June 25, 2014
GovCloud Network LLC Overview - June 25, 2014
 
Army PEO EIS Cloud Architecture
Army PEO EIS Cloud Architecture Army PEO EIS Cloud Architecture
Army PEO EIS Cloud Architecture
 
ICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin Jackson
ICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin JacksonICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin Jackson
ICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin Jackson
 
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSAImproving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
 
@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page
@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page
@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page
 
Agile Cloud Conference 2 Introduction - John Brennan
Agile Cloud Conference 2 Introduction - John BrennanAgile Cloud Conference 2 Introduction - John Brennan
Agile Cloud Conference 2 Introduction - John Brennan
 
DoD Business Capability Lifecycle (BCL) Guide (Draft)
DoD Business Capability Lifecycle (BCL) Guide (Draft)DoD Business Capability Lifecycle (BCL) Guide (Draft)
DoD Business Capability Lifecycle (BCL) Guide (Draft)
 
GovCloud Network Overview Presentation
GovCloud Network Overview PresentationGovCloud Network Overview Presentation
GovCloud Network Overview Presentation
 
PM ISE Information Interoperability Presentation -agile sourcing brief
PM ISE Information Interoperability Presentation -agile sourcing briefPM ISE Information Interoperability Presentation -agile sourcing brief
PM ISE Information Interoperability Presentation -agile sourcing brief
 
Intrusion Detection on Public IaaS - Kevin L. Jackson
Intrusion Detection on Public IaaS - Kevin L. JacksonIntrusion Detection on Public IaaS - Kevin L. Jackson
Intrusion Detection on Public IaaS - Kevin L. Jackson
 
A Framework for Cloud Computing Adoption in South African Government
A Framework for Cloud Computing Adoption in South African GovernmentA Framework for Cloud Computing Adoption in South African Government
A Framework for Cloud Computing Adoption in South African Government
 
NCOIC GCC OWS-10 presentation 10 7 2013
NCOIC GCC OWS-10 presentation 10 7 2013NCOIC GCC OWS-10 presentation 10 7 2013
NCOIC GCC OWS-10 presentation 10 7 2013
 
Tech gate kevin l jackson - 09-21-2013
Tech gate kevin l jackson - 09-21-2013Tech gate kevin l jackson - 09-21-2013
Tech gate kevin l jackson - 09-21-2013
 
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
 
Government cloud deployment lessons learned final (4 4 2013)
Government cloud deployment lessons learned final (4 4 2013)Government cloud deployment lessons learned final (4 4 2013)
Government cloud deployment lessons learned final (4 4 2013)
 

Dernier

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Cyberprint. Dark Pink Apt Group [EN].pdf
Cyberprint. Dark Pink Apt Group [EN].pdfCyberprint. Dark Pink Apt Group [EN].pdf
Cyberprint. Dark Pink Apt Group [EN].pdf
Overkill Security
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 

Dernier (20)

ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Cyberprint. Dark Pink Apt Group [EN].pdf
Cyberprint. Dark Pink Apt Group [EN].pdfCyberprint. Dark Pink Apt Group [EN].pdf
Cyberprint. Dark Pink Apt Group [EN].pdf
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 

Peter Mell Cloud Standards 20090915

  • 1. A Roadmap for Cloud Standards Peter Mell, Tim Grance NIST, Information Technology Laboratory 9-15-2009
  • 2. NIST Cloud Research Team Peter Mell Lee Badger Project Lead Tim Grance Program Manager Contact information is available from: http://www.nist.gov/public_affairs/contact.htm 2
  • 3. NIST Cloud Computing Resources • NIST Draft Definition of Cloud Computing • Presentation on Effective and Secure Use of Cloud Computing • http://csrc.nist.gov/groups/SNS/cloud-computing/index.html 3
  • 4. Caveats and Disclaimers • This presentation is NOT intended to provide official NIST guidance and NIST does not make policy • Any mention of a vendor, product, or standard is NOT an endorsement or recommendation Citation Note: All sources for the material in this presentation are included within the Powerpoint “notes” field on each slide 4
  • 5. Cloud Standards Mission • Provide guidance to industry and government for the creation and management of relevant cloud computing standards allowing all parties to gain the maximum value from cloud computing 5
  • 6. NIST and Standards • NIST wants to promote cloud standards: – We want to propose roadmaps for needed standards – We want to act as catalysts to help industry formulate their own standards • Opportunities for service, software, and hardware providers – We want to promote government and industry adoption of cloud standards 6
  • 7. Goal of NIST Cloud Standards Effort • Fungible clouds – (mutual substitution of services) – Data and customer application portability – Common interfaces, semantics, programming models – Federated security services – Vendors compete on effective implementations • Enable and foster value add on services – Advanced technology – Vendors compete on innovative capabilities 7
  • 8. A Model for Standardization and Proprietary Implementation • Advanced Proprietary Value features Add Functionality • Core features Standardized Core Cloud Capabilities 8
  • 9. Proposed Result • Cloud customers knowingly choose the correct mix for their organization of – standard portable features – proprietary advanced capabilities 9
  • 10. A proposal: A NIST Cloud Standards Roadmap • We need to define minimal standards – Enable secure cloud integration, application portability, and data portability – Avoid over specification that will inhibit innovation – Separately addresses different cloud models 10
  • 11. Towards the Creation of a Roadmap (I) • Thoughts on standards: – Usually more service lock-in as you move up the SPI stack (IaaS->PaaS->SaaS) – IaaS is a natural transition point from traditional enterprise datacenters • Base service is typically computation, storage, and networking – The virtual machine is the best focal point for fungibility – Security and data privacy concerns are the two critical barriers to adopting cloud computing 11
  • 12. Towards the Creation of a Roadmap (II) • Result: – Focus on an overall IaaS standards roadmap as a first major deliverable – Research PaaS and SaaS roadmaps as we move forward – Provide visibility, encourage collaboration in addressing these standards as soon as possible – Identify common needs for security and data privacy standards across IaaS, PaaS, SaaS 12
  • 13. A Roadmap for IaaS • Needed standards – VM image distribution (e.g., DMTF OVF) – VM provisioning and control (e.g., EC2 API) – Inter-cloud VM exchange (e.g., ??) – Persistent storage (e.g., Azure Storage, S3, EBS, GFS, Atmos) – VM SLAs (e.g., ??) – machine readable • uptime, resource guarantees, storage redundancy – Secure VM configuration (e.g., SCAP) 13
  • 14. A Roadmap for PaaS and SaaS • More difficult due to proprietary nature • A future focus for NIST • Standards for PaaS could specify – Supported programming languages – APIs for cloud services • Standards for SaaS could specify – SaaS-specific authentication / authorization – Formats for data import and export (e.g., XML schemas) – Separate standards may be needed for each application space 14
  • 15. Security and Data Privacy Across IaaS, PaaS, SaaS • Many existing standards • Identity and Access Management (IAM) – IdM federation (SAML, WS-Federation, Liberty ID-FF) – Strong authentication standards (HOTP, OCRA, TOTP) – Entitlement management (XACML) • Data Encryption (at-rest, in-flight), Key Management – PKI, PKCS, KEYPROV (CT-KIP, DSKPP), EKMI • Records and Information Management (ISO 15489) • E-discovery (EDRM) 15
  • 16. Questions? • Peter Mell • NIST, Information Technology Laboratory • Computer Security Division • Tim Grance • NIST, Information Technology Laboratory • Computer Security Division Contact information is available from: http://www.nist.gov/public_affairs/contact.htm 16