Cloud Computing Standards – A NIST Perspective
Transcript of Cloud Computing Standards – A NIST Perspective
![Page 1: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/1.jpg)
Cloud Computing Standards – A NIST Perspective
Robert Bohn, PhD Advanced Network Technologies Division
28 January 2016
Cloud Standards Coordination – ETSI Brussels, Belgium
![Page 2: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/2.jpg)
NIST’s Goal
To accelerate the federal government’s adoption of cloud computing
• Build a USG Cloud Computing Technology Roadmap • Lead efforts to develop standards and guidelines
2
![Page 3: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/3.jpg)
The NIST Cloud Computing Program
3
PublicWorkingGroups Standards Outreach
• Developfundamentalconceptsincloudcompu>ng• AddressRequirementsfromUSGCloudCompu>ngTechnologyRoadmap
• Developinterna>onalstandardswithSDOs• Trust• Commerce• Innova>on
• Publica>ons• AnnualNCCPForum&Workshop• CollaboratewotherGovtAgencies• SpeakingEvents
![Page 4: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/4.jpg)
Building a Roadmap
4
ReferenceArchitecture SecurityStandards Technical
UseCasesBusinessUse
CasesPublicWorkingGroups
NISTSP500-292
![Page 5: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/5.jpg)
Roadmapping for Standards
5
ReferenceArchitecture SecurityStandards Technical
UseCasesBusinessUse
CasesPublicWorkingGroups
• RoleofConformityAssessment• StandardsInventory• GapAnalysis• Priori>es• Recommenda>ons
NISTSP500-291
![Page 6: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/6.jpg)
A USG Technology Roadmap
6
ReferenceArchitecture SecurityStandards Technical
UseCasesBusinessUse
CasesPublicWorkingGroups
![Page 7: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/7.jpg)
USG Cloud Computing Technology Roadmap Requirements (NIST SP 500-293)
1. International voluntary consensus-based standards
2. Solutions for High-priority Security Requirements, technically de-coupled from organizational policy decisions
3. Technical specifications to enable development of consistent, high-quality Service-Level Agreements
4. Clearly and consistently categorized cloud services
5. Frameworks to support seamless implementation of federated community cloud environments
6. Updated Organization Policy that reflects the Cloud Computing Business and Technology model
7. Defined unique government regulatory requirements and solutions
8. Collaborative parallel strategic “future cloud” development initiatives
9. Defined and implemented reliability design goals
10. Defined and implemented cloud service metrics
7
![Page 8: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/8.jpg)
The NIST Cloud Computing Program
8
StandardsWiththeInterna>onalOrganiza>onforStandardiza>on(ISO)andtheInterna>onalElectrotechnicalCommission(IEC)
Founda6onal
Vocabulary&RA(17788,17789)
Con6nuing
SLAs-4part(19086)Interoperability/Portability(19941)
Data&DataFlow(19944)
![Page 9: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/9.jpg)
• NIST SP 800 – 145 (The NIST Definition of Cloud Computing)
• NIST SP 500 – 292 (NIST Cloud Computing Reference Architecture)
• ISO/IEC 17788:2014/ ITU-T Y.3500 (08/2014) (Cloud Computing Overview and Vocabulary)
• ISO/IEC 17789:2014/ ITU-T Y.3502 (08/2014) (Cloud Computing Reference Architecture)
Reference Architectures (RA) and Vocabularies
FreecopiesofISO/IECstandardsarelocatedat:(h^p://standards.iso.org/i`/PubliclyAvailableStandards/index.html)
9
![Page 10: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/10.jpg)
The 17788/Y.3500 is largely interchangeable with the NIST documentation, but for a few caveats…
• Renaming of SaaS, PaaS, and IaaS. • Introduction of Service Categories • Reduction of Cloud Roles from 5 to 3. • Expansion and addition of new terms and concepts • New Scope of Hybrid Clouds
Vocabularies and Overview
10
![Page 11: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/11.jpg)
Service Models & Capability Types
PaaS
ISO/IEC17788
Customercanusethecloudserviceprovidersapplica6ons.
Customercanprovisionanduseprocessing,storage,ornetworkingresources.
Customercandeploy,manage,andrunapplica6onsusingaprogramminglanguageandanexecu6onenvironment
11
NISTSP
ACT
PCT
ICTIaaS
SaaS
![Page 12: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/12.jpg)
Service Models and Service Categories
Acloudservicecategoryisagroupofcloudservicesthatpossesssomecommonsetofquali>es.Acloudservicecategorycanincludecapabili>esfromoneormorecloudcapabili>estypes.
Communica6onsasaService(CaaS)
ComputeasaService(CompaaS)
DataStorageasaService(DSaaS)
InfrastructureasaService(IaaS)
NetworkasaService(NaaS)
PlaMormasaService(PaaS)
SoNwareasaService(SaaS)
12
![Page 13: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/13.jpg)
Service Models and Service Categories
CloudServiceCategoriesCloudCapabili6esTypes
Infrastructure Plaborm Applica>ons
ComputeasaService X
Communica>onsasaService X X
DataStorageasaService X X X
InfrastructureasaService X
NetworkasaService X X X
PlabormasaService X
SodwareasaService X
Thistableshowstherela>onshipofthecloudservicecategoriesandcloudcapabili>estypes
13
![Page 14: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/14.jpg)
Cloud Key Characteristics
ISO17788• On-demandself-service• Broadnetworkaccess• Resourcepooling• Rapidelas>cityandscalability• Measuredservice• Mul>-tenancy
14
NIST• Ondemandself-service• Broadnetworkaccess• Resourcepooling• RapidElas>city• Measuredservice
![Page 15: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/15.jpg)
Roles Cloud
Consumer
CloudProvider
CloudCarrier
15
CloudAuditor
CloudBroker
CloudService
Customer
CloudServiceProvider
CloudServicePartner
RolesasdescribedinNISTSP500-292
![Page 16: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/16.jpg)
Hybrid Cloud
ISO17788• Usesatleasttwodifferentclouddeploymentmodels
• Hybridcloudsrepresentsitua>onswhereinterac>onsbetweentwodifferentdeploymentsmaybeneededbutremainedlinkedviaappropriatetechnologies.Assuchtheboundariessetbyahybridcloudreflectitstwobasedeployments.
16
NISTAhybridcloudisacomposi>onoftwoormoreclouds(on-siteprivate,on-sitecommunity,off-siteprivate,off-sitecommunityorpublic)thatremainasdis>ncten>>esbutareboundtogetherbystandardizedorproprietarytechnologythatenablesdataandapplica>onportability
![Page 17: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/17.jpg)
Service Level Agreement Frameworks Current Standards Progress
• ISO/IEC DIS 19086-1 (DIS Ballot) Part 1: Overview and concepts
• ISO/IEC NP 19086-2 (Working Draft) Part 2: Metrics
• ISO/IEC CD 19086-3 (Committee Draft Ballot) Part 3: Core conformance requirements
StagesofISOStandardDevelopment
DIS–DradInterna>onalStandardNP–NewProjectCD–Commi^eeDrad
![Page 18: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/18.jpg)
ISO/IEC 19941: WD - Interoperability & Portability
• Establishes common terminology for use in understanding concepts of interoperability and portability to facilitate a common understanding
• Defines types of interoperability and portability in cloud computing & in cloud capabilities types: ACT, ICT, PCT
• Describes models for interoperability and portability
![Page 19: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/19.jpg)
ISO/IEC 19944: CD Data and their flow across devices and cloud services • Describes the various types of data flowing in the cloud computing
ecosystem and the impact of connected devices on the data that flow within the cloud computing ecosystem.
• Extends the existing cloud computing vocabulary and reference architecture to describe an ecosystem involving devices consuming cloud services.
• Identifies the categories of data that flow across the cloud service customer devices and cloud services in order to help cloud service customers understand and protect the privacy and confidentiality of their data through increased transparency of policies and practices.
• Provides a formal scheme for cloud service providers to declare use statements for the various data types which are processed by their cloud services, which provide transparency concerning the handling of data.
![Page 20: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/20.jpg)
Future of Cloud Standards
20
• DynamicSeamlessintegra>onbetweenclouds
• InterCloud–FederatedClouds–CloudofClouds
• NoteveryCSPhaseveryservice
• LibraryofCloudServices,SharedServices
![Page 21: Cloud Computing Standards – A NIST Perspective](https://reader031.fdocuments.in/reader031/viewer/2022021815/5849bd6b1a28aba93a933eb7/html5/thumbnails/21.jpg)
NIST ITL Cloud Computing Home Page http://www.nist.gov/itl/cloud
NIST Cloud Metrics Collaboration Site (Twiki) hRp://collaborate.nist.gov/twiki-cloud-compu6ng/bin/view/CloudCompu6ng/RATax_CloudMetrics
Dr. Abdella Battou [email protected] Dr. Robert Bohn [email protected] John Messina [email protected] Dr. Michaela Iorga [email protected] Annie Sokol [email protected] Mike Hogan [email protected] Eric Simmon [email protected] Frederic de Vaulx [email protected] Lisa Carnahan [email protected]
CC Lead/ANTD Chief Program Mgr RA/Tax, Federated Cloud Security Interop/Port, Standards Standards Cloud Services/Standards Metrics Conformity Assessment
Contacts
21
SAVETHEDATECloudCompu6ngForum&Workshop#9September13-15,2016