- Kevin L. Jackson
-
Day 1 - Cloud Computing Basics
-
Why Cloud Computing
- Animoto Story.mp3
- NASDAQ
- NY Times
- Washington Post
-
What is cloud computing?
-
Definition
-
Five key characteristics
- Rapid Elasticity
- Measured Service
- On-Demand Self Service
- IaaS
- Compute
- Storage
- PaaS
- Ubiquitous Network Access
- Resource Pooling
-
Three Deployment Models
- Public Cloud
- Private Cloud
- Community Cloud
- Hybrid Cloud
-
Four Delivery models
- Software-as-a-Service (SaaS)
- Salesforce.com
- Platform-as-a-Service (PaaS)
- Google AppEngine
- Force.com
- Open PaaS
- Infrastructure-as-a-Service (IaaS / HaaS)
- Examples
- Amazon Web Service
- Unisys
- EMC Atmos
- Loudcloud
- Services
- Compute
- Physical Machines
- Virtual Machines
- OS-level virtualization
- Network
- Storage
-
Two Domains
- Enterprise
- Tactical
-
Cloud computing is not.
- Grid Computing
- Utility Computing
- Autonomic Computing
-
Technologies & Marketplace
- Commodity Hardware
- Network Speed
- Virtualization
- Application Architectures
- Data Storage Architectures
- Pervasive High Quality Access
- Culture
-
Cloud Computing History
- First Age
- Second Age
- Third Age
-
The Transformation
- Drive for Scale
- Drive for Cheap
- Google
- Amazon
-
Component Evolution
-
Hardware Advances
- Mainframe Computers - 1945
- Micro/GUI/Client Server - 1981
- GRID Computing - 1993
- THin CLient - 1999
- Amazon Elastic Cloud - 2006
-
Network Advances
- Broadband - 1993
- WWW - 1992
- Ethernet - 1973
- ARPANET - 1969
-
Software Advances
- Writely/Google Docs / Zoho - 2005
- REST - 2000
- SAlesforce.com - 1999
- Hypervisors - 1999
- GUI - 1975
-
Government Cloud Computing
-
Examples
- United States
- Data.gov
- USASpending.gov
- NBC Cloud
- Apps.gov
- European Union
- Canada
- United Kingdom
- Japan
-
GovCloud Framework
- Clients
- Definitions
- Types
- Applications
- Definition
- Types
- Interface
- User
- Machine
- Platform
- Definition
- Services
- Solution Stacks
- Storage (Structured)
- Infrastructure
- Definition
- Types
- Physical Layer
-
Standards
-
Taxonomy
- Across Cloud Services
- Within Cloud Services
- Between the Cloud and Enterprise
- Within an Enterprise
-
Topics for Standards
-
SOA
- WSDL 1.1
- SOAP 1.1
- WS-I Basic Profile 1.0 or 1.1
- UDDI 3.0.2
- WS-Security 1.0 or 1.1
- WS-BPEL 2.0
- BPMN
- WSRP 1.0
- XML Schema 1.0
- XSLT 1.0,
- XPath 1.0
- XQuery 1.0
- XML Signature
- XML Encryption
-
Cloud Computing
- Storage
- ThriftStore
- PySector
- SectorJNI
- Compute
- Sector File System for Hadoop
- PySphere
- Mobile/Handheld Devices
-
Virtualization
- Web-Based Enterprise Management (WBEM)
- Protocols
- Infrastructure
- Common Information Model
- Schema
- Infrastructure
-
API
- Levels
- The Wire
- Language-specific Toolkits
- Service-specific Toolkit
- Service-neutral Toolkit
- Categories
- Ordinary PRogramming
- Deployment
- Cloud Services
- Image and Infrastructure Management
- Internal Interfaces
-
SAJACC
- Step 1
- Step 2
-
Security Risk Management - FedRAMP
-
Security
- Regulations
- Security Controls
- Asset Management
- Cryptography: Key and Certificate Managemnt
- Data/Storage Security
- Endpoint Security
- Event Auditing and Reporting
- Identity, Roles, Access Control and Attributes
- Network Security
- Security Policies
- Service Automation
- Workload and Service Management
- Security Federation Patterns
- Trust
- Identity Management
- Access Management
- Single Sign-on / Sign-Off
- Audit and Compliance
- Configuration Management
-
Day 2 - Cloud Computing Mission Relevance
-
Executive Views
- Dave Wennergren, Dep. CIO, OSD
- Bob Lentz, DoD Chief Security Officer
- Thomas Dee, Director Defense Biometrics
- Henry Sienkiewicz, DISA Cloud Computing
- Mike Krieger, Dep. CIO, US Army
- Rob Carey, CIO, US Navy
- General Sorenson (Apps for the Army)
- Col. Foster
- Chris Kemp
- Henry Sienkiewicz
- Dave Wennergren
- General Trends
-
Key Discussion Points
-
Benefits
- Significant Cost Reductions
- Increased Flexibility
- Access Anywhere
- Elastic Scalability
- Easy to implement
- Service Quality
- Delegation of non-critical applications
- Ease of Technology Refresh
- Ease of Collaboration
-
Concerns
- Security
- Performance
- Availability
- Integration difficulty
- Procurement process
- Ability to Customize
- Regulatory requirements
- Political issues/concerns
- Legal issues/concerns
-
Return on Investment
-
Indicator Ratios
- Cloud ROI Cost Indicator Ratios
- Cloud ROI Time Indicator Ratios
- Cloud ROI Quality Indicator Ratios
- Cloud ROI Profitability Indicator Ratios
- Cloud ROI Savings Models
-
Business Metrics
- Speed of Cost Reduction – Cost of Adoption/De-Adoption
- Optimizing Ownership Use
- Rapid Provisioning
- Increase Margin (Make More Money)
- Dynamic Usage – Elastic Provisioning and Service Management
- Risk and Compliance Improvement
-
Economics
- Avoid capital expenditures
- Consumtion billed as a utility
- Low barriers to entry
- Shared infrastructure cost
- Low management overhead
- Immediate access to broad range of applications
- Immediate termination option
- Enforceable Service Level Agreements
- High Benefit-Cost Ratios
-
Inhibitors
- Maintenance of status quo
- Transition from infrastructure based security to data-centric security
- Cloud portability
- Cloud interoperability
- Identity management and federation
- Data and application federation
- Development of appropriate Service Level Agreements
- Cloud Governance
- Transaction and concurrency across clouds
- Technology standards
-
Other Issues
- Security and privacy
- SLA Benchmarks
- Location awareness
- Metering & Monitoring
- Common infrastruct file formats
- Lifecycle management
- VM deployment & termination
- Government/DoD specific standards and protocols
-
Operational Architectures
-
Intelligence Community
- NSA
- NGA
- CIA
-
DoD
-
DISA
- RACE
- GCDS
- Forge.mil
- US Navy
- US Air Force
-
US Army
- US Army GNEC
- US TRANSCOM
-
Day 3 - Cloud Planning Exercise
-
Cloud Computing Reference Model
-
Ground Rules
- Cloud Tiers Enable Higher-Level Tiers.
- Cloud Tiers Are Individually “Atomic” and Individually Accessible.
- All Cloud Tiers Need Ecosystem Enablement and Cloud Dial Tone.
-
Functional Model
-
Foundation
- Physical Tier
- Computing resources.
- Storage resources.
- Network resources.
- Security resources.
- Virtualization Tier
- Virrtualization Technology
- Virtualization Management
-
Enablement
- Operating System Tier
- SOA enablement technology
- Billing and metering
- Chargeback and financial integration
- Load balancing and performance assurance
- Monitoring, management, and SLA enforcement
- Resource provisioning and management
- Onboarding and offboarding automation
- Security and privacy tools/controls
- Cloud pattern enablement tools (see Logical Cloud Stack)
- Cloud workflow, process management, and orchestration tools
- Platform Tier
- PaaS as pre-assembled, integrated application platforms provided to others (e.g., Google App Engine, Salesforce’s Force.com).
- SOA middleware, services and other related SOA enablement middleware and capabilities.
- Application container services, application servers, and related application hosting and runtime services.
- Web application and content servers, content hosting and delivery, and Web server capabilities.
- Messaging, mediation, integration, and related messaging services and middleware, event engines, complex event processing and related event middleware.
- Developer resources to support develop onboarding, application development, testing resources, sandbox functionality, and application
provisioning, hosting, and the related application metering, billing, and support capabilities.
-
Exploitation
- Business Tier (General)
- SaaS, including email, business applications, enterprise applications, desktop software, business utilities (email, calendar, synchronization), portal, and so forth.
- DaaS/KaaS
- Business processes as a service
- Business Tier (Specific)
-
Deployment
- Internal/Private CLoud
- External/Public Cloud
- Hybrid/Integrated Cloud
- Community Cloud
-
Governance
- Cloud Lifecycle Governance
- Cloud Policy Models and Policy Enforcement Frameworks.
- Cloud Management and Monitoring Tools.
- Cloud Operations and Support Models
- Cloud Application Lifecycle
- Application Migration
- Distributed governance and monitoring infrastructure
- Governance platform that span private, public and hybrid Clouds to provide a single operational picture of operations.
- Cloud onboarding, offboarding, and portability.
- Cloud design-time and run-time considerations.
- Cloud quality assurance and testing.
-
Operations
- Culture & Behavior
- Funding Models & Incentives
- Security & Privacy
- Management & Monitoring
- Support
-
Cloud Ecosystem
- Cloud Ecosystem Enablement
- Cloud Network/Cloud Dial Tone
- Cloud Consumers and Cloud Providers
- Cloud Physical Access, Integration, and Distribution
-
h
-
General Use Cases
- End User to Cloud
- Enterprise to CLoud to End User
-
Enterprise to Cloud
- Cloudbursting
- Enterprise to Cloud to Enterprise
- Private Cloud
- Community Cloud
- Changing Cloud Vendors
- Hybrid Cloud
-
Functional Use Cases (NIST)
- File/Object System Like
- Job Control & Programming
-
Cloud 2 Cloud
- Topic
- Topic
- Topic
- Topic
-
Administation
- Topic
- Topic
- Data Management
-
Tactical/Deployable Use Cases
- Cloudbursting
- Joint/allied/interagency cloud-based collaboration
- Virtual Infrastructure Binding (shipboard, land vehicle)
- Compute/Storage provisioning of Robotic Forces (i.e. UAV)
- Fleet Software Maintenance
- Fleet IT Casualty Response
- Exercise/Contingency Planning & Response
-
Requirements
-
Operational Requirements
-
End User to Cloud
- Identity
- Open Client
- Security
- SLA
-
Enterprise to Cloud to End User
- Indentity
- Open CLient
- Federated Identity
- Location Awareness
- Metering and Monitoring
- Management and Governance
- Security
- Common File Format for VMs
- Common APIs for Cloud Storage and Middleware
- Data and Application Federation
- SLAs and Benchmarks
- Lifecycle Management
-
Enterprise to Cloud
- Federated Identity
- Open CLient
- Location Awareness
- Indentity
- Metering and Monitoring
- Management and Governance
- Security
- Common File Format for VMs
- Common APIs for Cloud Storage and Middleware
- Data and Application Federation
- SLAs and Benchmarks
- Lifecycle Management
- Deployment
- Industry-specific standards and protocols
-
Enterprise to Cloud to Enterprise
- Federated Identity
- Open CLient
- Location Awareness
- Indentity
- Metering and Monitoring
- Management and Governance
- Security
- Common File Format for VMs
- Common APIs for Cloud Storage and Middleware
- Data and Application Federation
- SLAs and Benchmarks
- Lifecycle Management
- Deployment
- Industry-specific standards and protocols
- Transaction Concurrency
- Interoperability
-
Private Cloud
- Open Client
- Metering & Monitoring
- Management & Governance
- Security
- Deployment
- Interoperability
- Common Vm Format
- SLAs
-
Changing Cloud Vendors
- Open Client
- Location Awareness
- Security
- SLAs
- Common VM file format
- Common CLoud Storage API
- Common Cloud Middleware API
- SaaS Vendor
- Industry-specific standards
- Changing Middleware VEndors
- Industry-specific standards
- Common Cloud Middleware APIs
- Changing Cloud Storage VEndors
- Common CLoud Storage API
- Changing VM host
- Common VM Format
-
Hybrid Cloud
- Federated Identity
- Open CLient
- Location Awareness
- Indentity
- Metering and Monitoring
- Management and Governance
- Security
- Common File Format for VMs
- Common APIs for Cloud Storage and Middleware
- Data and Application Federation
- SLAs and Benchmarks
- Lifecycle Management
- Deployment
- Industry-specific standards and protocols
- Interoperability
-
Security Requirements
- Regulations
-
Security Controls
- Asset Management
- Cryptography: Key and Certificate Managemnt
- Data/Storage Security
- Endpoint Security
- Event Auditing and Reporting
- Identity, Roles, Access Control and Attributes
- Network Security
- Security Policies
- Service Automation
- Workload and Service Management
-
Security Federation Patterns
- Trust
- Identity Management
- Access Management
- Single Sign-on / Sign-Off
- Audit and Compliance
- Configuration Management
-
Developer Requirements
- Caching
- Centralized Logging
- Database
- Identity Management
- Messaging-Point-to-Point
- Messaging-Pub-Sub
- Raw Compute / Job Processing
- Session Management
- Service Discovery
- SLAs
- Storage
-
Tactical/Deployable Cloud
- Limited/Intermittent Connectivity
- Network Connection Authentication
- Redundant Compute/Storage Processes
- Autonomic Capabilities
-
Mission Support Analysis (SCOPE)
-
Evaluation Dimensions
-
Capability/Domain Dependent Scope
- Interoperability Dimension (Cloud Ecosystem)
- Business/Mission Tier
- Mission Service Resources
- Portability
- Interoperability
- Responsiveness
- SLA Compatibility
- Data Resources
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Platform Tier
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Operating System Tier
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Virtualization Tier
- Network Services
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Storage Services
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Compute Platform Resources
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Physical Tier
- Portability
- Interoperability
- SLA Compatibility
- Responsiveness
- Stadardization
- Client
- Software (SaaS)
- Operating Environment
- HTML 5
- Event-driven scripting language
- ECMAScript
- Data-interchange format
- JSON (RFC 4627)
- Platform (PaaS)
- Management API
- Infrastructure (IaaS0
- Management API
- Cloud Infrastructure API (CIA)
- System Virtualization, Partitioning and CLustering
- System Virtualization, Partitioning and Clustering (Draft)
- Container format for virtual machines
- Open Virtualization Format (OVF)
- Descriptive language for resources
- CIM
- Fabric
- Operational Dimensions
- Governance & Mgmt Dimensions
- Operational Responsibility
- Relationship Management
- Measurement Currency
- Money
- Number of contacts
- Number of interactions
- Public visibility
- Consequence Management
- Mission Specificity Requirement
- SLA Management
- QOS Management
- Privacy/security/anonymity levels
- Redundancy and/or physical dispersion levels
- Geographic coupling
- Politico-Socio Coupling
- National Affiliation
- Language
- Currency
- Legal Constraints
- Service Labeling
- Cloud Operations & Support Model
- Cloud Application Lifecycle Governance
- Legacy Application Migration
- Organizational Policy
- Two/Three Party Relationships
- Funding Model & Incentives
- Fee for Service
- Commercial Services
- Public Service
- Private Service
- Required Service Model
- Community Contributor Model
- Legacy Consolidation Model
- Insurance Model
- Charity for Goodwill
- Lifecycle Governance
- Policy Enforcement Framwork
- Cloud Management & Monitoring
- Organizational Culture & Behavoir
- Cloud Deployment Dimensions
- Resource Management
- Resource Allocation
- Granularity
- Resource Type Decomposition
- Decision Drivers
- Decision Responsiveness
- Resource Ownership
- Cloud Enablement Dimensions
- Business/Mission Tier
- Scalability
- Ownership
- Capacity
- Dynamic Range
- Operational Visibility
- Platform Tier Coupling
- "OS" Tier Coupling
- Virtualization Tier Coupling
- Physical Tier Coupling
- Sensor networking
- Process Control
- Domain Specificity
- Mission Service Resources
- Data Resources
- Business/Mission Services
- Email
- Business/Mission Applications
- Enterprise Applications
- Desktop Software
- Business Utilities
- DaaS/KaaS
- Business Processes as a Services
- Platform Tier
- Scalability
- Ownership
- Capacity
- Dynamic Range
- Operational Visibility
- Functionality
- General Purpose Services
- Search Services
- Semantic Interoperability Services
- SOA Enablement Services
- Application container services
- Application hosting and runtime services
- Web application and content hosting & delivery services
- Messaging, mediation, intgration services
- Developer resources
- Functional Domain Services
- Retail Storefront Services
- Business function services
- Records management services
- Dynamic/Short Lived Services (Tactical)
- Other Enterprise Services
- SIngle purpose services
- "OS" Tier
- Scalability
- Ownership
- Capacity
- Dynamic Range
- Operational Visibility
- Functionality
- Vitualization Technology
- SOA Enablement Technology
- Chargeback and Financial Integration
- Load Balancing & Performance Assurance
- Monitoring, management and SLA enforcement
- Resource provisioning and management
- Billing & Metering
- Onboarding and offboarding automation
- Security and privacy tools/controls
- Cloud Pattern enablement tools
- Cloud workflow, process management and ochestration tools
- Virtualization Tier
- Scalability
- Ownership
- Capacity
- Dynamic Range
- Operational Visibility
- Functionality
- Network Services
- Bandwidth
- Latency
- Assymetries
- Mobility
- Network Entity Reach
- Capacity
- Provider/Consumer Network Capacity
- Internal Network Capacity
- Nodal Capacity
- Storage Services
- Persistance
- Access Speed Tiering
- Compute Platform Resources
- Intel Instruction Set
- PowerPC
- Small platform set
- Smartphone
- PDA
- High Performance Platforms
- Very large word size
- Massively parallel processors
- User Delivery Requirements
- OS Types Supported
- Fault Tolerance
- Application Types
- Security Resources
- Other Virtualized Resources
- Physical Tier
- Scalability
- Ownership
- Capacity
- Dynamic Range
- Operational Visibility
- Integrated Resource Management / Enterprise Resource Planning
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Customer Relationship Management
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Billing
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Demand Forecasting
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Network Management
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Application Management
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Data Rights Management
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Regulatory Compliance Management
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Cybersecurity
- Data/Service Related to Cloud Computing
- Relevant Reference/Scope Issue
- Capability/Domain Independent Scope
- Net-Readiness
- Technical/Economic Feasibility
- General
-
Economic Analysis
- Cost of Status Quo
- Cost of IaaS
- Development / PaaS Cost