Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Scribd
Upload
3 views

Module _1

The NIST cloud computing reference architecture outlines three service models: SaaS, PaaS, and IaaS, and defines five key actors involved in cloud transactions: cloud consumer, provider, carrier, auditor, and broker. Each actor plays a distinct role, with consumers requesting services, providers delivering them, and auditors assessing compliance and security. The architecture emphasizes the shared control between providers and consumers over resources, varying by service model.

Uploaded by

prakashas404
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
3 views

Module _1

The NIST cloud computing reference architecture outlines three service models: SaaS, PaaS, and IaaS, and defines five key actors involved in cloud transactions: cloud consumer, provider, carrier, auditor, and broker. Each actor plays a distinct role, with consumers requesting services, providers delivering them, and auditors assessing compliance and security. The architecture emphasizes the shared control between providers and consumers over resources, varying by service model.

Uploaded by

prakashas404
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 23

NIST cloud reference architecture

 NIST - National Institute of Standards and Technology

 The NIST cloud computing definition is widely accepted as a


valuable contribution toward providing a clear understanding of
cloud computing technologies and cloud services.

 It provides a simple and unambiguous taxonomy of three service


models available to cloud consumers:

1. cloud software as a service (SaaS),


2. cloud platform as a service (PaaS), and
3. cloud infrastructure as a service (IaaS) 1
2
NIST cloud reference architecture

 The NIST cloud computing reference architecture defines


five major actors: cloud consumer, cloud provider, cloud
carrier, cloud auditor and cloud broker.

 Each actor is an entity (a person or an organization) that


participates in a transaction or process and/or performs
tasks in cloud computing.

3
4
NIST cloud reference architecture

 A cloud consumer may request cloud services from a cloud


provider directly or via a cloud broker.

 A cloud auditor conducts independent audits and may


contact the others to collect necessary information.

5
6
Example Usage Scenario 1:

 A cloud consumer may request service from a cloud broker


instead of contacting a cloud provider directly.

 The cloud broker may create a new service by combining


multiple services or by enhancing an existing service.

 In this example, the actual cloud providers are invisible to


the cloud consumer and the cloud consumer interacts
directly with the cloud broker. 7
Example Usage Scenario 1:

8
Example Usage Scenario 2:
 Cloud carriers provide the connectivity and transport of cloud services
from cloud providers to cloud consumers.
 As illustrated in Figure, a cloud provider participates in and arranges for
two unique service level agreements (SLAs), one with a cloud carrier (e.g.
SLA2) and one with a cloud consumer (e.g. SLA1).
 A cloud provider arranges service level agreements (SLAs) with a cloud
carrier and may request dedicated and encrypted connections to ensure
the cloud services are consumed at a consistent level according to the
contractual obligations with the cloud consumers.
 In this case, the provider may specify its requirements on capability,
flexibility and functionality in SLA2 in order to provide essential
requirements in SLA1. 9
Example Usage Scenario 2:

10
Example Usage Scenario 3:
 For a cloud service, a cloud auditor conducts independent
assessments of the operation and security of the cloud service
implementation.

 The audit may involve interactions with both the Cloud Consumer
and the Cloud Provider.

11
Cloud Consumer
 The cloud consumer is the principal stakeholder for the cloud
computing service.
 A cloud consumer represents a person or organization that
maintains a business relationship with, and uses the service from a
cloud provider.
 A cloud consumer browses the service catalog from a cloud
provider, requests the appropriate service, sets up service contracts
with the cloud provider, and uses the service.
 The cloud consumer may be billed for the service provisioned, and
needs to arrange payments accordingly
12
Cloud Consumer
 Cloud consumers need SLAs to specify the technical performance
requirements fulfilled by a cloud provider.
 SLAs can cover terms regarding the quality of service, security,
remedies for performance failures.
 A cloud provider may also list in the SLAs a set of promises
explicitly not made to consumers, i.e. limitations, and obligations
that cloud consumers must accept.
 A cloud consumer can freely choose a cloud provider with better
pricing and more favorable terms.

13
Cloud Consumer

 Typically a cloud provider‟s pricing policy and SLAs are non-


negotiable, unless the customer expects heavy usage and might be
able to negotiate for better contracts.

 Depending on the services requested, the activities and usage


scenarios can be different among cloud consumers.

14
15
Cloud Provider
 A cloud provider is a person, an organization;

 it is the entity responsible for making a service available to


interested parties.

 A Cloud Provider acquires and manages the computing


infrastructure required for providing the services, runs the
cloud software that provides the services, and makes
arrangement to deliver the cloud services to the Cloud
Consumers through network access. 16
Cloud Provider
 For Software as a Service, the cloud provider deploys,
configures, maintains and updates the operation of the
software applications on a cloud infrastructure
 So that the services are provisioned at the expected service
levels to cloud consumers.
 The provider of SaaS assumes most of the
responsibilities in managing and controlling the
applications and the infrastructure, while the cloud
consumers have limited administrative control of the
applications. 17
Cloud Provider
 For PaaS, the Cloud Provider manages the computing
infrastructure for the platform and runs the cloud software that
provides the components of the platform, such as runtime
software execution stack, databases, and other middleware
components.

 The PaaS Cloud Provider typically also supports the development,


deployment and management process of the PaaS Cloud Consumer
by providing tools such as integrated development environments
(IDEs), development version of cloud software, software
development kits (SDKs), deployment and management tools.
18
Cloud Provider
 The PaaS Cloud Consumer has control over the applications and
possibly some the hosting environment settings, but has no or
limited access to the infrastructure underlying the platform such as
network, servers, operating systems (OS), or storage.
 For IaaS, the Cloud Provider acquires the physical computing
resources underlying the service, including the servers, networks,
storage and hosting infrastructure.
 The Cloud Provider runs the cloud software necessary to makes
computing resources available to the IaaS Cloud Consumer through
a set of service interfaces and computing resource abstractions,
such as virtual machines and virtual network interfaces.
19
Scope of Control between Provider and Consumer
 The Cloud Provider and Cloud Consumer share the control of
resources in a cloud system.
 Different service models affect an organization‟s control over the
computational resources.
 The figure shows these differences using a classic software stack
notation comprised of the application, middleware, and OS layers.
 This analysis of controls over the application stack helps
understand the responsibilities of parties involved in managing the
cloud application.

20
Scope of Control between Provider and Consumer

21
Scope of Control between Provider and Consumer
 The application layer includes software applications targeted at
end users or programs.
 The applications are used by SaaS consumers, installed/managed/
maintained by PaaS consumers, IaaS consumers, and SaaS providers.
 The middleware layer provides software building blocks (e.g.,
libraries, database, and Java virtual machine) for developing
application software in the cloud.
 The middleware is used by PaaS consumers,
installed/managed/maintained by IaaS consumers or PaaS
providers, and hidden from SaaS consumers.
22
Scope of Control between Provider and Consumer

 The OS layer includes operating system and drivers, and is hidden


from SaaS consumers and PaaS consumers.
 An IaaS cloud allows one or multiple guest OS‟s to run virtualized
on a single physical host.
 Generally, consumers have broad freedom to choose which OS to
be hosted among all the OS‟s that could be supported by the cloud
provider.
 The IaaS consumers should assume full responsibility for the guest
OS‟s, while the IaaS provider controls the host OS.
23

You might also like