by: farnaz zeidi m.sc. student in information technology, mazandaran university of science and...
TRANSCRIPT
By: Farnaz ZeidiM.Sc. student in Information Technology,
Mazandaran University of Science and Technology (MUST),Babol, Mazandaran, IRAN
Supervisor: Hadi Salimi
February 2011 1
OutlineOutline
● Standards for Application Developers● Standards for Messaging● Standards for Security● Standards Groups ● Some Activities in Cloud Computing Standardization ● Recommendations● Refrence
Common Standards In Cloud Computing 2
The purpose :Is to ensure uniform, consistent, high-quality software solutions.
Browsers (Ajax)Data (XML, JSON)Solution Stacks (LAMP and LAPP)
Standards for Application DevelopersStandards for Application Developers(Cont’d)(Cont’d)
Common Standards In Cloud Computing 3
Browsers (Ajax)
Its predecessor AJAX (Asynchronous JavaScript and XML).
A web application can request only the content that needs to be updated.
This greatly reduces networking bandwidth usage and page load times.
Use in interactive animation on web pages.
Standards for Application DevelopersStandards for Application Developers(Cont’d)(Cont’d)
Common Standards In Cloud Computing 4
Data (XML, JSON)
XML(Extensible Markup Language)•Usually combination with other standards.•Define the content of a document separately.
JSON(JavaScript Object Notation)•A lightweight computer data interchange format•Is specified in Internet Engineering •Request for Comment (RFC)•Independent data format
Standards for Application DevelopersStandards for Application Developers(Cont’d)(Cont’d)
Common Standards In Cloud Computing 5
Solution Stacks (LAMP and LAPP)LAMP
The acronym Linux,Apache,MySQL, and PHP (or Perl or Python)Open source nature, low cost, and the wide distribution of its componentsUsed to
•Run dynamic web sites and servers. •Development and deployment of high-performance web applications.•Define a web server infrastructure.•Creating a programming environment for developing software.
LAPP•It is more powerful than LAMP stack
OutlineOutline
● Standards for Application DevelopersStandards for Messaging● Standards for Security● Standards Groups ● Some Activities in Cloud Computing Standardization ● Recommendations● Refrence
Common Standards In Cloud Computing 6
The purpose :Standards for message that is a unit of information that is moved from one place to anotherSimple Message Transfer Protocol (SMTP)Post Office Protocol (POP)Internet Messaging Access Protocol (IMAP)Syndication (Atom, Atom Publishing Protocol, and RSS)Communications (HTTP, SIMPLE, and XMPP)
Standards for Messaging Standards for Messaging (Cont’d)(Cont’d)
Common Standards In Cloud Computing 7
Simple Message Transfer Protocol (SMTP)
•SMTP is usually used for: •Sending a message from a workstation to a mail server. •Or communications between mail servers.
•Client must have a constant connection to the host to receive SMTP messages.
Standards for Messaging Standards for Messaging (Cont’d)(Cont’d)
Common Standards In Cloud Computing 8
Post Office Protocol (POP)•Purpose is to download messages from a server.•This allows a server to store messages until a client connects and requests them.•Once the client connects, POP servers begin to downloadthe messages and subsequently delete them from the server
Internet Messaging Access Protocol (IMAP)•IMAP allows messages to be kept on the server. •But viewed as though they were stored locally.
Standards for Messaging Standards for Messaging (Cont’d)(Cont’d)
Common Standards In Cloud Computing 9
Syndication (Atom & Atom Publishing Protocol, and RSS)
RSS•The acronym “Really Simple Syndication” or “Rich Site Summary”.•Used to publish frequently updated works—such as news headlines•RSS is a family of web feed formats
Atom & Atom Publishing Protocol•The Atom format was developed as an alternative to RSS
Standards for Messaging Standards for Messaging (Cont’d)(Cont’d)
Common Standards In Cloud Computing 10
Communications (HTTP, SIMPLE, and XMPP)
HTTP•The acronym “Hypertext Transfer Protocol.•HTTP is a request/response standard between a client and a server•For distributed, collaborative,hypermedia information systems.
XMPP(Extensible Messaging and Presence Protocol)
•Used for near-real-time, extensible instant messaging and prsence information.•XMPP remains the core protocol of the Jabber Instant Messaging and Presence technology
Standards for Messaging Standards for Messaging (Cont’d)(Cont’d)
Common Standards In Cloud Computing 11
Communications (HTTP, SIMPLE, and XMPP)
SIMPLE•Session Initiation Protocol for Instant Messaging and Presence Leveraging Extensions•For registering for presence information and receiving notifications.•It is also used for sending short messages and managing a session of realtime messages between two or more participants.
OutlineOutline
● Standards for Application Developers● Standards for Messaging● Standards for Security● Standards Groups ● Some Activities in Cloud Computing Standardization ● Recommendations● Refrence
Common Standards In Cloud Computing 12
The purpose :
Security standards define the processes, procedures, and practices necessary for implementing a security program.SAMLOAuthOpenIDSSL/TLS
Standards for SecurityStandards for Security(Cont’d)(Cont’d)
Common Standards In Cloud Computing 13
SAML•Standard for communicating authentication, authorization, and attribute information among online partners.•It allows businesses to securely send assertions between partners.•SAML protocol refers to what is transmitted, not how it is transmitted.•Three types of statements are provided by SAML: authentication statements, attribute statements, and authorization decision statements
Standards for SecurityStandards for Security(Cont’d)(Cont’d)
Common Standards In Cloud Computing 14
OAuth(Open Authentication)•OAuth is a method for publishing and interacting with protected data.•For developers, OAuth provides users access to their data .•OAuth allows users to grant access to their.•OAuth by itself provides no privacy at all and depends on other protocols such as SSL .
Standards for SecurityStandards for Security(Cont’d)(Cont’d)
Common Standards In Cloud Computing 15
OpenID•OpenID is an open, decentralized standard for user authentication.•And allows users to log on to many services using the same digital identity. •It is a single-sign-on (SSO) method of access control.
SSL/TLS•TLS or its predecessor SSL •To provide security and data integrity for communications.•To prevent eavesdropping, tampering, and message forgery.
OutlineOutline
● Standards for Application Developers● Standards for Messaging● Standards for Security● Standards Groups ● Some Activities in Cloud Computing Standardization ● of Open Standards● Recommendations● Refrence
Common Standards In Cloud Computing 16
Standards Groups Standards Groups (Cont’d)(Cont’d)
Common Standards In Cloud Computing 17
Standards Groups Standards Groups (Cont’d)(Cont’d) Cloud Security Alliance (CSA) Distributed Management Task Force (DMTF) Storage Networking Industry Association (SNIA) Open Grid Forum (OGF) Open Cloud Consortium (OCC) Organization for the Advancement of Structured Information
Standards (OASIS) TM Forum Internet Engineering Task Force (IETF) International Telecommunications Union (ITU) European Telecommunications Standards Institute (ETSI) Object Management Group (OMG)
Common Standards In Cloud Computing 18
Standards Groups Standards Groups (Cont’d)(Cont’d)
Common Standards In Cloud Computing 19
SaaS PaaS IaaS DaaS
Provisioning OGF/DMTF SNIA
Metering and Billing
SNIA
Security OGF/DMTF/CSA
SNIA (IETF)
Privacy
Quality of Service
DMTF SNIA
Identity OASIS
Which Organizations doing What?
Standards Groups Standards Groups (Cont’d)(Cont’d)
Common Standards In Cloud Computing 20
Which Organizations doing What?
SaaS PaaS IaaS DaaS
Client Application Interface
Development Platform
Virtual Machine Interface
DMTF
Data Storage Interface
SNIA
OutlineOutline
● Standards for Application Developers● Standards for Messaging● Standards for Security● Standards Groups ● Some Activities in Cloud Computing Standardization ● of Open Standards● Recommendations● Refrence
Common Standards In Cloud Computing 21
Open Grid Forum (OGF)– Open Cloud Computing Interface, an API for managing cloud computing infrastructure
Distributed Management Task Force (DMTF)– Open Virtualisation Format Standard describes an open, secure,portable, efficient, extensible format for packaging and distribution of virtual appliances and applications
– Open Cloud Standards Incubator focuses on tandardising interactions between cloud environments by developing resource management protocols, packaging formats and security mechanisms.
Cloud Security Alliance (CSA)– Best practices for providing security assurance within Cloud computing
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 22
European Telecommunications Standards Institute (ETSI)– Looks at commercial trend towards cloud computing with particular emphasis on ubiquitous network access to scalable computing storage resource and IaaS delivery model
National Institute of Standards and Technology (NIST)– Developed a working definition of cloud computing
Object Management Group (OMG)– Focus on modeling deployment of applications & services on cloud for portability, interoperability & reuse
Storage Networking Industry Association (SNIA)– Cloud Data Management Interface, an architecture standard that allows for interoperable cloud storage zmplementation from cloud service providers and storage vendors
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 23
Template
[Common name of organization, consortium, group]
Summary
Full name of (standards) body / group [full name]
Membership [short description of who is participating]
Website [official website]
Activities
Summary of activities [outline of activities, ToR]
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 24
Template
DMTF Open Cloud Standards Incubator
Summary
Full name of (standards) body / group Distributed Management Task Force: Open Cloud Standards Incubator
Membership DMTF members
Website http://www.dmtf.org/about/cloud-incubator/
Activities
Summary of activities DMTF’s Open Cloud Standards Incubator focuses on standardizing interactions between cloud environments by developing cloud resource management protocols, packaging formats and security mechanisms to facilitate interoperability.
DMTF Open Cloud Standards Incubator
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 25
Template
Cloud Computing Use Cases Group
Summary
Full name of (standards) body / group Cloud Computing Use Cases Group
Membership collaboration of cloud consumers and cloud vendors
Website http://groups.google.com/group/cloud-computing-use-cases
Activities
Summary of activities This group exists to define use cases for cloud computing. - Definitions and Taxonomy - Use Case Scenarios - Customer Scenarios - Developer Requirements - Security Scenarios - Security Use Case Scenarios
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 26
Template
CSA
Summary
Full name of (standards) body / group Cloud Security Alliance
Membership Individuals (via LinkedIn Group, http://www.linkedin.com/groups?gid=1864210), Affiliates (Not-for-profit associations and industry groups), 40+ Corporate Members
Website http://www.cloudsecurityalliance.org/
Activities
Summary of activities The Cloud Security Alliance is a non-profit organization formed to promote the use of best practices for providing security assurance within Cloud Computing, and provide education on the uses of Cloud Computing to help secure all other forms of computing.
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 27
Template
KCSA
Summary
Full name of (standards) body / group Korea Cloud Service Association
Membership
Website http://www.kcsa.or.kr/index.jsp
Activities
Summary of activities
1. Create demand of Cloud service 2. Create Cloud service activation framework and its environments 3. Disseminate and promote Cloud service to public sectors
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 28
Template
DMTF VMAN Initiative
Summary
Full name of (standards) body / group Distributed Management Task Force: Virtualization Management Initiative
Membership DMTF members: Technology vendors, government organizations
Website http://www.dmtf.org/initiatives/vman_initiative/
Activities
Summary of activities DMTF’s Virtualization Management Initiative (VMAN) includes a set of specifications that address the management lifecycle of a virtual environment. VMAN’s OVF (Open Virtualization Format) specification provides a standard format for packaging and describing virtual machines and applications for deployment across heterogeneous virtualization platforms. VMAN’s profiles standardize many aspects of the operational management of a heterogeneous virtualized environment .
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 29
DMTF’s Open Virtualization Format (OVF)
First industry standard to enable interoperability within virtualized environments.
Benefits:
a)Improves your user experience with streamlined installationsb)Offers customers virtualization platform independence and flexibilityc)Creates complex pre-configured multi-tiered services more easilyd)Efficiently delivers enterprise software through portable virtual machinese)Offers platform-specific enhancements and easier adoption of advances in virtualization through extensibility
Some Activities in Cloud Computing Standardization Some Activities in Cloud Computing Standardization (Cont’d) (Cont’d)
Common Standards In Cloud Computing 30
The key properties of the OVF:
Optimized for distributionSupports both single VM and multiple-VM configurations. Vendor and platform independentExtensibleLocalizableOpen standardSecurity
Conclusion & RecommendationsConclusion & Recommendations
Common Standards In Cloud Computing 31
Working with Cloud standards groups and providers, develop a plan for creating demos, test-beds, and reference implementations.Document standards requirements and specifications.Verify that standards and innovative capabilities satisfy specifications and can be deployed by government projects .
Figure 10- Alliances
RefrenceRefrence
Common Standards In Cloud Computing 32
DMTF Informational , Interoperable Clouds , A White Paper from the Open Cloud Standards Incubator, 2009-11-11, : DSP-IS0101
Rittinghouse, Jon W.;Ransome,James F.," Cloud Computing mplementation, Management, and Security",2010
Mr. Krunal D. Trivedi, Mr. Kamaljit I. Lakhtaria, Mrs. Palak R. Shah,Dr.N.J.Patel,” Analyzing Horizontal Integration among Soa, Cloud Computing and Grid Computing”, Global Journal of Computer Science and Technology Vol. 10 Issue 7 Ver. 1.0 September 2010, P a g e 81
RefrenceRefrence
Common Standards In Cloud Computing 33
Roy T.Fielding, “Architectural Styles and the Design of Network-Based Software rchitectures,” dissertation, University of California, Irvine, 2000
Mr. Krunal D. Trivedi1, Mr. Kamaljit I. Lakhtaria2, Mrs. Palak R. Shah3,Dr.N.J.Patel4 , Analyzing Horizontal Integration among Soa, Cloud Computing and Grid Computing, Global Journal of Computer Science and Technology, Vol. 10 Issue 7 Ver. 1.0 September 2010 ,P a g e 81
http://cloudstandards.org
http://federalcloudcomputing.wik.is/@api/deki/files/105/=Mell_Cloud_Standards_Roadmap.pdf
http://groups.google.com/group/cloud-computing-use-cases
RefrenceRefrence
Common Standards In Cloud Computing 34
The Cloud Security Alliance.http://www.cloudsecurityalliance.org.
The DMTF Open Virtualization Format.www.dmtf.org/standards/published_documents/DSP0243_1.0.0.pdf.
The OGF Open Cloud Computing Interface.http://www.occi-wg.org/doku.php.
The SNIA Cloud Data Management Interface.http://www.snia.org/cloud.
http://www.cloudsecurityalliance.org
http://www.kcsa.or.kr/index.jsp
Common Standards In Cloud Computing 35