government cloud computing_strategy

Click to edit Master title style

1

Cloud Computing InitiativeVision and Strategy Document(DRAFT)

February 2010

GSA Confidential and Proprietary – Not for Distribution


2

Federal Cloud Computing Vision and Mission

22

Cloud Computing Vision Statement

Establish secure, easy to use, rapidly provisioned IT services for

the Federal Government, including:

• Agile and simple acquisition and certification processes;

• Elastic, usage-based delivery of pooled computing resources;

• Portable, reusable and interoperable business-driven tools;

• Browser-based ubiquitous internet access to services; and

• Always on and available, utility-like solutions.

Cloud Computing Mission Statement

Drive the government-wide adoption of cost effective, green and

sustainable Federal cloud computing solutions.

This information is draft and has not been published, please do not disseminate


3

Cloud Capabilities Must be Tailored to Government’s Unique Needs

Infrastructure as a Service (IaaS)

• Computing• Storage• Application hosting


• Computing• Storage• Application hosting

Platform as a Service (PaaS)

• Database and Database Management Systems• Developer / Testing Tools• Virtual Environments


• Database and Database Management Systems• Developer / Testing Tools• Virtual Environments

Software as a Service (SaaS)

• Citizen Engagement (Wikis, Blogs, Data.gov)• Government Productivity (Cloud based tools)• Business Enablement (Salesforce.com)• Enterprise Applications (Core Mission & Business Svcs)

Software as a Service (SaaS)

• Citizen Engagement (Wikis, Blogs, Data.gov)• Government Productivity (Cloud based tools)• Business Enablement (Salesforce.com)• Enterprise Applications (Core Mission & Business Svcs)

Security & Data Privacy

Delivery & Operations

Offer different levels of security and data privacy based on the application and nature of the services provided.

Potential standardize Low, Med and High categories for Simplicity.

Enable adoption of Cloud Computing services in different Cloud models including Public, Private, Hybrid and Community models.

Develop interoperability standards in conjunction with the industry to provide interoperability at the data infrastructure, platform and application levels.

Interoperability& Integration

Cloud Computing Services

Federal Government Considerations for Cloud Computing

GSA Confidential and Proprietary – Not for Distribution 3


4

Public Internet

Public Cloud:The cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services.

Community Cloud: The cloud infrastructure is shared by several organizations and supports a specific community that has shared concerns (e.g., mission, security requirements, policy, and compliance considerations). It may be managed by the organizations or a third party and may exist on premise or off premise.

Hybrid Cloud: The cloud infrastructure is a composition of two or more clouds (private, community, or public) that remain unique entities but are bound together by standardized or proprietary technology that enables data and application portability (e.g., cloud bursting).

Private Cloud Commercially Hosted:Publically available Cloud Computing services offered through commercial sources that are dedicated and separate from the Public both physically and logically and must to remain within the U.S. borders to support heighted data security and privacy requirements. Access to these services are provided through a dedicated Government Intranet and is not accessible from the Public Internet.

Government DedicatedIntranet

Private Government Cloud :The cloud infrastructure is operated solely for an organization. It may be managed by the organization or a third party and may exist on premise or off premise.

Cloud Sourcing ModelsOutsourced Government

Tru

st (

Sec

uri

ty a

nd

Dat

a P

riva

cy)

High

Low

PrivateGovernment Cloud

Private CommerciallyHosted Cloud

PublicCloud

Hybrid Government Cloud

CommunityCloud

The NIST Definition Offers Multiple Delivery Models for Cloud Computing



5

Establish and Manage Governance Manage Cloud Computing Executive Steering Committee

and Cloud Computing Agency Advisory Council Establish and Manage Communities of Practice and

Working Groups Coordinate Policy and Strategy Development and

Participation in other Governance bodies related to Cloud Computing activities (e.g. Security, Records Management, eDiscovery)

Establish a Federal C&A Process

Provide Procurement Leadership Develop Acquisition Vehicles to Ease Agency Procurement

of Cloud Computing Solutions Coordinate across the Federal Acquisition community to

ensure adoption and implementation of cloud-related procurement policies and processes

Facilitate Adoption of the Cloud Computing Storefront

Drive Cloud Technology Innovation Identify Common Cloud Services and Foster Standards

Development and Security Policies Develop Architectures that Allow Agencies to More

Effectively Implement and Leverage Cloud Computing Services

Establish, Manage and Coordinate Cloud Computing Developer Communities and Application Libraries

Enable the Reuse, Modularity and Interoperability of Cloud Computing Services

5

Enable Implementation and Adoption Assist and Guide Agencies to Implement and Roll out Cloud Solutions (e.g.

Service Provisioning) Facilitate Identification of Agency Partners for Pilot Activities Develop Methodologies to Effectively Assess and Implement Services Develop and Disseminate Cloud Services Operating and Business Models

Enable Sustainable & Cost-Effective Computing (Green IT, TCO) Develop and Manage Business Case Templates Identify Core Evaluative Criteria Identify Cloud Computing Performance Metrics (Enterprise and Technical) Develop Case Studies, Best Practices/Lessons Learned to Specifically

Demonstrate Support of Sustainability and Cost Effective Computing

Operate as a Service Provider Identify and Offer Government Wide Services (e-mail, instant messaging,

Web 2.0 tools, etc) Assist Agencies in Determining Their Role in Developing/Hosting Services Facilitate Common Interfaces to Integrate Existing Federal Cloud service

environments

Conduct Outreach Activities Develop the Cloud Services Communications Plan Design and Implement a Central Information Portal for Federal Cloud

Computing Develop and Manage Content for Communications Manage Cloud-related Wikis, Blogs, Portal, and other collaborative media Develop and present Training

Federal Cloud Computing Goals and Objectives

This information is draft and has not been published, please do not disseminate


6

En

able

En

able

Su

pp

ort

Su

pp

ort

Lea

dL

ead

6

Federal Cloud Computing Goals and Primary Objectives and Initiatives

Establish and Manage Governance


Provide Procurement Leadership


Facilitate Implementation

Facilitate Implementation

Operate as a Solutions Provider

Operate as a Solutions Provider

Conduct Outreach Activities


Drive Cloud Technology Innovation


Enable Sustainable & Cost-Effective

Computing (Green IT, TCO)

Enable Sustainable & Cost-Effective

Computing (Green IT, TCO)

Goal AreaGoal Area

Establish a Security Working Group

Establish a Security Working Group

Develop Acquisition Vehicles to Ease Agency

Procurement of Cloud Computing Solutions

Develop Acquisition Vehicles to Ease Agency

Procurement of Cloud Computing Solutions

Assist & Guide Agencies to Implement Cloud Solutions (e.g. Service Provisioning)

Assist & Guide Agencies to Implement Cloud Solutions (e.g. Service Provisioning)

Develop the Cloud Services Business Model

Develop the Cloud Services Business Model

Design and Implement a Central Information Portal

for Federal Cloud Computing

Design and Implement a Central Information Portal

for Federal Cloud Computing

Identify Common Cloud Services & Foster

Standards Development & Security Policies

Identify Common Cloud Services & Foster

Standards Development & Security Policies

Identify Cloud Computing Performance Metrics


Primary ObjectivePrimary Objective

Establish Security Initiative and Implement and Manage

a Federal C&A Process

Establish Security Initiative and Implement and Manage

a Federal C&A Process

Develop Acquisition Roadmap


Identify and Facilitate Cloud Computing Agency Pilots

Identify and Facilitate Cloud Computing Agency Pilots

Develop Services RoadmapDevelop Services Roadmap

Establish Communications Initiative and Develop Portal

Establish Communications Initiative and Develop Portal

Develop Requirements for Portability Standards

Develop Requirements for Portability Standards

Establish Performance Metrics Initiative


Primary InitiativePrimary Initiative

Define Data Center Optimization Strategy

Define Data Center Optimization Strategy

Develop Data Center Analysis and Agency Goals

Develop Data Center Analysis and Agency Goals

Create Federal policies on security, standards, and governance

Create Federal policies on security, standards, and governance

Provide cloud computing solutions in support of Federal agency missions

Provide cloud computing solutions in support of Federal agency missions

Provide strategic roadmaps, best practices, and acquisition guidance

Provide strategic roadmaps, best practices, and acquisition guidance

6This information is draft and has not been published, please do not disseminate


77

Federal Cloud Computing Transition Plan

Assist Agencies in Implementing/Providing Cloud Solutions and Services


Stand Up Federal C&A Process


Identify Technology Center Initiatives and Agency Pilots

Develop Services Roadmap

Develop Portal


Program Management/Governance/

Communications

Program Management/Governance/

Communications

StandardsStandards

SecuritySecurity

Acquisition/Procurement/

Services

Acquisition/Procurement/

Services

Develop Cloud Computing Maturity Model

Develop Cloud Computing Implementation Guide for Agencies

Develop Cloud Segment Architectures

20112011 ……WorkstreamWorkstream

Manage ESC, CCAC and Working Groups (ongoing)

Adoption and Implementation

(Sustainable and Cost-Effective Computing and

Data Center Consolidation and Optimization)

Adoption and Implementation

(Sustainable and Cost-Effective Computing and

Data Center Consolidation and Optimization)

Conduct Outreach Activities (Summits, Online Discussions, Training, etc.)

20102010

Coordinate with Working Groups and Agencies to Collect Content for Portal (ongoing)

Identify Interoperability and Portability Standards Requirements

Identify Security Standards Requirements

Identify Manageability Standards Requirements

Work with Industry Standards Bodies (ongoing)Develop Standards Roadmap

Fully Inventory Security Challenges (e.g. identify FISMA gaps)

Identify Pilots or Other Projects that can Test Security Issues

Develop Analytic Framework

Develop Data Center Assessment Guide and Maturity Model

Assist Agencies in Data Center Optimization Strategies

Award IaaS Release PaaS RFI Develop Guidelines for Leveraging Contract Vehicles

Identify Integration and Coordination Points between Working Groups and other Government Fora (ongoing)

Coordinate Policy and Strategy Development (eDiscovery, Records Management, Privacy, etc.)

Maintenance of Apps.Gov (ongoing)

Work with Agencies on Enabling Standards Adoption (ongoing)

Validate Standards Use Cases

Work with Agencies and Industry to Facilitate Use of the Federal C&A (ongoing)

Coordinate Across the Federal Acquisition Community to Implement Procurement Policies

Facilitate Adoption of Apps.Gov

Establish, Manage and Coordinate Developer Communities and Application Libraries

Identify Security Policy Issues, Coordinate Feedback and Determine Recommendations

Implement and Manage Pilots

Identify Data Center Pilots and Develop Tools

Conduct Data Center Analysis

Implement, Manage Pilots and Capture Best Practices and Lessons Learned

Develop Data Center Recommendations for Agencies

Finalize Communications Plan

Develop and Manage Templates

Develop Draft SOWs

7This plan is currently under consideration and should be considered Notional/Draft.


88

GovAgencies

Vendors CCESC/CCAC

CCPMO

• Cloud Computing Vision / Mission

• Information Portal• Market Research / Use Cases• Policies and Guidelines• Enterprise Architecture• Apps.gov / Procurement Support• Information Dissemination• Virtual Online Summits

• Data Call• Requirements• Interests & Feedback

• Standards Requirements• Security Processes• Procurement Approaches• Best Practices• Gov-wide Communications

• Direction and Guidance• Facilitation• Schedule and Coordination

• Compliant Services and Offerings• Input to Standards• Collaboration on Developing

Standards & Best Practices

Security

Standards

OpsExcellenceComm

Cloud Computing Working Groups

• RFI/RFPs• Definitions• Security

Requirements• Standards

Requirements• SLAs

The Cloud Computing PMO is the nucleus of Cloud Computing Initiative for the Federal Government, setting direction, establishing guidelines and defining the future vision and architecture

Cloud Computing Initiative:Governance Model


9

Working Groups Provide Support Across All of the Goal Areas and are Driven by the CCPMO

Security Working Group Identify Functional Leader and Membership Develop Objectives for Cloud Computing Advisory Council Security Working Group (e.g.

Establish a Federal C&A Process) Define Intended Deliverables Develop Security Roadmap

Standards Working Group Identify Functional Leader and Membership Develop Objectives for Group Define Intended Deliverables Develop Standards Roadmap

Operational Excellence Working Group Identify Functional Leader and Membership Develop Objectives for Group Define Intended Deliverables Develop Operational Excellence Roadmap Assist and Guide Agencies to Implement and Roll out Cloud Solutions Develop Case Studies, Best Practices/Lessons Learned Facilitate Identification of Agency Partners for Pilot Activities Develop Methodologies to Effectively Assess and Implement Services Develop and Disseminate Operating Models and Business Processes

Communications Working Group Identify Functional Leader and Membership Develop Objectives for Group Define Intended Deliverables Develop the Cloud Services Communications Plan Design and Implement a Central Information Portal for Federal Cloud Computing Develop and Manage Content for Communications Develop and Conduct Training





Enable Adoption and Implementation

Enable Adoption and Implementation

Operate as a Service Provider

Operate as a Service Provider





Enable Sustainable & Cost-Effective Computing

(Green IT, TCO)

Enable Sustainable & Cost-Effective Computing

(Green IT, TCO)

Goal AreaGoal Area Cloud Computing Program Management OfficeCloud Computing Program Management Office

Each Working Group will ultimately establish its own objectives and plan of action – items

referenced here are just a sample

Each Working Group will ultimately establish its own objectives and plan of action – items

referenced here are just a sample


10

Government Cloud Services ModelOnline User Interface



11

Components Description

Customizable User Page

• One stop shop/ single view for Users to manage interactions with Cloud Services

Application Library

• Applications and content made available to Users through a simple GUI. These applications / content can be downloaded easily from the Library.

Online User Storage

• Online storage for Users to maintain and manage individual User files, data and objects

Collaboration • Widgets that allow Users to collaborate and generate content. These widgets may include Wikis, Blogs, and IM

Access /Connectivity

• Network connectivity and devices to access Cloud services

Cloud Standards/ Interoperability

• Cloud standards allowing the integration and interoperability of services from multiple Clouds

Provisioning / Admin Tools

• Provisioning and administrative tools to provide control of User profiles, access technical support, and manage privilege, authorization to applications and content

Security /Data Privacy

• Applying security framework and data privacy standards for Federal Cloud Computing

Customizable User Page

Collaboration

Online UserStorage

Access / Connectivity

Cloud Standards / Interoperability

Security /Data Privacy

Provisioning /Admin Tools

Application Library

1 2

3

4

5

6

7

8

CloudServices

Federal Cloud ComputingCloud Program Services Model


1

2

3

4

5

6

7

8

To deliver the Online User Interface, the government must address the following Service Components…

To deliver the Online User Interface, the government must address the following Service Components…


12

Government Cloud Services ModelCloud Relationship View

Behind the scenes are the core cloud services that

support the daily functions for Government employees

Commercially HostedPrivate Clouds

PublicCloud Vendors

Internet

Government Hybrid Clouds

ProvisioningIntegration

ProcurementFinancials

Reporting Management

Security C&A

PublicCloud Vendors

Government Private Clouds

Government Private Clouds

DMZ

DMZ

Single Sign on



13

Federal Cloud Computing Draft Services Framework

User Tools



Software as a Service (SaaS) / Applications User/ Admin Portal

Reporting & Analytics

Service Mgmt & Provisioning

Analytic Tools

Analytic Tools

Data MgmtData Mgmt

ReportingReporting

Knowledge Mgmt

Knowledge Mgmt

Citizen Engagement

Application Integration

API’sAPI’s

Workflow Engine

Workflow Engine

EAIEAI

Mobile Device

Integration

Mobile Device

Integration

Data Migration

Tools

Data Migration

Tools

ETLETL

Wikis / BlogsWikis / Blogs

Social NetworkingSocial Networking

Agency Website Hosting

Agency Website Hosting

Email / IM Email / IM

Virtual DesktopVirtual Desktop

Office AutomationOffice Automation

Business Svcs Apps

Business Svcs Apps

Core Mission Apps

Core Mission Apps

Legacy Apps (Mainframes)

Legacy Apps (Mainframes)

Gov Productivity Gov Enterprise Apps

DatabaseDatabase Testing Tools

Testing Tools

Developer Tools

Developer Tools

DBMSDBMS Directory Services

Directory Services

Security & Data Privacy Data/Network

Security

Data/Network Security Data PrivacyData Privacy Certification &

Compliance

Certification & Compliance

Authentication & Authorization

Authentication & Authorization

Auditing & Accounting

Auditing & Accounting

Service Provisioning

Service Provisioning SLA MgmtSLA Mgmt Inventory

Mgmt

Inventory Mgmt

CoS/QoSMgmt

CoS/QoSMgmt

Utilization Monitoring

Utilization Monitoring

App Perf Monitoring

App Perf Monitoring

DR / Backup

DR / Backup

Operations Mgmt

Operations Mgmt

StorageStorage Virtual Machines

Virtual Machines

Web ServersWeb Servers Server HostingServer HostingCDNCDN

Data Center Facilities

Routers / Firewalls

Routers / Firewalls LAN/WANLAN/WAN Internet

Access

Internet Access

Hosting Centers

Hosting Centers

User Profile Mgmt

User Profile Mgmt

Trouble Mgmt

Trouble Mgmt

Product Catalog

Product Catalog

Order MgmtOrder Mgmt

Billing / Invoice

Tracking

Billing / Invoice

Tracking

Customer / Account

Mgmt

Customer / Account

Mgmt

Co

re F

ou

nd

atio

nal

C

apab

iliti

esC

lou

d S

ervi

ces


government cloud computing_strategy

Technology

cloud services

cloud infrastructure

community cloud

private cloud

hybrid cloud

cloud capabilities

cloud bursting

different cloud models