12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE Cloud Activities

David Bernstein

David.Bernstein@ieee.org

IEEE Cloud Initiative, IEEE P2300 co-Founder

1

  IEEE Cloud Initiative

  IEEE P2301

  IEEE P2302

  IEEE Big Data Initiative

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE Cloud Computing Community

 Objective: –  To promote Cloud Computing across the IEEE and the world. – Promote education and volunteer activities for all levels of members in Cloud Computing – Bring vast interests and uses of Cloud Computing together by sharing information and collaborating on projects

2

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE Cloud Computing Community

  Meets monthly with a speaker or review a paper related to cloud computing

  Active social network: Facebook/LinkedIn/Twitter

  Published an e-zine called Cloud-Link that focuses on a different cloud computing topic each quarter

  Published a quarterly newsletter CloudScape

  Volunteers contribute to our blog “The Clear Cloud”

3

  Kicking off a study group for the IEEE Cloud Computing course

  Volunteers produce podcasts where we interview people working in the field of Cloud Computing

  Volunteers contribute and manage the tabs in our web site http://cloudcomputing.ieee.org

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE P2301 – Cloud Profiles

Guide for Cloud Portability and Interoperability Profiles (CPIP) Chair: John Messina (NIST)

Purpose:

Develop a guide which advises cloud participants on relevant cloud computing standards

Status:

Profiles and collection of standards have been selected. First draft expected by end of 2015

Action Plan:

•  Develop a Set of Cloud Profiles (Roles/Functions)

•  Identify a Set of Relevant Cloud Computing Standards

•  Map the Intersection of Profiles and Standards

•  Document Intersection as a Guidance Standard

•  Ensure that the final standard is a living document

Website: https://standards.ieee.org/develop/project/2301.html

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE P2301 – Cloud Profiles

For each Cloud Profile P2301 collects the following information:   Description of Profile   Functionality associated with the Profile   Likely relevant standards   Possible relevant standards   Standard Interoperability / Portability / Use information (CloudWatch)

Example: Cloud Service Provider Sub-Role: Inter-cloud Provider Activity: Mange Peer Cloud Services Category: Authentication & Authorization Standards

Likely Relevant standards: –  IEEE P2302 –  RFC 5246 –  RFC 3820: X.509 –  RFC 5280: Internet X.509 –  ISO 9594-8:2008|X.509 –  RFC 5849 –  ISO 29115|X.1254 –  OpenID Authentication –  XACML –  SAML

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE P2302 - Intercloud

6

Public Cloud

Public Cloud

Public Cloud

Private Cloud

Internal User Access

Public Access

Intercloud Root

Intercloud Exchanges

Public Access

Public Access

Intercloud (CCS) Protocols Federation (Bearer) Network

Intercloud Gateway

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE P2302 – Intercloud Testbed

7

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE Big Data Initiative

8

2. Launch new initiatives across IEEE in Conferences, Education, Publications , and Standards that address in a comprehensive way the many opportunities and different dimensions of Big Data.

3. Identify and develop new business models based on big data (examples: data portal, data analytics)

4. Develop and grow IEEE’s technical community on big data, and to serve as a forum for discussion on the social implications of big data.

5. Ensure IEEE is a leader driving for consistent handling of data, its privacy and security.

  Data touches upon a broad spectrum of areas throughout IEEE.

  Objectives 1. Nurture and curate collaboration across

all interested groups for a well-coordinated approach and message for big data.

12-C

RS

-010

6 R

EV

ISE

D 8

FE

B 2

013

IEEE Big Data Initiative

9

IEEE Technical Activities

Cloud Specifications

OASIS is the home of:

• TOSCA - Topology and Orchestration Spec for Cloud Apps

• CAMP - Cloud Application Management for Platforms

• CloudAuthZ - Cloud Authorization

• ODATA - Open Data

• AMQP - Advanced Message Queuing Protocol

2

Policy Dimension and Standards

The Cloud raises issues that touch on the need for standards that address policy components of technical systems and their conformance.

• PMRM – Privacy Management Reference Model

• PbD-SE – Privacy by Design for Software Engineers

3

OASIS is a global community of experts who drive the creation and adoption

of open standards promoting interoperability, innovation,

and freedom of choice.

4

Established presence, Current agenda • Nonprofit consortium

• Founded 1993

• Global 5,000+ participants 600+ orgs & individuals in 100+ countries

• Home of 70+ Technical Committees

• Broad portfolio of standards: security, privacy, Cloud, M2M, IoT, content technologies, energy, eGov, legal, emergency management, finance, Big Data, healthcare, + other areas identified by members

How OASIS works

• Technical decisions made by members not staff

• Democratic • Open and transparent • Lightweight, ensures integrity of work while allowing

for rapid progress • Proven, safe IPR Policy • Standards freely available in perpetuity • Public reviews mandated; mechanism for public

comments always available

6

Internationally recognized

• EU classifies OASIS as “one of the top three ICT consortia”.

• EU Regulation 1025/2012 allows OASIS specs to be referenced in public procurement.

• OASIS is permanent member of EC’s European Multi-Stakeholder Platform on ICT Standardization.

• OASIS TC Process is ANSI-accredited.

7

Steps to launch

Define purpose Identify initial Proposers Draft charter

Call for Comment More Proposers join Final charter

Call for Participation More people join First Meeting

Contact Information

Gershon Janssen Board Director gershon.janssen@oasis-open.org @gershonjanssen

9

© 2006 Open Grid Forum

The Open Grid Forum Jens Jensen, Sep 2015

© 2006 Open Grid Forum 2

Using OGF in Your Projects

•  Standards body, since 2001 •  As GGF, merged with Enterprise Grid

Alliance to become OGF •  Academic and Industry

•  Focused on open standards and interoperation

•  IPR statement designed for reuse •  E.g. turn OGF standard into ISO std

© 2006 Open Grid Forum

A Few of the OGF Standards

•  OCCI – used by EGI fed cloud •  OpenNebula, OpenStack, OKEANOS,

WNoDes •  WS-Agreement and WS-

AgreementNegotiation •  GLUE – links the world’s grid and cloud •  GridFTP – moves hundreds of

petabytes every year

3

© 2006 Open Grid Forum

Working with Groups

•  Research, Community, and Working groups

•  Documents: can be informational, experimental, community practice, recommendations (standards)

4

© 2006 Open Grid Forum

Example: FEDSEC-CG

•  Community group focusing on federated security for clouds and grids

•  Formed to join up work on fed sec. in different areas of the world

•  Projects present their work… •  … group looks for opportunities for

interoperation, sharing, best practices

5

© 2006 Open Grid Forum

Example: IGTF

•  Interoperable Global Trust Federation •  Formed at OGF (see www.igtf.net) •  Global trust infrastructure for academic/

research grids and clouds •  Ongoing work in CAOPS-WG to look at

practices •  E.g. GFD-125, Grid Certificate Profile •  Revision GFD.225 to appear

6

© 2006 Open Grid Forum

OGF processes

•  Open processes •  Everyone can get involved

•  Low barrier to membership •  Register for an event and turn up! •  No organisational subscription fees!

•  Aim to co-locate with other events •  Can form new groups – or get involved

with existing ones – it’s easy

7

© 2006 Open Grid Forum

Open Grid Forum liaisons

OGF

ETSI

DMTF

ISO

IETF OASIS

SNIA

WS-I

8

See also Alan Sill’s presentation from NIST Cloud Comp Forum: http://tinyurl.com/nmcg4yr

Standards Bodies

Diversity of Standards BodiesSNIA, OASIS, DMTF, IETF, IEEE…

Reflect members’ desires & expertise

SNIA focuses on storage standards (all ISO/IEC)CDMI, SMI-S and Storage Security, working on non-volatile memory standards

Everyone who works in standards knows this joke

https://xkcd.com/927/

SNIA At-A-Glance

Storage Networking Industry Association

Not–for–profit global organization,

Member companies span the global storage market.

To lead the storage industry worldwide in developing and promoting standards, technologies, and educational services

Member

Organizations

Active Member

Contributors

IT End Users &

Storage Professionals

In Brazil, China,

EMEA, India, Japan,

South Asia and USA

Reaching

Delivering

With

• Standards

ISO/IEC 17826 (CDMI)

ISO/IEC 24775 (SMI-S)

ISO/IEC 27040 (Storage Security)

• Interoperability assurance

Plugfests

Conformance testing

• Vendor-neutral storage certification

3,500 Certified Professionals

5,500 Certifications Awarded

Vendor-neutral education and technology promotion

Web & Social Media

Events (SDC, DSI, CloudExpo)

Thought Leadership in Industry Publications (DCS, SNS)

SNIA Dictionary (US, Portuguese & European)

Networking & Education – Local & Regional Committees

Standards Types & Issues

Types of standardsBest (or Codes Of) Practice

Guidelines

MethodologicalFormal standards such as ISO/IEC

Proactive; defined before market or common practiceNo purely proactive examples here

CDMI (Cloud Data Management Initiative)

Reactive; follows market or based on common practiceMost of the standards

SMI-S (Storage Management Initiative Specification)

De-facto

IP (Intellectual Property)Patents, Copyright & Trademarks

IANAL but if you are then http://www.snia.org/sites/default/files/SNIA_IP_Policy_v3.0_Final.pdf

Standards Benefits

DownsidesLawyers

Timescales

Compromise

UpsidesShared experience & feedback

Consensus

Standards mean:Improved interoperability

Increased competition

Reduced end user time-to-acceptance

Open markets with lower barriers to entry

W3C Roadmap

and Cloud

Towards secure and trusted cloud services in Europe

September 24, 2015 in Brussels.

html5apps-project.eu

Sept 2015 Dr. Daniel Dardailler - W3C

World Wide Web Consortium2

• Web Universality

• Founded by Tim

Berners-Lee in 1994

• W3C Standards:

HTML, CSS, XML, WAI,

RDF, http/url/rtc

• About 80 staff, 4

hosts, 40% Europe

The Open Web Platform

Web and Cloud

� Cloud as a specialized application of the Web

- use URIs, HTTPS, XML, Web Services, etc.

Need for more Secure Web Standards

� Web apps as generic consumer of Cloud services

- Storage, Data-intensive, integration WoT

Need for new Interoperable Standards

Application Foundations

� Based on Application Foundations

The Roadmap

Cloud relevance

� Highly relevant:

- Security/Privacy (identity, signature, encryption)

- Web Payments (wallet, API, Card details)

- Network Integration (x-origin, socket, rtc, etc)

� Relevant:

- Web of Things

- MMI

- Data storage

� Less relevant: UI, App cycle, perf, etc

7

In Summary

The Web is the main entry point for online

end-users.

Similar issues: Security, Privacy, Usability, etc.

Lessons from Web standardization:

• Open Participation, coordination

• Royalty-free standards, Open Source

• Coherent Architecture

TextText

EIT DIGITAL FUTURE CLOUD

European Trusted Cloud

High Impact Initiative

Janne Järvinen EIT Digital Future Cloud Action Line Leader

TextText

High impact initiative: Building an European

Ecosystem of Trusted Cloud Services

To provide

consumers and businesses

better tools and services

to take greater control over

the use of sensitive and personal data

created by and about them.

FULL ECOSYSTEM

Ecosystem

marketplace

Data&content storage

(CFP2016 & EB2015)

Data Analytics and

services

SME

services

Privacy &

MyData

Encryption

&key

handling

Security &

authenticat

ion

Consumer

services

Corporate

services

IoT

Services

Trust

plugins

Multiple

storage

providersData&content storage

Trusted Cloud Ecosystem: Architecture and Offering

CustomersPublic sector

services

European Trusted Cloud current status (Sept 2015)

• First trusted services created: Personal data store, secure email, encryption service,

malicious file/url scanning. Several pilots started.

• SME ’s integrated: technical integration, coaching (business, technology, security)

• Public dissemination activities started to drive and plan the Future Cloud results

visibility and gain more partners during 2016.

Trusted Cloud Ecosystem: Who we are (July 2015)

European Trusted Cloud impacts, end of 2016

• Value added services available all over Europe and globally.

• Trust enablers that cover wide range of threats in modern context.

• Knowledge adoption community, to help everyone build trusted services.

eitdigital.eu

Janne.Jarvinen@eitdigital.eu