SlideShare a Scribd company logo

Chris Kemp: NASA Nebula

GovCloud Network, profile picture
GovCloud Network

The document discusses NASA's views on cloud computing. It notes that NASA currently has many websites running on different platforms, which results in high costs, long provisioning times, security issues, and other problems. NASA is interested in cloud computing because it could help the agency focus more on its missions and science rather than infrastructure. The document then provides NIST's definition of cloud computing and outlines five key cloud attributes. It introduces NASA's Nebula hybrid cloud platform, which is designed for science, collaboration, developers, and partners. Finally, it discusses federal cloud computing standards and governance.

TechnologyBusiness
Related topics:
Cloud Computing Insights
1 of 45
Downloaded 32 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
Chris C. Kemp
Part 1: NASA’s View of Cloud
Why is NASA focused on cloud?  Many, many, many websites  Many, many, many different platforms  Very high operating cost  Long provisioning times  Very large attack surface  Confusing to outside users  Lock-in, portability, and interoperability issues
More reasons…  Missions are focused on the Mission  Scientists are focused on the Science  Large-scale infrastructure requirements  Too much is spent on infrastructure  Missions Completely Fail (OCO)  Missions Completely Succeed (Rovers)  Politics impact Missions (Triana)
NIST Definition of Cloud Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.
5 Cloud Attributes  Service-based  Scalable and elastic  Shared  Metered by Use  Uses Internet Technologies Excerpts from Gartner‟s “Five Attributes of Cloud Computing”
Service-based  Abstracted from the implementation  Completely automated  Near real-time delivery (seconds or minutes)
Scalable and Elastic  Resources are drawn from a common pool  Dynamically allocated to meet demand  Dynamically released when appropriate  Fully automated
Shared  Common resources build economies of scale  Common infrastructure runs at high efficiency
Metered by Use  Consumers pay for services used  Underlying hardware costs are irrelevant
Uses Internet ‘Standards’  Open standards and APIs  Almost always IP, HTTP, and REST
Part 2: Nebula
Nebula: A Hybrid Cloud
Built for Science  Science-Class Cloud CPU Computing  High CPU-to-Disk Ratio Disk  Built for Research  MAE-West Peering (Internet2, Web NLR, CENIC, 11 Tier-1 ISPs)  Massively Parallel, Loosely Coupled  In a Federal Security Perimeter
Nebula Architecture
Cloud Platforms, Compared AWS AppEngine Nebula Storage S3, EBS SimpleStorage Luster API Database SimpleDB CouchDB MySQL Queue SQS -- RabbitMQ Virtualization EC2 (Xen) -- Eucalyptus (KVM) Framework -- Django Django User Accounts -- Google eAuth Accounts Search -- Google Search SOLR+Lucene Networking 1GigE 1GigE 10GigE+ CDN/Cache CloudFront Varnish
Application Time to Market Current Web App Process NEBULA Cloud Platform Procure Server – 6-12 weeks Procure VM – 60-120 seconds Configure Server – 2-3 days Included. AWRS Filing – 2-3 days Already done. (APPS.NASA.GOV) Set up Source Control – 2-3 hours. Included. Security Plan – 3 weeks, min. Included. SSL Certificates – 2-4 weeks. Included. Develop Terms of Use – 6 months. Included, for most collaboration. eAuth Integration – 40 hours. Included. Develop Processes – 3-6 weeks. Basic moderation included. Set up backups – 2-3 hours. Included. 24,192,000 Seconds. 60-120 Seconds.
Must insert budget wedges now!
Built for Collaboration  True Single-Sign-On, for the Public  Enterprise Search, across the Cloud  All Cloud apps live at apps.nasa.gov
Built for the Web  Friendly URLs  Designed for Search Engines, RSS, and aggregation  Components are RSSable, Tweetable  What if NASA was on the first page of Google results for the term „Space‟?
Built for Partners  Your science partners can instantly connect from your NEBULA app, to their own research tasks within public Cloud Services (EC2, Azure, AppEngine)  Your private fleet of Post-Docs can work on your data – at 10 cents an hour
Built for Government  Policy compliant for contributions  Consolidated moderation interface  Everything-compliant (PII, First Amendment, COPPA, Section 508, etc)
Built for Developers  Integrated Development Environment  Revision control  Automated testing  Continuous Integration  Bug tracking
Built for Community  Cloud means Turnkey  Dedicated Platform Staff  Engaged External Partners  Common KB shares code, tricks, tips
Nebula - the way to Data.gov  Best practices in moderation, open collaboration  Open and Public APIs, everywhere  Feeds (RSS, Atom) power mash-ups  Open-source platform, apps, and data  Full transparency
Pilot Projects  White House USASpending.gov 2.0  Microsoft World Wide Telescope (Mars / Moon)  Google Earth Planetary Content (Mars)  LMMP Program Data Processing (Moon)  TOPS Earth Climate Modeling
Nebula Timeline  Under development since May 2008  Pilot projects underway now  Full Launch, Q2 2010 (in Apps.gov)  Concurrent Open Source Release of Code
Part 3: Federal Standards
Federal Cloud Computing Governance CIO Council • Strategic Objective Definition • Overall Guidance • Adjudication PMO (GSA) Cloud Computing Executive Steering Committee (ESC) • Day to Day Management of • Strategic Direction the Federal Cloud Computing • Priority Setting Initiative • Issue Resolution • Development of required • Approval deliverables • Provide Technical Guidance and Subject Matter Expertise Cloud Computing Advisory Council (AC) • Provide Collaborate Federal Agency Input and Feedback for Cloud Computing Initiatives/Deliverables • Support the PMO and Cloud Computing Subcommittee with Federal Subject Matter Expertise • Approve Cloud Computing deliverables for submission to the Cloud Computing ESC • Cross-Functional Collaboration
Cloud Standards Working Group  CC Advisory Council Mission Statement: Drive the government-wide adoption of cost effective, green and sustainable Federal cloud computing solutions.  CC Standards WG Mission Statement: Establish a framework and roadmap to drive standards to facilitate interoperability, portability, security and manageability for federal cloud computing services.
Federal vs. Commercial Our Focus Federal Requirements Commercial Requirements
Goal of Federal Standards Activities Provide guidance to industry and government for the creation and management of relevant cloud computing standards allowing all parties to gain the maximum value from cloud computing
Government Cloud Framework Cloud User Tools Software as a Service (SaaS) / Applications Application User/ Reporting & Integration Admin Analytics Citizen Engagement Gov Productivity Gov Enterprise Apps Business Svcs Portal Wikis / Blogs Email / IM Customer / Apps Core Mission Account Social Networking Virtual Desktop Mgmt Analytic Apps API‟s Core Cloud Services Agency Website Legacy Apps Tools Office Automation User Profile Hosting (Mainframes) Workflow Mgmt Data Mgmt Engine Platform as a Order Testing Developer Reporting Service (PaaS) Database Tools Tools EAI Mgmt Directory Knowledge DBMS Trouble Services Mobile Device Mgmt Mgmt Integration Billing / Infrastructure as a Virtual Data Migration Invoice Storage Service (IaaS) Machines Tools Tracking Product CDN Web Servers Server Hosting ETL Catalog Service Mgmt & Delivery Capabilities Service Performance DR / Operations Provisioning SLA Mgmt Provisioning Monitoring Backup Mgmt Cloud Service Security & Data/Network Certification & Authentication & Auditing & Data Privacy Data Privacy Security Compliance Authorization Accounting Data Center Routers / Internet Hosting LAN/WAN Facilities Firewalls Access Centers
Focus on Business Use Cases 1 Description Focus Business Business Use Cases present Define boundaries Use Case and describe a top level view of a and characteristics category of related cloud of a business focus business issues area 2 Scenario Scenarios illustrate a particular Describe conditions facet of a business use case in for the scenario and order to highlight kinds of the required kinds of standards needed standards to fulfill the need 3 Example Examples animate a scenario Show how a with a limited and specific case to scenario plays out in illustrate practical implications of a real world situation a scenario including references to with reference to potential standards existing standards 4 implementations where available Detail Use Case Detail Use Cases break down a Defines specific scenario into actual functional activities. NOT components, tasks and activities. PART OF This is the traditional CURRENT “programming” use case used in DISCUSSION SDLC
Business Use Case 1: Initiating Cloud Service Description An agency wishes to initiate a new cloud service Service Models IaaS, SaaS, PaaS Pre-conditions None Post conditions Target services commissioned and provisioned Key Considerations Security policy specification including location dependencies and Dependencies Identity federation and management (All) Physical infrastructure selection, sizing and configuration (IaaS) Virtual Machine selection, sizing and configuration (IaaS) Storage selection, sizing and configuration (IaaS) Provisioning /deployment standards and specifications (IaaS, PaaS) Monitoring and management specification (All) Application and Document lifecycle specification (All) Platform selection and configuration specification (PaaS) Application selection and configuration specification (SaaS) Service Level specification and benchmarking (All) References and Cloud Computing Use Cases Group 3.6.2 Notes Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Scenario 1.1 Establish IaaS Service Conditions  Agency wishes to establish an IaaS Service Requirements  Identity management standards to establish identity, authentication and authorization  Security standards related to encryption, location-specific data storage, etc.  Specification standards for physical boundaries, e.g. shared, dedicated or community pools of processors, networks, storage devices, etc.  Specification standards for virtual resources including virtual machines, standard images, storage and virtual network configuration  Provisioning standards to specify virtual resource elasticity parameters  Monitoring and management standards for thresholds and controls  Lifecycle standards for storage replication, retention and destruction  Service level standards Desired Results  Essential portions of infrastructure are provisioned by standard specification References and Notes  Cloud Computing Use Cases Group 3.6.1  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Example 1.1.1 IaaS for Scientific Computing Description  Agency wishes to establish an IaaS Service for process-intensive scientific computing Activities  Authorized individual accesses an IaaS provider by preexisting account  Declare identity domain by referencing established federated identities (SAML, WS-Federation, Liberty, ID-FF)  Declare standards-based authorization /entitlement rules (XACML)  Declare key management and data encryption at rest and in flight (PKI, PKCS, KEYPROV (CT-KIP, DSKPP), EKMI)  Declare physical boundaries: SPARC processors and SAN disk-accessable storage, drawn from community pool X only, shared machines and devices allowed (Standards do not exist)  Define virtual resources:  Specify multicore high memory instances and large amounts of nonpersistant storage (Standards do not exist)  Select a vendor-specific virtual image (DMTF OVF) using a standard query and selection API (Standards do not exist) following risk based security standards (PCI-DSS)  Define a persistent storage structure and mapping (Amazon S3, GFS, Azure Storage, SNIA CDMI)  Define a VPN configuration (Amazon EC2)  Declare provisioning rules (OGF OCCI, EC2 API)  Declare new instance spinup at 85% utilization of all running instances and termination at 20% utilization of any instance (Standards do not Exist)  Declare notification at 105 instances and notification and end of escalation at 150 (Standards do not Exist)  Declare data backup on a nightly basis to CONUS resource, and data destruction after 60 days (ISO 15489 but no implementation standards)  Service level standards (Standards do not Exist) References and Notes  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Business Use Case 2: Changing Cloud Vendors Description An agency wishes to migrate some or all of a set of existing cloud services to a new vendor Service Models IaaS, SaaS, PaaS Pre-conditions • An existing set of cloud services with source vendor • A plan for replacement or migrated services with destination vendor Post conditions • Source services decommissioned • Target services operating with minimal loss of data, security or business rule functionality Key Considerations Identity federation and management across vendors and Dependencies Security specification standards across vendors Industry-specific common standards for application types (SaaS) Platform standards and configuration (PaaS) Platform component (middleware) standards and configuration (PaaS) Application language standardization and portability (PaaS) Virtual machine standards, configuration and portability (IaaS) Storage standards and configuration (IaaS) References and Cloud Computing Use Cases Group 3.6.2 Notes Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Scenario 2.1 Migrate SaaS Vendors Conditions  Agency has an existing SaaS application and wishes to migrate all or part of it to a similar application with a new vendor Requirements  Identity management standards to migrate identity, authentication and authorization  Security standards related to encryption, location-specific data storage, etc.  Storage standards for migrating existing data  Application-specific formatting standards for importing or reusing data  Application-specific business rule standards (in some cases)  Service level standards Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.1  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Scenario 2.2 Migrate PaaS Vendors: Similar Platform Conditions  Agency has an existing PaaS platform and wishes to migrate to a similar platform from another vendor 1. Requirements  Include Identity, Security, Storage standards from 1.1  Platform standards for configuring and managing platform operation and management  Platform standards for configuring and managing application deployment  Platform enabler standards for configuring and operating databases, message queues, service buses and related enablers Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.2, 3.6.3  Scope reduced to exclude migrations across dissimilar platform stacks 1 1 Similar platform refers to migration within similar PaaS stacks, e.g. LAMP to
Scenario 2.3 Migrate PaaS Vendors: Dissimilar Platform Conditions  Agency has an existing PaaS platform and wishes to migrate to a dissimilar platform from another vendor 1. Requirements  Include all requirements from Scenario 1.2  Language standards and cross-language portability standards or compatibility APIs  Data management standards and API‟s to address different data models across platform, e.g. relational versus flat Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.2, 3.6.3  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09 1 Similar platform refers to migration within similar PaaS stacks, e.g. LAMP to
Business Use Case 3: Hybrid Cloud Operation Description An agency wishes to operate services across multiple clouds hosted by multiple vendors, potentially including private or community clouds Service Models IaaS, SaaS, PaaS Pre-conditions Services in multiple clouds with established SOA interoperability Post conditions Services interoperating across cloud boundaries Key Considerations Include: Business Case 1: Initiate Cloud Service and Dependencies Transactional and Concurrency standards Additional security standards for cross-cloud trust References and Cloud Computing Use Cases Group 3.4.1. Note that Transactionality Notes is excluded for Hybrid by CCUC but included here Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
Business Use Case 4: Platform Configuration and Operation Description An agency wishes to configure a platform on which to develop, test or deploy SaaS applications Service Models PaaS Pre-conditions Available cloud infrastructure if required by the platform Post conditions Scalable platform available for development, testing or deployment of SaaS applications Key Considerations Include: Business Case 1: Initiate Cloud Service and Dependencies Platform standards and configuration (PaaS) Platform component (middleware) standards and configuration (PaaS) Application language standardization and portability (PaaS) Platform management and reporting standards (PaaS) References and Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09 Notes
Next Steps  Federal Standards Web Workshop  Crowd-source ideas for roadmap  3rd week of January  Open public invitation  Federal Standards Summit  April 2010  Present Federal Roadmap  Present Prioritized Federal Use Cases
@ChrisCKemp http://nebula.nasa.gov Chris.C.Kemp@NASA.gov @NASANebula

More Related Content

PDF
Federal Cloud Computing Initiative
GovCloud Network
 
PPTX
SPS- Share Point 2010 and Windows Azure
Shakir Majeed Khan
 
PPTX
Navantis & Microsoft "Find Your Silver Lining in the Cloud" Event Slidedeck
Navantis
 
PDF
Development Model for The Cloud
umityalcinalp
 
KEY
Cloud Review V2
Elizabethoneill
 
PPT
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Salesforce_APAC
 
PDF
Hawaii Pacific GIS Conference 2012: Esri ArcGIS 10.1 - What's Coming in ArcGI...
Hawaii Geographic Information Coordinating Council
 
PDF
Next Generation – Systems Integration in the Cloud Era with Apache Camel - Ja...
Kai Wähner
 
Federal Cloud Computing Initiative
GovCloud Network
 
SPS- Share Point 2010 and Windows Azure
Shakir Majeed Khan
 
Navantis & Microsoft "Find Your Silver Lining in the Cloud" Event Slidedeck
Navantis
 
Development Model for The Cloud
umityalcinalp
 
Cloud Review V2
Elizabethoneill
 
Cloudforce Essentials 2012 - Understanding Force.com in 60 Minutes or Less
Salesforce_APAC
 
Hawaii Pacific GIS Conference 2012: Esri ArcGIS 10.1 - What's Coming in ArcGI...
Hawaii Geographic Information Coordinating Council
 
Next Generation – Systems Integration in the Cloud Era with Apache Camel - Ja...
Kai Wähner
 

What's hot (19)

PDF
Mach Technology
Open Stack
 
PDF
Blaze clan company presentation
Supratik Ghatak
 
PDF
Jazoon 2012 - Systems Integration in the Cloud Era with Apache Camel
Kai Wähner
 
PPTX
Codestrong 2012 breakout session the role of cloud services in your next ge...
Axway Appcelerator
 
PDF
Paving the Way to IT-as-a-Service
buildacloud
 
PPTX
MEAUC Nov 2011 Presentation
Nishant Arora
 
PPTX
IT Modernization and Cloud Computing
Barry Gervin
 
PDF
Making of a Successful Cloud Business
ACMBangalore
 
PDF
GlassFish Mobility Platform - Hans Hrasna
Eduardo Pelegri-Llopart
 
PDF
OreDev 2008: Software + Services
ukdpe
 
PDF
Glass Fish Mobility Platform Santiago Pericas Geersten V2
Eduardo Pelegri-Llopart
 
PPTX
Transaction-based Capacity Planning for greater IT Reliability™ webinar
Metron
 
PPT
CCitDG Presenation
Databarracks
 
PDF
Programming Languages For The Cloud
Ted Leung
 
PPTX
Cloud Computing: A New Trend in IT
Putchong Uthayopas
 
PPT
How to Get Cloud Architecture and Design Right the First Time
David Linthicum
 
PDF
Raindance - Tooling for the Clouds
Markus Knauer
 
PDF
"Oracle Insight for Investors" Educational Webcast - Oracle Fusion Middleware
investorrelation
 
PDF
CloudFest Denver When Worlds Collide: HTML5 Meets the Cloud
David Pallmann
 
Mach Technology
Open Stack
 
Blaze clan company presentation
Supratik Ghatak
 
Jazoon 2012 - Systems Integration in the Cloud Era with Apache Camel
Kai Wähner
 
Codestrong 2012 breakout session the role of cloud services in your next ge...
Axway Appcelerator
 
Paving the Way to IT-as-a-Service
buildacloud
 
MEAUC Nov 2011 Presentation
Nishant Arora
 
IT Modernization and Cloud Computing
Barry Gervin
 
Making of a Successful Cloud Business
ACMBangalore
 
GlassFish Mobility Platform - Hans Hrasna
Eduardo Pelegri-Llopart
 
OreDev 2008: Software + Services
ukdpe
 
Glass Fish Mobility Platform Santiago Pericas Geersten V2
Eduardo Pelegri-Llopart
 
Transaction-based Capacity Planning for greater IT Reliability™ webinar
Metron
 
CCitDG Presenation
Databarracks
 
Programming Languages For The Cloud
Ted Leung
 
Cloud Computing: A New Trend in IT
Putchong Uthayopas
 
How to Get Cloud Architecture and Design Right the First Time
David Linthicum
 
Raindance - Tooling for the Clouds
Markus Knauer
 
"Oracle Insight for Investors" Educational Webcast - Oracle Fusion Middleware
investorrelation
 
CloudFest Denver When Worlds Collide: HTML5 Meets the Cloud
David Pallmann
 
Ad

Viewers also liked (19)

PDF
Implementing big data in the cloud v2.5 3 4 2013
GovCloud Network
 
DOCX
Security Assessment Plan (Template)
GovCloud Network
 
PPTX
Yongsan presentation 2
GovCloud Network
 
DOCX
Rules of Behavior
GovCloud Network
 
PDF
INSA cloud computing_2012_final
GovCloud Network
 
PDF
Gravitant Whitepaper Cloud for Federal Govt
GovCloud Network
 
PDF
Cloud computing and the intelligence mission
GovCloud Network
 
PDF
Cloud computing training what's right for me
GovCloud Network
 
PDF
Vivek Kundra - Standards to Foster Innovation
GovCloud Network
 
PDF
ViON Corporation: Surviving IT Change
GovCloud Network
 
DOCX
Sap template 050312
GovCloud Network
 
PPT
International collaboration with Cloud v1
GovCloud Network
 
PDF
Government cloud deployment lessons learned final (4 4 2013)
GovCloud Network
 
PDF
Texas Dept of Information Resources Agency Strategic Plan
GovCloud Network
 
PDF
Interoperability versus Cyber Security/Information Assurance?
GovCloud Network
 
PDF
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
GovCloud Network
 
PPT
Government cloud computing_strategy
GovCloud Network
 
DOCX
Plan of Action and Milestones (POA&M)
GovCloud Network
 
DOCX
Information Technology Contingency Plan (Template)
GovCloud Network
 
Implementing big data in the cloud v2.5 3 4 2013
GovCloud Network
 
Security Assessment Plan (Template)
GovCloud Network
 
Yongsan presentation 2
GovCloud Network
 
Rules of Behavior
GovCloud Network
 
INSA cloud computing_2012_final
GovCloud Network
 
Gravitant Whitepaper Cloud for Federal Govt
GovCloud Network
 
Cloud computing and the intelligence mission
GovCloud Network
 
Cloud computing training what's right for me
GovCloud Network
 
Vivek Kundra - Standards to Foster Innovation
GovCloud Network
 
ViON Corporation: Surviving IT Change
GovCloud Network
 
Sap template 050312
GovCloud Network
 
International collaboration with Cloud v1
GovCloud Network
 
Government cloud deployment lessons learned final (4 4 2013)
GovCloud Network
 
Texas Dept of Information Resources Agency Strategic Plan
GovCloud Network
 
Interoperability versus Cyber Security/Information Assurance?
GovCloud Network
 
Improving Cybersecurity and Resilience Through Acquisition Emile Monette GSA
GovCloud Network
 
Government cloud computing_strategy
GovCloud Network
 
Plan of Action and Milestones (POA&M)
GovCloud Network
 
Information Technology Contingency Plan (Template)
GovCloud Network
 
Ad

Similar to Chris Kemp: NASA Nebula (20)

PPTX
Ppt on cloud computing
Pradeep Bhatia
 
PDF
2010 Software Licensing and Pricing Survey Results and 2011 Predictions
Flexera
 
PDF
Barak Regev - Google Cloud Platform
Paris Open Source Summit
 
PDF
Cloud Computing - Jan 2011 - Chandna
Asheem Chandna
 
PPT
GSA on Cloud Computing and More
guest163bca0
 
PDF
An enterprise journey in the Cloud
Raghuraman Balachandran
 
PPT
Exploring Cloud Computing Technologies For GIS (Location Based) Applications
Christopher Blough
 
PDF
OpenNASA v2.0 Slideshare Large File
Megan Eskey
 
PDF
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
RapidValue
 
PPTX
Cloud computing submit seamolec 19 feb 2013
iwita_1
 
PDF
MS TechDays 2011 - Cloud Management with System Center Application Controller
Spiffy
 
PPT
Cloud Computing Webinar
Saif Ahmad
 
PPT
Cloud Camp Milan 2K9 SUN Microsystems: Cloud Computing with Sun
Gabriele Bozzi
 
PPT
Introduction To Cloud Computing By Beant Singh Duggal
Beantsingh
 
PPT
Robert LeBlanc - Cloud Forum Presentation
Mauricio Godoy
 
PPT
Cloud Computing
webscale
 
PDF
Welcome to International Journal of Engineering Research and Development (IJERD)
IJERD Editor
 
PDF
The Enterprise Cloud: Immediate. Urgent. Inevitable.
Peter Coffee
 
PPT
IBM - Massimo Leoni, Cloud Computing, Milano 2 luglio 2009
Manuela Moroncini
 
PPTX
IIA2013 PPT SLIDES DECK
Bhavesh Bhagat, CGEIT, CISM (LION)
 
Ppt on cloud computing
Pradeep Bhatia
 
2010 Software Licensing and Pricing Survey Results and 2011 Predictions
Flexera
 
Barak Regev - Google Cloud Platform
Paris Open Source Summit
 
Cloud Computing - Jan 2011 - Chandna
Asheem Chandna
 
GSA on Cloud Computing and More
guest163bca0
 
An enterprise journey in the Cloud
Raghuraman Balachandran
 
Exploring Cloud Computing Technologies For GIS (Location Based) Applications
Christopher Blough
 
OpenNASA v2.0 Slideshare Large File
Megan Eskey
 
The Ultimate Guide to Cloud Migration - A Whitepaper by RapidValue
RapidValue
 
Cloud computing submit seamolec 19 feb 2013
iwita_1
 
MS TechDays 2011 - Cloud Management with System Center Application Controller
Spiffy
 
Cloud Computing Webinar
Saif Ahmad
 
Cloud Camp Milan 2K9 SUN Microsystems: Cloud Computing with Sun
Gabriele Bozzi
 
Introduction To Cloud Computing By Beant Singh Duggal
Beantsingh
 
Robert LeBlanc - Cloud Forum Presentation
Mauricio Godoy
 
Cloud Computing
webscale
 
Welcome to International Journal of Engineering Research and Development (IJERD)
IJERD Editor
 
The Enterprise Cloud: Immediate. Urgent. Inevitable.
Peter Coffee
 
IBM - Massimo Leoni, Cloud Computing, Milano 2 luglio 2009
Manuela Moroncini
 
IIA2013 PPT SLIDES DECK
Bhavesh Bhagat, CGEIT, CISM (LION)
 

More from GovCloud Network (20)

PDF
IaaS Price performance-benchmark
GovCloud Network
 
PDF
Staying Safe in Cyberspace
GovCloud Network
 
PDF
Vets 360 Services - Military Dedication - Corporate Success
GovCloud Network
 
PDF
GovCloud Network LLC Overview - June 25, 2014
GovCloud Network
 
PDF
Army PEO EIS Cloud Architecture
GovCloud Network
 
PDF
ICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin Jackson
GovCloud Network
 
PDF
@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page
GovCloud Network
 
PDF
Agile Cloud Conference 2 Introduction - John Brennan
GovCloud Network
 
PDF
DoD Business Capability Lifecycle (BCL) Guide (Draft)
GovCloud Network
 
PPTX
GovCloud Network Overview Presentation
GovCloud Network
 
PPTX
PM ISE Information Interoperability Presentation -agile sourcing brief
GovCloud Network
 
PDF
Intrusion Detection on Public IaaS - Kevin L. Jackson
GovCloud Network
 
PDF
A Framework for Cloud Computing Adoption in South African Government
GovCloud Network
 
PDF
NCOIC GCC OWS-10 presentation 10 7 2013
GovCloud Network
 
PDF
Tech gate kevin l jackson - 09-21-2013
GovCloud Network
 
PDF
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
GovCloud Network
 
PDF
Cloud computing-made-easy
GovCloud Network
 
PPTX
Kevin jackson cloud service brokerage for datacenter service providers for we...
GovCloud Network
 
PDF
Pilot Texas Cloud Offering
GovCloud Network
 
PDF
DISA Broker Designation
GovCloud Network
 
IaaS Price performance-benchmark
GovCloud Network
 
Staying Safe in Cyberspace
GovCloud Network
 
Vets 360 Services - Military Dedication - Corporate Success
GovCloud Network
 
GovCloud Network LLC Overview - June 25, 2014
GovCloud Network
 
Army PEO EIS Cloud Architecture
GovCloud Network
 
ICH Agile Cloud Session 1-Highlights /Prospective Svc Offerings Kevin Jackson
GovCloud Network
 
@AgileCLoud_ICH Presentation - 20140521 US Navy OPNAV - Capt Christopher Page
GovCloud Network
 
Agile Cloud Conference 2 Introduction - John Brennan
GovCloud Network
 
DoD Business Capability Lifecycle (BCL) Guide (Draft)
GovCloud Network
 
GovCloud Network Overview Presentation
GovCloud Network
 
PM ISE Information Interoperability Presentation -agile sourcing brief
GovCloud Network
 
Intrusion Detection on Public IaaS - Kevin L. Jackson
GovCloud Network
 
A Framework for Cloud Computing Adoption in South African Government
GovCloud Network
 
NCOIC GCC OWS-10 presentation 10 7 2013
GovCloud Network
 
Tech gate kevin l jackson - 09-21-2013
GovCloud Network
 
Paving the Way to the Cloud: Cloud Services Brokerage for Highly Secure, Dem...
GovCloud Network
 
Cloud computing-made-easy
GovCloud Network
 
Kevin jackson cloud service brokerage for datacenter service providers for we...
GovCloud Network
 
Pilot Texas Cloud Offering
GovCloud Network
 
DISA Broker Designation
GovCloud Network
 

Recently uploaded (20)

PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Approach and Philosophy of On baking technology
30anthuong17
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Encapsulation theory and applications.pdf
gurumoop
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 

Chris Kemp: NASA Nebula

  • 2. Part 1: NASA’s View of Cloud
  • 3. Why is NASA focused on cloud?  Many, many, many websites  Many, many, many different platforms  Very high operating cost  Long provisioning times  Very large attack surface  Confusing to outside users  Lock-in, portability, and interoperability issues
  • 4. More reasons…  Missions are focused on the Mission  Scientists are focused on the Science  Large-scale infrastructure requirements  Too much is spent on infrastructure  Missions Completely Fail (OCO)  Missions Completely Succeed (Rovers)  Politics impact Missions (Triana)
  • 5. NIST Definition of Cloud Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.
  • 6. 5 Cloud Attributes  Service-based  Scalable and elastic  Shared  Metered by Use  Uses Internet Technologies Excerpts from Gartner‟s “Five Attributes of Cloud Computing”
  • 7. Service-based  Abstracted from the implementation  Completely automated  Near real-time delivery (seconds or minutes)
  • 8. Scalable and Elastic  Resources are drawn from a common pool  Dynamically allocated to meet demand  Dynamically released when appropriate  Fully automated
  • 9. Shared  Common resources build economies of scale  Common infrastructure runs at high efficiency
  • 10. Metered by Use  Consumers pay for services used  Underlying hardware costs are irrelevant
  • 11. Uses Internet ‘Standards’  Open standards and APIs  Almost always IP, HTTP, and REST
  • 14. Built for Science  Science-Class Cloud CPU Computing  High CPU-to-Disk Ratio Disk  Built for Research  MAE-West Peering (Internet2, Web NLR, CENIC, 11 Tier-1 ISPs)  Massively Parallel, Loosely Coupled  In a Federal Security Perimeter
  • 16. Cloud Platforms, Compared AWS AppEngine Nebula Storage S3, EBS SimpleStorage Luster API Database SimpleDB CouchDB MySQL Queue SQS -- RabbitMQ Virtualization EC2 (Xen) -- Eucalyptus (KVM) Framework -- Django Django User Accounts -- Google eAuth Accounts Search -- Google Search SOLR+Lucene Networking 1GigE 1GigE 10GigE+ CDN/Cache CloudFront Varnish
  • 17. Application Time to Market Current Web App Process NEBULA Cloud Platform Procure Server – 6-12 weeks Procure VM – 60-120 seconds Configure Server – 2-3 days Included. AWRS Filing – 2-3 days Already done. (APPS.NASA.GOV) Set up Source Control – 2-3 hours. Included. Security Plan – 3 weeks, min. Included. SSL Certificates – 2-4 weeks. Included. Develop Terms of Use – 6 months. Included, for most collaboration. eAuth Integration – 40 hours. Included. Develop Processes – 3-6 weeks. Basic moderation included. Set up backups – 2-3 hours. Included. 24,192,000 Seconds. 60-120 Seconds.
  • 18. Must insert budget wedges now!
  • 19. Built for Collaboration  True Single-Sign-On, for the Public  Enterprise Search, across the Cloud  All Cloud apps live at apps.nasa.gov
  • 20. Built for the Web  Friendly URLs  Designed for Search Engines, RSS, and aggregation  Components are RSSable, Tweetable  What if NASA was on the first page of Google results for the term „Space‟?
  • 21. Built for Partners  Your science partners can instantly connect from your NEBULA app, to their own research tasks within public Cloud Services (EC2, Azure, AppEngine)  Your private fleet of Post-Docs can work on your data – at 10 cents an hour
  • 22. Built for Government  Policy compliant for contributions  Consolidated moderation interface  Everything-compliant (PII, First Amendment, COPPA, Section 508, etc)
  • 23. Built for Developers  Integrated Development Environment  Revision control  Automated testing  Continuous Integration  Bug tracking
  • 24. Built for Community  Cloud means Turnkey  Dedicated Platform Staff  Engaged External Partners  Common KB shares code, tricks, tips
  • 25. Nebula - the way to Data.gov  Best practices in moderation, open collaboration  Open and Public APIs, everywhere  Feeds (RSS, Atom) power mash-ups  Open-source platform, apps, and data  Full transparency
  • 26. Pilot Projects  White House USASpending.gov 2.0  Microsoft World Wide Telescope (Mars / Moon)  Google Earth Planetary Content (Mars)  LMMP Program Data Processing (Moon)  TOPS Earth Climate Modeling
  • 27. Nebula Timeline  Under development since May 2008  Pilot projects underway now  Full Launch, Q2 2010 (in Apps.gov)  Concurrent Open Source Release of Code
  • 28. Part 3: Federal Standards
  • 29. Federal Cloud Computing Governance CIO Council • Strategic Objective Definition • Overall Guidance • Adjudication PMO (GSA) Cloud Computing Executive Steering Committee (ESC) • Day to Day Management of • Strategic Direction the Federal Cloud Computing • Priority Setting Initiative • Issue Resolution • Development of required • Approval deliverables • Provide Technical Guidance and Subject Matter Expertise Cloud Computing Advisory Council (AC) • Provide Collaborate Federal Agency Input and Feedback for Cloud Computing Initiatives/Deliverables • Support the PMO and Cloud Computing Subcommittee with Federal Subject Matter Expertise • Approve Cloud Computing deliverables for submission to the Cloud Computing ESC • Cross-Functional Collaboration
  • 30. Cloud Standards Working Group  CC Advisory Council Mission Statement: Drive the government-wide adoption of cost effective, green and sustainable Federal cloud computing solutions.  CC Standards WG Mission Statement: Establish a framework and roadmap to drive standards to facilitate interoperability, portability, security and manageability for federal cloud computing services.
  • 31. Federal vs. Commercial Our Focus Federal Requirements Commercial Requirements
  • 32. Goal of Federal Standards Activities Provide guidance to industry and government for the creation and management of relevant cloud computing standards allowing all parties to gain the maximum value from cloud computing
  • 33. Government Cloud Framework Cloud User Tools Software as a Service (SaaS) / Applications Application User/ Reporting & Integration Admin Analytics Citizen Engagement Gov Productivity Gov Enterprise Apps Business Svcs Portal Wikis / Blogs Email / IM Customer / Apps Core Mission Account Social Networking Virtual Desktop Mgmt Analytic Apps API‟s Core Cloud Services Agency Website Legacy Apps Tools Office Automation User Profile Hosting (Mainframes) Workflow Mgmt Data Mgmt Engine Platform as a Order Testing Developer Reporting Service (PaaS) Database Tools Tools EAI Mgmt Directory Knowledge DBMS Trouble Services Mobile Device Mgmt Mgmt Integration Billing / Infrastructure as a Virtual Data Migration Invoice Storage Service (IaaS) Machines Tools Tracking Product CDN Web Servers Server Hosting ETL Catalog Service Mgmt & Delivery Capabilities Service Performance DR / Operations Provisioning SLA Mgmt Provisioning Monitoring Backup Mgmt Cloud Service Security & Data/Network Certification & Authentication & Auditing & Data Privacy Data Privacy Security Compliance Authorization Accounting Data Center Routers / Internet Hosting LAN/WAN Facilities Firewalls Access Centers
  • 34. Focus on Business Use Cases 1 Description Focus Business Business Use Cases present Define boundaries Use Case and describe a top level view of a and characteristics category of related cloud of a business focus business issues area 2 Scenario Scenarios illustrate a particular Describe conditions facet of a business use case in for the scenario and order to highlight kinds of the required kinds of standards needed standards to fulfill the need 3 Example Examples animate a scenario Show how a with a limited and specific case to scenario plays out in illustrate practical implications of a real world situation a scenario including references to with reference to potential standards existing standards 4 implementations where available Detail Use Case Detail Use Cases break down a Defines specific scenario into actual functional activities. NOT components, tasks and activities. PART OF This is the traditional CURRENT “programming” use case used in DISCUSSION SDLC
  • 35. Business Use Case 1: Initiating Cloud Service Description An agency wishes to initiate a new cloud service Service Models IaaS, SaaS, PaaS Pre-conditions None Post conditions Target services commissioned and provisioned Key Considerations Security policy specification including location dependencies and Dependencies Identity federation and management (All) Physical infrastructure selection, sizing and configuration (IaaS) Virtual Machine selection, sizing and configuration (IaaS) Storage selection, sizing and configuration (IaaS) Provisioning /deployment standards and specifications (IaaS, PaaS) Monitoring and management specification (All) Application and Document lifecycle specification (All) Platform selection and configuration specification (PaaS) Application selection and configuration specification (SaaS) Service Level specification and benchmarking (All) References and Cloud Computing Use Cases Group 3.6.2 Notes Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 36. Scenario 1.1 Establish IaaS Service Conditions  Agency wishes to establish an IaaS Service Requirements  Identity management standards to establish identity, authentication and authorization  Security standards related to encryption, location-specific data storage, etc.  Specification standards for physical boundaries, e.g. shared, dedicated or community pools of processors, networks, storage devices, etc.  Specification standards for virtual resources including virtual machines, standard images, storage and virtual network configuration  Provisioning standards to specify virtual resource elasticity parameters  Monitoring and management standards for thresholds and controls  Lifecycle standards for storage replication, retention and destruction  Service level standards Desired Results  Essential portions of infrastructure are provisioned by standard specification References and Notes  Cloud Computing Use Cases Group 3.6.1  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 37. Example 1.1.1 IaaS for Scientific Computing Description  Agency wishes to establish an IaaS Service for process-intensive scientific computing Activities  Authorized individual accesses an IaaS provider by preexisting account  Declare identity domain by referencing established federated identities (SAML, WS-Federation, Liberty, ID-FF)  Declare standards-based authorization /entitlement rules (XACML)  Declare key management and data encryption at rest and in flight (PKI, PKCS, KEYPROV (CT-KIP, DSKPP), EKMI)  Declare physical boundaries: SPARC processors and SAN disk-accessable storage, drawn from community pool X only, shared machines and devices allowed (Standards do not exist)  Define virtual resources:  Specify multicore high memory instances and large amounts of nonpersistant storage (Standards do not exist)  Select a vendor-specific virtual image (DMTF OVF) using a standard query and selection API (Standards do not exist) following risk based security standards (PCI-DSS)  Define a persistent storage structure and mapping (Amazon S3, GFS, Azure Storage, SNIA CDMI)  Define a VPN configuration (Amazon EC2)  Declare provisioning rules (OGF OCCI, EC2 API)  Declare new instance spinup at 85% utilization of all running instances and termination at 20% utilization of any instance (Standards do not Exist)  Declare notification at 105 instances and notification and end of escalation at 150 (Standards do not Exist)  Declare data backup on a nightly basis to CONUS resource, and data destruction after 60 days (ISO 15489 but no implementation standards)  Service level standards (Standards do not Exist) References and Notes  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 38. Business Use Case 2: Changing Cloud Vendors Description An agency wishes to migrate some or all of a set of existing cloud services to a new vendor Service Models IaaS, SaaS, PaaS Pre-conditions • An existing set of cloud services with source vendor • A plan for replacement or migrated services with destination vendor Post conditions • Source services decommissioned • Target services operating with minimal loss of data, security or business rule functionality Key Considerations Identity federation and management across vendors and Dependencies Security specification standards across vendors Industry-specific common standards for application types (SaaS) Platform standards and configuration (PaaS) Platform component (middleware) standards and configuration (PaaS) Application language standardization and portability (PaaS) Virtual machine standards, configuration and portability (IaaS) Storage standards and configuration (IaaS) References and Cloud Computing Use Cases Group 3.6.2 Notes Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 39. Scenario 2.1 Migrate SaaS Vendors Conditions  Agency has an existing SaaS application and wishes to migrate all or part of it to a similar application with a new vendor Requirements  Identity management standards to migrate identity, authentication and authorization  Security standards related to encryption, location-specific data storage, etc.  Storage standards for migrating existing data  Application-specific formatting standards for importing or reusing data  Application-specific business rule standards (in some cases)  Service level standards Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.1  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 40. Scenario 2.2 Migrate PaaS Vendors: Similar Platform Conditions  Agency has an existing PaaS platform and wishes to migrate to a similar platform from another vendor 1. Requirements  Include Identity, Security, Storage standards from 1.1  Platform standards for configuring and managing platform operation and management  Platform standards for configuring and managing application deployment  Platform enabler standards for configuring and operating databases, message queues, service buses and related enablers Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.2, 3.6.3  Scope reduced to exclude migrations across dissimilar platform stacks 1 1 Similar platform refers to migration within similar PaaS stacks, e.g. LAMP to
  • 41. Scenario 2.3 Migrate PaaS Vendors: Dissimilar Platform Conditions  Agency has an existing PaaS platform and wishes to migrate to a dissimilar platform from another vendor 1. Requirements  Include all requirements from Scenario 1.2  Language standards and cross-language portability standards or compatibility APIs  Data management standards and API‟s to address different data models across platform, e.g. relational versus flat Desired Results  Users are able to access new application with appropriate permissions  Migrated data is available within the defined security envelope  Business rules are in operation on the target system References and Notes  Cloud Computing Use Cases Group 3.6.2, 3.6.3  Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09 1 Similar platform refers to migration within similar PaaS stacks, e.g. LAMP to
  • 42. Business Use Case 3: Hybrid Cloud Operation Description An agency wishes to operate services across multiple clouds hosted by multiple vendors, potentially including private or community clouds Service Models IaaS, SaaS, PaaS Pre-conditions Services in multiple clouds with established SOA interoperability Post conditions Services interoperating across cloud boundaries Key Considerations Include: Business Case 1: Initiate Cloud Service and Dependencies Transactional and Concurrency standards Additional security standards for cross-cloud trust References and Cloud Computing Use Cases Group 3.4.1. Note that Transactionality Notes is excluded for Hybrid by CCUC but included here Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09
  • 43. Business Use Case 4: Platform Configuration and Operation Description An agency wishes to configure a platform on which to develop, test or deploy SaaS applications Service Models PaaS Pre-conditions Available cloud infrastructure if required by the platform Post conditions Scalable platform available for development, testing or deployment of SaaS applications Key Considerations Include: Business Case 1: Initiate Cloud Service and Dependencies Platform standards and configuration (PaaS) Platform component (middleware) standards and configuration (PaaS) Application language standardization and portability (PaaS) Platform management and reporting standards (PaaS) References and Grance, Mell (NIST) A Roadmap for Cloud Standards, 9/15/09 Notes
  • 44. Next Steps  Federal Standards Web Workshop  Crowd-source ideas for roadmap  3rd week of January  Open public invitation  Federal Standards Summit  April 2010  Present Federal Roadmap  Present Prioritized Federal Use Cases