Scribd
Upload
72 views20 pages

LM-2 NIST CLoud Computing Reference Architecture

Uploaded by

Mohammed irfan m Mansoor ali t a
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
72 views20 pages

LM-2 NIST CLoud Computing Reference Architecture

Uploaded by

Mohammed irfan m Mansoor ali t a
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 20

KGiSL Institute of Technology

(Approved by AICTE, New Delhi; Affiliated to Anna University, Chennai)


Recognized by UGC, Accredited by NBA (IT)
365, KGiSL Campus, Thudiyalur Road, Saravanampatti, Coimbatore – 641035.

Department of Computer Science and Engineering

Name of the Faculty : Mr. Sureshkumar R

Subject Name & Code : CCS335/ Cloud Computing

Branch & Department : Computer Science and Engineering

Year & Semester : IV / VII

Academic Year :2023-24


Syllabus
• UNIT I CLOUD ARCHITECTURE MODELS AND INFRASTRUCTURE 6

• Cloud Architecture: System Models for Distributed and Cloud Computing – NIST Cloud Computing
Reference Architecture – Cloud deployment models – Cloud service models; Cloud Infrastructure:
Architectural Design of Compute and Storage Clouds – Design Challenges

CCS335/CC/III CSE/V SEM/KG-KiTE


Course Outcome

CO1: Understand the design challenges in the cloud.

CCS335/CC/III CSE/V SEM/KG-KiTE


TOPIC

NIST CLOUD COMPUTING REFERENCE


ARCHITECTURE
Cloud Conceptual Reference Model
• Cloud High-level architecture
• 5 major actors with their roles, responsibilities, activities and functions
in cloud computing
• Understanding of the requirements, uses, characteristics and standards
of cloud computing
1. Cloud consumer
2. Cloud provider
3. Cloud broker
4. Cloud auditor
5. Cloud carrier
CCS335/CC/III CSE/V SEM/KG-KiTE
NIST Cloud Reference Architecture

CCS335/CC/III CSE/V SEM/KG-KiTE


Actors in Cloud Computing
• Cloud consumer A person or organization that maintains a business
relationship with and uses service from Cloud Providers
• Cloud provider A person, organization or entity responsible for
making a service available to interested parties
• Cloud auditor A party that can conduct independent assessment of
cloud services, information system operations, performance and
security of the cloud implementation

CCS335/CC/III CSE/V SEM/KG-KiTE


Contd…
• Cloud broker An entity that manages the use, performance and
delivery of cloud services, and negotiates relationships between Cloud
providers and Cloud consumers
• Cloud carrier An intermediary that provides connectivity and transport
of cloud services from cloud providers and cloud consumers

CCS335/CC/III CSE/V SEM/KG-KiTE


Scenarios in Cloud 1
• Cloud consumer interacts with the cloud broker instead of contacting
a cloud provider directly
• The cloud broker may create a new service by combining multiple
services or by enhancing an existing service
• Actual cloud providers are invisible to the cloud consumer

CCS335/CC/III CSE/V SEM/KG-KiTE


Scenarios in Cloud 2
• Cloud carrier provide the connectivity and transport of cloud services from
cloud providers to cloud consumers
• Cloud provider participates in and arranges for two unique service level
agreements (SLA), one with a cloud carrier and one with a cloud consumer
• A cloud provider may request cloud carrier to provide dedicated and
encrypted connections to ensure the cloud service
• In this case, the provider may specify its requirements on capability,
flexibility and functionality in SLA2 in order to provide essential requirements
in SLA1.

CCS335/CC/III CSE/V SEM/KG-KiTE


Scenarios in Cloud 3
• Cloud auditor conducts independent assessments for the operation
and security of the cloud service
• The audit may involve interactions with both the Cloud Consumer and
the Cloud Provider

CCS335/CC/III CSE/V SEM/KG-KiTE


Cloud Consumer
• Cloud consumer browses and uses the service
• Cloud consumer sets up contracts with the cloud provider
• Cloud consumers need SLA to specify the technical performance
requirements fulfilled by a cloud provider
• SLA cover the quality of service, security, remedies for performance failures
• A cloud provider list some SLA that limit and obligate the cloud consumers
by must acceptance
• Cloud consumer can freely choose a cloud provider with better pricing with
favorable conditions
• Pricing policy and SLA are non-negotiable

CCS335/CC/III CSE/V SEM/KG-KiTE


Example Services Available to a
Cloud Consumer

CCS335/CC/III CSE/V SEM/KG-KiTE


Cloud Provider
• Cloud provider acquires and manages the computing infrastructure
required for providing the services, runs the cloud software that
provides the services and makes arrangement to deliver the cloud
services to the Cloud consumers through network access
• Five major activities
1. Service deployment
2. Service orchestration
3. Cloud service management
4. Security
5. Privacy
CCS335/CC/III CSE/V SEM/KG-KiTE
Cloud Auditor
• Audits are performed to verify conformance to standards
• Auditor evaluates the security controls, privacy impact, performance,
etc.
• Auditing is especially important for federal agencies

CCS335/CC/III CSE/V SEM/KG-KiTE


Cloud Broker
• Integration of cloud services can be complex for consumers. Hence,
cloud broker is needed
• Broker manages the use, performance and delivery of cloud services
and negotiates relationships between cloud providers and cloud
consumers
• Three categories
1. Service Intermediation
2. Service Aggregation
3. Service Arbitrage

CCS335/CC/III CSE/V SEM/KG-KiTE


• Service Intermediation: A cloud broker enhances a given service by improving
some specific capability and providing value-added services to cloud
consumers. Eg: Managing access to cloud services, identity management,
performance reporting, enhanced security, etc.
• Service Aggregation: A cloud broker combines and integrates multiple
services into one or more new services. The broker provides data integration
and ensures the secure data movement between the cloud consumer and
multiple cloud providers.
• Service Arbitrage: Service arbitrage is similar to service aggregation except
that the services being aggregated are not fixed. Service arbitrage means a
broker has the flexibility to choose services from multiple agencies. The cloud
broker, for example, can use a credit-scoring service to measure and select an
agency with the best score.
CCS335/CC/III CSE/V SEM/KG-KiTE
Cloud Carrier
• Cloud carrier provide access to consumers through network,
telecommunication and other access devices
• The distribution of cloud services is normally provided by network
and telecommunication carriers or a transport agent, where a
transport agent refers to a business organization that provides
physical transport of storage media such as high-capacity hard drives
• Cloud provider can set up SLA with a cloud carrier to provide services
consistent with the level of SLA offered to cloud consumers

CCS335/CC/III CSE/V SEM/KG-KiTE


Scope of control between Provider and
Consumer
• Application layer are used by SaaS consumers, or
installed/managed/maintained by PaaS consumers, IaaS consumers
and SaaS providers
• Middleware is used by PaaS consumers,
installed/managed/maintained by IaaS consumers or PaaS providers.
Middleware is hidden from SaaS consumers
• IaaS layer is hidden from SaaS consumers and PaaS consumers.
Consumers have freedom to choose the guest OS to be hosted
• IAAsHost OS

CCS335/CC/III CSE/V SEM/KG-KiTE


Thank
You!

CCS335/CC/III CSE/V SEM/KG-KiTE

You might also like