In the first of four videos on defining cloud computing at NIST, Robert Starmer, CTO and leader of Kumulus Technologies, outlines the capabilities, service models, and access models that collectively define the cloud. NIST provides the following definitions of key cloud computing capabilities and service and delivery models. It covers five core cloud functions, three service models, and four deployment models. In this article, we explore the foundations of the NIST Cloud Definition (Documentation Special Publication 800-145), which is well-regarded in the IT industry by vendors, service providers, IT organizations, and customers.

As the range of cloud computing solutions and services continues to grow, NIST's definition of cloud computing reinforces our understanding of what the cloud has to offer over traditional IT solutions. According to NIST's official definition, "cloud computing is a model for providing, on demand, cost-effective and ubiquitous network access to a common set of customizable computing resources (such as networks, servers, storage, applications, and services) that can be quickly provided. Cloud computing is a model for providing ubiquitous and cost-effective, on-demand access to a shared pool of configurable computing resources (such as networks, servers, storage, applications, and services) that can be quickly provisioned and released with minimal management. effort or interaction with the service provider.

You can provide IT services such as email, application network, or server services without requiring interaction with each service provider. Allows access to cloud services through Internet networks, telecommunications and other access devices.

The underlying resources in cloud services are shared among multiple tenants. It is assumed that the public cloud service is multi-tenant, and the underlying resources are shared by multiple clients. Public clouds are owned by organizations that provide cloud services and serve different customer segments.

A private cloud provides a single CSC organization with exclusive access to and use of a cloud service, its infrastructure and computing resources. It may be managed by the CSC organization or a third party and may be hosted on-premise by the organization (i.e. on-premise private clouds) or outsourced to a hosting company (i.e. vendor IT resources are grouped to serve multiple customers, with different physical and virtual resources assigned and are reassigned dynamically based on customer needs.

These services are available in the service layer, which is part of the service orchestration stack. Software-as-a-Service (SaaS) offers consumers the opportunity to use the provider's applications running on cloud infrastructure. Platform as a Service (PaaS) provides consumers with the ability to deploy consumer-created or purchased applications to cloud infrastructure, built using provider-supported programming languages, libraries, services, and tools.

NIST defines PaaS as a service model that allows consumers to deploy consumer-built cloud infrastructure or purchased applications built using common programming tools, processes, and APIs to accelerate application development, testing, and deployment. NIST defines SaaS as a service model in which consumers do not manage or control the underlying cloud infrastructure, including networks, servers, operating systems, storage, or even individual application capacity, except perhaps application configuration options limited by user specifications . Infrastructure as a Service (IaaS) provides consumers with the ability to provide compute, storage, networking, and other critical computing resources where consumers can deploy and run arbitrary software, which may include operating systems and applications. The IaaS model allows IT administrators to manage traditional data center resources in the cloud.

As a cloud technology, it can also be used by organizations to provide IaaS to the public. OpenStack is an open source cloud platform providing IaaS private cloud computing services. Bluelock can provide cloud backup, cloud restore, or restore from a cloud service provider through a hybrid cloud service model.

This hybrid configuration gives the customer control and ownership of data security and protection while providing full server resource scalability for application servers running in the AWS cloud. This allows the cloud service provider to charge consumers only for the resources or services actually consumed by the customer.

In a mature market, a cloud service consumer can freely choose a cloud service provider with better prices and better terms. Generally, cloud service provider prices and public SLAs are non-negotiable, although a cloud consumer who assumes they are widely used may negotiate better deals. The cloud service provider may also list a number of limitations or limitations and obligations in the SLAs that cloud service customers must accept. Cloud service consumers use Service Level Agreements (SLAs) to specify the technical performance requirements that the cloud service provider must meet.

Actor Definition Cloud Consumer A person or organization that does business with cloud service providers and uses the services they provide. Cloud Broker An entity that manages the usage, performance, and delivery of cloud services and negotiates the relationship between cloud service provider and cloud service consumer. Combine and integrate different services into one or more new services.

They provide arbitrage services that provide flexibility and opportunistic choices. Cloud systems automatically control and optimize resource usage using metering capabilities at a particular level of abstraction appropriate to the service type (e.g.,

NIST defines a community cloud deployment model as a model used exclusively by a specific consumer community of an organization with shared interests (eg, mission, security requirements, policy, and compliance considerations).

This document gives you the flexibility to determine whether computing power is eligible for cloud services by providing options for evaluating each capacity. In the context of SP 800-145 and this document, "required" means that each Cloud Service Provider (CSP) must be able to provide and deliver each Key Cloud Service Client (CSC) capability for the service. The NIST definition identifies self-service, accessibility for desktops, laptops, and mobile phones, resources grouped across multiple users and applications, elastic resources that can be quickly reallocated as needed, and measurable services as the five pillars of cloud computing. a core feature. The NIST Cloud Computing Program develops security assessments, procedures, and technical guidance documents for building cloud architectures and services, as well as federal government support for all upcoming cloud programs.

Azure PaaS offerings offer a wide range of services, including services that other cloud service providers would consider IaaS. NIST defines SaaS as a service model in which consumers do not manage or control the underlying cloud infrastructure, including networks, servers, operating systems, storage, or even individual application characteristics, except in limited configurations. In 2011, NIST defined cloud computing as a model that provides ubiquitous, cost-effective, on-demand access to a shared pool of configurable and published configurable computing resources such as networks, servers, storage, applications, and services Access. Can be done quickly with minimal administrative effort or interaction with service providers.