Geneva, Switzerland, 14 November 2014

Cloud Computing - Overview and Vocabulary (Y.3500)

Eric A. Hibbard, CISSP, CISACTO Security & Privacy Hitachi Data Systems eric.hibbard@hds.com

ITU Workshop on “Cloud Computing Standards – Today and the Future”

(Geneva, Switzerland 14 November 2014)

Geneva, Switzerland, 14 November 2014 2

Background

Project initiated in ISO/IEC JTC 1/SC 38 as ISO/IEC 17788 in Oct-2011; progressed to Committee Draft (CD)Established Collaborative Team (CT-CCVOCAB) with ITU-T/SG 13 in Sep-2012Goal: Develop a common text standard covering

Cloud TerminologyCore cloud concepts

Published in Aug-2014

Geneva, Switzerland, 14 November 2014 3

Overview of Standard

Both Rec. ITU-T Y.3500 and ISO/IEC 17788 published as “no-cost” standardsSummary

10 page + wrapper materialDefines 37 terms (imports 7)Cloud computing overviewAnnex – Cloud service categoriesBibliography

Geneva, Switzerland, 14 November 2014 4

Cloud Computing Overview

Key characteristicsCloud computing roles & activitiesCloud deployment modelsCloud capability types & cloud services categoriesCloud deployment modelsCloud computing cross cutting aspects

Cloud Computing

paradigm for enabling network access to a scalable and elastic pool of shareable physical or virtual resources with self-service provisioning and administration on-demand

Geneva, Switzerland, 14 November 2014 5

SOURCE: Rec. ITU-T Y.3500 | ISO/IEC 17788:2014, Information technology – Cloud computing – Overview and vocabulary

Geneva, Switzerland, 14 November 2014 6

The 7 defined cloud service categories

Service Categories vs. Capability Types

Cloud Service Categories

Cloud Capabilities Types

Infrastructure Platform Application

Compute as a Service X    Communication as a Service   X XData Storage as a Service X X XInfrastructure as a Service X    Network as a Service X X XPlatform as a Service   X  Software as a Service     X

Sample Use of Y.3500 (e.g., ISO)

Geneva, Switzerland, 14 November 2014 7

Actual

Expected

ITU-T Y.3500 | ISO/IEC 17788ITU-T Y.3500 | ISO/IEC 17788

ITU-T Y.3502 | ISO/IEC 17789ITU-T Y.3502 | ISO/IEC 17789

ISO/IEC 19086-1-3

WD & CD

ISO/IEC 19086-1-3

WD & CD

ISO/IEC 27040FDIS

ISO/IEC 27040FDIS

ISO/IEC 27018: 2014

ISO/IEC 27018: 2014

ITU-T X.CC-Control |

ISO/IEC 27017DIS

ITU-T X.CC-Control |

ISO/IEC 27017DIS

ISO/IEC 19086-4

NWIP

ISO/IEC 19086-4

NWIP

ISO/IEC 19941WD

ISO/IEC 19941WD

ISO/IEC 19944WD

ISO/IEC 19944WD

ISO/IEC 27036-4

WD

ISO/IEC 27036-4

WD

Conclusions and Recommendations

Y.3500 has stabilized the core cloud terminologyY.3500 is a little different than earlier works (NIST); industry is adjusting

While challenging to develop, Y.3500 is now getting significant use

Geneva, Switzerland, 14 November 2014 8