DOCSLIB.ORG

Cloud Computing Synopsis and Recommendations

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cloud Computing Synopsis and Recommendations Special Publication 800-146 Cloud Computing Synopsis and Recommendations Recommendations of the National Institute of Standards and Technology Lee Badger Tim Grance Robert Patt-Corner Jeff Voas NIST Special Publication 800-146 Cloud Computing Synopsis and Recommendations Recommendations of the National Institute of Standards and Technology Lee Badger Tim Grance Robert Patt-Corner Jeff Voas C O M P U T E R S E C U R I T Y Computer Security Division Information Technology Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930 May 2012 U.S. Department of Commerce John Bryson, Secretary National Institute of Standards and Technology Patrick D. Gallagher, Under Secretary of Commerce for Standards and Technology and Director CLOUD COMPUTING SYNOPSIS AND RECOMMENDATIONS Reports on Computer Systems Technology The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by providing technical leadership for the nation’s measurement and standards infrastructure. ITL develops tests, test methods, reference data, proof of concept implementations, and technical analysis to advance the development and productive use of information technology. ITL’s responsibilities include the development of management, administrative, technical, and physical standards and guidelines for the cost-effective security and privacy of other than national security-related information in Federal information systems. This Special Publication 800-series reports on ITL’s research, guidance, and outreach efforts in computer security and its collaborative activities with industry, government, and academic organizations. National Institute of Standards and Technology Special Publication 800-146 Natl. Inst. Stand. Technol. Spec. Publ. 800-146, 81 pages (May 2012) Certain commercial entities, equipment, or materials may be identified in this document in order to describe an experimental procedure or concept adequately. Such identification is not intended to imply recommendation or endorsement by the National Institute of Standards and Technology, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose. ii CLOUD COMPUTING SYNOPSIS AND RECOMMENDATIONS Acknowledgments The authors, Lee Badger of the National Institute of Standards and Technology (NIST), Tim Grance, of the National Institute of Standards and Technology (NIST), Robert Patt-Corner of Global Tech, Inc., and Jeff Voas of the National Institute of Standards and Technology (NIST), wish to thank their colleagues who reviewed drafts of this document and contributed to its technical content. The authors gratefully acknowledge and appreciate the contributions from individuals and organizations whose comments improved the overall quality of this publication. Trademark Information All names are trademarks or registered trademarks of their respective owners. iii CLOUD COMPUTING SYNOPSIS AND RECOMMENDATIONS Table of Contents Executive Summary ................................................................................................................. 1 1. Introduction .................................................................................................................... 1-1 1.1 Authority .................................................................................................................1-1 1.2 Purpose and Scope ................................................................................................1-1 1.3 Audience ................................................................................................................1-1 1.4 Document Structure ................................................................................................1-1 2. Cloud Computing Definition .......................................................................................... 2-1 3. Typical Commercial Terms of Service .......................................................................... 3-1 3.1 Promises ................................................................................................................3-1 3.2 Limitations ..............................................................................................................3-2 3.3 Obligations .............................................................................................................3-3 3.4 Recommendations ..................................................................................................3-3 4. General Cloud Environments ........................................................................................ 4-1 4.1 Understanding Who Controls Resources in a Cloud ...............................................4-3 4.2 The On-site Private Cloud Scenario .......................................................................4-4 4.3 The Outsourced Private Cloud Scenario .................................................................4-7 4.4 The On-site Community Cloud Scenario .................................................................4-9 4.5 The Outsourced Community Cloud Scenario ........................................................4 -12 4.6 The Public Cloud Scenario ...................................................................................4 -13 4.7 The Hybrid Cloud Scenario ...................................................................................4 -15 5. Software-as-a-Service Environments ........................................................................... 5-1 5.1 Abstract Interaction Dynamics ................................................................................5-2 5.2 Software Stack and Provider/Consumer Scope of Control ......................................5-3 5.3 Benefits ..................................................................................................................5-3 5.3.1 Very Modest Software Tool Footprint ......................................................... 5-4 5.3.2 Efficient Use of Software Licenses ............................................................. 5-4 5.3.3 Centralized Management and Data ............................................................ 5-4 5.3.4 Platform Responsibilities Managed by Providers ........................................ 5-4 5.3.5 Savings in Up-front Costs .......................................................................... 5-5 5.4 Issues and Concerns ..............................................................................................5-5 5.4.1 Browser-based Risks and Risk Remediation .............................................. 5-5 5.4.2 Network Dependence................................................................................. 5-6 5.4.3 Lack of Portability between SaaS Clouds ................................................... 5-6 5.4.4 Isolation vs. Efficiency (Security vs. Cost Tradeoffs) .................................. 5-6 5.5 Candidate Application Classes ...............................................................................5-7 5.6 Recommendations for Software as a Service .........................................................5-8 6. Platform-as-a-Service Cloud Environments ................................................................. 6-1 6.1 Abstract Interaction Dynamics ................................................................................6-1 6.2 Software Stack and Provider/Consumer Scope of Control ......................................6-3 6.3 Benefits ..................................................................................................................6-3 6.3.1 Facilitated Scalable Application Development and Deployment ................. 6-4 6.4 Issues and Concerns ..............................................................................................6-4 iv CLOUD COMPUTING SYNOPSIS AND RECOMMENDATIONS 6.4.1 Lack of Portability between PaaS Clouds ................................................... 6-4 6.4.2 Event-based Processor Scheduling ........................................................... 6-4 6.4.3 Security Engineering of PaaS Applications ................................................ 6-5 6.5 Candidate Application Classes ...............................................................................6-5 6.6 Recommendations for Platform as a Service ..........................................................6-5 7. Infrastructure-as-a-Service Cloud Environments ........................................................ 7-1 7.1 Abstract Interaction Dynamics ................................................................................7-1 7.2 Software Stack and Provider/Consumer Scope of Control ......................................7-2 7.3 Operational View ....................................................................................................7-3 7.3.1 Operation of the Cloud Manager ................................................................ 7-4 7.3.2 Operation of the Cluster Managers ............................................................ 7-4 7.3.3 Operation of the Computer Managers ........................................................ 7-5 7.4 Benefits ..................................................................................................................7-5 7.4.1 Full Control of the Computing Resource Through Administrative Access to VMs 7-6 7.4.2 Flexible, Efficient Renting of Computing Hardware .................................... 7-6 7.4.3 Portability, Interoperability
Load more

Recommended publications
  • Improving Efficiency of Map Reduce Paradigm with ANFIS for Big Data (IJSTE/ Volume 1 / Issue 12 / 015)
    IJSTE - International Journal of Science Technology & Engineering | Volume 1 | Issue 12 | June 2015 ISSN (online): 2349-784X Improving Efficiency of Map Reduce Paradigm with ANFIS for Big Data Gor Vatsal H. Prof. Vatika Tayal Department of Computer Science and Engineering Department of Computer Science and Engineering NarNarayan Shashtri Institute of Technology Jetalpur , NarNarayan Shashtri Institute of Technology Jetalpur , Ahmedabad , India Ahmedabad , India Abstract As all we know that map reduce paradigm is became synonyms for computing big data problems like processing, generating and/or deducing large scale of data sets. Hadoop is a well know framework for these types of problems. The problems for solving big data related problems are varies from their size , their nature either they are repetitive or not etc., so depending upon that various solutions or way have been suggested for different types of situations and problems. Here a hybrid approach is used which combines map reduce paradigm with anfis which is aimed to boost up such problems which are likely to repeat whole map reduce process multiple times. Keywords: Big Data, fuzzy Neural Network, ANFIS, Map Reduce, Hadoop ________________________________________________________________________________________________________ I. INTRODUCTION Initially, to solve problem various problems related to large crawled documents, web requests logs, row data , etc a computational processing model is suggested by jeffrey Dean and Sanjay Ghemawat is Map Reduce in 2004[1]. MapReduce programming model is inspired by map and reduce primitives which are available in Lips and many other functional languages. It is like a De Facto standard and widely used for solving big data processing and related various operations.
    [Show full text]
  • Technical Project and Product Manager Solution Architect and Senior Full Stack Developer
    Technical project and product manager Solution architect and senior full stack developer Profile Technical project and product manager, working with R&D software innovation processes, with a background as solution architect and senior full stack developer. Experienced manager of outsourced teams in many different countries, working with team efficiency based on pragmatic Scrum approach. Experience from scaled agile projects with hundreds of people involved. I am used to working with confidential information and have been security cleared several times. Knowledge I have been programming more than 20 different programming, script and database languages the last 36 years. My recent programming skills include NodeJS, JavaScript, Python, C#, Java, React for progressive web apps (PWA) and some courses in React-Native Expo. I have worked mostly with REST API architecture and a little GraphQL. I have specialist knowledge from leading CMS and DMS systems like Sitecore, DOCUMENTUM and Public 360, were I as product manager had to know Danish law on personal data and record management (ESDH). I worked many years on products for the educational sector and non-profit projects like Oligo Academy, that uses virtual worlds in primary schools for teaching environmental issues and other study subjects. Nikolaj Lisberg Hansen Born 1973 and started programming early in 1984. Got first programming job in 1995 and started working as freelance solution architect and technical project manager in 2006. I practice Tai Chi, love music and like to travel the world. Languages Very good Danish, English and German. Availability 10-25 hours per week normally remote or on-site near Copenhagen. Flexible salary between 96€ / hour (600 DKK) for remote work and 144€ / hour (900 DKK) for on-site work on product innovation or as technical project manager, solution architect or senior developer.
    [Show full text]
  • Character-Word LSTM Language Models
    Character-Word LSTM Language Models Lyan Verwimp Joris Pelemans Hugo Van hamme Patrick Wambacq ESAT – PSI, KU Leuven Kasteelpark Arenberg 10, 3001 Heverlee, Belgium [email protected] Abstract A first drawback is the fact that the parameters for infrequent words are typically less accurate because We present a Character-Word Long Short- the network requires a lot of training examples to Term Memory Language Model which optimize the parameters. The second and most both reduces the perplexity with respect important drawback addressed is the fact that the to a baseline word-level language model model does not make use of the internal structure and reduces the number of parameters of the words, given that they are encoded as one-hot of the model. Character information can vectors. For example, ‘felicity’ (great happiness) is reveal structural (dis)similarities between a relatively infrequent word (its frequency is much words and can even be used when a word lower compared to the frequency of ‘happiness’ is out-of-vocabulary, thus improving the according to Google Ngram Viewer (Michel et al., modeling of infrequent and unknown words. 2011)) and will probably be an out-of-vocabulary By concatenating word and character (OOV) word in many applications, but since there embeddings, we achieve up to 2.77% are many nouns also ending on ‘ity’ (ability, com- relative improvement on English compared plexity, creativity . ), knowledge of the surface to a baseline model with a similar amount of form of the word will help in determining that ‘felic- parameters and 4.57% on Dutch. Moreover, ity’ is a noun.
    [Show full text]
  • Study and Analysis of Different Cloud Storage Platform
    International Research Journal of Engineering and Technology (IRJET) e-ISSN: 2395 -0056 Volume: 03 Issue: 06 | June-2016 www.irjet.net p-ISSN: 2395-0072 Study And Analysis Of Different Cloud Storage Platform S Aditi Apurva, Dept. Of Computer Science And Engineering, KIIT University ,Bhubaneshwar, India. ---------------------------------------------------------------------***--------------------------------------------------------------------- Abstract - Cloud Storage is becoming the most sought 1.INTRODUCTION after storage , be it music files, videos, photos or even The term cloud is the metaphor for internet. The general files people are switching over from storage on network of servers and connection are collectively their local hard disks to storage in the cloud. known as Cloud .Cloud computing emerges as a new computing paradigm that aims to provide reliable, Google Cloud Storage offers developers and IT customized and quality of service guaranteed organizations durable and highly available object computation environments for cloud users. storage. Cloud storage is a model of data storage in Applications and databases are moved to the large which the digital data is stored in logical pools, the centralized data centers, called cloud. physical storage spans multiple servers (and often locations), and the physical environment is typically owned and managed by a hosting company. Analysis of cloud storage can be problem specific such as for one kind of files like YouTube or generic files like google drive and can have different performances measurements . Here is the analysis of cloud storage based on Google’s paper on Google Drive,One Drive, Drobox, Big table , Facebooks Cassandra This will provide an overview of Fig 2: Cloud storage working. how the cloud storage works and the design principle .
    [Show full text]
  • Large-Scale Youtube-8M Video Understanding with Deep Neural Networks
    Large-Scale YouTube-8M Video Understanding with Deep Neural Networks Manuk Akopyan Eshsou Khashba Institute for System Programming Institute for System Programming ispras.ru ispras.ru [email protected] [email protected] many hand-crafted approaches to video-frame feature Abstract extraction, such as Histogram of Oriented Gradients (HOG), Histogram of Optical Flow (HOF), Motion Video classification problem has been studied many Boundary Histogram (MBH) around spatio-temporal years. The success of Convolutional Neural Networks interest points [9], in a dense grid [10], SIFT [11], the (CNN) in image recognition tasks gives a powerful Mel-Frequency Cepstral Coefficients (MFCC) [12], the incentive for researchers to create more advanced video STIP [13] and the dense trajectories [14] existed. Set of classification approaches. As video has a temporal video-frame features then encoded to video-level feature content Long Short Term Memory (LSTM) networks with bag of words (BoW) approach. The problem with become handy tool allowing to model long-term temporal BoW is that it uses only static video-frame information clues. Both approaches need a large dataset of input disposing of the time component, the frame ordering. data. In this paper three models provided to address Recurrent Neural Networks (RNN) show good results in video classification using recently announced YouTube- modeling with time-based input data. A few papers [15, 8M large-scale dataset. The first model is based on frame 16] describe solving video classification problem using pooling approach. Two other models based on LSTM Long Short-Term Memory (LSTM) networks and achieve networks. Mixture of Experts intermediate layer is used in good results.
    [Show full text]
  • Sector and Sphere: the Design and Implementation of a High Performance Data Cloud Yunhong Gu University of Illinois at Chicago
    Sector and Sphere: The Design and Implementation of a High Performance Data Cloud Yunhong Gu University of Illinois at Chicago Robert L Grossman University of Illinois at Chicago and Open Data Group ABSTRACT available, the data is moved to the processors. To simplify, this is the supercomputing model. An alternative Cloud computing has demonstrated that processing very approach is to store the data and to co-locate the large datasets over commodity clusters can be done computation with the data when possible. To simplify, simply given the right programming model and this is the data center model. infrastructure. In this paper, we describe the design and implementation of the Sector storage cloud and the Cloud computing platforms (GFS/MapReduce/BigTable Sphere compute cloud. In contrast to existing storage and and Hadoop) that have been developed thus far have been compute clouds, Sector can manage data not only within a designed with two important restrictions. First, clouds data center, but also across geographically distributed data have assumed that all the nodes in the cloud are co- centers. Similarly, the Sphere compute cloud supports located, i.e., within one data center, or that there is User Defined Functions (UDF) over data both within a relatively small bandwidth available between the data center and across data centers. As a special case, geographically distributed clusters containing the data. MapReduce style programming can be implemented in Second, these clouds have assumed that individual inputs Sphere by using a Map UDF followed by a Reduce UDF. and outputs to the cloud are relatively small, although the We describe some experimental studies comparing aggregate data managed and processed is very large.
    [Show full text]
  • Web Design and Development AAS Requirements
    WEB DESIGN AND DEVELOPMENT Program Overview people changing careers or who wish to take individual The Web Design and Development Program is designed courses to stay current in their existing jobs. to train students to design and develop web sites. Students For more information, visit: will develop a comprehensive understanding of core www.mchenry.edu/webdevelopment design principles and key development strategies. This will include developing sites for deployment on mobile The primary purpose of an Associate in Applied Science devices and standard computers and the development degree is to prepare students for employment. The of static websites and database-driven websites. The AAS degree is not designed specifically for transfer; program will train individuals to become web designers however, there are opportunities to apply some and web developers. Students will learn design theory coursework or the whole degree to a bachelor’s degree as well as gain experience in programming for browsers program. For more information, see an academic and servers. The training is geared toward students with advisor and the department chair. no experience, but will be an excellent opportunity for Requirements for the Associate in Applied Science (AAS) in Web Design and Development Curriculum: OCC 425 Minimum Courses Credit Hours Written Communication 3 (3) ENG 151 Composition I or (3) ENG 152 Composition II Oral Communication 3 (3) SPE 151 Intro to Speech Arts 3 Please see page 65 for AAS Degree course options Humanities Social Science Behavioral Science
    [Show full text]
  • Creating a Dynamic Web Presence
    CREATING A DYNAMIC WHAT’S INSIDE Key Concepts ......................................1 WEB PRESENCE Static vs. Dynamic Websites ..........1 The need for a dynamic web presence has increased dramatically Features of a Dynamic Site ............2 as consumers on the Internet become more knowledgeable Dynamic Techniques ......................2 and more demanding in having their needs filled. With internet Getting Started ....................................2 technologies continuing to evolve rapidly, small businesses 1. Research and Planning .............2 2. Branding and Web can easily create more interactive sites to engage their Development ..............................4 target audiences. Nuts & Bolts .......................................4 1. Select and Register a Domain Name .........................4 Key Concepts 2. Review Hosting Requirements ...5 Static vs. Dynamic Websites 3. Generate Content ......................6 4. Incorporate Interactive Tools.....6 How do they differ? A dynamic website includes elements that allow 5. Address Security, Privacy interaction with visitors, builds relationships through dialogue, and and Legal Issues ........................9 personalizes the whole web experience. Contrast this with a static, or 6. Get Indexed ..............................10 “read only,” site where there really is no way to know who your visitors are unless they contact you. Whether you are designing a site for the 7. Market Your Website ................10 first time or redesigning a current site, the goal of achieving a dynamic
    [Show full text]
  • Mapreduce: Simplified Data Processing On
    MapReduce: Simplified Data Processing on Large Clusters Jeffrey Dean and Sanjay Ghemawat [email protected], [email protected] Google, Inc. Abstract given day, etc. Most such computations are conceptu- ally straightforward. However, the input data is usually MapReduce is a programming model and an associ- large and the computations have to be distributed across ated implementation for processing and generating large hundreds or thousands of machines in order to finish in data sets. Users specify a map function that processes a a reasonable amount of time. The issues of how to par- key/value pair to generate a set of intermediate key/value allelize the computation, distribute the data, and handle pairs, and a reduce function that merges all intermediate failures conspire to obscure the original simple compu- values associated with the same intermediate key. Many tation with large amounts of complex code to deal with real world tasks are expressible in this model, as shown these issues. in the paper. As a reaction to this complexity, we designed a new Programs written in this functional style are automati- abstraction that allows us to express the simple computa- cally parallelized and executed on a large cluster of com- tions we were trying to perform but hides the messy de- modity machines. The run-time system takes care of the tails of parallelization, fault-tolerance, data distribution details of partitioning the input data, scheduling the pro- and load balancing in a library. Our abstraction is in- gram's execution across a set of machines, handling ma- spired by the map and reduce primitives present in Lisp chine failures, and managing the required inter-machine and many other functional languages.
    [Show full text]
  • Big Data Challenges and Hadoop As One of the Solution of Big Data with Its Modules Tapan P
    International Journal of Scientific & Engineering Research, Volume 5, Issue 6, June-2014 133 ISSN 2229-5518 Big Data challenges and Hadoop as one of the solution of big data with its Modules Tapan P. Gondaliya, Dr. Hiren D. Joshi Abstract— this is an era of the tools, trend and technology. And these tools, trend and technology era is mainly depending upon the information. Or this information is called the data and that information is stored in database just like a My SQL, Oracle, Access and other many more database available in different companies. But problem is in our daily life we used tools and devices for the entertainment, websites, Scientific instrument, and many more different devices that generate a large amount of data and that is in zeta bytes or in Petabytes that is called big data and that data create a big problem in our day to day life. Very tough to organize or manage this kind of big data but through Apache Hadoop it’s trouble-free. Basically in this paper we describe the main purpose of Apache Hadoop and how can Hadoop organize or manage the different kinds of data and what are the main techniques are to be used behind that. Index Terms— Big Data, Hadoop, Map Reduce, Hadoop Distributed File System, Big Data Challanges —————————— —————————— 1 INTRODUCTION his is the era of digitalization and we all live in digital T world. In this era we need more and more facility for our life is being easier. So we used different kind of new things for entertaining our life using audio video and digital images, through social stuff like a Facebook Google+ Tweeter, using mobile as well as sensor devices, we used company or gov- ernment sector that all this increases the digitalization and create a large amount of structured, semi structured and un- structured data.
    [Show full text]
  • Web Development Frameworks Ruby on Rails VS Google Web Toolkit
    Bachelor thesis Web Development Frameworks Ruby on Rails VS Google Web Toolkit Author: Carlos Gallardo Adrián Extremera Supervisor: Welf Löwe Semester: Spring 2011 Course code: 2DV00E SE-391 82 Kalmar / SE-351 95 Växjö Tel +46 (0)772-28 80 00 [email protected] Lnu.se/dfm Abstract Web programming is getting more and more important every day and as a consequence, many new tools are created in order to help developers design and construct applications quicker, easier and better structured. Apart from different IDEs and Technologies, nowadays Web Frameworks are gaining popularity amongst users since they offer a large range of methods, classes, etc. that allow programmers to create and maintain solid Web systems. This research focuses on two different Web Frameworks: Ruby on Rails and Google Web Toolkit and within this document we will examine some of the most important differences between them during a Web development. Keywords web frameworks, Ruby, Rails, Model-View-Controller, web programming, Java, Google Web Toolkit, web development, code lines i List of Figures Figure 2.1. mraible - History of Web Frameworks....................................................4 Figure 2.2. Java BluePrints - MVC Pattern..............................................................6 Figure 2.3. Libros Web - MVC Architecture.............................................................7 Figure 2.4. Ruby on Rails - Logo.............................................................................8 Figure 2.5. Windaroo Consulting Inc - Ruby on Rails Structure.............................10
    [Show full text]
  • Fiz: a Component Framework for Web Applications
    Fiz: A Component Framework for Web Applications John K. Ousterhout Department of Computer Science Stanford University Abstract Fiz is a framework for developing interactive Web applications. Its overall goal is to raise the level of programming for Web applications, first by providing a set of high-level reusable components that simplify the task of creating interactive Web applications, and second by providing a framework that encourages other people to create addi- tional components. Components in Fiz cover both the front-end of Web applications (managing a browser-based user interface) and the back end (managing the application's data). Fiz makes it possible to create components that encapsulate complex behaviors such as Ajax-based updates, hiding many of the Web's complexities from applica- tion developers. Because of its focus on components, Fiz does not use mechanisms such as templates and model- view-controller in the same way as other frameworks. ger and more useful structures. We will release Fiz in 1 Introduction open-source form and hope to build a user community Although the World-Wide Web was initially conceived that creates an ever-increasing set of interesting com- as a vehicle for delivering and viewing documents, its ponents, which will make it dramatically easier to cre- focus has gradually shifted from documents to applica- ate applications that advance the state-of-the-art in Web tions. Facilities such as Javascript, the Document Ob- interactivity. ject Model (DOM), and Ajax have made it possible to offer sophisticated interactive applications over the The rest of this paper is organized as follows.
    [Show full text]