brian stanton (nist) mary theofanos (nist) national institute of standards and technology us...
TRANSCRIPT
Cloud Usability FrameworkBrian Stanton (NIST)
Mary Theofanos (NIST)
National Institute of Standards and Technology US Department of Commerce
2
What is the Cloud?
“Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.”
NIST Definition of Cloud Computing (Special Publication 800-145)
3
NIST Cloud Computing Reference Architecture (November 2011 Release 1.0 draft)
Cloud Broker
Cloud Provider
Cloud Auditor
Cloud Consumer
Pri
vacy
Secu
rity
Cloud Service ManagementService Orchestration
Service Layer
IaaS
PaaSSaaS
Resource Abstraction and Control Layer
Physical Resource Layer
Hardware
Facility
Security Audit
Privacy Impact Audit
PerformanceAudit
Cloud Carrier
Service Intermediation
Service Aggregation
Service Arbitrage
Business Support
Provisioning Configuration
Portability Interoperability
4
NIST Cloud Computing Reference Architecture (November 2011 Release 1.0 draft)
Cloud Broker
Cloud Provider
Cloud Auditor
Cloud Consumer
Pri
vacy
Secu
rity
Cloud Service ManagementService Orchestration
Service Layer
IaaS
PaaSSaaS
Resource Abstraction and Control Layer
Physical Resource Layer
Hardware
Facility
Security Audit
Privacy Impact Audit
PerformanceAudit
Cloud Carrier
Service Intermediation
Service Aggregation
Service Arbitrage
Business Support
Provisioning Configuration
Portability Interoperability
A composition of system components to support the cloud provider activities in arrangement, coordination, and management of computing resources in order to provide cloud services to cloud consumers.
5
Cloud Service Models
SaaS
Software as a service
Provides consumers the use of applications in the cloud
PaaS
Platform as a service
Provides consumers who have software the tools, programming languages, and services
IaaS
Infrastructure as a service
Provides consumers with the ability to provision, processing, storage, and resources (including OS)
6
Cloud User Experience
The end user experiences the cloud and the cloud based services through the applications. These applications in turn are effected by the cloud infrastructure
Clo
ud
Serv
ice
Applic
ati
on
Use
r Experi
ence
End
Use
r
7
What is Usability?
Extent to which a system, product, or service can be used by specified users to achieve specified goals with effectiveness, efficiency, and satisfaction in a specified context of use.
Effectiveness, Efficiency, Satisfaction primary drivers for Cloud Usability
Cloud Consumers = Organization + End Users
8
What is Usability?
effectiveness
efficiency
satisfaction
accuracy and completeness with which users achieve specified goals
resources expended in relation to the accuracy and completeness with which users achieve goals
freedom from discomfort and positive attitudes towards the use of the product
9
Cloud Usability Framework
Our Framework provides a structure to evaluate the key attributes of the cloud user experience.
Divided into five attributes and 20 elements Capable Personal Reliable Secure Valuable
10
Cloud Usability Framework
Capable Current Device Independence
Platform Independence Functions
Personal Accessibility Personalization/ Customization Data Ownership
Identity Management
(access)Control
Reliable Available Responsive Consistent Transparency
Secure Security PrivacyIdentity
Management (authorization)
Trust
Valuable Savings User satisfaction Utility
Cloud Consumer
11
Elements of Capable Attribute Current: Based on the latest technology.
Platform Independence: Consumers want the cloud service to be independent of the cloud hardware, Operating System, etc. so that the service can function correctly on any device hardware and software setup.
Device Independence: Consumers should be able to access the cloud service using any device type – fixed or mobile.
Cloud Functionality: provide functionality better than other platforms.
12
Elements of Personal Attribute Accessibility: The cloud users expect the cloud to be
accessible to consumers with a variety of needs.
Customization: The cloud should allow consumers to change their user interface to suit their needs.
Control: The consumer should have a sense of control over the functionality of the cloud service.
Data Ownership: Consumers should have ownership over the data they store in the cloud services they use.
Identity Management (access): To ensure ease of use, multiple access authentications will have to be implemented in a seamless manner
13
Elements of Reliable Attribute Available: Cloud users should expect high service
availability.
Responsive: cloud consumers should want the cloud services to have high degree of performance.
Consistent: A cloud service should exhibit the same functionality under every situation.
Transparency: The cloud service provider’s service policies and technology should be transparent to the cloud consumer organization. Organizational users should have virtual access, as needed, to
the cloud datacenter and have details about the cloud platform’s capabilities and planned changes.
14
Elements of Secure Attribute
Security: Cloud users expect the cloud be resistant to attacks from unauthorized users, other cloud services, malicious software and attacks on cloud hardware and Internet network. Also the users expect to be protected from threats coming from the cloud
Privacy: Cloud users expect the cloud service can prevent leakage of data that compromises end user’s private data like personal information, financial accounts, geo-location (if not desired by the user) etc.
Identity Management (authorization): The cloud service shouldn’t allow unauthorized users to access user data or execute any process
Trust: The user must have confidence in the cloud system
15
Elements of Valuable Attribute
Savings: cost savings, resource savings.
User satisfaction: The user satisfaction measure should be high.
Utility: provide new features that are better than with any other IT setup. Distributed computing with large datasets (Big
Data) Mobile / pervasive computing.