Transforming Enterprise Cloud Services

Contents

Introduction to Enterprise Services and Cloud Resources

1.1 Introduction to Enterprises

1.1.1 Enterprise Resources

1.1.2 Enterprise Architecture

1.2 Definitions of Cloud, Services, and Ecosystem

1.2.1 The Cloud

1.2.2 Cloud Services

1.2.3 Cloud Technologies

1.2.4 Cloud Ecosystem

1.3 History of Cloud and Enterprise Services

1.3.1 Initial Establishment

1.3.2 Early Developments

1.3.3 Recent Major Developments

1.3.4 Network-Centric Operations

1.4 Cloud Enablers

1.4.1 Service Architecture and Abstraction

1.4.1.1 Service-Oriented Architecture

1.4.1.2 Service Abstraction

1.4.2 Virtualization

1.4.2.1 Virtual Platform

1.4.2.2 Virtual Network

1.4.2.3 Virtual Database

1.4.2.4 Virtual Application

1.4.3 Web Technologies

1.4.3.1 Web 1.0

1.4.3.2 Web 2.0

1.4.3.3 Web 3.0

1.4.4 Key Cloud Characteristics

1.5 Enterprise Transformation

1.5.1 People and Organization

1.5.2 Process

1.5.3 Technology

1.6 General Framework & Book Origination

References

Cloud Service Business Scenarios and Market Analysis

2.1 Overview

2.2 Cloud Use Cases and Applications

2.2.1 Public Cloud

2.2.2 Community Cloud

2.2.3 Private Cloud

2.2.4 Hybrid Cloud

2.3 General Information Technologies

2.3.1 Software Services

2.3.2 Platform Services

2.3.3 Infrastructure Services

2.4 Commercial Markets and Applications

2.4.1 Marketing

2.4.2 Sales

2.4.3 Finance

2.4.4 Financial Industry

2.4.5 Telecommunications Industry

2.5 US Government and Defense

2.5.1 Federal Chief Information Officers Council

2.5.2 General Services Administration (GSA)

2.5.3 National Business Center (NBC)

2.5.4 National Institute of Standards and Technology

2.5.5 The U.S. Department Of Defense

2.6 Scientific, Educational, and Others

2.6.1 US Department of Energy (DOE) and Magellan

2.6.2 NASA Nebula

2.6.3 Education

2.6.4 Other International Organizations

2.7 Conclusion

References

Cloud Service Architecture and Related Standards

3.1 Overview

3.2 Types of Cloud Services

3.2.1 Software as a Service

3.2.2 Platform as a Service

3.2.3 Infrastructure as a Service/Hardware as a Service

3.3 Holistic Enterprise Architecture and Cloud Services

3.3.1 Service and Business Layer

3.3.2 Data and Information Layer

3.3.3 Integration Layer

3.3.4 Technology and Tool Layer

3.4 Enterprise Architecture and Cloud Transformations

3.4.1 Enterprise Architecture Styles

3.4.2 Architecture Transformation

3.4.2.1 Transforming Existing Architectures

3.4.2.2 Addressing Architecture Layering and Partitioning

3.4.2.3 Benefits of Transformations

3.5 Cloud Architectures and Vendor Implementations

3.5.1 Public Cloud

3.5.2 Private Cloud

3.5.3 Hybrid Cloud

3.6 Cloud Related Standards and Forums

3.6.1 Open Grid Forum

3.6.2 Open Virtualization Format

3.6.3 HTTP

3.6.4 XML and JSON

3.6.5 AJAX

3.6.6 HTML5

3.6.7 Web Syndication

3.6.8 XMPP

3.6.9 REST

3.6.10 Security and Data Privacy Standards

3.6.10.1 OAuth

3.6.10.2 OpenID

3.6.10.3 SSL/TLS

3.7 Enterprise Transformation Implications

3.7.1 Information Framework

3.7.2 Process Framework

3.7.3 Service Level Management

3.8 Conclusion

References

Challenges of Enterprise Cloud Services

4.1 Overview

4.2 Non-Technical Challenges

4.2.1 Financial

4.2.2 Enterprise Scalability

4.2.2.1 Software Licensing

4.2.3 Business Operations

4.2.4 Organizational

4.3 Software Services Perspective

4.3.1 User Data

4.3.1.1 Accessibility

4.3.2 Data and Applications

4.3.3 Integrity

4.3.3.1 Portability

4.3.3.2 Interoperability

4.3.3.3 Software Services

4.3.3.4 Agility

4.3.3.5 Flexibility

4.3.3.6 Adoptability

4.4 Platform Services Perspective

4.4.1 Data and Information

4.4.1.1 Information Management

4.4.2 Platform Service Framework

4.4.2.1 Scalability

4.4.2.2 Portability

4.4.2.3 Tool Availability

4.4.3 Platform Integration

4.4.3.1 Level of Virtualization

4.4.3.2 Limitations

4.5 Infrastructure Services Perspective

4.5.1 General Infrastructure

4.5.1.1 Automation and Commoditization

4.5.1.2 Network Capacity and Mobility

4.5.1.3 Data Movement and Integrity

4.5.1.4 Bug in Large-Scale Distributed Systems

4.5.2 Service Performance

4.5.2.1 Availability and Reliability

4.5.2.2 QoS Governance

4.6 Security Challenges

4.6.1 Data

4.6.1.1 Ownership

4.6.1.2 States

4.6.1.3 Anonymity

4.6.2 Secured Access

4.6.2.1 Two-Factor Authentication

4.6.2.2 Single Sign-On

4.6.3 Data Governance

4.6.3.1 Information Lifecycle Management

4.6.4 Data Leakage

4.6.4.1 Lack of Smart Data with Embedded Policies

4.6.5 Security Framework

4.6.5.1 Lack of Transparent Solutions

4.6.5.2 Insufficient User Provisioning

4.7 Operational and Management Challenges

4.7.1 Strategy and Service Planning

4.7.1.1 Expertise to Plan for Cloud Technology

4.7.1.2 Multiple Tenancy Impacts

4.7.1.3 Failure Management

4.7.1.4 Vendors Issues

4.7.2 Service Fulfillment

4.7.2.1 Cross-Cloud Processes and Policy Coordination

4.7.2.2 SLA Definition and Negotiation

4.7.3 Service Assurance

4.7.3.1 Monitoring

4.7.3.2 Governance and Compliance

4.8 Conclusion

References

Networked Service Management

5.1 Overview

5.2 Software as a Service

5.2.1 Software as a Service Licensing Models

5.2.2 Transforming Enterprise Architectures to Service-Centric Architectures

5.2.3 Enterprise Integration Architecture to Access Software as a Service Applications

5.2.3.1 Integration Brokers

5.2.3.2 Identity Integration

5.2.4 Enterprise Composition Architecture to Access Software as a Service Applications

5.2.5 Transformation Reference Architecture for Enterprises

5.2.6 SaaS Data Architecture

5.2.6.1 Separate Databases

5.2.6.2 Shared Database, Separate Schemas

5.2.6.3 Shared Database, Shared Schema

5.3 Hardware as a Service/Infrastructure as a Service

5.3.1 IaaS Hierarchy

5.3.2 POD Architecture

5.3.3 Transforming Enterprises to Use IaaS

5.3.3.1 Packaging and Distribution of Software

5.3.3.2 Browsing APIs

5.3.3.3 Provisioning APIs

5.3.3.4 Datacenter Operations APIs

5.4 Platform as a Service

5.4.1 Implications of PaaS on Transforming Enterprises

5.4.1.1 Software Development

5.4.1.2 Service Delivery

5.4.1.3 Collaboration

5.4.2 Example PaaS Techniques

5.4.2.1 Software Development

5.4.2.2 Collaboration

5.4.3 Public Cloud vs. Private Cloud

5.4.3.1 Reference Architecture for PaaS Private Cloud

5.4.3.2 PaaS Private Cloud Life-Cycle

5.4.3.3 SOA, BPM, and UI

5.4.3.4 Identity Management and Systems Management

5.5 Service Definition and Instance Management

5.5.1 Virtualization and Cloud Infrastructure

5.5.2 Virtualization-Optimized Cloud Infrastructure

5.6 Service Level and Quality Management

5.6.1 Specification of Service and Quality Levels

5.6.2 Cloud Service Level and Quality Management Architecture

5.7 Conclusion

References

Cross-Domain Policy-Based Management

6.1 Overview

6.2 PBM Benefits and Potential Applications

6.2.1 The Benefits and Business Drivers of PBM

6.2.2 PBM Support OSS and BSS

6.3 PBM Standards and Commercial Implementations

6.3.1 TM Forum SID’s Policy Aggregate Business Entities

6.3.2 IETF Policy Workgroup

6.3.3 Market Players

6.4 Policy and Management Framework

6.4.1 Policy Template

6.4.2 Policy Implementation and Usage

6.4.2.1 Policy Domain, Conditions, and Entities

6.4.2.2 Policy Management Processes

6.4.3 Policy Management and Policy Engine

6.5 Transforming PBM to a Cloud Environment

6.5.1 Cloud-Focused Policy Stack

6.5.2 Design Considerations

6.5.3 Implementation Considerations

6.5.4 Service Policy and SLA

6.5.5 Service Policy and Resource Allocations

6.5.6 Security in Cloud Policy Management

6.6 Externalizing Policy and Management

6.6.1 Policy Negotiation

6.6.2 Automated Policy Negotiation

6.6.3 Policy Adaptation

6.7 Conclusion

References

Building and Configuring Enterprise Cloud Services

7.1 Overview

7.2 Design Principles and Deployment Options

7.2.1 Service Automation

7.2.1.1 Systems Management Drivers

7.2.1.2 Applications Management Driver

7.2.2 Adapting to High Utilization and Rapid Growth

7.2.2.1 Consolidation and Virtualization

7.2.2.2 Automation and Optimized Virtualization

7.2.2.3 Service Federation

7.2.2.4 Consolidation of Management Information

7.3 Standards-Based Business Process Framework

7.3.1 The ITIL and eTOM Frameworks

7.3.2 Level Zero Key Concept

7.3.3 Level One Processes

7.3.4 Level Two and Three Processes

7.3.5 Improvements to Current eTOM for Cloud Services

7.4 Standards-Based Information Framework

7.4.1 The SID Business View

7.4.2 SID Domains and Level One ABEs

7.4.3 Service Domains and Level Two ABEs

7.4.4 Improvements to the Current SID for Cloud Services

7.5 Technology-Neutral, Service-Centric Architecture

7.5.1 Next-generation Datacenter Management

7.5.2 Architectural Planning, Simplification, and Transformation

7.5.2.1 Using eTOM and SID

7.5.2.2 Framework-based SOA Methodology

7.5.2.3 Dynamic Cloud Active Catalog

7.5.2.4 Policy-Oriented Business and Risk Management

7.5.2.5 Cloud Service Monitoring and Management

7.5.2.6 Configuration Management

7.6 Conclusion

Reference

Service Monitoring and Quality Assurance

8.1 Overview

8.2 Enterprise Quality and Performance

8.2.1 Service Level Agreements, Enterprises, and Customer Experiences

8.2.2 Key Quality Indicators and Key Performance Indicators

8.2.3 Sample Key Quality Indicators and Key Performance Indicators

8.2.4 Quality Equations and Measurement

8.3 Service Quality Management

8.3.1 Value-Chain SQM

8.3.2 SQM Metrics

8.4 Probes

8.5 SLA Management and Reporting

8.5.1 SLA Monitoring and Reporting Process

8.5.2 SLA Reporting Mechanisms

8.6 Enterprise SLA Negotiation

8.6.1 SLA Development Process

8.6.2 Form of an Enterprise SLA

8.7 Policies and Monitoring

8.7.1 Monitoring Agents

8.7.2 Manageability and Operability

8.8 Conclusion

References

Security for Enterprise Cloud Services

9.1 Overview

9.2 Security for Cloud Services and Infrastructure

9.2.1 Authorization and Role-Based Access Control

9.2.1.1 Access Management Architecture

9.2.1.2 Implementation of Credential-Based RBACs in Cloud Infrastructure

9.2.2 Cloud Security Services

9.2.2.1 Export Control Policies

9.2.2.2 Cloud Infrastructure to Support Public Key Algorithms

9.2.2.3 Cloud Infrastructure to Support Secret Key Algorithms

9.2.2.4 Cloud Infrastructure to Support Hash and Message Digest Algorithms

9.2.3 Integration of Role-Based Architecture in the Web

9.3 Security for Enterprises that Use Cloud Services

9.3.1 Federated Identity Management Architecture

9.3.2 Side Channel Attacks and Counter-Measures

9.3.2.1 Threat Model

9.3.2.2 Exploiting Placement Locality

9.3.2.3 Cross-Virtual Machine Information Leakage

9.3.2.4 Counter-Measures

9.4 Intrusion Detection in Cloud Computing

9.4.1 Types of Raw Data Collected

9.4.2 Distributed Intrusion Detection Architecture

9.4.3 Fusion-Based Intrusion Detection Systems

9.4.3.1 Functional Data Fusion Process Model

9.4.3.2 Data Fusion Architectures

9.5 Security for Cloud Service Management

9.5.1 Security for APIs

9.5.2 Security for Service Containers

9.6 Measures for Cross-Virtual Machine Security

9.6.1 Virtual Machine Security

9.6.2 File System Security Management

9.6.2.1 Self-certifying Pathnames

9.6.2.2 Server Key Management

9.6.3 Virtual Machine Image Security

9.7 Conclusion

References

Enterprise Cloud Service Applications and Transformations

10.1 Overview

10.2 Business and Technology Transformation

10.2.1 Establish Strategic Promises

10.2.2 Plan for New Business Models

10.2.3 Establish a Technical Innovation Culture

10.3 The New Form of Software and Service

10.3.1 End Users’ Expectations

10.3.2 Expanding Service Categories

10.3.3 More Destiny Sharing Interactions

10.3.4 Evolving Web Applications

10.3.5 Integrating Enterprise SaaS with Cloud Services

10.4 Platform Integrations and Collaborations

10.4.1 New Applications Development Functions

10.4.2 Software Development Standards

10.4.3 New Software Packaging Focus

10.4.4 New Relationship with Hardware Resources

10.4.5 Integrating Enterprise and Cloud PaaS

10.5 Infrastructure Transformations

10.5.1 Customizable Service Resources

10.5.2 Improved Infrastructure

10.5.3 Customer Portal and Rapid Provisioning

10.5.4 Integrating Enterprise and Cloud IaaS

10.6 Cloud Management and Operational Framework

10.6.1 Management Paradigms

10.6.2 Service Management Automation

10.6.3 Changing Process Management

10.6.4 Integrating Enterprise and Cloud Governance

10.6.5 Integrating Enterprise and Cloud Quality Assurance

10.7 Cloud Security and Information Assurance

10.7.1 New Applications of Information Assurance

10.7.2 Security in Different Service Layers

10.8 Final Notes

Reference

Index