1 / 31

Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009

Cloud Computing: An Operational Perspective. Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009. An Operational Perspective. Warfighter-centric Legacy & Web 2.0 Internal & external services. Center For Computing Services. Command & Control

gale
Télécharger la présentation

Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Cloud Computing: An Operational Perspective Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009

  2. An Operational Perspective • Warfighter-centric • Legacy & Web 2.0 • Internal & external services

  3. Center For Computing Services • Command & Control • Global Command and Control System (GCCS) • Global Combat Support System (GCSS) • Missile Defense C2BMC • Warfighter Logistics • Defense Distribution Standard System (DSS) • DLA Enterprise Business Management System • Transportation and cargo movement systems • Combat requisition and maintenance systems • DoD Financial and Security • Military and Civilian Pay & Personnel • Electronic business and contracting systems • Public Key Infrastructure (PKI) • Health & Medical Readiness • Composite Health Care System (AHLTA) • Enterprise Services • Global Content Delivery System (GCDS) • DMZ Infrastructure provide command and control provision ships pay the warfighters manage parts and replenish supplies manage transportation and maintenance provide medical care Combat Support Computing

  4. 4,000,000+ users 13 facilities 445,000 sq ft raised floor 34 mainframes 6100 servers 3800 terabytes of Storage 2,800 application / database instances 215 software vendors DISA Computing Environment Defense Enterprise Computing Centers (DECC)

  5. Computing Services – Jan 2009 Mechanicsburg Europe Ogden Columbus Chambersburg Dayton NCR Denver St Louis Oklahoma City Huntsville Warner Robins Hawaii Montgomery Pensacola Pacific San Antonio OCONUS Defense Enterprise Computing Center (DECC) Systems Management Center (SMC) – @ 350 FTEs (Mainframe & Server processing) Headquarters Infrastructure Services Center (ISC) – @ 100FTEs Processing Element PE) – @ 13FTEs

  6. What is “Cloud Computing?” • User: • Builds a web application, • Using a standard platform • Using a standard database • Upload this application to a cloud provider • Cloud provider automatically • Provisions the services • Scales the application and the database together • User • Doesn’t care about which servers, which databases, which hardware, how much memory (the cloud platform handles all of that) • Users  are totally free away from any technical complexity other than the service itself. • Cloud provider • Decides how to cache content, how and where to deploy servers based on demand, performs backups, and even has the ability for the business to distinguish "production" from "staging" deployments. • Has ongoing management and monitoring of the external service. • User: • Only pays for what s/he uses when s/he  needs it.  • Everything else is an implementation detail.

  7. Clouds Complexity With A Promise Of …. • Application Flexibility • Standardized • Increasingly “click to run” services • Live in remote Internet data centers • Scalable to millions • Use shared IT infrastructure • Procurement • Efficient • Rapid • Commoditized • “Pay by the sip” • Security • Simplified • Streamlined Cloud Computing Storage Mindmap

  8. Cloud Types and Cloud Development Many Different Types Environment To Develop

  9. Cloud Types: An Ontology Different Types But All Services-centric

  10. Cloud Types • Platform-As-A-Service (PaaS) • The delivery of a computing platform, and/or solution stack as a service • Facilitates deployment of applications without the cost and complexity of buying and managing the underlying hardware and software layers • For example: • Web application frameworks • Ajax • Python Jingo • Ruby on Rails • Web hosting • Proprietary • Infrastructure-As-A-Service (IaaS) • The delivery of computer infrastructure as a services, typically platform virtualization • For example: • Full virtualization • Grid computing • Management • Compute • Applications-As-A-Service (AaaS) /Software-As-A-Service (SaaS) • Leverages the Cloud in software architecture • Eliminates the need to install and run the application on the customer's own computer • For example: • Peer-to-peer / volunteer computing • Web application • Software as a service • Software plus services • Database-As-A-Service (DaaS) • Leverages the Cloud for delivering database services Users Want To Use The “Cloud” Services

  11. Creating A “Cloud” Providers Think Of How To Build A “Cloud”

  12. Enabling the Cloud Environment • Infrastructure • Consolidation • Global Information Grid • Capacity Services • Virtualization • Rapid Provisioning • Facility Analysis • Software • Network-Centric Services • Software-as-a-Service (Saas) • Forge.mil • Processes • ITIL • Security (Certification & Accreditation) • Computing Service Provider (CSP) Analysis • “Greening” Multiple Technology Rivers Merging

  13. Infrastructure

  14. Legacy of Consolidations and Savings Service/ Agency consolidation under DMRD 924 DISA “SMART” consolidation under QDR and DRI DISA combat support computing transformation DISA Megacenter consolidation – DMRD 918/BRAC 1990 1993 1998 2005 • Mainframe & Server consolidation • 4 primary sites w/ remote system mgmt • Centralized all business functions • Saved • $143M/year • Reduced mainframe sites from 16 to 5 • Saved $203M/year • Reduced number of mainframe sites from 71 to 16 • Saved $206M/year • Reduced number of mainframe sites from 194 to 71 • Saved $320M/year Consolidation Helps But Co-location Is Not The “Cloud”

  15. Network Services Flexible SOA Foundation Network Aware Applications Single Authentication Site Common Storage & Retrieval Centralized Computing Services Shared Long-Haul Transport For Services/ Agencies End-to-End MPLS Plug & Play Ad Hoc Connectivity Everything Over IP Integrated Network Services Are Critical To Delivering “Cloud” Services

  16. Capacity Services • Concept • Acquire capacity as a service provided by vendor partners • Pay much like a homeowner pays for utilities, e.g., by CPU-hours or megabytes consumed Processor Orders to date • 439 total orders completed, with a $31.5M annualized value • Average delivery timeline of 11 days • 14 days for mainframe; 10 for server • 113 orders took less than 5 days • 208 orders took between 5 – 14 days Storage Orders to date • 157 Total ESS Orders Completed, with a $9.6M Annualized Value • Average Delivery Timeline of 14 Days • 7 Days for Disk • 11 Days for Network Ports • 24 Days for Tape Slot Capacity Speed, Agility, Utility Pricing, Reduced Overhead & Technology Currency

  17. Virtualization & Tech Refresh One Customer Infrastructure FY09 FY08 Reduced Footprint BEFORE AFTER Annual Sustainment: $25.9 M Annual Sustainment: $14.3 M • Increased server utilization • Significant savings • Faster provisioning Virtualized Is Not In Itself A “Cloud” 45 % savings

  18. Rapid Access Computing Environment Agile and responsive computing Authorized customers order and gain access to a Server in less than 24 hours Provides flexible development platform for Web, application or database Windows, Red Hat, SUSE Servers in less than 30 minutes MIPR or government credit card User Self-service

  19. Facility Analysis • Building site • Building controls • Electrical systems • Exterior structure • Operations & maintenance service management • Fire protection systems • Security system • HVAC systems & plumbing • Interior structures • Much, much more…… Comprehensive & Routine Facility Analysis Ensures “Cloud” Readiness

  20. Software Services:Bridging Developers and Operations

  21. Net-Centric Enterprise Services Metadata Registry User Access Collaboration Service Discovery Metadata Discovery People Discovery Web-based Joint access to NCES using Defense Knowledge Online Locate specific information for people Real-time voice, text, video, application sessions Ability to discover, develop & reuse services Ability to discover, develop & reuse data semantics Service Security Content Discovery NCES Ability to operate in a secure environment Access to data; improved content awareness Content Delivery Enterprise Service Management Messaging Mediation Real-time updates & alert notifications as data change Exchange data with unanticipated users & formats Improved responsiveness & bandwidth usage Monitors services availability & reliability

  22. Software as a Service (SaaS) Challenge SaaS Provider(s) • Manage software on “usage” basis • Established negotiated prices • Include future versions/releases • Provide maintenance and patches • Large number of software vendors • 3M+ user baseline, continually changing and growing • Dynamic processing requirements • Software acquisition lead time • Outyear capital projection for technology infusion Value Add • Ability to rapidly change/grow baseline • Allows technology infusion on timely basis • No outyear capital projections required • Partnership with vendor(s)

  23. Forge.mil • Collaborative environment supporting the development and sharing of open source and community source software within the DoD • Limited Operation Availability: January 23, 2009 • General Availability: March 27, 2009 • Common evaluation criteria and an agile certification process to accelerate the certification of reusable, net-centric solutions • Limited Operational Availability: June 20, 2009 • On demand application development and lifecycle management tools provided buy DISA CSD on a fee-for-service bases for private project or program use • Availability: TBD Bridging Developers & Operations – Fosters The Cloud

  24. Processes

  25. Information Technology Infrastructure Library Continual Process Improvement • A customizable framework of best practices designed to promote quality computing services in the information technology (IT) sector. • A systematic approach to the provisioning and management of IT services, from inception through design, implementation, operation and continual improvement. • Computing Services is a DoD leader in educating its professional staff in information technology ‘best practices’: • Almost 100% of staff educated at the Foundation Level of ITIL concepts • 100% Customer Management Executives (CMEs) are certified ITIL Practitioners in Service Level Management • Over 100 GS-12 through GS-15s are Practitioners in Incident/Problem Management • Approximately 50 key personnel are Practitioners in Change/Release/Configuration Management Service Strategy ContinualProcess Improvement Providing The Community With A Common Language & Processes

  26. Computing Service Provider (CSP) Overview • A tactical tool that allows DISA to extend enhanced operational capabilities (NetOps) to non-DECC computing center environments. Two primary components: • Facility capability assessment • Integration of tools and processes to enable NetOps Capabilities • Applies a structured methodology to enable service management that ensures • Support for centralized visibility into the operation of key systems and services consistent with NetOps operational construct • Compliance and risk management under DISA’s IA program • Compliance with DoD requirements for computing infrastructure and operations processes appropriate to MAC Level • CSP is not a periodic audit/checklist • Requires specific process and technical changes to enable NetOps • Sustainment requires long-term coordination between DISA, system owner, system operator Data Center Operations “Best Practices”

  27. Certification & Accreditation • Various C&A approaches • “Traditional” Defense Information Technology Security Certification and Accreditation Process (DITSCAP) • Department of Defense Information Assurance Certification and Accreditation Process (DIACAP) DIACAP • Emerging Models • Landlord/Tenant • Application Security Evaluation (ASE) • Appropriate approach based on risk identification and mitigation Ensuring Security Is Part Of Creating A “Cloud”

  28. Security Technical Implementation Guide (STIG) • Goals: • Intrusion Avoidance • Intrusion Detections • Response and Recovery • Focus Areas: • Network/Perimeter • Peripherals • Operating Systems • Users Standardized Procedures Critical To Enterprise-wide Security

  29. “Greening” DECC Infrastructure • Increasing energy costs • Increased cooling requirements to support more compact implementations • Increased regulatory environment • Consolidation • Virtualization • Duct cooling • Variable frequency drives • Motion sensor lighting • Water reclamation Challenge Initiatives “Greening” Is Part Of Good Stewardship

  30. Infrastructure Consolidation Global Information Grid Capacity Services Virtualization Rapid Provisioning Facility Analysis User: Builds a web application, Using a standard platform Using a standard database Upload this application to a cloud provider Only pays for what s/he uses when s/he  needs it.  Everything else is an implementation detail. Cloud provider automatically Provisions the services Scales the application and the database together Clouds Complexity With A Promise Of …. A Simple Idea Clear Tenets • Application Flexibility • Standardized • Increasing “click to run” services • Live in remote Internet data centers • Scalable to millions • Procurement • Efficient • Rapid • Commoditized • “Pay by the sip” • Security • Simplified • Streamlined Multi-faceted Enablement • Software • Network-centric Services • Software-as-a-Service (Saas) • Forge.mil • Processes • ITIL • Security (Certification & Accreditation) • Computer Service Provider (CSP) • “Greening” It’s A Journey

More Related