Security Architecture - 001
MIS 5214 - Section 001 - David Lanter
February 6, 2020 by David Lanter 23 Comments
Akshay Shendarkar says
February 7, 2020 at 12:29 pm
This NIST SP highlights some of the key Cloud computing services as well as the various deployment models. It does serve as a baseline document on which federal agencies can build upon their cloud computing strategies. Every service and deployment model has its own characteristics and advantages as described in this article After reading this document, I am interested in researching more on the hybrid deployment of cloud services because of the uniqueness and flexibility it offers to both the consumers as well as the provider. I would like to learn further about how “two or more distinct cloud infrastructures (private, community, or public) that remain unique entities, but are still bound together by standardized or proprietary technology that enables data and application portability (e.g., cloud bursting for load balancing between clouds).”
Junjie Han says
February 11, 2020 at 5:47 pm
Good conclusion, private and public clouds and hybrid clouds have their own advantages.Determine appropriate cloud services based on the company’s requirements and cost calculations.In my opinion, hybrid cloud can meet the balance condition according to the requirements of the company.And cloud computing companies offer a wide variety of cloud services.Will only pay or upgrade as required by the company.
Percy Jacob Rwandarugali says
February 7, 2020 at 5:57 pm
As defined by NIST 800-145, Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model is composed of five essential characteristics, three service models, and four deployment models. The four deployment methods include; Private cloud, Community cloud, Public cloud, Hybrid cloud.
Currently, the top cloud service providers are AWS, Azure, Google, and IBM to mention but a few.
Numneung Koedkietpong says
February 7, 2020 at 10:30 pm
The NIST 800 145 provide the information about the outstanding characteristics of cloud computing, types of service models and deployment models of cloud One key point which I took from this is that it is important to understand the cloud service models which are mainly divided into three types; Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (laaS). Each type of model organization has different limitation to manage their application, database, and operating system. For example, in case of PaaS, organization can control over application and database level while network and server are responsible by cloud provider.
Natalie Dorely says
February 9, 2020 at 11:03 pm
I thought this was interesting as well! It’s very good to see how the different service models can help an organization/ consumer use cloud computing for different purposes.
Zeynep Sahin says
February 7, 2020 at 11:48 pm
NIST SP 800-145 provides one sentence definition of cloud and lists its important features, deployment strategies, and how to use cloud computing. I found interesting the list of essential characteristics of cloud, which reforms to technology. Some of the advantages that cloud computing brings are On-demand self-service, broad network access, resource pooling. Measured service, and scalability.
February 9, 2020 at 8:16 pm
Hi Zeynep, The NIST SP 800 -145 publication on cloud computing is very brief and straightforward. The report explained the services available to consumers in each of the service models. However, consumers have more operating rights and control in the Infrastructure as a service model, because they can deploy and run arbitrary software, which can be include operating systems, deployed applications and some networking components.
Peiran Liu says
February 11, 2020 at 11:12 am
The advantage pointed out by you like on-demand self-service and resource pooling can be used by small operations, which can not only reduce the cost, but also utilize the performance for the operation.
February 9, 2020 at 5:54 pm
A brief review of the service models listed in the NIST SP 800 -145 : Software as a services (SaaS) – the application is accessible from various client devices through either a thin client interface like a web browser or a program interface. Under the SaaS model, the consumer does not manage or control the cloud infrastructure like the network, servers, operating systems or individual application capabilities, apart from limited user-specific application configuration settings. Through the PaaS (platform as a service) service model, the consumer can deploy onto the cloud infrastructure consumer-created or acquired applications created using programming languages, libraries, services, and tools supported by the provider. The consumer does not manage or control the cloud infrastructure but has control over the deployed application and possibly configuration setting for the application-hosting environment. Under the IaaS (Infrastructure as a service) model, the consumer can deploy and run arbitrary software, which can be include operating systems, deployed applications and some networking components like host firewalls.
February 9, 2020 at 10:06 pm
You have provided a good summary of the three service models. The biggest advantage of all these three models is the shared usage of resources as well as the additional provision of resources as per need. Every model explained by you has its own unique features and advantages and these models provide a selection to the organizations as per their need without much management effort. Also, increasingly many cloud service providers are using a hybrid model consisting of features provided by these 3 traditional models to meet the new and upcoming demands of the IT industry.
February 10, 2020 at 3:12 pm
Yes, some organizations may adopt the hybrid version to help provide services based on the unique situation of things and/or to align with their client’s business demands in a different market segment.
Imran Jordan Kharabsheh says
February 9, 2020 at 8:53 pm
As I was reading through the NIST 800-145 publication titled The NIST Definition of Cloud Computing, I found myself rereading the section on the five essential characteristics that make make cloud computing what it is multiple times as I felt there was a need to better grasp and understand how these characteristics interact with each other and promote sustainability. Among the characteristics that I spent the most time reviewing, I found the concept of resource pooling and rapid elasticity to be the most interesting due their dynamic relationship. As an organization’s computational needs from their cloud computing platform continue to increase or change, the rapid elasticity of the platform is what allows these demands to be met promptly by dynamically provisioning the additional computing resources from the resource pool gathered by the platform.
February 9, 2020 at 10:15 pm
NIST 800 145 The NIST Definition of Cloud Computing is the classification and functions of cloud system are introduced.
The types of cloud computing are private, public, and hybrid. Cloud computing architecture is divided into services and management. In services, mainly to provide all kinds of users based on cloud services, there are three levels: Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
IaaS cloud computing service model represents the replacement of some data storage infrastructure with cloud computing。PaaS is the use of cloud computing to build a server platform or a service delivery business model. The primary users of PaaS are developers.
In SaaS, the vendor deploys the software on the server. According to their own needs, users choose to use the required application software services through the network.
February 10, 2020 at 3:17 pm
Great point. Also, the users consider things like cost of the service, speed of execution, privacy rights, performance, and the regulatory requirements governing their field of operation, before choosing a service model in cloud computing.
February 9, 2020 at 10:30 pm
NIST 800 145 describe what cloud computing is. By giving the definition of cloud computing, we can compare it with normal computing in their different characteristic, service models and deployment models to find out what is the most suitable for the company. Cloud computing covers a huge amount of need, not only for big companies like banks and tech giants, but also for small companies or even individuals like freelancers. Cloud computing can make the most of certain set of servers as everyone can use others when they are not using it. But it can also bring some security concerns as servers are shared.
February 10, 2020 at 3:44 pm
After reading through your main takeaways from the NIST 800-145 publication, I felt a sense of reassurance that I had developed a better understanding of the content of the publication. This is because the summary you wrote on the chapter, albeit general, shows that you have begun to truly grasp the concepts and purpose behind the implementation cloud computing in modern organizations.
Christopher James Lukens says
February 9, 2020 at 10:40 pm
NIST SP 800 – 145 Definition of cloud computing is a definitive guide to the essential characteristics, service models, and deployment models of cloud computing. One of the biggest take away form the essential characteristics of cloud environments is the dynamic nature of them. On demand self service lets the consumer build an enterprise level data center or a small environment without anyone else. Resource pooling divides the clients load among the service providers physical and logical resources and the location of the data could be spread across the country. Rapid elasticity lets the environment grow with demand or shirk with less. Measured service allows you to pay for exactly what you use so during the busy season you may pay more but as use goes down you can pay less due to less resources being utilized. Overall the cloud is a great option because of its dynamic nature but can also make it difficult to conform to security standards.
Sarah Puffen says
February 11, 2020 at 11:41 am
I like that you mention that cloud services can also have difficulties when conforming to security standards. As you mentioned, companies can decide how much of a service they need to use based on demand; however, we know that security is usually an afterthought, so it’s interesting to think about whether or not a company has any type of procedure in place when they’re utilizing more of these services and how they can scale their monitoring with their usage.
February 9, 2020 at 10:57 pm
NIST defines Cloud Computing with five essential characteristics, three service models, and four deployment models. I thought It was interesting how NIST broke down different parts of cloud computing such as the essential characteristic of broad network access. This covers the capabilities available over a network which are accessed through different different systems/ hardware to encourage the use of different technology such as laptops, tablets, cell phones, etc.
February 9, 2020 at 11:21 pm
One aspect in “The NIST Definition of Cloud Computing” that I thought was interesting was the concept of resource pooling and rapid elasticity. This deals with the service provider’s computing resources being pooled using a multi-tenant model in order to serve a broad number of consumers, who have no control over the location of the resources, and meet their level of service/resources on the fly. I found this interesting mainly because it seems rather unstable, yet commonly accepted because it meets the needs of the customer and allows them to appear to have more control over their services.
February 11, 2020 at 11:54 am
One thing I was wondering about resource scaling is that if hit with a ddoss attack and the systems scale could an attackers strategy be to try and drive up costs for the companies cloud bill?
Alexander Reichart-Anderson says
February 9, 2020 at 11:57 pm
The NIST definition of how to secure cloud computing explores a very new alternative technology. We know that even though it is referred to as the cloud, the information and data is stored on physical servers. The owner of the services has to ensure that the servers and their contents are secure for their customers, What I found interesting in this article was the focus on “on demand self service”. This is essentially an emphasis on the availability aspect of CIA. This also focuses on the availability of CPU storage and power for the cloud computing disks and machines.
Joseph Nguyen says
February 10, 2020 at 2:27 am
Good definition from NIST 800-145 of different existing services (Saas, Iaas, Paas) and deployment models (public, community, private and hybrid). It s the base from where the triad CIA will be fit in.
You must be logged in to post a comment.