The NIST 800 145 article describes and defines cloud computing for use in official NIST classifications and provides a baseline understanding of what these systems look like and how NIST categorizes them. I found it hard to have a more profound thought on this, as this is simply a definitional tool, not a perspective or deep dive on cloud computing, but I did note that, like much of NIST’s frameworks and releases, providing a simple, straight-forward, and easy to process definition and summary of what systems Cloud Computing constitutes provides IT professionals with a common template with which to classify, identify and work with various cloud resources based off of the initial definition provided
NIST 800-145, titled “The NIST Definition of Cloud Computing,” provides a comprehensive framework for understanding cloud computing and its various deployment models, service models, and essential characteristics. It defines cloud computing as a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.
The document outlines five essential characteristics of cloud computing: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service. These characteristics collectively distinguish cloud services from traditional computing paradigms by emphasizing scalability, accessibility, and flexibility.
Moreover, NIST 800-145 delineates three service models: Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). SaaS delivers software applications over the internet on a subscription basis, eliminating the need for local installations. PaaS provides a platform allowing customers to develop, deploy, and manage applications without the complexities of infrastructure management. IaaS offers virtualized computing resources over the internet, including processing power, storage, and networking infrastructure, enabling users to deploy and manage virtualized servers and other computing resources.
Additionally, the document categorizes cloud computing deployment models into four types: public cloud, private cloud, community cloud, and hybrid cloud. Public clouds are operated by third-party service providers and are accessible to the general public. Private clouds are dedicated to a single organization and may be managed internally or by a third party. Community clouds are shared by several organizations with common concerns, while hybrid clouds integrate multiple deployment models, allowing data and applications to be shared between them
NIST 800-145 is a comprehensive document that defines the Cloud Computing model which includes essential characteristics, service model, and the deployment model. Essential Characteristics like on-demand self-service which provides access to cloud services without the need of a service provider. The service model offers are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Each service provides users with differing access and tools. SaaS allows users to access the cloud from any device (via pc, phone, tablet), they do not have control over the infrastructure. PaaS is more for developing and maintaining and managing applications. IaaS is the backend infrastructure for running apps and managing workloads in the cloud environment.
Indeed this guide serves as a foundational resource for understanding cloud computing. It helps leaders to make informed decisions on which model works best for their business needs.
NIST 800-140 gave a holistic view of cloud computing. In simpler terms, cloud computing provides a flexible and scalable approach to accessing computing resources over the network. It allows users to utilize services and infrastructure without the need for extensive manual management. The key components of this model include:
Essential Characteristics:
On-demand Self-Service: Users can provision resources independently without human intervention.
Broad Network Access: Resources are accessible via standard network protocols.
Resource Pooling: Resources are shared among multiple users.
Rapid Elasticity: Resources can be scaled up or down dynamically.
Measured Service: Usage is monitored and billed based on consumption.
Service Models:
Software as a Service (SaaS): Applications delivered over the network (e.g., web-based email).
Platform as a Service (PaaS): Development platforms and tools provided as services.
Infrastructure as a Service (IaaS): Virtualized computing resources (e.g., virtual machines, storage).
Deployment Models:
Public Cloud: Services available to the general public.
Private Cloud: Restricted to a specific organization.
Hybrid Cloud: Combination of public and private clouds.
In summary, cloud computing revolutionizes how we access and manage computing resources, offering flexibility, scalability, and efficiency for organizations and individuals alike.
Hey Michael, what I learnt from your post is that NIST 800-140 offers a comprehensive look at cloud computing, simplifying its concept as a flexible, scalable method for accessing computing resources via the network. Its key components include essential characteristics, service models, and deployment options, revolutionizing resource management for enhanced efficiency and accessibility.
Like Ikenna I picked up the same understanding that NIST 800-140 offers an extensive look into cloud computing. I have learned quite a bit by reading your post. Each characteristic and tool have a unique role in the process. I rather short document in comparison to some of the other’s readings in class but just as informative.
I agree with you, Cloud computing has revolutionized the way we save and access resources. It has given the ability organization to quickly scale up or down to meet their budget and business needs Before you could buy an expensive server that you will not need six months down the line and you will be stuck with it, but with cloud computing, you can easily provision and decommission resources as needed.
NIST Special Publication 800-145 acts as a guideline for planners, program managers, technologists, and others adopting cloud computing. The guide offers a comprehensive explanation of cloud computing concepts, including essential characteristics, service models (such as Infrastructure as a Service, Platform as a Service, and Software as a Service), and deployment models (such as public, private, community, and hybrid clouds).
SP 800-145 aims to help organizations effectively understand, implement, and leverage cloud computing solutions to meet their business needs.
You created an excellent summary of the document. NIST outlined these kinds of specifications as cloud computing is now one of the most utilized forms of hardware so that businesses do not need to pay for hardware nor upkeep and maintenance of hosting things like servers, online applications, and other business needs that would require a physical infrastructure. NIST also mentions the five essential characteristics of cloud computing: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service.
I too came to a similar conclusion when reading through the document. you did a good job explaining what it defines cloud computing as, and the different ways it operates. I can see professionals constantly referring to this document to refresh their memory on cloud computing. Given that cloud computing is still relatively new in IT, I can only imagine how different it will be 20 years from now, and what future documents will say about how it works. Also, is there a consistent timeframe documents like this would be updated? and if not, how many changes would have to happen for the official document to be updated?
Ubiquitous. That is what stood out to me the most. You can get your cloud-based resources everywhere, when you need anytime. Shared pool of resources of configurable computing resourcing. It shows how it’s all a system of all the elements like, networks, servers, storage, applications and services etc. Virtualization is what makes it work and be rapidly provisioned with minimum management effort. It makes me think about how quantum computing and cloud computing are going to rapidly change everything, especially the cyber/audit fields. Think about how long it would take you to install a server, now with cloud computing, it’s a matter of clicks of a button via the on-demand self-service. Broad network access, which has grown significantly in the past few years due to remote work. Its service models SAAS and PAAS and there are tons of others out there are all cloud-based application service models that are accessible from various client devices though either a thin client interface, such as a web browser or a program interface. I feel that cloud computing has rapidly become available through tons of companies in the past few years but is something that is going to keep accelerating in the next few years as well.
Here is an article that goes over how these said companies are even hosting government sectors, not sure 100% how true but makes you think how powerful it can make companies especially if they CIA data on their cloud storage.
Jeff, I fully agree with your perspective on the widespread use and transformative potential of cloud computing. The ability of cloud computing to provide on-demand, scalable resources with minimal management effort is a significant shift in how computing resources are utilized and managed. The rapid provisioning enabled by virtualization technology is a game-changer, reducing the time and complexity of deploying new services and infrastructure. Additionally, the evolution of service models like SAAS (Software as a Service) and PAAS (Platform as a Service) underscores the flexibility and accessibility of cloud-based services, making advanced computing capabilities available to a broader range of users and organizations. This standardization of access to powerful computing resources, combined with the potential integration of emerging technologies like quantum computing, promises to accelerate innovation and efficiency across various sectors, including cybersecurity and audit fields. As highlighted in the article, the hosting of sensitive government data by cloud providers underscores the trust and reliance placed on these technologies while raising important questions about security, privacy, and the concentration of power within a few dominant providers.
The introduction outlines the NIST’s authority and purpose in developing guidelines for cloud computing, highlighting its responsibility under the Federal Information Security Management Act (FISMA) of 2002. The document aims to provide standards and guidelines for ensuring information security in agency operations and assets, with a focus on cloud computing. It clarifies the scope, audience, and the NIST definition of cloud computing, which encompasses essential characteristics, service models, and deployment models. The biggest key point I took away was the emphasis on cloud computing as an evolving paradigm, with the NIST definition serving as a baseline for discussion and comparison rather than prescribing specific methods or constraints. This underscores the dynamic nature of cloud technologies and the need for flexible approaches to their adoption and utilization, reflecting the ongoing evolution and innovation within the field.
You bring up an interesting point on cloud computing becoming more and more prevalent in real-world application as well as how NIST is continuously creating new documents to serve and help those utilizing these resources federally and in organizations. NIST was founded in 1901 with the organization guiding cybersecurity standards since 1972 and to stay as a prevalent source of information and guidelines, they strive towards staying updated on upcoming technologies. They are even developing standards for encryption algorithms that can resist quantum computer attacks which is an upcoming issue we will probably see within the next 5-10 years.
The NIST Definition of Cloud Computing is a document outlining the responsibilities for protecting cloud computing services deployed in federal agencies as well as providing a baseline for discussing what cloud computing is and how to use it. The most interesting point I took away was the comparison of the different service models mentioned in the document.
Software as a Service allows consumers to utilize applications from a software provider on a cloud instance, usually through a thin client on a browser or a program interface. This is not managed by the consumer. Platform as a Service allows consumers to deploy onto cloud infrastructure their own applications or applications from the provider. he consumer doesn’t manage the underlying cloud infrastructure, but can manage deployed applications and some configuration settings. Infrastructure as a Service gives consumers the processing, storage, networks, and other computing resources to run their own applications and/or operating systems. Consumers do not manage the infrastructure, but controls virtually everything else including some network components.
Your takeaways from this document, especially with pointing out the comparison of service models, is spot on. It’s pretty cool to see the distinctions between SaaS, PaaS, and IaaS, each offering different levels of control and management to consumers. As you explore these models further, what specific considerations or factors do you think organizations should weigh more when deciding on the most suitable service model for their specific needs? Also, do you anticipate any shifts or innovations in these service models that could significantly impact how organizations approach cloud computing in the future?
The NIST Special Publication 800-145, also known as “The NIST Definition of Cloud Computing,” is a helpful guide that outlines a clear and concise framework for understanding cloud computing. In essence, cloud computing is a model that enables users to access a shared pool of computing resources in a convenient and on-demand manner. With cloud computing, users can rapidly provision and release resources without requiring much management effort or interaction with service providers. This foundational document defines the key characteristics, service models, and deployment models of cloud computing, making it easier for businesses, organizations, and individuals to understand the concept and provide guidance on adopting and implementing cloud technologies. By reading this guide, you can better comprehend the benefits of cloud computing, make informed decisions when planning to use cloud services, manage risks effectively, optimize costs, ensure interoperability and compliance, and ultimately leverage cloud computing to drive business growth and innovation. Overall, NIST Special Publication 800-145 provides a foundational understanding of cloud computing that can help your company strategically adopt cloud technologies.
Your summary of NIST Special Publication 800-145 highlights its significance as a foundational guide for understanding cloud computing. The clear framework it provides, covering key characteristics, service models, and deployment models, makes it an invaluable resource for businesses and individuals alike. The emphasis on rapid resource provisioning, minimal management effort, and enhanced decision-making capabilities contributes to a comprehensive understanding of cloud computing’s benefits. Your point about how the guide aids in managing risks, optimizing costs, ensuring interoperability, and fostering compliance underscores its practical applicability for strategic adoption of cloud technologies. Overall, your discussion effectively captures the guide’s role in helping companies leverage cloud computing for business growth and innovation.
NIST offers succinct documentation on the essential components of cloud computing, including the distinctions between Infrastructure as a Service (IaaS), Platform as a Service (Azure/AWS), and Software as a Service (O365). The distinctions between community, private, public, and hybrid cloud deployment options are also covered in the documentation. After reading, I think public clouds and SaaS are the most extensively used models that businesses employ nowadays since they allow them to easily provision enterprise-wide apps without having to worry about maintaining the infrastructure required to host these apps. SaaS is a great option for tiny businesses on a tight budget because it enables them to maintain low operating costs.
Hi Samual, I agree that the biggest take away is that NIST provides clear guidance on the key aspects of cloud computing, outlining the differences between IaaS, PaaS, and SaaS, as well as various deployment options. It’s evident that public clouds and SaaS are widely adopted by businesses today, offering convenient access to enterprise-level applications without the burden of infrastructure maintenance.
In NIST SP 800-145 addresses cloud computing as a model that facilitates convenient, global and on-demand access to a shared pool of configurable resources. This model is comprised of five essential characteristics, namely: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service. There are three service models: Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Additionally, there are four deployment models: private cloud, community cloud, public cloud, and hybrid cloud. Each deployment model caters to specific organizational needs, whether it be exclusive use, shared concerns, open access, or a combination thereof.
Hi Chidi,
I really like how you give detailed explanation of cloud computing. I also agree with you that an organization would decide on the services to use based on the organization’s need. Let’s assume you are assisting a small organization migrate their resources to the cloud, what service would you recommend?
From my understanding, cloud computing when I first remember learning about it, people had their doubts about it, myself included, but, as each day moves forward, cloud computing is taken more seriously. As even the article states how cloud computing is evolving. The article made it very simple to understand the main characteristics of the cloud model. These being: Measured Service, On Demand self service, broad network access, resource pooling, and rapid elasticity. The article also provided four different deployment models, them being: Private/Hybrid/Public/Community Cloud. Seems to me like the intention of this article was to be nothing but just a set of definitions to apply to a concept for professionals to refer to. Which I think is great. When we work with using different software or discuss different topics, it’s important that we have an exact definition to go off of, as without it, it could cause confusion and inconsistencies within the profession.
This document describes important aspects of cloud computing including how comparisons should be done, deployment, best practices and is intended for any technologists that are considering adopting cloud computing in any way. It goes on to describe five essential characteristics of cloud computing and three service models, SaaS, PaaS, and IaaS. I also goes in-depth into the four deployment models; private, community, public and hybrid clouds. This comprehensive document proves to be a valuable resource as it not only explains the fundamental concepts of cloud computing but also provides detailed insights with their cloud model. Such knowledge is crucial for anybody seeking a understanding, that’ll enable them to make informed decisions and implement best practices and eventually choose the most suitable cloud computing approach for their specific needs and objectives.
I agree that this was a good comprehensive overview of how these systems work. As somebody without a lot of direct experience in cloud-based systems, I found this overview extremely useful in contextualizing and creating an applicable understanding of cloud systems that can be applied to various fields systems or positions. I find that NIST is great at creating a a generalized standard for what defines various systems and allows users and experts like us to gain a broad understanding that applies to many different roles and allows for employees and employers to have a standardized definition of systems and operate with the same understanding
NIST SP 800-145 provides information about different options for cloud computing organizations can utilize. It guides organizations in choosing what cloud computing option is suitable for their organization based on what they need. NIST SP 800-145 serves as a guide that helps organizations make decisions with essential insights into the benefits associated with different cloud computing options.
Andrew Young says
The NIST 800 145 article describes and defines cloud computing for use in official NIST classifications and provides a baseline understanding of what these systems look like and how NIST categorizes them. I found it hard to have a more profound thought on this, as this is simply a definitional tool, not a perspective or deep dive on cloud computing, but I did note that, like much of NIST’s frameworks and releases, providing a simple, straight-forward, and easy to process definition and summary of what systems Cloud Computing constitutes provides IT professionals with a common template with which to classify, identify and work with various cloud resources based off of the initial definition provided
Ikenna Alajemba says
NIST 800-145, titled “The NIST Definition of Cloud Computing,” provides a comprehensive framework for understanding cloud computing and its various deployment models, service models, and essential characteristics. It defines cloud computing as a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.
The document outlines five essential characteristics of cloud computing: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service. These characteristics collectively distinguish cloud services from traditional computing paradigms by emphasizing scalability, accessibility, and flexibility.
Moreover, NIST 800-145 delineates three service models: Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). SaaS delivers software applications over the internet on a subscription basis, eliminating the need for local installations. PaaS provides a platform allowing customers to develop, deploy, and manage applications without the complexities of infrastructure management. IaaS offers virtualized computing resources over the internet, including processing power, storage, and networking infrastructure, enabling users to deploy and manage virtualized servers and other computing resources.
Additionally, the document categorizes cloud computing deployment models into four types: public cloud, private cloud, community cloud, and hybrid cloud. Public clouds are operated by third-party service providers and are accessible to the general public. Private clouds are dedicated to a single organization and may be managed internally or by a third party. Community clouds are shared by several organizations with common concerns, while hybrid clouds integrate multiple deployment models, allowing data and applications to be shared between them
Erskine Payton says
NIST 800-145 is a comprehensive document that defines the Cloud Computing model which includes essential characteristics, service model, and the deployment model. Essential Characteristics like on-demand self-service which provides access to cloud services without the need of a service provider. The service model offers are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Each service provides users with differing access and tools. SaaS allows users to access the cloud from any device (via pc, phone, tablet), they do not have control over the infrastructure. PaaS is more for developing and maintaining and managing applications. IaaS is the backend infrastructure for running apps and managing workloads in the cloud environment.
Mariam Hazali says
Indeed this guide serves as a foundational resource for understanding cloud computing. It helps leaders to make informed decisions on which model works best for their business needs.
Michael Obiukwu says
NIST 800-140 gave a holistic view of cloud computing. In simpler terms, cloud computing provides a flexible and scalable approach to accessing computing resources over the network. It allows users to utilize services and infrastructure without the need for extensive manual management. The key components of this model include:
Essential Characteristics:
On-demand Self-Service: Users can provision resources independently without human intervention.
Broad Network Access: Resources are accessible via standard network protocols.
Resource Pooling: Resources are shared among multiple users.
Rapid Elasticity: Resources can be scaled up or down dynamically.
Measured Service: Usage is monitored and billed based on consumption.
Service Models:
Software as a Service (SaaS): Applications delivered over the network (e.g., web-based email).
Platform as a Service (PaaS): Development platforms and tools provided as services.
Infrastructure as a Service (IaaS): Virtualized computing resources (e.g., virtual machines, storage).
Deployment Models:
Public Cloud: Services available to the general public.
Private Cloud: Restricted to a specific organization.
Hybrid Cloud: Combination of public and private clouds.
In summary, cloud computing revolutionizes how we access and manage computing resources, offering flexibility, scalability, and efficiency for organizations and individuals alike.
Ikenna Alajemba says
Hey Michael, what I learnt from your post is that NIST 800-140 offers a comprehensive look at cloud computing, simplifying its concept as a flexible, scalable method for accessing computing resources via the network. Its key components include essential characteristics, service models, and deployment options, revolutionizing resource management for enhanced efficiency and accessibility.
Erskine Payton says
Like Ikenna I picked up the same understanding that NIST 800-140 offers an extensive look into cloud computing. I have learned quite a bit by reading your post. Each characteristic and tool have a unique role in the process. I rather short document in comparison to some of the other’s readings in class but just as informative.
Mariam Hazali says
I agree with you, Cloud computing has revolutionized the way we save and access resources. It has given the ability organization to quickly scale up or down to meet their budget and business needs Before you could buy an expensive server that you will not need six months down the line and you will be stuck with it, but with cloud computing, you can easily provision and decommission resources as needed.
Mariam Hazali says
NIST Special Publication 800-145 acts as a guideline for planners, program managers, technologists, and others adopting cloud computing. The guide offers a comprehensive explanation of cloud computing concepts, including essential characteristics, service models (such as Infrastructure as a Service, Platform as a Service, and Software as a Service), and deployment models (such as public, private, community, and hybrid clouds).
SP 800-145 aims to help organizations effectively understand, implement, and leverage cloud computing solutions to meet their business needs.
Kenneth Saltisky says
Hi Mariam,
You created an excellent summary of the document. NIST outlined these kinds of specifications as cloud computing is now one of the most utilized forms of hardware so that businesses do not need to pay for hardware nor upkeep and maintenance of hosting things like servers, online applications, and other business needs that would require a physical infrastructure. NIST also mentions the five essential characteristics of cloud computing: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service.
Hashem Alsharif says
Hello Mariam,
I too came to a similar conclusion when reading through the document. you did a good job explaining what it defines cloud computing as, and the different ways it operates. I can see professionals constantly referring to this document to refresh their memory on cloud computing. Given that cloud computing is still relatively new in IT, I can only imagine how different it will be 20 years from now, and what future documents will say about how it works. Also, is there a consistent timeframe documents like this would be updated? and if not, how many changes would have to happen for the official document to be updated?
Jeffrey Sullivan says
NIST 800-145
Ubiquitous. That is what stood out to me the most. You can get your cloud-based resources everywhere, when you need anytime. Shared pool of resources of configurable computing resourcing. It shows how it’s all a system of all the elements like, networks, servers, storage, applications and services etc. Virtualization is what makes it work and be rapidly provisioned with minimum management effort. It makes me think about how quantum computing and cloud computing are going to rapidly change everything, especially the cyber/audit fields. Think about how long it would take you to install a server, now with cloud computing, it’s a matter of clicks of a button via the on-demand self-service. Broad network access, which has grown significantly in the past few years due to remote work. Its service models SAAS and PAAS and there are tons of others out there are all cloud-based application service models that are accessible from various client devices though either a thin client interface, such as a web browser or a program interface. I feel that cloud computing has rapidly become available through tons of companies in the past few years but is something that is going to keep accelerating in the next few years as well.
Here is an article that goes over how these said companies are even hosting government sectors, not sure 100% how true but makes you think how powerful it can make companies especially if they CIA data on their cloud storage.
https://truthout.org/articles/amazon-cia-600-million-deal-facing-scrutiny-what-s-the-cia-doing-on-amazon-s-cloud/
Kelly Conger says
Jeff, I fully agree with your perspective on the widespread use and transformative potential of cloud computing. The ability of cloud computing to provide on-demand, scalable resources with minimal management effort is a significant shift in how computing resources are utilized and managed. The rapid provisioning enabled by virtualization technology is a game-changer, reducing the time and complexity of deploying new services and infrastructure. Additionally, the evolution of service models like SAAS (Software as a Service) and PAAS (Platform as a Service) underscores the flexibility and accessibility of cloud-based services, making advanced computing capabilities available to a broader range of users and organizations. This standardization of access to powerful computing resources, combined with the potential integration of emerging technologies like quantum computing, promises to accelerate innovation and efficiency across various sectors, including cybersecurity and audit fields. As highlighted in the article, the hosting of sensitive government data by cloud providers underscores the trust and reliance placed on these technologies while raising important questions about security, privacy, and the concentration of power within a few dominant providers.
Nicholas Nirenberg says
The introduction outlines the NIST’s authority and purpose in developing guidelines for cloud computing, highlighting its responsibility under the Federal Information Security Management Act (FISMA) of 2002. The document aims to provide standards and guidelines for ensuring information security in agency operations and assets, with a focus on cloud computing. It clarifies the scope, audience, and the NIST definition of cloud computing, which encompasses essential characteristics, service models, and deployment models. The biggest key point I took away was the emphasis on cloud computing as an evolving paradigm, with the NIST definition serving as a baseline for discussion and comparison rather than prescribing specific methods or constraints. This underscores the dynamic nature of cloud technologies and the need for flexible approaches to their adoption and utilization, reflecting the ongoing evolution and innovation within the field.
Kenneth Saltisky says
Hi Nicholas,
You bring up an interesting point on cloud computing becoming more and more prevalent in real-world application as well as how NIST is continuously creating new documents to serve and help those utilizing these resources federally and in organizations. NIST was founded in 1901 with the organization guiding cybersecurity standards since 1972 and to stay as a prevalent source of information and guidelines, they strive towards staying updated on upcoming technologies. They are even developing standards for encryption algorithms that can resist quantum computer attacks which is an upcoming issue we will probably see within the next 5-10 years.
https://csrc.nist.gov/nist-cyber-history
https://www.nist.gov/news-events/news/2023/08/nist-standardize-encryption-algorithms-can-resist-attack-quantum-computers
Kenneth Saltisky says
The NIST Definition of Cloud Computing is a document outlining the responsibilities for protecting cloud computing services deployed in federal agencies as well as providing a baseline for discussing what cloud computing is and how to use it. The most interesting point I took away was the comparison of the different service models mentioned in the document.
Software as a Service allows consumers to utilize applications from a software provider on a cloud instance, usually through a thin client on a browser or a program interface. This is not managed by the consumer. Platform as a Service allows consumers to deploy onto cloud infrastructure their own applications or applications from the provider. he consumer doesn’t manage the underlying cloud infrastructure, but can manage deployed applications and some configuration settings. Infrastructure as a Service gives consumers the processing, storage, networks, and other computing resources to run their own applications and/or operating systems. Consumers do not manage the infrastructure, but controls virtually everything else including some network components.
Alex Ruiz says
Your takeaways from this document, especially with pointing out the comparison of service models, is spot on. It’s pretty cool to see the distinctions between SaaS, PaaS, and IaaS, each offering different levels of control and management to consumers. As you explore these models further, what specific considerations or factors do you think organizations should weigh more when deciding on the most suitable service model for their specific needs? Also, do you anticipate any shifts or innovations in these service models that could significantly impact how organizations approach cloud computing in the future?
Kelly Conger says
The NIST Special Publication 800-145, also known as “The NIST Definition of Cloud Computing,” is a helpful guide that outlines a clear and concise framework for understanding cloud computing. In essence, cloud computing is a model that enables users to access a shared pool of computing resources in a convenient and on-demand manner. With cloud computing, users can rapidly provision and release resources without requiring much management effort or interaction with service providers. This foundational document defines the key characteristics, service models, and deployment models of cloud computing, making it easier for businesses, organizations, and individuals to understand the concept and provide guidance on adopting and implementing cloud technologies. By reading this guide, you can better comprehend the benefits of cloud computing, make informed decisions when planning to use cloud services, manage risks effectively, optimize costs, ensure interoperability and compliance, and ultimately leverage cloud computing to drive business growth and innovation. Overall, NIST Special Publication 800-145 provides a foundational understanding of cloud computing that can help your company strategically adopt cloud technologies.
Samuel Omotosho says
Hi Kelly.
Your summary of NIST Special Publication 800-145 highlights its significance as a foundational guide for understanding cloud computing. The clear framework it provides, covering key characteristics, service models, and deployment models, makes it an invaluable resource for businesses and individuals alike. The emphasis on rapid resource provisioning, minimal management effort, and enhanced decision-making capabilities contributes to a comprehensive understanding of cloud computing’s benefits. Your point about how the guide aids in managing risks, optimizing costs, ensuring interoperability, and fostering compliance underscores its practical applicability for strategic adoption of cloud technologies. Overall, your discussion effectively captures the guide’s role in helping companies leverage cloud computing for business growth and innovation.
Samuel Omotosho says
NIST offers succinct documentation on the essential components of cloud computing, including the distinctions between Infrastructure as a Service (IaaS), Platform as a Service (Azure/AWS), and Software as a Service (O365). The distinctions between community, private, public, and hybrid cloud deployment options are also covered in the documentation. After reading, I think public clouds and SaaS are the most extensively used models that businesses employ nowadays since they allow them to easily provision enterprise-wide apps without having to worry about maintaining the infrastructure required to host these apps. SaaS is a great option for tiny businesses on a tight budget because it enables them to maintain low operating costs.
Nicholas Nirenberg says
Hi Samual, I agree that the biggest take away is that NIST provides clear guidance on the key aspects of cloud computing, outlining the differences between IaaS, PaaS, and SaaS, as well as various deployment options. It’s evident that public clouds and SaaS are widely adopted by businesses today, offering convenient access to enterprise-level applications without the burden of infrastructure maintenance.
Chidiebere Okafor says
In NIST SP 800-145 addresses cloud computing as a model that facilitates convenient, global and on-demand access to a shared pool of configurable resources. This model is comprised of five essential characteristics, namely: on-demand self-service, broad network access, resource pooling, rapid elasticity, and measured service. There are three service models: Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Additionally, there are four deployment models: private cloud, community cloud, public cloud, and hybrid cloud. Each deployment model caters to specific organizational needs, whether it be exclusive use, shared concerns, open access, or a combination thereof.
Akintunde Akinmusire says
Hi Chidi,
I really like how you give detailed explanation of cloud computing. I also agree with you that an organization would decide on the services to use based on the organization’s need. Let’s assume you are assisting a small organization migrate their resources to the cloud, what service would you recommend?
Hashem Alsharif says
From my understanding, cloud computing when I first remember learning about it, people had their doubts about it, myself included, but, as each day moves forward, cloud computing is taken more seriously. As even the article states how cloud computing is evolving. The article made it very simple to understand the main characteristics of the cloud model. These being: Measured Service, On Demand self service, broad network access, resource pooling, and rapid elasticity. The article also provided four different deployment models, them being: Private/Hybrid/Public/Community Cloud. Seems to me like the intention of this article was to be nothing but just a set of definitions to apply to a concept for professionals to refer to. Which I think is great. When we work with using different software or discuss different topics, it’s important that we have an exact definition to go off of, as without it, it could cause confusion and inconsistencies within the profession.
Alex Ruiz says
This document describes important aspects of cloud computing including how comparisons should be done, deployment, best practices and is intended for any technologists that are considering adopting cloud computing in any way. It goes on to describe five essential characteristics of cloud computing and three service models, SaaS, PaaS, and IaaS. I also goes in-depth into the four deployment models; private, community, public and hybrid clouds. This comprehensive document proves to be a valuable resource as it not only explains the fundamental concepts of cloud computing but also provides detailed insights with their cloud model. Such knowledge is crucial for anybody seeking a understanding, that’ll enable them to make informed decisions and implement best practices and eventually choose the most suitable cloud computing approach for their specific needs and objectives.
Andrew Young says
I agree that this was a good comprehensive overview of how these systems work. As somebody without a lot of direct experience in cloud-based systems, I found this overview extremely useful in contextualizing and creating an applicable understanding of cloud systems that can be applied to various fields systems or positions. I find that NIST is great at creating a a generalized standard for what defines various systems and allows users and experts like us to gain a broad understanding that applies to many different roles and allows for employees and employers to have a standardized definition of systems and operate with the same understanding
Akintunde Akinmusire says
NIST SP 800-145 provides information about different options for cloud computing organizations can utilize. It guides organizations in choosing what cloud computing option is suitable for their organization based on what they need. NIST SP 800-145 serves as a guide that helps organizations make decisions with essential insights into the benefits associated with different cloud computing options.