The total federal cloud computing market is expected to grow from $370m in 2009 to $1.2b in 2014 at a compound annual growth rate of 27%.
lead for NIST, maintains that high costs and hefty power consumption of traditional computing environments underscore the need to explore other options. Currently, $800 billion is spent annually on the purchase and maintenance of enterprise software, and 11.8 million servers run at only 15-20% capacity in data centers. Meanwhile, the number of servers doubled between 2001 and 2006, while power consumption per server actually quadrupled during the same period. Technologies such as virtualization, high-speed networking, monitoring and capacity planning play key roles in the maturing cloud computing concept for a wide range of workloads, said Tim LeMaster, Junipers Director of Systems Engineering.
sponsored by:
Cloud Computing is a natural evolution of the IT architecture. It addresses the issues of increasing capacity and performance on the fly while lowering CAPEX and OPEX. For almost any type of data center operation, the principles of Cloud Computing can deliver these values, and network architecture is an essential and fundamental element. Juniper Networks Cloud Data Center Network solutions simplify network and security design by collapsing the multiple tiers present in traditional architectures, allowing the network to become simpler, flatter, and more scalable. In addition, the simplified network design requires fewer devices and interconnections, leading to improved performance, lower capital and operating costs and efficiencies in space, power, cooling, and management.
Although the cloud computing concept is still evolving, it has been defined by NIST officials as a pay-per-use model for enabling convenient, on-demand network access to a shared pool of configurable and reliable computing resources, such as networks, servers, storage, applications and services that can be rapidly provisioned and released with minimal consumer management effort or service provider interaction. The elastic, shared, self-managing and self-healing utilities inherent in cloud computing are so attractive because they support all users, no matter where they are located. Also, these services can minimize inefficient infrastructure, while boosting initiatives such as Green IT, disaster recovery/COOP and Telework. Cloud computing can also help federal agencies create unified, reliable, available infrastructures, comprised of interchangeable industry-standard components. Increasingly, agencies are adding online submission processes for taxes, registration and bill payment services, said Jeffrey Kaplan, managing director THINKstrategies, Inc. a market research firm specializing in software as a service, in Wellesley, Mass., who added agencies could also use cloud-based services to leverage third party resources for situational computing requirements (think tax season).
Insecure interfaces and APIs -- reliance on a weak set of interfaces and APIs exposes organizations to security risks related to confidentiality, integrity, availability and accountability. Shared technology vulnerabilities many cloud providers havent designed disk partitions, CPU caches and other shared elements for strong compartmentalization. Data loss or leakage this can lead to compliance violations and legal ramifications. Account, service or traffic hijacking -- with stolen credentials, attackers can access critical areas of deployed cloud services, which can be used to compromise the confidentiality, integrity and availability of services. Unknown risks While features and functionality may be well advertised, detailed information about the compliance of internal security procedures, configuration hardening, patching, auditing and logging arent always readily available.
In addition to security, legacy systems integration and governance over contracting and service level agreements are nagging concerns. And for some providers, the key issue is a lack of customer support. This is likely why observers such as THINKstrategies Kaplan maintain there will be a re-emergence of traditional legacy vendors who will be able to offer the levels of quality, support and functional services that federal agencies truly require. For now, obstacles from security and privacy to reliability, standards, regulatory or legislative hurdles and the general fear of change, are all outweighed by a desire to move away from technological complexity and isolation, toward better sharing of information among applications, data and users. As Deniece Peterson, manager of
industry analysis for INPUT explains, a growing number of organizations are testing cloud-related technologies such as virtualization and service-oriented architecture (SOA) to build on-demand web services that will boost efficiency, while maximizing existing IT investments. Not moving to the cloud ultimately means agencies will pay more than comparable organizations for the same commodity products and services, she said. At the same time, the groundswell from early adopters, combined with momentum created by senior officials promoting the cloud is also helping drive the clouds 27% compound annual growth rate. This literally dwarfs the overall IT industrys 3.5% growth per year, and further proves anything cloudbased is definitely hot, hot, hot, she said.
officials, agencies should remember the following: Work with the cloud computing provider to determine its attention to security. Compare the vendors security precautions to current levels of security to ensure the provider is achieving parity, or better security levels. Assessing risk is key. Require cloud computing partners to provide risk assessments and information on how to mitigate uncovered security issues. If the provider doesnt have a seasoned client-facing CSO, CISO, or equivalent security professional, proceed with caution. This is a sign the vendor doesnt take security seriously.
Understand cloud security should be equal to the most risky client the provider supports. A cloud provider should be able to map policy and procedures to any security mandate or security-driven contractual obligation an agency faces. Pay attention to the providers adherence to secure coding practices. If the vendor doesnt provide a strong story about the discipline used to write code, run away.
(Source: NIST)
Douglas Bourgeois, the Department of Interiors Director of the National Business Center (NBC).
An expansion of the NBC-STAGE (Platform as a Service) creating a pre-packaged development platform that includes a software development tool, version-control and testing tools. An expansion of the NBC-GRID (Infrastructure as a
Service) incorporating separate development, test and production environments running on both mainframe and X86 cloud infrastructures. By offering both mainframe and X86 cloud environment services, NBCs customers gain the flexibility to optimize their cloud computing environments for either an NBC mainframe or X86 infrastructure, based on specific workload characteristics and other customerdriven requirements, according to Douglas Bourgeois, DoIs Director of the NBC. Weve found through testing, that its important for agency customers to pay close attention to software architecture, and especially the specific workloads to be migrated to a cloud platform, he explained. This is because X86 cloud services are optimized for memory-intensive applications and self-contained workloads that dont require much integration. Mainframe-based cloud services, meanwhile, are optimized for processing transactions and tend to be more easily integrated with other applications and environments, Bourgeois explained. The NBCs data center service delivery operations gradually evolved to a cloud computing approach over the past few years, following investments in security technologies, service oriented architecture and virtualization. Key drivers behind the NBCs cloud migration included the ability to rapidly provision services, reduce investment costs, the ability to pay-as-you-go and generate a speedier return on investment, along with the ability to allow multi-tenancy, take up less space and reduce energy use in data centers and improve both access to computing resources and the use of enterprise-wide service level agreements (SLAs). With 80% of server resources sitting idle, at a cost of $34,000+ per server, drawn out two-year capital investment cycles and a doubling of power
consumption across all U.S. data centers in the past five years, this type of pay-as-you-go service grew increasingly attractive, he explained.
Whats Next
NBCs cloud computing data center is currently working on a 90 to 100 day upgrade cycle, expanding cloud services to keep pace with the administrations modernization and data consolidation goals. In the three weeks following Release 2.0, Bourgeois reported that 15 separate agencies accessed the NBC portal to test cloud services and conduct pricing analysis. Next on NBCs schedule of upgrades is the addition of a human resources application and desktop virtualization for customers interested in the organizations software as a service option. Those agencies interested in using NBCs platform as a service will see the addition of IDE life cycle tools, along with an additional proxy server and application server. And federal organizations seeking an infrastructure as a service solution will see the rollout of a high security production environment, along with dynamic provisioning, pay by usage and enhanced disaster recovery services. As a preferred Shared Services Center (SSC) and provider of an array of business management support services within the DoI as well as other federal agencies, NBC offers greater detail, along with the ability to test/ price cloud services at www.cloud.NBC.gov. The NBC will also provide a demonstration or meet with interested agencies via this link.
i360Gov is an intelligent network of websites and e-newsletters designed to keep busy government business and technology leaders expertly informed while saving them time. Comprised of six topic-specific news channels each functioning as its own website along with a comprehensive line-up of e-newsletters, the i360Gov network delivers daily news, analysis and perspective regarding governments largest and most important initiatives in an interactive, online environment.