Henry j sienkiewicz technical program director center for computing services 27 february 2009
This presentation is the property of its rightful owner.
Sponsored Links
1 / 31

Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009 PowerPoint PPT Presentation


  • 104 Views
  • Uploaded on
  • Presentation posted in: General

Cloud Computing: An Operational Perspective. Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009. An Operational Perspective. Warfighter-centric Legacy & Web 2.0 Internal & external services. Center For Computing Services. Command & Control

Download Presentation

Henry J. Sienkiewicz Technical Program Director Center for Computing Services 27 February 2009

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Cloud Computing: An Operational Perspective

Henry J. Sienkiewicz

Technical Program Director

Center for Computing Services

27 February 2009


An operational perspective

An Operational Perspective

  • Warfighter-centric

  • Legacy & Web 2.0

  • Internal & external services


Center for computing services

Center For Computing Services

  • Command & Control

  • Global Command and Control System (GCCS)

  • Global Combat Support System (GCSS)

  • Missile Defense C2BMC

  • Warfighter Logistics

  • Defense Distribution Standard System (DSS)

  • DLA Enterprise Business Management System

  • Transportation and cargo movement systems

  • Combat requisition and maintenance systems

  • DoD Financial and Security

  • Military and Civilian Pay & Personnel

  • Electronic business and contracting systems

  • Public Key Infrastructure (PKI)

  • Health & Medical Readiness

  • Composite Health Care System (AHLTA)

  • Enterprise Services

  • Global Content Delivery System (GCDS)

  • DMZ Infrastructure

provide command

and control

provision ships

pay the warfighters

manage parts and

replenish supplies

manage transportation

and maintenance

provide medical care

Combat Support Computing


Disa computing environment

4,000,000+ users

13 facilities

445,000 sq ft raised floor

34 mainframes

6100 servers

3800 terabytes of Storage

2,800 application / database instances

215 software vendors

DISA Computing Environment

Defense Enterprise Computing Centers (DECC)


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Computing Services – Jan 2009

Mechanicsburg

Europe

Ogden

Columbus

Chambersburg

Dayton

NCR

Denver

St Louis

Oklahoma

City

Huntsville

Warner Robins

Hawaii

Montgomery

Pensacola

Pacific

San Antonio

OCONUS Defense Enterprise Computing

Center (DECC)

Systems Management Center (SMC) – @ 350 FTEs

(Mainframe & Server processing)

Headquarters

Infrastructure Services Center (ISC) – @ 100FTEs

Processing Element PE) – @ 13FTEs


What is cloud computing

What is “Cloud Computing?”

  • User:

    • Builds a web application,

    • Using a standard platform

    • Using a standard database

    • Upload this application to a cloud provider

  • Cloud provider automatically

    • Provisions the services

    • Scales the application and the database together

  • User

    • Doesn’t care about which servers, which databases, which hardware, how much memory (the cloud platform handles all of that)

    • Users  are totally free away from any technical complexity other than the service itself.

  • Cloud provider

    • Decides how to cache content, how and where to deploy servers based on demand, performs backups, and even has the ability for the business to distinguish "production" from "staging" deployments.

    • Has ongoing management and monitoring of the external service.

  • User:

    • Only pays for what s/he uses when s/he  needs it. 

    • Everything else is an implementation detail.


Clouds complexity with a promise of

Clouds Complexity With A Promise Of ….

  • Application Flexibility

    • Standardized

    • Increasingly “click to run” services

    • Live in remote Internet data centers

    • Scalable to millions

    • Use shared IT infrastructure

  • Procurement

    • Efficient

    • Rapid

    • Commoditized

    • “Pay by the sip”

  • Security

    • Simplified

    • Streamlined

Cloud Computing Storage Mindmap


Cloud types and cloud development

Cloud Types and Cloud Development

Many Different Types

Environment To Develop


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Cloud Types: An Ontology

Different Types But All Services-centric


Cloud types

Cloud Types

  • Platform-As-A-Service (PaaS)

    • The delivery of a computing platform, and/or solution stack as a service

    • Facilitates deployment of applications without the cost and complexity of buying and managing the underlying hardware and software layers

    • For example:

      • Web application frameworks

        • Ajax

        • Python Jingo

        • Ruby on Rails

      • Web hosting

      • Proprietary

  • Infrastructure-As-A-Service (IaaS)

    • The delivery of computer infrastructure as a services, typically platform virtualization

    • For example:

      • Full virtualization

      • Grid computing

      • Management

      • Compute

  • Applications-As-A-Service (AaaS) /Software-As-A-Service (SaaS)

    • Leverages the Cloud in software architecture

    • Eliminates the need to install and run the application on the customer's own computer

    • For example:

      • Peer-to-peer / volunteer computing

      • Web application

      • Software as a service

      • Software plus services

  • Database-As-A-Service (DaaS)

    • Leverages the Cloud for delivering database services

Users Want To Use The “Cloud” Services


Creating a cloud

Creating A “Cloud”

Providers Think Of How To Build A “Cloud”


Enabling the cloud environment

Enabling the Cloud Environment

  • Infrastructure

    • Consolidation

    • Global Information Grid

    • Capacity Services

    • Virtualization

    • Rapid Provisioning

    • Facility Analysis

  • Software

    • Network-Centric Services

    • Software-as-a-Service (Saas)

    • Forge.mil

  • Processes

    • ITIL

    • Security (Certification & Accreditation)

    • Computing Service Provider (CSP) Analysis

    • “Greening”

Multiple Technology Rivers Merging


Infrastructure

Infrastructure


Legacy of consolidations and savings

Legacy of Consolidations and Savings

Service/ Agency consolidation under DMRD 924

DISA “SMART” consolidation under QDR and DRI

DISA combat support computing transformation

DISA Megacenter consolidation – DMRD 918/BRAC

1990

1993

1998

2005

  • Mainframe & Server consolidation

  • 4 primary sites w/ remote system mgmt

  • Centralized all business functions

  • Saved

  • $143M/year

  • Reduced mainframe sites from 16 to 5

  • Saved $203M/year

  • Reduced number of mainframe sites from 71 to 16

  • Saved $206M/year

  • Reduced number of mainframe sites from 194 to 71

  • Saved $320M/year

Consolidation Helps But Co-location Is Not The “Cloud”


Network services

Network Services

Flexible

SOA

Foundation

Network Aware

Applications

Single Authentication

Site

Common Storage & Retrieval

Centralized

Computing

Services

Shared Long-Haul Transport

For Services/

Agencies

End-to-End

MPLS

Plug & Play

Ad Hoc

Connectivity

Everything

Over IP

Integrated Network Services Are Critical To Delivering “Cloud” Services


Capacity services

Capacity Services

  • Concept

  • Acquire capacity as a service provided by vendor partners

  • Pay much like a homeowner pays for utilities, e.g., by CPU-hours or megabytes consumed

Processor Orders to date

  • 439 total orders completed, with a $31.5M annualized value

  • Average delivery timeline of 11 days

    • 14 days for mainframe; 10 for server

    • 113 orders took less than 5 days

    • 208 orders took between 5 – 14 days

Storage Orders to date

  • 157 Total ESS Orders Completed, with a $9.6M Annualized Value

  • Average Delivery Timeline of 14 Days

    • 7 Days for Disk

    • 11 Days for Network Ports

    • 24 Days for Tape Slot Capacity

Speed, Agility, Utility Pricing, Reduced Overhead & Technology Currency


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Virtualization & Tech Refresh

One Customer Infrastructure

FY09

FY08

Reduced Footprint

BEFORE

AFTER

Annual Sustainment: $25.9 M

Annual Sustainment: $14.3 M

  • Increased server utilization

  • Significant savings

  • Faster provisioning

Virtualized Is Not In Itself A “Cloud”

45 % savings


Rapid access computing environment

Rapid Access Computing Environment

Agile and responsive computing

Authorized customers order and gain access to a Server in less than 24 hours

Provides flexible development

platform for Web, application or database

Windows, Red Hat, SUSE Servers in less than 30 minutes

MIPR or government credit card

User Self-service


Facility analysis

Facility Analysis

  • Building site

  • Building controls

  • Electrical systems

  • Exterior structure

  • Operations & maintenance service management

  • Fire protection systems

  • Security system

  • HVAC systems & plumbing

  • Interior structures

  • Much, much more……

Comprehensive & Routine Facility Analysis Ensures “Cloud” Readiness


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Software Services:Bridging Developers and Operations


Net centric enterprise services

Net-Centric Enterprise Services

Metadata

Registry

User Access

Collaboration

Service

Discovery

Metadata

Discovery

People

Discovery

Web-based

Joint access to NCES using Defense Knowledge Online

Locate specific information for people

Real-time voice, text, video, application sessions

Ability to discover, develop & reuse services

Ability to discover, develop & reuse data semantics

Service

Security

Content

Discovery

NCES

Ability to operate in a secure environment

Access to data; improved content awareness

Content

Delivery

Enterprise

Service

Management

Messaging

Mediation

Real-time updates & alert notifications as data change

Exchange data

with unanticipated

users & formats

Improved responsiveness & bandwidth usage

Monitors services availability & reliability


Software as a service saas

Software as a Service (SaaS)

Challenge

SaaS Provider(s)

  • Manage software on “usage” basis

  • Established negotiated prices

  • Include future versions/releases

  • Provide maintenance and patches

  • Large number of software vendors

  • 3M+ user baseline, continually changing and growing

  • Dynamic processing requirements

  • Software acquisition lead time

  • Outyear capital projection for technology infusion

Value Add

  • Ability to rapidly change/grow baseline

  • Allows technology infusion on timely basis

  • No outyear capital projections required

  • Partnership with vendor(s)


Forge mil

Forge.mil

  • Collaborative environment supporting the development and sharing of open source and community source software within the DoD

  • Limited Operation Availability: January 23, 2009

  • General Availability: March 27, 2009

  • Common evaluation criteria and an agile certification process to accelerate the certification of reusable, net-centric solutions

  • Limited Operational Availability: June 20, 2009

  • On demand application development and lifecycle management tools provided buy DISA CSD on a fee-for-service bases for private project or program use

  • Availability: TBD

Bridging Developers & Operations – Fosters The Cloud


Henry j sienkiewicz technical program director center for computing services 27 february 2009

Processes


Information technology infrastructure library

Information Technology Infrastructure Library

Continual Process Improvement

  • A customizable framework of best practices designed to promote quality computing services in the information technology (IT) sector.

  • A systematic approach to the provisioning and management of IT services, from inception through design, implementation, operation and continual improvement.

  • Computing Services is a DoD leader in educating its professional staff in information technology ‘best practices’:

    • Almost 100% of staff educated at the Foundation Level of ITIL concepts

    • 100% Customer Management Executives (CMEs) are certified ITIL Practitioners in Service Level Management

    • Over 100 GS-12 through GS-15s are Practitioners in Incident/Problem Management

    • Approximately 50 key personnel are Practitioners in Change/Release/Configuration Management

Service

Strategy

ContinualProcess Improvement

Providing The Community With A Common Language & Processes


Computing service provider csp overview

Computing Service Provider (CSP) Overview

  • A tactical tool that allows DISA to extend enhanced operational capabilities (NetOps) to non-DECC computing center environments. Two primary components:

    • Facility capability assessment

    • Integration of tools and processes to enable NetOps Capabilities

  • Applies a structured methodology to enable service management that ensures

    • Support for centralized visibility into the operation of key systems and services consistent with NetOps operational construct

    • Compliance and risk management under DISA’s IA program

    • Compliance with DoD requirements for computing infrastructure and operations processes appropriate to MAC Level

  • CSP is not a periodic audit/checklist

    • Requires specific process and technical changes to enable NetOps

    • Sustainment requires long-term coordination between DISA, system owner, system operator

Data Center Operations “Best Practices”


Certification accreditation

Certification & Accreditation

  • Various C&A approaches

    • “Traditional” Defense Information Technology Security Certification and Accreditation Process (DITSCAP)

    • Department of Defense Information Assurance Certification and Accreditation Process (DIACAP) DIACAP

    • Emerging Models

      • Landlord/Tenant

      • Application Security Evaluation (ASE)

  • Appropriate approach based on risk identification and mitigation

Ensuring Security Is Part Of Creating A “Cloud”


Security technical implementation guide stig

Security Technical Implementation Guide (STIG)

  • Goals:

    • Intrusion Avoidance

    • Intrusion Detections

    • Response and Recovery

  • Focus Areas:

    • Network/Perimeter

    • Peripherals

    • Operating Systems

    • Users

Standardized Procedures Critical To Enterprise-wide Security


Greening decc infrastructure

“Greening” DECC Infrastructure

  • Increasing energy costs

  • Increased cooling requirements to support more compact implementations

  • Increased regulatory environment

  • Consolidation

  • Virtualization

  • Duct cooling

  • Variable frequency drives

  • Motion sensor lighting

  • Water reclamation

Challenge

Initiatives

“Greening” Is Part Of Good Stewardship


Clouds complexity with a promise of1

Infrastructure

Consolidation

Global Information Grid

Capacity Services

Virtualization

Rapid Provisioning

Facility Analysis

User:

Builds a web application,

Using a standard platform

Using a standard database

Upload this application to a cloud provider

Only pays for what s/he uses when s/he  needs it. 

Everything else is an implementation detail.

Cloud provider automatically

Provisions the services

Scales the application and the database together

Clouds Complexity With A Promise Of ….

A Simple Idea

Clear Tenets

  • Application Flexibility

    • Standardized

    • Increasing “click to run” services

    • Live in remote Internet data centers

    • Scalable to millions

  • Procurement

    • Efficient

    • Rapid

    • Commoditized

    • “Pay by the sip”

  • Security

    • Simplified

    • Streamlined

Multi-faceted Enablement

  • Software

    • Network-centric Services

    • Software-as-a-Service (Saas)

    • Forge.mil

  • Processes

    • ITIL

    • Security (Certification & Accreditation)

    • Computer Service Provider (CSP)

    • “Greening”

It’s A Journey


  • Login