Cloud computing

Hybrid Cloud Considerations for Big Data and Analytics is a companion guide to the CSCC's Cloud Customer Architecture for Big Data and Analytics.
 
Today, the majority of big data and analytics use cases are running on hybrid cloud computing infrastructure. A hybrid cloud is a combination of on-premises and local cloud resources integrated with one or more dedicated cloud(s) and one or more public cloud(s), allowing for increased scalability and computational power for big data and analytics capabilities.
 
This whitepaper summarizes what hybrid cloud is, explains why it is important in the context of big data and analytics, and discusses implementation considerations

Blockchain technology has the potential to have a major impact on how institutions process transactions and conduct business.
 
Blockchain technology provides a secure transaction ledger database through a decentralized network. It has the potential to reduce operational costs and friction, create transaction records that are secure and immutable, enable transparent ledgers with nearly instant updates, and open up new opportunities for growth.
 
This whitepaper introduces basic blockchain concepts that define a standard reference architecture that can be used in creating blockchain applications.
 
Sections of the paper include:

• Blockchain fundamentals
• Key characteristics of a blockchain network
• Blockchain reference architecture capabilities
• An example supply chain scenario using the Hyperledger Fabric blockchain implementation
• Cloud deployment considerations
• Specific examples of blockchain applications

The mission of the Distributed Tracing is to define standards for interoperability between tracing tools.
Modern cloud-native applications are highly distributed and often span multiple technology and vendor boundaries. The complexity of these applications requires a detailed understanding of how individual requests are executed. This is referred to as "tracing".
Tracing tools for collecting this information have been available for quite some time. However, these tools have not been built with interoperability in mind. This leaves the developer with a number of challenges in getting an end-to-end trace of complex transactions:

• Traces are often broken, because trace context information is lost in a contributing tier or the trace is restarted
• Vendors cannot pass proprietary information across tiers instrumented with a different implementation and therefore lose relevant information (e.g. step count, server information, ...)
• End users don't have the ability to create complete end-to-end traces of application transactions which are monitored by different tools, as there is no defined data format and semantics for trace data

The scope of this working group is the definition of data formats and headers enabling the propagation and correlation of tracing data across different implementations.

The Practical Guide to Hybrid Cloud Computing was written to help enterprise information technology (IT) managers, business decision makers, application architects and application developers understand the hybrid cloud computing deployment model and how it can be used to solve business challenges rapidly and cost effectively.
 
Hybrid cloud enables cloud service customers to leverage the wide ranging capabilities of public cloud service providers while using private cloud deployment for more sensitive applications and data.
 
This guide details strategic and tactical activities for decision makers - covering all the essential technical considerations for hybrid cloud deployment including integration, connectivity, governance, management, security and privacy.

ISO/IEC 18384-3 defines a formal ontology for service-oriented architecture (SOA), an architectural style that supports service orientation. The terms defined in this ontology are key terms from the vocabulary in ISO/IEC 18384-1.

ISO/IEC 19086-1 seeks to establish a set of common cloud SLA building blocks (concepts, terms, definitions, contexts) that can be used to create cloud Service Level Agreements (SLAs).
This document specifies
a) an overview of cloud SLAs,
b) identification of the relationship between the cloud service agreement and the cloud SLA,
c) concepts that can be used to build cloud SLAs, and
d) terms commonly used in cloud SLAs.
ISO/IEC 19086-1 is for the benefit and use of both cloud service providers and cloud service customers. The aim is to avoid confusion and facilitate a common understanding between cloud service providers and cloud service customers. Cloud service agreements and their associated cloud SLAs vary between cloud service providers, and in some cases different cloud service customers can negotiate different contract terms with the same cloud service provider for the same cloud service. This document aims to assist cloud service customers when they compare cloud services from different cloud service providers.
ISO/IEC 19086-1 does not provide a standard structure that can be used for a cloud SLA or a standard set of cloud service level objectives (SLOs) and cloud service qualitative objectives (SQOs) that will apply to all cloud services or all cloud service providers. This approach provides flexibility for cloud service providers in tailoring their cloud SLAs to the particular characteristics of the offered cloud services.
ISO/IEC 19086-1 does not supersede any legal requirement

This document establishes common terminology, defines a model for specifying metrics for cloud SLAs, and includes applications of the model with examples. This document establishes a common terminology and approach for specifying metrics.
This document is for the benefit of and use for both cloud service providers (CSPs) and cloud service customers (CSCs). This document is intended to complement ISO/IEC 19086-1, ISO/IEC 19086-3 and ISO/IEC 19086-4.
This document does not mandate the use of a specific set of metrics for cloud SLAs

ISO/IEC 19086-3 specifies the core conformance requirements for service level agreements (SLAs) for cloud services based on ISO/IEC 19086‑1 and guidance on the core conformance requirements. This document is for the benefit of and use by both cloud service providers and cloud service customers.
ISO/IEC 19086-3 does not provide a standard structure that would be used for cloud SLAs.
 
The standard can be bought here: https://www.iso.org/standard/67547.html
The informative sections of this standard are publicly available here: https://www.iso.org/obp/ui/#iso:std:iso-iec:19086:-3:ed-1:v1:en

ISO/IEC 19941 specifies cloud computing interoperability and portability types, the relationship and interactions between these two cross-cutting aspects of cloud computing and common terminology and concepts used to discuss interoperability and portability, particularly relating to cloud services.
ISO/IEC 19941 is related to other standards, namely, ISO/IEC 17788, ISO/IEC 17789, ISO/IEC 19086‑1, ISO/IEC 19944, and in particular, references the cross-cutting aspects and components identified in ISO/IEC 17788 and ISO/IEC 17789 respectively.
The goal of this document is to ensure that all parties involved in cloud computing, particularly CSCs, CSPs and cloud service partners (CSNs) acting as cloud service developers, have a common understanding of interoperability and portability for their specific needs. This common understanding helps to achieve interoperability and portability in cloud computing by establishing common terminology and concepts.

ISO/IEC 19944
- extends the existing cloud computing vocabulary and reference architecture in ISO/IEC 17788 and ISO/IEC 17789 to describe an ecosystem involving devices using cloud services,
- describes the various types of data flowing within the devices and cloud computing ecosystem,
- describes the impact of connected devices on the data that flow within the cloud computing ecosystem,
- describes flows of data between cloud services, cloud service customers and cloud service users,
- provides foundational concepts, including a data taxonomy, and
- identifies the categories of data that flow across the cloud service customer devices and cloud services.
ISO/IEC 19944 is applicable primarily to cloud service providers, cloud service customers and cloud service users, but also to any person or organization involved in legal, policy, technical or other implications of data flows between devices and cloud services.

This document provides guidance on the use of international standards as a tool in the development of those policies that govern or regulate cloud service providers (CSPs) and cloud services, and those policies and practices that govern the use of cloud services in organisations.
This includes material that explains cloud computing concepts and the role of cloud computing international standards in formulating policies and practices.
The document makes references to various international standards. Where possible, these standards are ISO/IEC standards. Where a suitable ISO/IEC standard is not available, references are made to documents published by other WTO-registered standards bodies.
As explained in the WTO Agreement on Technical Barriers to Trade (TBT), standards play a vital role in supporting technical regulations and conformity assessment, however this document does not cover matters of trade.

This document describes a framework of trust for the processing of multi-sourced data that includes data use obligations and controls, data provenance, chain of custody, security and immutable proof of compliance as elements of the framework.
 
The standard can be bought here: https://www.iso.org/standard/74844.html
The informative sections of the standard are publicly available here: https://www.iso.org/obp/ui/#iso:std:iso-iec:tr:23186:ed-1:v1:en