Versions Compared

Old Version 14

changes.mady.by.user Unknown User (szegedi)

Saved on

compared with

New Version Current

changes.mady.by.user Unknown User (szegedi)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Hosted Service Scenarios
    • A) One cloud broker instance is hosted at a central location (e.g., TERENA offices), metadata is stored at the same place (i.e. inside the broker), storage data is stored in the public cloud contracted by TERENA - This is the scenario of the current pilot installation!
    • B) One cloud broker instance is hosted at a central location (e.g., TERENA offices), metadata is stored at the same place (i.e. inside the broker), storage data is either stored in the public cloud or in the data storage facilities provided by NRENs participating in the pilot coordinated by TERENA.
  • Brokered Service Scenarios
    • A) Several cloud broker instances are hosted by NRENs or end-sites, metadata is stored locally (i.e. inside the distributed brokers), storage data is stored in the public cloud that is brokered to NRENs by TERENA.
    • B) Several cloud broker instances are hosted by NRENs or end-sites, metadata is stored locally (i.e. inside the distributed brokers), storage data is stored in the mix of public cloud and data storage facility of NRENs brokered and coordinated by TERENA.

Image Modified

Other potential scenarios may come up...

Trust Relationship Models

...

POTENTIAL USE CASES
  • SpiderOak
    • Trust Relationship ModelUniversity - End-user

    No Trust

    (out of scope for TCD)

    University Trust

    (TERENA Franchise)

    NREN Trust

    NREN - End-user

    (Brokered SS A and B)


    TERENA Trust

     (Hosted SS A and B)

    Provider No Trust

    (out of scope for Trusted Cloud DriveTCD)

    Global Cloud Storage Provider

    Cloud Storage Provider

    • No trust relationship with end-user
    • Ensure that no personal data is handled by the provider
    • Maintain client apps
    		Cloud storage (opt.)Cloud storage (opt.)

    Cloud storage (opt.) OR

    NREN storage infrastructure (opt.)

    Cloud Storage Provider

    • Trusted relationship with end-users
    • Keys are stored here.
    • Maintain client apps
    TERENA

     <outsourcing agreement> (opt.)

    • No trust delegation
    		Admin/clearing (opt.)Admin/clearing (opt.)

    Admin/clearing &

    Cloud Broker

    • Personal Data Controller
    • Encryption
    • Keys are stored here
    • Trusted relationship with end-users

     <outsourcing agreement> (opt.)

    • Trust delegated to Cloud Provider
    NREN / Data centre

     <outsourcing agreement> (opt.)

    • No trust delegation

    Storage infrastructure

    • Raw storage capacity
    • Store encrypted data blob only
    • No personal information leaked

    Storage infrastructure &

    Cloud Broker

    • Personal Data Controller
    • Encryption
    • Keys are stored here
    • Trusted relationship with end-users

    <outsourcing agreement>

    • Trust delegated to TERENA
    • Match federations with storage infrastructures (opt.)

     <outsourcing agreement> (opt.)

    • Trust delegated to Cloud Provider
    University / Institute

    <outsourcing agreement> (opt.)

    • No trust delegation

    Cloud Broker

    • Personal Data Controller
    • Encryption
    • Keys are stored here
    • Trusted relationship with end-users

    <outsourcing agreement>

    • Trust delegated to NREN

    <outsourcing agreement>

    • Trust delegated to NREN

     <outsourcing agreement>

    • Trust delegated to Cloud Provider
    End-user

    Specific client application is needed

    • End-to-end encryption
    • Keys are stored/handled here
    		<no client needed><no client needed><no client needed>

    DAV client with local key store

    • Encryption
    • Keys are stored here
    		Client might be needed for some features
    POTENTIAL USE CASES

    Commercial solutions are available such as:

    • SpiderOak
    • etc...

    NRENs to follow this model:

    • BELNET
    • NIIF

    NRENs to follow this model:

    • Scre/CARNet
    • PSNC
    • CESNECESNET

    Home for Homeless - TBC

    • TERENA

    Commercial solutions are available such as:

    • DropBox
    • Box.net
    • PowerFolder
    • etc...

    TERENA Storage Franchise idea

    TERENA Trusted Cloud Drive API Store (for Universities/Institutes, not for End-users)

    This is just a concept!

    ...

    etc
    ProviderItemAUPSLAPrice
    TERENA

    Trusted Cloud Broker platform

    default plugins (S3, local FS)

    Download...

    		n/an/a

    free of charge

    NREN X

    Storage back-end API plugin

    Download...

    E.g., only national federation

    Agree (Yes/No)

    Availability, MTTR, etc.

     

    Service fee x

    Pay...

    NREN Y

    Storage back-end API plugin

    Download...

    E.g, only TERENA countries

    Agree (Yes/No)

    		Availability, MTTR, etc.

    Service fee x

    Pay...

    Commercial Z

    Storage back-end API plugin

    Download...

    E.g, only EU countries

    Agree (Yes/No)

    		Availability, MTTR, etc.

    Service fee z

    Pay...

    Commercial W

    Storage back-end API plugin

    Download...

    E.g, global

    Agree (Yes/No)

    		Availability, MTTR, etc.

    Service fee w

    Pay

    ...