Child pages
  • Service Delivery Scenarios

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Trust Relationship Model

No Trust

(out of scope for TCD)

University Trust

(TERENA Franchise)

NREN Trust

(Brokered SS A and B)

TERENA Trust

 (Hosted SS A and B)

Provider Trust

(out of scope for TCD)

Global Cloud Storage Provider

Cloud Storage Provider

  • No trust relationship with end-user
  • Ensure that no personal data is handled by the provider
  • Maintain client apps
Cloud storage (opt.)Cloud storage (opt.)

Cloud storage (opt.) OR

NREN storage infrastructure (opt.)

Cloud Storage Provider

  • Trusted relationship with end-users
  • Keys are stored here.
  • Maintain client apps
TERENA

 <outsourcing agreement> (opt.)

  • No trust delegation
Admin/clearing (opt.)Admin/clearing (opt.)

Admin/clearing &

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

 <outsourcing agreement> (opt.)

  • Trust delegated to Cloud Provider
NREN / Data centre

 <outsourcing agreement> (opt.)

  • No trust delegation

Storage infrastructure

  • Raw storage capacity
  • Store encrypted data blob only
  • No personal information leaked

Storage infrastructure &

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

<outsourcing agreement>

  • Trust delegated to TERENA
  • Match federations with storage infrastructures (opt.)

 <outsourcing agreement> (opt.)

  • Trust delegated to Cloud Provider
University / Institute

<outsourcing agreement> (opt.)

  • No trust delegation

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

<outsourcing agreement>

  • Trust delegated to NREN

<outsourcing agreement>

  • Trust delegated to NREN

 <outsourcing agreement>

  • Trust delegated to Cloud Provider
End-user

Specific client application is needed

  • End-to-end encryption
  • Keys are stored/handled here
<no client needed><no client needed><no client needed>Client might be needed for some features
POTENTIAL USE CASES

Commercial solutions are available such as:

  • SpiderOak
  • etc...

NRENs to follow this model:

  • BELNET
  • NIIF

NRENs to follow this model:

  • Scre/CARNet
  • PSNC
  • CESNET

Home for Homeless - TBC

  • TERENA

Commercial solutions are available such as:

  • DropBox
  • Box.net
  • PowerFolder
  • etc...

TERENA Storage Franchise idea

...