• Created by Unknown User (szegedi), last modified on Oct 02, 2012

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 10 Next »

The following preliminary service scenarios are envisioned:

  • Hosted Service Scenarios
    • A) One cloud broker instance is hosted at a central location (e.g., TERENA offices), metadata is stored at the same place (i.e. inside the broker), storage data is stored in the public cloud contracted by TERENA - This is the scenario of the current pilot installation!
    • B) One cloud broker instance is hosted at a central location (e.g., TERENA offices), metadata is stored at the same place (i.e. inside the broker), storage data is either stored in the public cloud or in the data storage facilities provided by NRENs participating in the pilot coordinated by TERENA.
  • Brokered Service Scenarios
    • A) Several cloud broker instances are hosted by NRENs or end-sites, metadata is stored locally (i.e. inside the distributed brokers), storage data is stored in the public cloud that is brokered to NRENs by TERENA.
    • B) Several cloud broker instances are hosted by NRENs or end-sites, metadata is stored locally (i.e. inside the distributed brokers), storage data is stored in the mix of public cloud and data storage facility of NRENs brokered and coordinated by TERENA.

Other potential scenarios may come up...

Service Delivery Models and Trust Relationships

Trust Relationship ModelUniversity - End-userNREN - End-user

TERENA Trust

(home-for-homeless)

No Trust

(out of scope for Trusted Cloud Drive)

Global Cloud Storage ProviderCloud storage (opt.)Cloud storage (opt.)

Cloud storage (opt.) OR

NREN storage infrastructure (opt.)

Cloud Storage Provider
TERENAAdmin/clearing (opt.)Admin/clearing (opt.)

Admin/clearing &

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

 <outsourcing agreement> (opt.)

  • Trust delegated to Cloud Provider
NREN

Storage infrastructure

  • Raw storage capacity
  • Store encrypted data blob only
  • No personal information leaked

Storage infrastructure &

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

<outsourcing agreement>

  • Trust delegated to TERENA
  • Match federations with storage infrastructures

 <outsourcing agreement> (opt.)

  • Trust delegated to Cloud Provider
University / Institute

Cloud Broker

  • Personal Data Controller
  • Encryption
  • Keys are stored here
  • Trusted relationship with end-users

<outsourcing agreement>

  • Trust delegated to NREN

<outsourcing agreement>

  • Trust delegated to NREN

 <outsourcing agreement>

  • Trust delegated to Cloud Provider
End-user<no client needed><no client needed><no client needed>

DAV client with local key store

  • Encryption
  • Keys are stored here
  • No labels