NIST Cloud Computing Program
Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five essential characteristics (On-demand self-service, Broad network access, Resource pooling, Rapid elasticity, Measured Service); three service models (Cloud Software as a Service (SaaS), Cloud Platform as a Service (PaaS), Cloud Infrastructure as a Service (IaaS)); and, four deployment models (Private cloud, Community cloud, Public cloud, Hybrid cloud). Key enabling technologies include: (1) fast wide-area networks, (2) powerful, inexpensive server computers, and (3) high-performance virtualization for commodity hardware.
The Cloud Computing model offers the promise of massive cost savings combined with increased IT agility. It is considered critical that government and industry begin adoption of this technology in response to difficult economic constraints. However, cloud computing technology challenges many traditional approaches to datacenter and enterprise application design and management. Cloud computing is currently being used; however, security, interoperability, and portability are cited as major barriers to broader adoption.
The long term goal is to provide thought leadership and guidance around the cloud computing paradigm to catalyze its use within industry and government. NIST aims to shorten the adoption cycle, which will enable near-term cost savings and increased ability to quickly create and deploy enterprise applications. NIST aims to foster cloud computing systems and practices that support interoperability, portability, and security requirements that are appropriate and achievable for important usage scenarios.
Written comments on both volumes of the SP 500-293 may be sent to: Robert Bohn, National Institute of Standards and Technology, 100 Bureau Dr., Stop 2000, Gaithersburg, MD 20899-2000. Electronic comments may be sent to:
Comments on the first draft of Special Publication 500-293 must be received on or before 5 p.m. Eastern time on December 2, 2011. You are encouraged to use this comment template
to submit your comments.
Further details for the Request for Comments can be found in Federal Register Notice, Docket Number 111027658-1659-01.
Volume III was initiated in parallel, but is logically dependent on the technical work contained in Volume II, and will necessarily be completed and presented as part of the roadmap special publication in a subsequent release.
The comment period for the Volumes I and II of the Roadmap (NIST SP 500-293) has closed. All comments are currently undergoing review and disposition. Current draft versions are located at: http://collaborate.nist.gov/twiki-cloud-computing/bin/view/CloudComputing/Documents
The comment period on the draft NIST Cloud Computing Security Reference Architecture (NIST SP 500-299) is now open. Comment period closes on July 12, 2013, EOB. Please follow this link to the Security section of our Cloud Computing twiki for further details.