DIN ISO IEC 17788-2016 Information technology - Cloud computing - Overview and vocabulary (ISO IEC 17788 2014)《信息技术 云计算 综述和词汇 (ISO IEC 17788-2014)》.pdf

1、April 2016 English price group 12No part of this translation may be reproduced without prior permission ofDIN Deutsches Institut fr Normung e. V., Berlin. Beuth Verlag GmbH, 10772 Berlin, Germany,has the exclusive right of sale for German Standards (DIN-Normen).ICS 01.040.35; 35.240.99!%Q,“2469709ww

2、w.din.deDIN ISO/IEC 17788Information technology Cloud computing Overview and vocabulary (ISO/IEC 17788:2014),English translation of DIN ISO/IEC 17788:2016-04Informationstechnik Cloud Computing bersicht und Vokabular (ISO/IEC 17788:2014),Englische bersetzung von DIN ISO/IEC 17788:2016-04Technologies

3、de linformation Informatique en nuage Vue densemble et vocabulaire (ISO/IEC 17788:2014),Traduction anglaise de DIN ISO/IEC 17788:2016-04www.beuth.deDocument comprises 14 pagesDTranslation by DIN-Sprachendienst.In case of doubt, the German-language original shall be considered authoritative.04.16 A c

4、omma is used as the decimal marker. Contents Page 1 Scope 5 2 Normative references . 5 2.1 Identical Recommendations | International Standards 5 2.2 Paired Recommendations | International Standards 5 2.3 Additional references 5 3 Definitions 5 3.1 Terms defined elsewhere . 5 3.2 Terms defined in thi

5、s Recommendation | International Standard 6 4 Abbreviations . 8 5 Conventions 8 6 Cloud computing overview 8 6.1 General 8 6.2 Key characteristics 8 6.3 Cloud computing roles and activities 9 6.4 Cloud capabilities types and cloud service categories . 10 6.5 Cloud deployment models . 10 6.6 Cloud co

6、mputing cross cutting aspects . 11Annex A Cloud service categories 13Bibliography 14 DIN ISO/IEC 17788:2016-042National foreword 3 National Annex NA (informative) Bibliography . 4 National foreword This document (ISO/IEC 17788:2014) has been prepared by Joint Technical Committee ISO/IEC JTC 1 “Infor

7、mation technology”, Subcommittee SC 38 “Distributed application platforms and services”, in collaboration with ITU-T. The responsible German body involved in its preparation was DIN-Normenausschuss Informationstechnik und Anwendungen (DIN Standards Committee Information Technology and selected IT Ap

8、plications), Working Committee NA 043-01-38 AA Verteilte Anwendungsplatt-formen und Dienste. This standard provides an overview of cloud computing along with a set of terms and definitions. Attention is drawn to the possibility that some elements of this document may be the subject of patent rights.

9、 DIN shall not be held responsible for identifying any or all such patent rights. DIN ISO/IEC 17788:2016-043 National Annex NA (informative) Bibliography DIN ISO/IEC 27000, Information technology Security techniques Information security management systems Overview and vocabulary DIN ISO/IEC 17788:20

10、16-044 Information technology Cloud computing Overview and vocabulary 1 Scope This Recommendation | International Standard provides an overview of cloud computing along with a set of terms and definitions. It is a terminology foundation for cloud computing standards. This Recommendation | Internatio

11、nal Standard is applicable to all types of organizations (e.g., commercial enterprises, government agencies, not-for-profit organizations). 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in this text, constitute provisions

12、 of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All Recommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged to investigate the possibility of

13、 applying the most recent edition of the Recommendations and Standards listed below. Members of IEC and ISO maintain registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Identical

14、Recommendations | International Standards None. 2.2 Paired Recommendations | International Standards None. 2.3 Additional references None. 3 Definitions 3.1 Terms defined elsewhere This Recommendation | International Standard uses the following terms defined elsewhere. The following terms are define

15、d in ISO/IEC 27000: 3.1.1 availability: Property of being accessible and usable upon demand by an authorized entity. 3.1.2 confidentiality: Property that information is not made available or disclosed to unauthorized individuals, entities, or processes 3.1.3 information security: Preservation of con

16、fidentiality (3.1.2), integrity (3.1.4) and availability (3.1.1) of information. NOTE In addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved. 3.1.4 integrity: Property of accuracy and completeness. The following term is defined in R

17、ec. ITU-T Y.101: 3.1.5 interoperability: The ability of two or more systems or applications to exchange information and to mutually use the information that has been exchanged. The following term is defined in ISO/IEC 27729: 3.1.6 party: Natural person or legal person, whether or not incorporated, o

18、r a group of either. DIN ISO/IEC 17788:2016-045 The following term is defined in ISO/IEC 20000-1: 3.1.7 service level agreement (SLA): Documented agreement between the service provider and customer that identifies services and service targets. NOTE 1 A service level agreement can also be established

19、 between the service provider and a supplier, an internal group or a customer acting as a supplier. NOTE 2 A service level agreement can be included in a contract or another type of documented agreement. 3.2 Terms defined in this Recommendation | International Standard For the purposes of this Recom

20、mendation | International Standard, the following definitions apply: 3.2.1 application capabilities type: Cloud capabilities type (3.2.4) in which the cloud service customer (3.2.11) can use the cloud service providers (3.2.15) applications. 3.2.2 cloud application portability: Ability to migrate an

21、 application from one cloud service (3.2.8) to another cloud service (3.2.8). 3.2.3 cloud auditor: Cloud service partner (3.2.14) with the responsibility to conduct an audit of the provision and use of cloud services (3.2.8). 3.2.4 cloud capabilities type: Classification of the functionality provide

22、d by a cloud service (3.2.8) to the cloud service customer (3.2.11), based on resources used. NOTE The cloud capabilities types are application capabilities type (3.2.1), infrastructure capabilities type (3.2.25) and platform capabilities type (3.2.31). 3.2.5 cloud computing: Paradigm for enabling n

23、etwork access to a scalable and elastic pool of shareable physical or virtual resources with self-service provisioning and administration on-demand. NOTE Examples of resources include servers, operating systems, networks, software, applications, and storage equipment. 3.2.6 cloud data portability: D

24、ata portability (3.2.21) from one cloud service (3.2.8) to another cloud service (3.2.8). 3.2.7 cloud deployment model: Way in which cloud computing (3.2.5) can be organized based on the control and sharing of physical or virtual resources. NOTE The cloud deployment models include community cloud (3

25、.2.19), hybrid cloud (3.2.23), private cloud (3.2.32) and public cloud (3.2.33). 3.2.8 cloud service: One or more capabilities offered via cloud computing (3.2.5) invoked using a defined interface. 3.2.9 cloud service broker: Cloud service partner (3.2.14) that negotiates relationships between cloud

26、 service customers (3.2.11) and cloud service providers (3.2.15). 3.2.10 cloud service category: Group of cloud services (3.2.8) that possess some common set of qualities. NOTE A cloud service category can include capabilities from one or more cloud capabilities types (3.2.4). 3.2.11 cloud service c

27、ustomer: Party (3.1.6) which is in a business relationship for the purpose of using cloud services (3.2.8). NOTE A business relationship does not necessarily imply financial agreements. 3.2.12 cloud service customer data: Class of data objects under the control, by legal or other reasons, of the clo

28、ud service customer (3.2.11) that were input to the cloud service (3.2.8), or resulted from exercising the capabilities of the cloud service (3.2.8) by or on behalf of the cloud service customer (3.2.11) via the published interface of the cloud service (3.2.8). NOTE 1 An example of legal controls is

29、 copyright. NOTE 2 It may be that the cloud service (3.2.8) contains or operates on data that is not cloud service customer data; this might be data made available by the cloud service providers (3.2.15), or obtained from another source, or it might be publicly available data. However, any output da

30、ta produced by the actions of the cloud service customer (3.2.11) using the capabilities of the cloud service (3.2.8) on this data is likely to be cloud service customer data (3.2.12), following the general principles of copyright, unless there are specific provisions in the cloud service (3.2.8) ag

31、reement to the contrary. 3.2.13 cloud service derived data: Class of data objects under cloud service provider (3.2.15) control that are derived as a result of interaction with the cloud service (3.2.8) by the cloud service customer (3.2.11). NOTE Cloud service derived data includes log data contain

32、ing records of who used the service, at what times, which functions, types of data involved and so on. It can also include information about the numbers of authorized users and their identities. It can also include any configuration or customization data, where the cloud service (3.2.8) has such con

33、figuration and customization capabilities. DIN ISO/IEC 17788:2016-046 3.2.14 cloud service partner: Party (3.1.6) which is engaged in support of, or auxiliary to, activities of either the cloud service provider (3.2.15) or the cloud service customer (3.2.11), or both. 3.2.15 cloud service provider:

34、Party (3.1.6) which makes cloud services (3.2.8) available. 3.2.16 cloud service provider data: Class of data objects, specific to the operation of the cloud service (3.2.8), under the control of the cloud service provider (3.2.15). NOTE Cloud service provider data includes but is not limited to res

35、ource configuration and utilization information, cloud service (3.2.8) specific virtual machine, storage and network resource allocations, overall data centre configuration and utilization, physical and virtual resource failure rates, operational costs and so on. 3.2.17 cloud service user: Natural p

36、erson, or entity acting on their behalf, associated with a cloud service customer (3.2.11) that uses cloud services (3.2.8). NOTE Examples of such entities include devices and applications. 3.2.18 Communications as a Service (CaaS): Cloud service category (3.2.10) in which the capability provided to

37、 the cloud service customer (3.2.11) is real time interaction and collaboration. NOTE CaaS can provide both application capabilities type (3.2.1) and platform capabilities type (3.2.31). 3.2.19 community cloud: Cloud deployment model (3.2.7) where cloud services (3.2.8) exclusively support and are s

38、hared by a specific collection of cloud service customers (3.2.11) who have shared requirements and a relationship with one another, and where resources are controlled by at least one member of this collection. 3.2.20 Compute as a Service (CompaaS): Cloud service category (3.2.10) in which the capab

39、ilities provided to the cloud service customer (3.2.11) are the provision and use of processing resources needed to deploy and run software. NOTE To run some software, capabilities other than processing resources may be needed. 3.2.21 data portability: Ability to easily transfer data from one system

40、 to another without being required to re-enter data. NOTE It is the ease of moving the data that is the essence here. This might be achieved by the source system supplying the data in exactly the format that is accepted by the target system. But even if the formats do not match, the transformation b

41、etween them may be simple and straightforward to achieve with commonly available tools. On the other hand, a process of printing out the data and rekeying it for the target system could not be described as “easy“. 3.2.22 Data Storage as a Service (DSaaS): Cloud service category (3.2.10) in which the

42、 capability provided to the cloud service customer (3.2.11) is the provision and use of data storage and related capabilities. NOTE DSaaS can provide any of the three cloud capabilities types (3.2.4). 3.2.23 hybrid cloud: Cloud deployment model (3.2.7) using at least two different cloud deployment m

43、odels (3.2.7). 3.2.24 Infrastructure as a Service (IaaS): Cloud service category (3.2.10) in which the cloud capabilities type (3.2.4) provided to the cloud service customer (3.2.11) is an infrastructure capabilities type (3.2.25). NOTE The cloud service customer (3.2.11) does not manage or control

44、the underlying physical and virtual resources, but does have control over operating systems, storage, and deployed applications that use the physical and virtual resources. The cloud service customer (3.2.11) may also have limited ability to control certain networking components (e.g., host firewall

45、s). 3.2.25 infrastructure capabilities type: Cloud capabilities type (3.2.4) in which the cloud service customer (3.2.11) can provision and use processing, storage or networking resources. 3.2.26 measured service: Metered delivery of cloud services (3.2.8) such that usage can be monitored, controlle

46、d, reported and billed. 3.2.27 multi-tenancy: Allocation of physical or virtual resources such that multiple tenants (3.2.37) and their computations and data are isolated from and inaccessible to one another. 3.2.28 Network as a Service (NaaS): Cloud service category (3.2.10) in which the capability

47、 provided to the cloud service customer (3.2.11) is transport connectivity and related network capabilities. NOTE NaaS can provide any of the three cloud capabilities types (3.2.4). 3.2.29 on-demand self-service: Feature where a cloud service customer (3.2.11) can provision computing capabilities, a

48、s needed, automatically or with minimal interaction with the cloud service provider (3.2.15). 3.2.30 Platform as a Service (PaaS): Cloud service category (3.2.10) in which the cloud capabilities type (3.2.4) provided to the cloud service customer (3.2.11) is a platform capabilities type (3.2.31). DIN ISO/IEC 17788:2016-047 3.2.31 platform capabi