U.S., Chinese, EU firms push cloud standards
Open Data Center Alliance, with 280 members, claims to represent $100 billion in IT spending power
Computerworld - A group of U.S. and overseas companies, including some major Chinese firms, are betting that they can encourage cloud providers to adopt common standards for managing security, operating routine processes and describing their services.
Whether cloud vendors adopt the Open Data Center Alliance standards released Tuesday remains to be seen.
But the 280 members of this alliance have a big -- and growing -- stick. The group claims that its members have $100 billion in annual IT spending power, and will spend part of it with cloud vendors that pay attention to the their work.
Open Data Center Alliance members include BMW, USB, Deutsche Bank, JPMorgan Chase, Marriott International, Shell, and Disney Internet Labs. Overseas companies with seats on the alliance's steering committee include China Life, a Beijing-based insurance company, and China Unicom, a government owned telecommunications company.
The alliance was formed last year to work on standards for cloud vendors that address many of the issues that, at the minimum, bug users, and at worst, keep them from adopting cloud technologies.
The first set of "usage models," released today, aims among other things to fix problems caused by the lack of an agreed upon method for creating and stopping virtual machines.
"How you start, stop, create, suspend a VM really shouldn't be a selling point for (cloud vendors)," said Andrew Feig, the executive director of financial services firm UBS's Technology Advisory Group and an alliance board member. "However, it does cause us a lot of pain to actually have to do that four different ways for four different vendors."
The six- to 10-page usage models are designed to give succinct guidance to cloud providers about security and operations. At the same time, the alliance is working with standards bodies to determine whether the usage models can provide a foundation for future standards.
"They shouldn't be ridiculously hard to implement; they should be very pragmatic and very straight forward to the provider," Feig said.
Security is a major focus for the alliance, and the usage models set four levels: Bronze, for basic security; silver, a level that reaches enterprise security requirements; gold, a security level that meets financial industry needs; and platinum, a military-level equivalent.
The security requirements aim to ensure that systems are "tamperproof," and protected, for instance, from spoofing. They also set rules to ensure dedicated capabilities around shared resources. The plan also includes rules for managing cryptographic keys, patches and software versions.
Requests for proposals from alliance members will require adherence to the usage models -- that's the carrot.
"Hopefully, it will get the industry moving a little quicker in this space," said Feig.
Other models set standard units of measure to make it easier to compare services.
If a customer is buying a server, for instance, the alliance standards offer clear definitions and metrics for comparing servers. "Things have been standardized," said Feig. Today, he noted, users are buying services whose descriptions "come out of left field for every provider."
Patrick Thibodeau covers SaaS and enterprise applications, outsourcing, government IT policies, data centers and IT workforce issues for Computerworld. Follow Patrick on Twitter at @DCgov, or subscribe to Patrick's RSS feed . His e-mail address is firstname.lastname@example.org.
- Cloud security concerns are overblown, experts say
- Cloud computing 2014: Moving to a zero-trust security model
- Amazon hiring 'top secret' IT staff as it fights for CIA work
- Empire state ends IT empire building
- No, your data isn't secure in the cloud
- Snowden revelations may cost U.S. cloud providers billions, says study
- DHS shifting to cloud, agile development to boost homeland security
- Cloud computing's big debt to NASA
- Coke bottler picks SaaS over SAP
- Inmate data paroled from mainframe
Read more about Cloud Computing in Computerworld's Cloud Computing Topic Center.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- ESG: The IBM FlashSystem 840: Technical Evolution to Deliver Business Value In this whitepaper, you will learn how this high-speed storage technology has tremendous potential to support I/O-intensive and/or latency-sensitive applications.
- Choosing an MDM Platform: Where to Start the Conversation If you're in the early stages of choosing an MDM solution, or you're considering switching vendors, here are seven critical questions to ask...
- Axeda Platform Technical Overview This paper summarizes the major features of an IoT platform and explains how they simplify and speed the process of developing and deploying...
- Stock Shock: The effect of project and portfolio management on share price In this independent report, you'll see the intrinsic connection between long-term capital investment and short term market performance -- and how this can...
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well...
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources... All Cloud Computing White Papers | Webcasts