TF-MSP, ready for service delivery - TERENA...2016/01/11 · Networks · Services · People By...

Networks·Services·Peoplewww.geant.org

TF-MSPBerlin,11January

Statusandnextsteps

Readyforcloudservicedelivery?

GN4-1,SA7AndresSteijaert


Whichservices are- available- incoming

ProgressonspecificcomponentsDeliveryapproachNetworkpeeringsTender

Progressinspecificserviceareas

HowwillNRENsdeliver theseservices(adoption)?

2

NRENcollaborationonservicedeliveryAgenda&topics

Networks·Services·Peoplewww.geant.org 3

INTRODUCTIONapproachandoverallstatus


Organisational, technicalandfinancial structures

inResearch andEducationinstitutions

oftendon'tmaponthewaycloudproviders

offer their services

GETINAssuredataishandledsafelyandmeetsEuropeanandnationalregulations

Acquireanduseservicesthroughtheinstitutions’structures:

• Affordableandpredictablecostandpurchasingmodels(preventbill shock)

• Limitnetworktrafficcostsandprovidenetworkintegration

• Loginwithinstitutionalaccount

GETOUTBeabletomovedata(toanotherprovider)

5

MeetinguserneedsCloudcollaborationareas

COLLABORATIONSUITES

REALTIMECOMMUNICATION

FILESTORAGEANDSYNC

INFRASTRUCTUREASA

SERVICE

6

SuppliersSeveral suppliers are explicitly mentioned by NRENs; that they either have an agreement with thisproviderorareinterestedinestablishinganagreement.Thevastmajorityisthelatter,NRENsseekinga(framework)contractwhichestablishestherightconditionsofuse.SuppliersnamedbymultipleNRENs:

- AmazonWebServices- BOX- GoogleApps- MicrosoftAzureandOffice365- OwnCloud

39

19 17

01020304050

InfrastructureasaService

File storageandbackup SoftwareasaService,collaborationservicesandvideoconferencing

MostpopularservicetypesNumberofNRENsworkingintheseareas

NRENsandcloudsGÉANTcompendium2015data(draft)fromNRENsinandoutside ofEurope

MostpopularprovidersasmentionedbyNRENs- AmazonWebServices- BOX- GoogleApps- MicrosoftAzureandOffice365- OwnCLoud

7

Servicedelivery

OUTSOURCEDCLOUDS

IN-HOUSECLOUDS

TheNRENsandGÉANT connect demandandsupplyProviderswithrightcapabilities - Bringchoice totheresearchandeducation

community

MAKE&BUY,COMMUNITYCLOUD&PUBLICCLOUD(commercial)OFFERINGSAddedvaluefromNRENs:TRUSTEDADVISORS,BROKERS,PROVIDERS

=RIGHTCONDITIONS FORCOMMUNITY

8

Involvedwithclouds69%

Notinvolvedwithclouds

31%

NRENcloudinvolvement

NRENsandcloudsGÉANTcompendium2015data(draft)fromNRENsinandoutside ofEurope

Hybrid approach13 NRENs have adopted a hybrid cloud strategy and areboth building and brokering clouds.

9

NRENscloudapproach,clustersofcompatibledataGÉANTcompendium2015data(draft)

build NRENs which (have plans to) offer cloud services not obtained through a vendor, are marked orange

broker NRENs which (have plans to) broker agreements with cloud service providers, are labeled blue

build and brokerNRENs which (plan to) do both, a hybrid approach are presented in purple


• NRENsdelivertoinstitutions.NRENsarethevisible‘brands’ intheirrespectivecountries.

• GÉANTsupports theNRENstobesuccessful,withanunderlyingdeliveryframework(buildingblocksfortheNRENstouse).

10

Ourcollaborativeapproach

11

Ourcollaborativeapproach

JointNRENefforts,toenableandfacilitatetheEuropeanResearchandEducationcommunitytouseonlineservicesonalargescale,withtherightconditions1. NRENsuse ‘onevoice’, GÉANT,towardsproviders(bothcommercialandfromcommuntity)

resultinginagreementsandconnectionstoourinfrastructure

2. forNRENstoadoptanddeliverlocally,3. toinstitutions, forconsumption

GÉANT INSTITUTEZ

INSTITUTEY1

2 3

NATIONALLEVELPAN-EUROPEANLEVEL


Cloudservicesstatus

ListedinCloudCatalogueStatingcapabilities

Educationaldiscount /preferentialpricing

Forusebelowtenderthresholds

FrameworkagreementsResultsofapan-Europeantender

/tendercompliant

16providerslisted

7

Cloud Suppliers in the Catalogue

CODE42

IaaStender,over30providersinterested.ReadyinJuly2016

OwnCloud availableDiscussionswithfilesync&shareproviders


USERNEEDSTERMS&CONDITIONS

BROKERAGE&PROCUREMENTCLOUDMANAGEMENT&BILLING

ADOPTION

FEDERATEDIDENTITYMANAGEMENT&SINGLESIGN-ON

NETWORKPEERINGS


NETWORKcloudpeerings


Byestablishingnetworkpeerings withcloudserviceproviders,GÉANTandtheNRENs:• deliverahighqualityserviceintermsofperformance,securityandend-to-endserviceassurance.

• makeitpossibletominimizeorremovethedatatransportrelatedcosts,whichcloudproviderscurrentlychargeourcommunity.Thesedataingressandegresschargesareabarriertotheadoption ofcloudservicesby institutions.Bydirectlypeering,nocommercialnetworkroutesneedtobeused,removingtheneedforproviderstochargetransportcosts.

TheGÉANTBoardapprovedthe launchoftheGÉANTcloudservicepeering‘opt in’trial.

15

Networkpeeringswithcloudproviders

Alreadyexistingcloudnetworkpeerings• ProvidersthatarepartofHelixNebula(CloudSigma, ATOS,Interoute,T-systems).• IaaSprovidersareconnectedinresponse toCERN’srecentIaaStender.

Upcomingnewpeering• PeerwithMicrosoft forAzureandOffice365.

Itisexpectedtherewillbemorerequestsforpeerings• AmazonWebServices(AWS).• OutcomesofSA7IaaStender.• ProviderslistedintheGÉANTCloudcatalogueareallcandidatesforfutureconnections toGÉANT:https://catalogue.clouds.geant.net/ .

• TheHNiSCiCloud project,ledbyCERNwithanumberofresearchlaboratoriesparticipating,willlaunchin2016andwillrequireconnectivity toevenmorecloudproviders.

• ItisexpectedthattheEC’sOpenScienceCloud initiativewillrequireconnections tocloudserviceproviders.

16

A- NRENscenarioCloudserviceproviderconnectstotheNRENinthecountryorcountriesitislocatedin.TheNREN(s)will takeresponsibility togiveotherNRENsaccesstothisprovider,viaGÉANT,via:

• IPtransittoGÉANT.• AL2/p2pcircuit connection toaGÉANTPoPorGÉANTOpenexchange.• AL2circuit toanopenexchangewhereanIPpeeringwithGÉANTcanbeestablished.

NRENrecoversfromthecloudserviceprovider,thecostsinvolvedinprovidingconnectivity toGÉANT.

B- GÉANTPoP scenarioCloudserviceprovidersconnectdirectly toaGÉANTPoPorGÉANTOpenexchangeinthefollowingcases:• WhentheToR oftheNRENdoesnotallowtransittoGÉANT,orwhentheNRENhasnomeansofrecoveringcostsfromtheprovider,theNRENcanagree tothisscenario.

• Atleast3NRENswhowillbeusingthecloudserviceprovider,explicitly requestadirectconnectiontoGÉANT.

Thecloudserviceproviderisresponsible fortheconnectivity tothemostsuitableGÉANTPoP.C- OpenExchangesCloudserviceprovidersconnectatanOpenExchange

TransitbetweencloudserviceprovidersviaGÉANTfortheir solebenefitwillnotbeallowed. 17

Peeringmodels

GÉANT

ContractualAgreementForcloud

networkpeering

Establishingtheconnection:contract

GÉANT

Institutes

Institutes

Institutes

Technicalimplementation

Establishingtheconnection:technicalimplementation

InstituteNREN

MicrosoftAzureorOffice365

NRENsuseExpressRouteManagementInterfacetoset-uptheconnections

Usingtheconnection:MicrosoftExpressRoutes

Secure,dedicatedprivateconnections: Layer2ormanagedLayer3.


IaaStender&communitycloud


IaaStenderLegalbasisforjointNRENprocurementactivity

ECProcurementDirective(2014/24/EU)NewDirective setsoutkeyprovisions;keytothesuccessoftheplannedGEANTIaaStenderandFrameworks:

• FrameworkAgreementuse• Cross-borderprocurements• CentralisedPurchasingBodies

MemberStateProcurementLegislationTobeimplementedbyMemberStatesnolaterthan18thApril16


IaaStenderTimeline

Tend

erissued

Fina

lBids

Contractsa

warde

d

Oct15

Nov15

Dec15

Jan16

Feb16

Mar16

Apr16

May16

Jun16

Marketengagement

http://services.geant.net/clouds/Activities/Pages/IaaS-delivery-and-adoption.aspx


PAN-EUROPEAN LEVELGÉANTrunsthetenderandestablishesframeworkagreementswithsuitableIaaSproviders.Thetenderdoesnothavea‘winnertakesall’approach,butinstead,involvesframeworkagreementswithallIaaSproviderswhoqualifyasaresultofthistender.ThiswillallowNRENsandtheirconnectedinstitutionstheflexibilitytochoosetheservicesthatbestfitNRENs’needsandtheneedsoftheirusers.NATIONAL LEVELNRENsadopttheframeworksandactinoneofthefollowingroles:

Referrer Reseller UnderwriterAn NREN will act asintermediary by makingthe FrameworkAgreements available in itsrespective country andfacilitating connectedinstitutions to buy fromProviders. (Direct deliverymodel)

Expanding the Referrerrole, an NREN is alsoinvolved in the contractingand billing of (some of) itsInstitutions’ service orders.

AnNRENmakespurchasesfromProviders(onbehalfofitsconnectedinstitutions)anddistributestheacquiredresourcesacrossitscommunity(institutionsandend-users).

InstitutionsconsumetheservicefacilitatedbytheirNREN,withouttheneedtorunatenderthemselves.DependingontheroleoftheirNREN(referrer,reseller,underwriter)aninstitutioncan,atitsdiscretion:

DirectlyprocureandusetheIaaSservicesfromtheProviders

ProcureandusetheIaaSservicesthroughitsNREN.

UsetheIaaSservicesmadeavailablethroughitsNREN

Runaminicompetitionamongstallcapableprovidersgrantedaframeworkagreement,inaccordancewiththeinstructionsintheframeworkagreement.

Commission /costrecoveryfeefortheNRENs


OneNRENconductstenderOtherNRENsarelisted(iftheywantto)andcanbenefit;adopt theoutcomes.

Firstcases• Jisc,softwareforsecuredocumentmanagementforboardmeetings• SURFnet,cloudmanagementportal

25

Othertenderopportunities


• ComputingandStorageIaaS• DevelopedbyGRNET,100%OpenSource

• CompatiblewithOpenStack• Aim:SimplicityandGettingThingsDone• Inproductionforseveralyears• AlsoadoptedoutsideGRNET inEurope,US,Asia,…• IntegratedwitheduGAIN

• Making~okeanos availabletoGN4project

http://okeanos.grnet.grandhttp://okeanos-global.grnet.gr

26

~okeanos


• MostpopularOpenSourcecloudsoftwareandAPI

• SeveralNRENsareinterested inofferingcloudservicesusingOpenStack

• Agrouphasbeensetuptoshareknowledgeandexperience

• OSO:OpenStack Operators• Mailing listandbi-weeklychats

http://www.openstack.org

27

OpenStack


FILESTORAGEterms&conditions,OwnCloud


• OpenSourcefilesyncandshareprovider• Popularchoiceforon-premisesonlinefilestorage• TERENAnegotiatedfavouredpricingformembers• SeveralNRENsincorporateownCloudintotheservicesofferedtotheirmembersandusers

• OpenCloudMesh:allowfilesharingbetweendifferentownCloud installations;to-date14organisationshavesigneduptoparticipate

• Federatedcloudsharingaimsataninterconnectedmeshofresearchclouds

http://owncloud.org https://owncloud.com/lp/opencloudmesh/

29

ownCloud


SA7isdiscussingeducationalpricingandconditions withfour filestorageproviders:

• BOX• Code42(CrashPlan,SharePlan)• Dropbox• Zettabox

AlloftheseprovidersarelistedintheGÉANTCloudCatalogue.

BOX,useinGN4project?

30

Filestorage(sync&share)

CODE42


WEBCONFERENCINGRENDEZ-VOUS


• Multi-partyvideoconferencingdevelopedbyRENATER

• Poweredbyjitsi.org• Simple touse• Nopluginsordownloads(usesWebRTC)• OpenSource• Veryresourceefficient(thousandsofconferencesonsingle server)

• Deployvideobridges ontheGEANTnetwork• Orchestrateupdates• Deploymonitoringanddiscoveryservices

http://rendez-vouz.renater.fr

32

rendez-vous


CLOUDMANAGEMENTportals


• ManyNRENshaveadoptedahybridcloudstrategy,offeringamixofcommunitycloud(builtandoperatedwithinR&E)andcommercial(public cloud)offerings.

• Theseserviceshavedifferentinterfaces,pricingmodels, reportingandbillingmechanisms.Anewlayerisrequired toabstracttheunderlying complexityandtomanagethesedifferent systemsandresources.

• SA7facilitatesjointeffortsbytheNRENsinthisarea,includingengagementwithproviders thatcandeliverthesecloudmanagementportalcapabilities.

• Opportunity: SURFnet procurement– offer tolistotherNRENs

34

Cloudmanagement(portals)


CloudManagement- InstitutionRequirements

SingleUniversityScenario– 30,000students,significantcloudadaption• hundreds ofendusersofcloudaccounts– ITadmin,Researchers,Lecturers,Studentswithmanydifferentusecases

• Tensofdepartments /budgetholders• TensofIAAScloudaccounts• Multiple IAASservices

ITDepartment(serviceowner)Requirements:• HowcanIensureusersaccesstoservicesisappropriateandreportonusage–compliance/governance

• HowdoIallocateIaaS serviceusagetobudgets?• HowdoImanageinvoicese.g.consolidatedbilling


CloudManagement– InstitutionRequirements

Billing/Management• Cloudaccountmanagement– creating,allocatingtobudgetholders• Usermanagement– enabling,controlling,reportingaccesstocloudaccounts• Allocatinguserstocloudaccountsi.e.enablingaccess• Allocatingcloudaccountstobudgetholders• Consolidatebilling-managing&trackingPOs&invoices• Costmanagement– quotas• Export/integrationpotentialtoexternalbillingsystems?• Functionality


INSTITUTION• interestedincloudaccounts,budgets,users,usage,costs

NREN• Largenumberofinstitutionspercountry• Institution’susage– Reporting/feedbacktomeasurecloudadaption- usage• Multicloud Portalservice

GÉANT/ManagementReporting• Reporting/usage,costspercountry&vendor

CloudManagement– RequirementsforDifferentLevels


CLOUDADOPTIONopportunitiesfortheNRENs


Whatarewealreadydoing?• SA7meetings• Cloudshowcases,webconferencing sessionshttp://services.geant.net/clouds/Activities/Pages/Clouds_Showcases.aspx

• Survey;NRENsaskinstitutionalinputWhatisplanned?• SessionatGN4Symposium• SessionsatTNC2016• NRENcloudconferenceforinstitutions(autumn2016)Whatisneeded?• NRENs:prepareinternally,reachouttoinstitutions• SA7– NREN:one-on-one sessions,secondment andworkshops?

39

Communication,Reachingout totheNRENs


What arecurrent roadblocks for delivering and consuming?

ForNRENsto deliver cloud servicesto their communities?

For Institutionsto consumecloud services(through their NREN)?

40

Obstaclesforuse?


NREN• Commitment• Organisational aspects

Institutions• Commitment (quality)• Concretedemand (quantity)– forecastofspending• WhatwouldaninstitutionwanttheirNRENtodoforthem?

41

Howcanwe,NRENs,activateourselvesandourinstitutions?


• Discussdeliveryopportunities• Commitment fortheIaaStender:eachNRENeither‘in’or‘out’.

— tobecompletedbefore April19.

42

Communication


Thankyou

Networks·Services ·People www.geant.org

©GEANTLimitedonbehalfoftheGN4Phase1project(GN4-1).Theresearch leading to theseresults has receivedfunding fromtheEuropeanUnion’s Horizon2020researchandinnovation programmeunderGrantAgreementNo.691567(GN4-1). 43

TF-MSP, ready for service delivery - TERENA...2016/01/11 · Networks · Services · People By...

Documents

Transcript of TF-MSP, ready for service delivery - TERENA...2016/01/11 · Networks · Services · People By...