NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE
Andrew Keating, Sean O'Brien, and Sara Jeanes
NET+ Cloud Services © 2014 Internet2
[ 2 ]
CONTENTS
NET+ IPS Portfolio Update
• Goals and Updates • Portfolio Overview • The Portfolio
General Availability and Early Adopter Services Service Validation Services
© 2014 Internet2
[ 3 ]
Goals for 2015 • Compelling Infrastructure and Platform Services Program offerings (3-5 total) • 50 members using IaaS through NET+ by end of year • Define and onboard alternative services for each area in the IPS portfolio • Increase engagement with stakeholders
– Events, webinars – Direct engagement with end users (ex. systems administrators) – Understand use cases
• Increase use of services after sign up • Process improvement
– Increase documentation
– Uniform processes and ways of working across IPS programs
© 2014 Internet2
[ 4 ]
Portfolio Changes • Infrastructure and Platform Services: Security moving to Trust and Identity
– Alignment of Security Services – now Security and Identity portfolio – Growth of Cloud Ecosystems
• Emphasis on NET+ Strategy and Infrastructure and Platform Services
Program
• Two current general use IaaS solutions in Early Adopter – NET+ Microsoft Azure – NET+ Amazon Web Services by DLT
• Emerging infrastructure services (VMware, Oracle, Rackspace, IBM Softlayer)
[ 5 ]
NET+ Infrastructure and Platform Services Program • Program designed to recover operating costs of IaaS services • Current NET+ services:
– NET+ Microsoft Azure, NET+ Microsoft Office365, NET+ AWS by DLT • IPS Program specific Participation Agreement
– $1k Setup Fee (one time) • Service specific Participation Schedule
– Annual Access Fee based on Internet2 membership level • 1 year Access Fee waiver for NET+ SV participants if signed up by April 30th • 90 day access fee waiver while a service is in Early Adopter • Waterfall pricing after 100, 200, 300 campuses sign up for a service
bit.ly/netplusips
© 2014 Internet2
© 2014 Internet2
[ 6 ]
Architectural Implications Infrastructure as a Service
Your Opera*ng System
Hypervisor
Your Applica*on
Datacenter (Power, Cooling, Physical Security)
Your Applica*on
Server
Your Middleware
Your Database
CPU Networking Storage Backup
Your Problem
Their Problem
© 2014 Internet2
[ 7 ]
Architectural Implications Platform as a Service
OperaDng System
Hypervisor
Your Applica*on
Datacenter (Power, Cooling, Physical Security)
ApplicaDon Server Middleware Database
CPU Networking Storage Backup
Your Problem
Their Problem
[ 8 ]
Many
[ 9 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Amazon Web Services Provider: DLT Solutions Sponsor: University of Virginia
NET+ AWS by DLT
Status • Aggregation and volume
discounts in place • User friendly self-service portal
to provision services in pre-release
• Network peering in place
Next Steps Launch initial iteration of portal. HIPAA BAA review.
© 2014 Internet2
[ 10 ]
Creation of “Best Value” Offering for the Community • Community Agreement
– Pre-negotiated community contractual benefits – Flexible payment options – FERPA compliance, Export Control Compliant Helpdesk,
HIPAA BAA Available • Community Network
– 60 Gb/s of aggregate bandwidth • Community Credentials
– Leverages InCommon for provisioning portal – Campus ownership of access roles
• Community Pricing – Percentage usage discount – Data Egress Fee Waiver
Why NET+ Amazon Web Services by DLT?
© 2014 Internet2
[ 11 ]
New General Availability AWS services “automatically” added
• Amazon Machine Learning • Amazon Elastic File System • Amazon WorkSpaces Application Manager • EC2 Container Service • AWS Lambda
New to NET+ AWS by DLT
[ 12 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Cloud storage and compute Provider: Microsoft Sponsor: University of Washington
Microsoft Azure
Status • Sunsetting hosted bridging
services • Adding schools to interoperable
video and voice signaling
Next Steps Convening university community to understand how this service can best serve R&E
[ 13 ]
Why NET+ Microsoft Azure? • Special terms and conditions for IP, ITAR, FERPA, etc. needs • Campuses can get a HIPAA BAA with Microsoft • IRU (irrevocable right of use) model, facilitating the acquisition of Azure Services as capital
assets and thereby facilitating the use of grant funding • towards the purchase of cloud services and potentially avoiding indirect charges for
overhead. • Data egress fee waiver intended for use in supporting the research and education activities of
the higher education community. To obtain the waiver, institutions are jointly “qualified” as eligible by Internet2 and Microsoft.
• Campuses may participate in the Internet2 Microsoft Community with access to information, webinars, events and other benefits.
[ 14 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Storage and collaboration service Provider: Box Sponsor: University of California, Berkeley
Box
Status • 100+ campuses participating • BAA available
Next Steps Move to unlimited storage and add optional professional services
[ 15 ] © 2015 Internet2
Area: Infrastructure and Platform Services; Software as a Service: Academic, Research, and Administrative
Solution: Hosted infrastructure and application services
Provider: Merit Network, Inc.
Merit Network, Inc.
Status • Open for subscription • Internet2 member and
InCommon participation required • Higher education only
Next Steps Partnering effort with webinars
[ 16 ] © 2015 Internet2
Area: Software as a Service: Academic, Research, and Administrative
Solution: Office desktop suite in the cloud and cloud productivity platform
Provider: Microsoft Sponsor: Colorado State University and University of Florida
Office 365 Education
Status • Customized contract including FERPA
and HIPPA support • Additional support escalations
available through NET+ • SAML support • New online community of practice site
established
Next Steps Build out community
[ 17 ] © 2015 Internet2
Area: Infrastructure and Platform Services; Identity and Security
Solution: Machine data analysis Provider: Splunk Sponsor: Multiple Universities
Splunk
Status • 3 year subscription term license at
discounted rates • 2nd Waterfall pricing threshold
reached • Community-developed software
license agreement
Next Steps Summer Advisory Board meeting
[ 18 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Endpoint backup Provider: Code 42 Software Sponsor: Multiple Universities
CrashPlan PROe
Status • Service validation complete • InCommon integration • Network connection established • Dedicated customer support
specialist role filled
Next Steps Move to General Availability in Summer 2015
[ 19 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Globus Provider: University of Chicago Sponsor: Cornell University
Globus
Status • Service validation complete • Open to additional participants
Next Steps Add adopters
[ 20 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Preservation and accessibility of
irreplaceable documents, imagery, and videos
Provider: DuraSpace Sponsor: University of Virginia
DuraCloud
Status • Service validation complete • Open to additional participants
Next Steps Add adopters
© 2014 Internet2
[ 21 ]
NET+ IPS Services Under Development
Participation currently full
[ 22 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Drupal Content Management
Platform for the Web Provider: Acquia Sponsor: Cornell University
Acquia
Status • Custom business model, pricing,
and options • Community aggregation for support
and shared resources
Next Steps Complete Service Validation and open to Early Adopters in mid-2015
[ 23 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: VMware vCloud Air Provider: Carahsoft Sponsor: University of Texas at Arlington
vCloud Air by Carahsoft
Status • Functional testing underway • InCommon and network integration
being assessed • Legal agreement and business
model under development
Next Steps Complete Service Validation in June 2015
[ 24 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Endeca Information Discovery Provider: Oracle Sponsor: Multiple Universities
Endeca Information Discovery
Status • Functional testing underway • InCommon and network integration
being assessed • Legal agreement and business
model under development
Next Steps Complete Service Validation in Summer of 2015
© 2014 Internet2
[ 25 ]
NET+ IPS Services Under Development
Participation open
[ 26 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: OpenStack managed private cloud Provider: Rackspace Sponsor: Notre Dame University
Rackspace Private Cloud
Status • Functional testing underway • InCommon and network integration
being assessed • Legal agreement and business
model under development
Next Steps Complete Service Validation in Summer of 2015
[ 27 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Virtual Compute Lab Provider: IBM Softlayer Sponsor: NCSU
Virtual Compute Lab
Status • Service Validation start expected in
early May 2015 • Delivers dedicated, custom compute
environments to users • IBM identified as Service Provider to
host offering
Next Steps Identify scope of services offered, add additional interested members, and begin service validation
[ 28 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Dynamic HPC and Big Data
Clusters in the Cloud Provider: Omnibond Sponsor: To be Announced
CloudyCluster
Status • Prospective Quick Start • Working to scope and price offering
Next Steps
Review and finalize Business Agreement
[ 29 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Enterprise Cloud Infrastructure Provider: CenturyLink Sponsor: Open
CenturyLink Cloud
Status • Identifying use cases for service
validation
Next Steps Identify scope of services offered, add additional interested members, and begin service validation
[ 30 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: High Performance Computing Provider: Dell Sponsor: Open
R-‐Systems
Status • Business Agreement in progress • Evaluating network connectivity
Next Steps Begin Service Validation in May 2015
[ 31 ] © 2015 Internet2
Area: Infrastructure and Platform Services Solution: Enterprise Cloud Infrastructure Provider: Verizon Sponsor: Open
Verizon Cloud Services
Status • Highly secure and compliant
enterprise cloud infrastructure • Special pilot program for service
validation participants
Next Steps Identify sponsor and service validation participants
[ 32 ]
For More Information • Email: [email protected] for information on sponsoring or subscribing to
services, as well as general questions, comments and feedback about the NET+ program
• NET+ Service Catalogue: http://internet2.edu/cloud-services for the current service listing
[ 33 ]
What’s next? What service should be in portfolio but is not?
It’s YOUR input and needs that leads to service development and provides direction to the overall
portfolio
NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE
Andrew Keating, Sean O'Brien, and Sara Jeanes
NET+ Cloud Services © 2014 Internet2
© 2014 Internet2
[ 35 ]
?? Services
[ 36 ]
Status • Collaboration platform that
includes on premise, cloud, and hybrid deployment options
• Network and identity integration under review
Next Steps Begin Service Validation in April or May 2014
Area: Infrastructure, Platform, and System Security as a Service
Solution: Open Source Document Management Solution
Provider: Alfresco Sponsor: University of California Berkeley
Alfresco
[ 37 ]
Status • Testing underway • Use case development and
documentation by participating universities
• InCommon integration under review
Next Steps Complete service validation and move to Early Adopter
Area: Infrastructure, Platform, and Security as a Service
Solution: Cloud-based on-demand storage and compute services scaled for academic, and administrative needs
Provider: AT&T and Florida Lambda Rail Sponsor: Multiple Institutions
AT&T Synaptic Storage & Compute
[ 38 ]
Status • Provides secure enterprise
endpoint backup in the cloud • SAML identity integration
Next Steps Identify Sponsor and begin Evaluation and Service Validation
Area: Infrastructure, Platform, and System Security as a Service
Solution: inSync Endpoint Data Protection Provider: Druva Sponsor: Open
Druva
[ 39 ]
Status • Multiple service offerings
integrated with Windows Azure • Provider works with campuses
and interested in NET+
Next Steps Identify appropriate service(s) of interest and begin service validation(s) in April or May 2014
Area: Infrastructure, Platform, and System Security as a Service
Solution: Multiple services proposed Provider: GreenButton Sponsor: Open
GreenButton
[ 40 ]
Status • Ultra-secure way to store
encryption keys in the cloud • Integrates with AWS • Interest in developing custom
program for higher education
Next Steps Begin Service Validation in April or May 2014
Area: Infrastructure, Platform, and System Security as a Service
Solution: KeyNexus; Encryption Key Management as a Service
Provider: Dark Matter Labs Sponsor: Open
KeyNexus
[ 41 ]
Status • Provides enterprise wide
analytics and visibility into the use of cloud applications
• Provider interest in working with higher education through NET+
Next Steps Begin service validation in April or May 2014
Area: Infrastructure, Platform, and System Security as a Service
Solution: Cloud app analytics and policy enforcement
Provider: Netskope Sponsor: Open
Netskope
[ 42 ]
Status • Enables secure collaboration,
encryption and administration layer on top of cloud storage solutions
• Federated identity integration
Next Steps Begin Service Validation in April or May 2014
Area: Infrastructure, Platform, and Security as a Service
Solution: Secure Collaboration and Encryption Solution
Provider: nCryptedCloud Sponsor: Open
nCryptedCloud