CCSP学习笔记-NIST 800-145
本文英文版来自美国国家标准与技术实验室的文档 Special Publication 800-145 《The NIST Definition of Cloud Computing》September 2011 版本。
一 云计算概念定义
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage,applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.This cloud model is composed of five essential characteristics, three service models, and four deployment models.
云计算是一种模式,是一种无处不在的、便捷的、按需的、基于网络访问的、共享使用的、可配置的计算资源(包括网络、服务器、存储、应用程序及服务),可通过最少的管理工作以及云租户与云服务提供商的互动实现快速资源调配和发布。云计算这个模式包括五个主要特点,三个交付模式 ,和四个部署模式。
二 云计算5大特征(Essential Characteristics)
1、按需自服务(On-demand self-service. )
A consumer can unilaterally provision computing capabilities, such as server time and network storage,as needed automatically without requiring human interaction with each service provider.
消费者可以单方面部署资源,如服务器和网络存储,资源是按需自动部署而不需要与服务供应商进行人工交互。
2、多种(泛在)网络访问方式。(Broad network access.)
Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms (e.g.,mobile phones, tablets, laptops, and workstations).
资源可以通过互联网获取, 并可以通过标准方式访问,例如通过瘦客户端或富客户端(例如移动电话,笔记本电脑,工作站等)。
3、资源池(Resouce Pooling)
The provider’s computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand. There is a sense of location independence in that the customer generally has no control or knowledge over the exact location of the provided resources but may be able to specify location at a higher level of abstraction (e.g., country, state, or datacenter). Examples of resources include storage,processing, memory, and network bandwidth.
供应商的资源被池化,以便以多用户租用模式被不同客户使用,例如不同的物理和虚拟资源可根据客户需求动态分配和重新分配。通常是地域无关的,客户一般无法控制或知道资源的确切位置,但可能抽象的上层的地址信息(比如国家、城市、数据中心)。这些资源包括存储、处理器、内存、网络带宽。
4、快速弹性(Rapid Elasticity)
Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand. To the consumer, the capabilities available for provisioning often appear to be unlimited and can be appropriated in any quantity at any time.
资源可以弹性地部署和释放,有时是自动化地,以便能够迅速地按需扩大和缩小规模。对客户来说,可以获取的资源看起来似乎是无限的,并且可在任何时间购买任何数量的资源。
5、可计量服务(Measured Service)
Cloud systems automatically control and optimize resource use by leveraging a metering capability1 at some level of abstraction appropriate to the type of service (e.g.,storage, processing, bandwidth, and active user accounts). Resource usage can be monitored, controlled, and reported, providing transparency for both the provider and consumer of the utilized service.
云计算系统自动地控制和优化资源使用,通过使用一些与服务种类(例如存储、计算、带宽、激活的用户账号)对应的抽象信息关联的计量能力【注释1】。资源使用能被监控、控制、报告,以便提供服务消耗对服务商和客户的透明性。
三 云计算三大服务模式(Service Models)
1、软件即服务(Software as a Sercie,SaaS)
The capability provided to the consumer is to use the provider’s applications running on a cloud infrastructure2. The applications are accessible from various client devices through either a thin client interface, such as a web browser (e.g., web-based email), or a program interface. The consumer does not manage or control the underlying cloud infrastructure including network, servers, operating systems, storage, or even individual application capabilities,with the possible exception of limited user-specific application configuration settings.
提供给客户的服务是服务商运行在云计算基础设施【注释2】上的应用程序。应用程序可以在各种客户端设备上通过瘦客户端界面访问,比如浏览器(比如基于互联网的email)或者应用程序接口。消费者不需要 管理或控制的底层的云计算基础设施,包括网络、服务器、操作系统、存储,甚至单个应用程序的功能,可能的例外就是需要设置一些有限的客户可定制的配置设置。
2、平台即服务(Platform as a Service,PaaS)
The capability provided to the consumer is to deploy onto the cloud infrastructure consumer-created or acquired applications created using programming languages, libraries, services, and tools supported by the provider.3 The consumer does not manage or control the underlying cloud infrastructure including network, servers, operating systems, or storage, but has control over the deployed applications and possibly configuration settings for the application-hosting environment.
提供给消费者的是客户用供应商提供的开发语言和工具、库、服务、工具【注释3】创建或获取的应用程序部署到云计算基础设施上去的能力。客户不需要管理或控制的底层的云基础设施,包括网络、服务器、操作系统、存储,但消费者能控制部署的应用程序,也可能控制应用的托管环境的配置。
3、基础架构即服务(Infrastructure as a Service,IaaS)
The capability provided to the consumer is to provision processing, storage, networks, and other fundamental computing resources where the consumer is able to deploy and run arbitrary software, which can include operating systems and applications. The consumer does not manage or control the underlying cloud infrastructure but has control over operating systems, storage, and deployed applications;and possibly limited control of select networking components (e.g., host firewalls).
提供给消费者的是部署计算、存储、网络和其它基本的计算资源的能力,用户能够部署和运行任意软件,包括操作系统和应用程序。消费者不管理 或控制的底层的云计算基础设施,但能控制操作系统、储存、部署的应用,也有可能对一些网络组件(例如,防火墙)有有限的控制。
四 云计算四大部署模式(Deployment Models)
1、私有云(Private Cloud)
The cloud infrastructure is provisioned for exclusive use by a single organization comprising multiple consumers (e.g., business units). It may be owned, managed, and operated by the organization, a third party, or some combination of them, and it may exist on or off premises.
云基础设施是由一个单一的组织部署和独占使用,可以使多个用户(比如事业部)。该基础设施可能由该组织、第三方、两者的混合来拥有和管理、运营, 有本地和远程之分。
2、社区云(Community Cloud)
The cloud infrastructure is provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns (e.g., mission,security requirements, policy, and compliance considerations). It may be owned,managed, and operated by one or more of the organizations in the community, a third party, or some combination of them, and it may exist on or off premises.
基础设施由一些具有共有关注点(比如,目标、安全需求、策略、遵从性考虑)的组织形成的社区中的用户部署和使用。他可能被一个或多个社区中的组织、第三方、或两者的混合所拥有、管理、运营,有本地和远程之分。
3、公有云(Public Cloud)
The cloud infrastructure is provisioned for open use by the general public. It may be owned, managed, and operated by a business, academic, or government organization, or some combination of them. It exists on the premises of the cloud provider.
云基础设施被部署给广泛的公众开放地使用。它可能被一个商业组织、研究机构、政府机构、或者几者的混合所拥有、管理、运营。是被一个销售云计算服务的组织所拥有,该组织将云计算服务销售给一般大众或广泛的工业群体。有本地和远程之分。
4、混合云(Hybrid Cloud)
The cloud infrastructure is a composition of two or more distinct cloud infrastructures (private, community, or public) that remain unique entities, but are bound together by standardized or proprietary technology that enables data and application portability (e.g., cloud bursting for load balancing between clouds).
基础设施是由两种或两种以上的云(私有,社区或公共)组成,每种云仍然保持独立,但用标准的或专有的技术将它们组合起来,具有数据和应用程序的可移植性(例如,云突发可以用来处理突发负载的均衡化)。
1 Typically this is done on a pay-per-use or charge-per-use basis.
注释1:通常是按使用付费
2 A cloud infrastructure is the collection of hardware and software that enables the five essential characteristics of cloud computing. The cloud infrastructure can be viewed as containing both a physical layer and an abstraction layer. The physical layer consists of the hardware resources that are necessary to support the cloud services being provided, and typically includes server, storage and network components. The abstraction layer consists of the software deployed across the physical layer,which manifests the essential cloud characteristics. Conceptually the abstraction layer sits above the physical layer.
注释2:云基础设施是具有云计算5个特征的硬件和软件的集合。云基础设施可以被视为包含物理层和抽象层。物理层由提供云服务所需的硬件资源组成,通常包括服务器、存储、网络设备。抽象层由部署在物理层上的软件组成,它们实现了云计算的关键特征。逻辑上可以认为抽象层位于物理层之上。
3 This capability does not necessarily preclude the use of compatible programming languages, libraries, services, and tools from other sources.
注释3:这个能力并不是必须排除对其他来源的兼容的编程语言、库、服务、工具的使用
参考:https://blog.csdn.net/weixin_34187822/article/details/92927323
