NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE

(1)

NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE

Andrew Keating, Eric Jeanes, Sean O’Brien

(2)

[ 2 ]

CONTENTS

NET+ IPS Portfolio Update

•  Goals and Updates

•  Portfolio Overview

•  The Portfolio

General Availability and Early Adopter

Services

Service Validation Services

(3)

[ 3 ]

Goals for 2015

•  Compelling Infrastructure and Platform Services Program offerings (3-5 total)

•  50 members using IaaS through NET+ by end of year

•  Define and onboard alternative services for each area in the IPS portfolio

•  Increase engagement with stakeholders

–  Events, webinars

–  Direct engagement with end users (ex. systems administrators)

–  Understand use cases

•  Increase use of services after sign up

•  Process improvement

–  Increase documentation

–  Uniform processes and ways of working across IPS programs

(4)

[ 4 ]

Portfolio Changes

•  Infrastructure and Platform Services: Security moving to Trust and Identity

–  Alignment of Security Services – now Security and Identity portfolio

–  Growth of Cloud Ecosystems

•  Emphasis on NET+ Strategy and Infrastructure and Platform Services

Program

•  Two current general use IaaS solutions in Early Adopter

–  NET+ Microsoft Azure

–  NET+ Amazon Web Services by DLT

(5)

[ 5 ]

NET+ Infrastructure and Platform Services Program

•  Program designed to recover operating costs of IaaS services

•  Current NET+ services:

–  NET+ Microsoft Azure, NET+ Microsoft Office365, NET+ AWS by DLT

•  IPS Program specific Participation Agreement

–  $1k Setup Fee (one time)

•  Service specific Participation Schedule

–  Annual Access Fee based on Internet2 membership level

•  1 year Access Fee waiver for NET+ SV participants if signed up by April 30th

•  90 day access fee waiver while a service is in Early Adopter

•  Waterfall pricing after 100, 200, 300 campuses sign up for a service

bit.ly/netplusips

(6)

[ 6 ]

Architectural Implications

Infrastructure as a Service

Your Opera*ng System

Hypervisor

Your Applica*on

Datacenter (Power, Cooling, Physical Security)

Your Applica*on

Server

Your

Middleware Database Your

CPU Networking Storage Backup

Your

(7)

Architectural Implications

Platform as a Service

OperaDng System Hypervisor Your Applica*on

Datacenter (Power, Cooling, Physical Security) ApplicaDon

Server Middleware Database

CPU Networking Storage Backup

Your

(8)

[ 8 ]

(9)

[ 9 ]

Area: Infrastructure and Platform Services

Solution: Amazon Web Services

Provider: DLT Solutions

Sponsor: University of Virginia

NET+ AWS by DLT

Status

•  Aggregation and volume discounts in place

•  User friendly self-service portal to provision services in pre-release

•  Network peering in place

Next Steps

Launch initial iteration of portal. HIPAA BAA review.

(10)

[ 10 ] Creation of “Best Value” Offering for the Community

•  Community Agreement

–  Pre-negotiated community contractual benefits

–  Flexible payment options

–  FERPA compliance, Export Control Compliant Helpdesk,

HIPAA BAA Available •  Community Network

–  60 Gb/s of aggregate bandwidth

•  Community Credentials

–  Leverages InCommon for provisioning portal

–  Campus ownership of access roles

•  Community Pricing

–  Percentage usage discount

–  Data Egress Fee Waiver

(11)

[ 11 ] New General Availability AWS services “automatically” added

•  Amazon Machine Learning

•  Amazon Elastic File System

•  Amazon WorkSpaces Application Manager

•  EC2 Container Service

•  AWS Lambda

(12)

[ 12 ]

Solution: Cloud storage and compute

Provider: Microsoft

Sponsor: University of Washington

Microsoft Azure

Status

•  Sunsetting hosted bridging services

•  Adding schools to interoperable video and voice signaling

Next Steps

Convening university community to understand how this service can best serve R&E

(13)

[ 13 ]

Why NET+ Microsoft Azure?

•  Special terms and conditions for IP, ITAR, FERPA, etc. needs •  Campuses can get a HIPAA BAA with Microsoft

•  IRU (irrevocable right of use) model, facilitating the acquisition of Azure Services as capital

assets and thereby facilitating the use of grant funding

•  towards the purchase of cloud services and potentially avoiding indirect charges for

overhead.

•  Data egress fee waiver intended for use in supporting the research and education activities of the higher education community. To obtain the waiver, institutions are jointly “qualified” as eligible by Internet2 and Microsoft.

•  Campuses may participate in the Internet2 Microsoft Community with access to information, webinars, events and other benefits.

(14)

[ 14 ]

Solution: Storage and collaboration service

Provider: Box

Sponsor: University of California, Berkeley

Box

Status

•  100+ campuses participating

•  BAA available

Next Steps

Move to unlimited storage and add optional professional services

(15)

[ 15 ]

Area: Infrastructure and Platform Services; Software as a Service: Academic, Research, and Administrative

Solution: Hosted infrastructure and application services

Provider: Merit Network, Inc.

Merit Network, Inc.

Status

•  Open for subscription

•  Internet2 member and

InCommon participation required

•  Higher education only

Next Steps

(16)

[ 16 ]

Area: Software as a Service: Academic,

Research, and Administrative

Solution: Office desktop suite in the cloud and cloud productivity platform

Provider: Microsoft

Sponsor: Colorado State University and University of Florida

Office 365 Education

Status

•  Customized contract including FERPA

and HIPPA support

•  Additional support escalations

available through NET+

•  SAML support

•  New online community of practice site

established

Next Steps

(17)

[ 17 ]

Area: Infrastructure and Platform

Services; Identity and Security

Solution: Machine data analysis

Provider: Splunk

Sponsor: Multiple Universities

Splunk

Status

•  3 year subscription term license at discounted rates

•  2nd_{Waterfall pricing threshold}

reached

•  Community-developed software license agreement

Next Steps

(18)

[ 18 ]

Solution: Endpoint backup

Provider: Code 42 Software

CrashPlan PROe

Status

•  Service validation complete

•  InCommon integration

•  Network connection established

•  Dedicated customer support specialist role filled

Next Steps

Move to General Availability in Summer 2015

(19)

[ 19 ]

Solution: Globus

Provider: University of Chicago

Sponsor: Cornell University

Globus

Status

•  Open to additional participants

Next Steps

(20)

[ 20 ]

Solution: Preservation and accessibility of irreplaceable documents, imagery, and videos

Provider: DuraSpace

Sponsor: University of Virginia

DuraCloud

Status

•  Open to additional participants

Next Steps

(21)

[ 21 ] NET+ IPS Services Under Development

(22)

[ 22 ]

Solution: Drupal Content Management Platform for the Web

Provider: Acquia

Sponsor: Cornell University

Acquia

Status

•  Custom business model, pricing, and options

•  Community aggregation for support and shared resources

Next Steps

Complete Service Validation and open to Early Adopters in mid-2015

(23)

[ 23 ]

Solution: VMware vCloud Air

Provider: Carahsoft

Sponsor: University of Texas at Arlington

vCloud Air by Carahsoft

Status

•  Functional testing underway

•  InCommon and network integration being assessed

•  Legal agreement and business model under development

Next Steps

(24)

[ 24 ]

Solution: Endeca Information Discovery

Provider: Oracle

Endeca Information Discovery

Status

Next Steps

Complete Service Validation in Summer of 2015

(25)

[ 25 ] NET+ IPS Services Under Development

(26)

[ 26 ]

Solution: OpenStack managed private cloud

Provider: Rackspace

Sponsor: Notre Dame University

Rackspace Private Cloud

Status

Next Steps

Complete Service Validation in Summer of 2015

(27)

[ 27 ]

Solution: Virtual Compute Lab

Provider: IBM Softlayer

Sponsor: NCSU

Virtual Compute Lab

Status

•  Service Validation start expected in early May 2015

•  Delivers dedicated, custom compute environments to users

•  IBM identified as Service Provider to host offering

Next Steps

Identify scope of services offered, add additional interested members, and begin service validation

(28)

[ 28 ]

Solution: Dynamic HPC and Big Data Clusters in the Cloud

Provider: Omnibond

Sponsor: To be Announced

CloudyCluster

Status

•  Prospective Quick Start

•  Working to scope and price offering

Next Steps

(29)

[ 29 ]

Solution: Enterprise Cloud Infrastructure

Provider: CenturyLink

Sponsor: Open

CenturyLink Cloud

Status

•  Identifying use cases for service validation

Next Steps

Identify scope of services offered, add additional interested members, and begin service validation

(30)

[ 30 ]

Solution: High Performance Computing

Provider: Dell

Sponsor: Open

R-‐Systems

Status

•  Business Agreement in progress

•  Evaluating network connectivity

Next Steps

(31)

[ 31 ]

Solution: Enterprise Cloud Infrastructure

Provider: Verizon

Sponsor: Open

Verizon Cloud Services

Status

•  Highly secure and compliant enterprise cloud infrastructure

•  Special pilot program for service validation participants

Next Steps

Identify sponsor and service validation participants

(32)

[ 32 ]

For More Information

•  Email: [email protected] for information on sponsoring or subscribing to

services, as well as general questions, comments and feedback about the NET+ program

•  NET+ Service Catalogue: http://internet2.edu/cloud-services for the current

(33)

[ 33 ]

What’s next? What service should be in portfolio but is not?

It’s

YOUR

input and needs that leads to service

development and provides direction to the overall

portfolio

(34)

NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE

Andrew Keating, Eric Jeanes, Sean O’Brien

(35)

[ 35 ]

(36)

[ 36 ]

Status

•  Collaboration platform that

includes on premise, cloud, and hybrid deployment options

•  Network and identity integration

under review

Next Steps

Begin Service Validation in April or May 2014

Area: Infrastructure, Platform, and

System Security as a Service

Solution: Open Source Document Management Solution

Provider: Alfresco

Sponsor: University of California Berkeley

(37)

[ 37 ]

Status

•  Testing underway

•  Use case development and

documentation by participating universities

•  InCommon integration under

review

Next Steps

Complete service validation and move to Early Adopter

Security as a Service

Solution: Cloud-based on-demand storage and compute services scaled for academic, and administrative needs

Provider: AT&T and Florida Lambda Rail

Sponsor: Multiple Institutions

(38)

[ 38 ]

Status

•  Provides secure enterprise

endpoint backup in the cloud

•  SAML identity integration

Next Steps

Identify Sponsor and begin

Evaluation and Service Validation

Solution: inSync Endpoint Data Protection

Provider: Druva

Sponsor: Open

(39)

[ 39 ]

Status

•  Multiple service offerings

integrated with Windows Azure

•  Provider works with campuses

and interested in NET+

Next Steps

Identify appropriate service(s) of interest and begin service

validation(s) in April or May 2014

Solution: Multiple services proposed

Provider: GreenButton

Sponsor: Open

(40)

[ 40 ]

Status

•  Ultra-secure way to store

encryption keys in the cloud

•  Integrates with AWS

•  Interest in developing custom

program for higher education

Next Steps

Solution: KeyNexus; Encryption Key Management as a Service

Provider: Dark Matter Labs

Sponsor: Open

(41)

[ 41 ]

Status

•  Provides enterprise wide

analytics and visibility into the use of cloud applications

•  Provider interest in working with

higher education through NET+

Next Steps

Begin service validation in April or May 2014

Solution: Cloud app analytics and policy enforcement

Provider: Netskope

Sponsor: Open

(42)

[ 42 ]

Status

•  Enables secure collaboration,

encryption and administration layer on top of cloud storage solutions

•  Federated identity integration

Next Steps

Security as a Service

Solution: Secure Collaboration and Encryption Solution

Provider: nCryptedCloud

Sponsor: Open

NET+ INFRASTRUCTURE AND PLATFORM SERVICES PORTFOLIO STATUS & UPDATE

General Availability and Early Adopter

Services

Service Validation Services

Goals for 2015

Portfolio Changes

NET+ Infrastructure and Platform Services Program

Architectural Implications

Infrastructure as a Service

Architectural Implications

Platform as a Service

NET+ AWS by DLT

Microsoft Azure

Status

Next Steps

Why NET+ Microsoft Azure?

Box

Status

Next Steps

Merit Network, Inc.

Status

Next Steps

Office 365 Education

Splunk

CrashPlan PROe

Globus

Status

Next Steps

DuraCloud

Status

Next Steps

Acquia

vCloud Air by Carahsoft

Endeca Information Discovery

Rackspace Private Cloud

Virtual Compute Lab

CloudyCluster

CenturyLink Cloud

R-­‐Systems

Status

Next Steps

Verizon Cloud Services

For More Information

What’s next? What service should be in portfolio but is not?

It’s

YOUR

input and needs that leads to service

development and provides direction to the overall

portfolio

R-‐Systems