6th Cloud Interoperability Workshop "Structured methodology supporting CloudWATCH profiles" - Brussels - Sept 2015

The sixth cloud interoperability workshop, being the last of such workshops under the auspices of the CloudWATCH project, brought together the results and outcomes of all previous workshops, the work conducted in WP2, and in other tasks in WP4. Through the numerical analysis conducted in WP2, which has also brought an online self assessment tool to life, WP4 was able to take the project clustering further and formulate three straw man standard profile documents that bring together standards addressing the respective needs of self assessment participants.

The entire structure of the workshop was built around bringing SDOs and projects identified as fitting with these straw man profiles together into one room and discuss:

  • Whether the assessment of project needs and capabilities was accurate, and where it needs changing
  • The composition and applicability of the straw man profile identified for the respective group of projects, and potential corrections and amendmends
  • Possible action plans for the future ahead.

With 30 participants representing seven standards development organisations, and more than 20 EC-funded projects, this workshop achieved the required momentum and standing, as a final and stand-alone workshops organised in WP4.

While the methodologies were generally accepted as sound and applicable, as described in D2.4 and D4.3, participants felt that the NIST characteristics of cloud computing used in the gathering of information should be revised. While it is certainly agreeable that Privacy characteristics should not be subsumed under “Advanced Security” (which is a characteristic that was present in a draft version of NIST SP 800-145 [NIST-800-145]), the workshop participants made it abundantly clear that:

  • NIST SP 800-145, even in a draft form, defines characteristics of only cloud computing, but at the same time, many more IT service characteristics are applicable that are not specific to Cloud computing.

This is particularly important for future work related to profiling standards for cloud services, in that focussing only on Cloud related standards is insufficient. It is also important to take other standards into consideration that address IT service characteristics with a wider scope than cloud computing. Under the remit of the Digital Single Market and the pursuit of open standards, this is certainly an area for further consideration. For example Service Monitoring, Privacy, and many more that were not touched upon at the workshop.

However important this may be, one may argue that part of standards profiling may be out of scope for EC funded projects that focus on cloud computing.

Workshop agenda and presentations can be found here.