ISO IEC 17788:2014 pdf – Information technology — Cloud computing — Overview and vocabulary.
1 Scope This Recommendation | International Standard provides an overview of cloud computing along with a set of terms and definitions. It is a terminology foundation for cloud computing standards. This Recommendation | International Standard is applicable to all types of organizations (e.g., commercial enterprises, government agencies, not-for-profit organizations). 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in this text, constitute provisions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All Recommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged to investigate the possibility of applying the most recent edition of the Recommendations and Standards listed below. Members of IEC and ISO maintain registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Identical Recommendations | International Standards None. 2.2 Paired Recommendations | International Standards None. 2.3 Additional references None. 3 Definitions 3.1 Terms defined elsewhere This Recommendation | International Standard uses the following terms defined elsewhere. The following terms are defined in ISO/IEC 27000: 3.1.1 availability: Property of being accessible and usable upon demand by an authorized entity. 3.1.2 confidentiality: Property that information is not made available or disclosed to unauthorized individuals, entities, or processes 3.1.3 information security: Preservation of confidentiality (3.1.2), integrity (3.1.4) and availability (3.1.1) of information. NOTE – In addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved. 3.1.4 integrity: Property of accuracy and completeness.
3.2 Terms defined in this Recommendation | International Standard For the purposes of this Recommendation | International Standard, the following definitions apply: 3.2.1 application capabilities type: Cloud capabilities type (3.2.4) in which the cloud service customer (3.2.11) can use the cloud service provider’s (3.2.15) applications. 3.2.2 cloud application portability: Ability to migrate an application from one cloud service (3.2.8) to another cloud service (3.2.8). 3.2.3 cloud auditor: Cloud service partner (3.2.14) with the responsibility to conduct an audit of the provision and use of cloud services (3.2.8). 3.2.4 cloud capabilities type: Classification of the functionality provided by a cloud service (3.2.8) to the cloud service customer (3.2.11), based on resources used. NOTE – The cloud capabilities types are application capabilities type (3.2.1), infrastructure capabilities type (3.2.25) and platform capabilities type (3.2.31). 3.2.5 cloud computing: Paradigm for enabling network access to a scalable and elastic pool of shareable physical or virtual resources with self-service provisioning and administration on-demand. NOTE – Examples of resources include servers, operating systems, networks, software, applications, and storage equipment. 3.2.6 cloud data portability: Data portability (3.2.21) from one cloud service (3.2.8) to another cloud service (3.2.8). 3.2.7 cloud deployment model: Way in which cloud computing (3.2.5) can be organized based on the control and sharing of physical or virtual resources.
3.2.17 cloud service user: Natural person, or entity acting on their behalf, associated with a cloud service customer (3.2.11) that uses cloud services (3.2.8). NOTE – Examples of such entities include devices and applications. 3.2.18 Communications as a Service (CaaS): Cloud service category (3.2.10) in which the capability provided to the cloud service customer (3.2.11) is real time interaction and collaboration. NOTE – CaaS can provide both application capabilities type (3.2.1) and platform capabilities type (3.2.31). 3.2.19 community cloud: Cloud deployment model (3.2.7) where cloud services (3.2.8) exclusively support and are shared by a specific collection of cloud service customers (3.2.11) who have shared requirements and a relationship with one another, and where resources are controlled by at least one member of this collection. 3.2.20 Compute as a Service (CompaaS): Cloud service category (3.2.10) in which the capabilities provided to the cloud service customer (3.2.11) are the provision and use of processing resources needed to deploy and run software. NOTE – To run some software, capabilities other than processing resources may be needed. 3.2.21 data portability: Ability to easily transfer data from one system to another without being required to re-enter data. NOTE – It is the ease of moving the data that is the essence here. This might be achieved by the source system supplying the data in exactly the format that is accepted by the target system.