Reference Architecture for IT Optimization

Reference Architecture for
IT Optimization
5 January 2012 – DoDAF Plenary
Brian Wilczynski
Director, Architecture & Infrastructure
Office of the DoD CIO
[email protected]
UNCLASSIFIED
Agenda
The DoD Architecture Framework
Reference Architectures
The DoD Information Enterprise Architecture
IT Enterprise Strategy and Roadmap
Data Center Consolidation and Network
Optimization Reference Architectures (RA)
UNCLASSIFIED
2
DoDAF Evolution
DoDAF 1.0
• Program – Level Focus
• Volume III was A Deskbook
• CADM was Separate
• Baseline for DoDAF 1.5
DoDAF 1.5
• Began to address Net-Centricity
• Program – Level Focus
• Volume III is CADM &
Architecture Data Strategy
• Addressed Architecture
Federation
• Baseline for DoDAF 2.0
(Published in 2003)
(Published in 2007)
DoDAF
2.0
(Published 2008)
UNCLASSIFIED
DoDAF 2.0
• Covers Enterprise
through Program
Architecture Spectrum
• Documents High Level
Guidance
• Web-based
• On-Line Journal
- Best Practices
- Errata Sheets
- Interim Releases
- New Requirements
- Usage Examples
• Fit For Purpose Content &
Presentation
3
Reference Architectures


“A Reference Architecture is an authoritative source of
information about a specific subject area that guides and
constrains the instantiations of multiple architectures and
solutions”
The DoD‐wide Reference Architecture provides information,
guidance, and direction that is applicable across DoD. This
information, guidance, and direction are provided in the five
(5) elements that comprise a Reference Architecture:
–
–
–
–
–
Strategic Purpose – Identifies goals and objectives of the
Reference Architecture and describes the specific purpose
of and the problem(s) to be addressed by the Reference
Architecture.
Principles – Sufficient high level foundational statements of
rules, culture, and values that drive technical positions and
patterns.
Technical Positions – Technical guidance and standards,
based on specified principles that need to be followed and
implemented as part of the solution.
Patterns (Templates) – Generalized architecture
representations (viewpoints, graphical/textual models,
diagrams, etc.) that show relationships between elements
and artifacts specified by the technical positions.
Vocabulary – Acronyms, terms, and definitions that are
used in the Reference Architecture and are relevant to
architectures and solutions that are guided and constrained
by the Reference Architecture.
UNCLASSIFIED
4
Reference Architecture Concept
Reference Architecture Description
(Approved 24 Aug 2010)
Enterprise-wide Access to Network and Collaboration Services
Strategic
Purpose
Principles
Reference Architecture
Overview and Summary Information (AV-1)
1 Architecture Product Identification
1.1 Name: Enterprise-wide Access to Network and Collaboration Services (EANCS)
Enterprise-wide
Capabilities
DRAFT
1.2 Lead Organization: Department of Defense Deputy Chief Information Officer. The
Enterprise Services Review Group (ESRG), as the architecture owner, is responsible for
architecture content and will provide overall coordination to ensure appropriate
stakeholders and subject-matter experts are available; the Enterprise Reference
Architecture Cell (ERAC), with oversight from the Architecture and Standards Review
Group (ASRG), will support the development of appropriate architecture artifacts.
1.3 Approval Authority: DoD CIO Enterprise Guidance Board (EGB)
2 Purpose and Perspective
1
2.1 Purpose. A Reference Architecture (RA) abstracts and normalizes the institutional
understanding of capabilities at the enterprise level, and provides a common set of
principles, technical positions, and patterns for use within the DoD to guide development
of Enterprise, Segment, or Solution architectures.
DRAFT
Reference Architectures
2
3
4
5
6
2
3
4
7
5
8
6
9
7
10
Department of Defense
DRAFT
1
8
1
Department
Defenseand
Enterprise-wide
Access to of
Network
2
Collaboration Services (EANCS)
3
Department
Defenseand
Enterprise-wide Access to of
Network
4
Collaboration
Services (EANCS)
Reference Architecture
5
Enterprise-wide Access to Network and
6
Collaboration
Services (EANCS)
Reference Architecture
11
9
7
12
10
8
13
11
9
14
12
10
15
13
11
16
14
12
17
15
13
18
16
14
19
17
15
20
18
16
21
19
17
22
20
18
23
21
19
24
22
20
25
23
21
26
24
22
27
25
28
29
OV-1 (Concept –
Consumer & Provider)
OV-6a (Operational
Rules Model)
Patterns
OV-5a (Activity
Decomposition)
Version 3.0
December 2009
Version 3.0
December 2009
Version 3.0
Prepared by the Office of the DoD CIO
27
OV-6c (Event-Trace
Description)
December 2009
28
29
Technical
Positions
EANCS RA StdV-1 Standards Profile
Reference Architecture
23
26
24
Prepared by the Office of the DoD CIO
27
25
28
26
29
AV-1 (Overview and
Summary)
GROUP
OMB
TYPE
Policy
NAME
M-04-04
OMB
Policy
M-05-05
OMB
Policy
M-05-24
OMB
Policy
M-06-18
Presidential
Directive
Policy
HSPD-12
NIST
Guidance
SP 800-87
DESCRIPTION
This guidance requires agencies to review new
and existing electronic transactions to ensure
that authentication processes provide the
appropriate level of assurance. It establishes and
describes four levels of identity assurance for
electronic transactions requiring authentication.
Assurance levels also provide a basis for
assessing Credential Service Providers (CSPs)
on behalf of Federal agencies. This document
will assist agencies in determining their egovernment needs. Agency business-process
owners bear the primary responsibility to
identify assurance levels and strategies for
providing them. This responsibility extends to
electronic authentication systems.
This memo requires the use of a shared service
provider to mitigate the risk of commercial
managed services for public key infrastructure
(PKI) and electronic signatures.
This memorandum provides implementing
instructions for HSPD-12 and FIPS-201.
This memorandum provides updated direction
for the acquisition of products and services for
the implementation of Homeland Security
Presidential Directive-12 (HSPD-12) “Policy for
a Common Identification Standard for Federal
Employees and Contractors” and also provides
status of implementation efforts.
HSPD-12 calls for a mandatory, governmentwide standard for secure and reliable forms of
ID issued by the federal government to its
employees and employees of federal contractors
for access to federally-controlled facilities and
networks.
This document provides the organizational codes
for federal agencies to establish the Federal
Agency Smart Credential Number (FASC-N)
that is required to be included in the FIPS 201
Card Holder Unique Identifier. SP 800-87 is a
companion document to FIPS 201.
StdV-1 (Standards
Profile)
Prepared by the Office of the DoD CIO
Vocabulary
UNCLASSIFIED
AV-2 (Integrated
Dictionary)
5
DoD Information Enterprise
Architecture
 Purpose:
– Unifies the concepts embedded in
the DoD’s net-centric strategies into
common vision
– Describes the integrated Defense
Information Enterprise and the rules
for information assets and resources
that enable it
– Fosters alignment of DoD
architectures with the enterprise netcentric vision




Integration of NCOW RM content
Appendix D: Applying the DoD IEA
Appendix E: Compliance with the DoD IEA
Appendix G: Requirements for Compliance to
the DoD EA
 Available at:
http://dodcio.defense.gov/sites/diea/
UNCLASSIFIED
6
DoD IEA v2.0 Conceptual Depiction
of the DoD Information Enterprise
UNCLASSIFIED
7
IT Enterprise Strategy & Roadmap
UNCLASSIFIED
UNCLASSIFIED
8
Federal Data Center
Consolidation Initiative (FDCCI)
•
•
OMB Federal Data Center Consolidation Initiative memo dated
2/26/2010
Overall goals are:
–
–
–
–
•
•
Green IT – reduce overall energy and real estate footprint
Reduce cost of data center hardware, software and operations
Increase overall IT security posture of government; and
Shift IT investments to more efficient computing platforms and
technologies
Deliverables
– Initial Asset Inventory: High-level understanding of scale and
size of existing data centers, IT infrastructure assets, and
applications.
– Initial Data Center Consolidation Plan: Potential areas for
consolidation. High-level roadmap for transitioning to
consolidated end-state architecture.
– Final Asset Inventory Baseline: Foundation for developing
final data center consolidation plans.
– Final Data Center Consolidation Plan: Technical roadmap
and approach for achieving the targets for infrastructure
utilization, energy efficiency, and cost efficiency.
Next Steps
– Ongoing Monitoring: Report inventory annually by Q3 of each
FY; consolidation plan execution progress quarterly, and
reflect changes in asset inventories and account for execution
of data center consolidation plans in budgets.
UNCLASSIFIED
9
Today’s Data Center Environment
DISA
USAF
DON
USA
Data Center
to Stay Open
Data Center
to be Closed
Regional/Component Data Centers
Optimized by Services/Agencies to Gain Efficiencies
UNCLASSIFIED
10
Data Center Optimization
Global Footprint
Data Centers will be closed, by repositioning servers and virtualizing,
while simultaneously establishing a Federation of Resilient CORE Data Centers with
Robust Inter-connectivity and Global Accessibility
CORE Data Centers would be Exemplar Data Center Standard Compliant Supporting
“Cloud Computing” based Foundational & Common Enterprise Services
UNCLASSIFIED
11
Data Center & Server Consolidation
Reference Architecture (DC&SC RA)
Conceptual Core Computing Center
UNCLASSIFIED
 Defines & standardizes
attributes for Core DoD
Computing Centers
integrating DoD cloud and
server virtualization concepts,
rules & standards
 Defines cloud delivery
mechanisms (SaaS, PaaS,
IaaS) for DoD Enterprise
Services
 Leverages Defense ITIL for
management of the GIG
Computing Environment
 DC&SC RA Version 1.0 is
scheduled for release in
Q2FY12
12
Network Optimization RA (NORA)
Purposes & Objectives
Common Network
Army
Navy
Navy
Marine Corps
Air Force
Other
DISN Backbone
Army
Marine Corps
Air Force
DISN Backbone
Network Enclaves
Other
13
Questions
14