Security Level www huawei com New Scenarios for

  • Slides: 7
Download presentation
Security Level: www. huawei. com New Scenarios for TOSCA Aaron Zhang, Huawei HUAWEI TECHNOLOGIES

Security Level: www. huawei. com New Scenarios for TOSCA Aaron Zhang, Huawei HUAWEI TECHNOLOGIES CO. , LTD.

New Scenarios l Sharing existing resources/nodes l Additional restrictions for target resources l Partially

New Scenarios l Sharing existing resources/nodes l Additional restrictions for target resources l Partially customable deployment packages l Other rough ideas

Sharing existing resources/nodes l Different services may be deployed, maintained separately, while sharing some

Sharing existing resources/nodes l Different services may be deployed, maintained separately, while sharing some key data among each other. l Scenario: p A small enterprise deployed Sugar. CRM first p After a few months, the enterprise grows well and need to deploy Sugar_e. Card p The Sugar_e. Card needs to share the same dababase with Sugar. CRM HUAWEI TECHNOLOGIES CO. , LTD. High Level Suggestion: Extend TOSCA Service. Template to support referencing to existing nodes. Huawei Confidential Page 3

Additional restrictions for target resources l Deployer may specify some restrictions for target resources;

Additional restrictions for target resources l Deployer may specify some restrictions for target resources; for instance, deployer may request a VM with firewall AAA, not firewall XXX, because AAA is reliable according to deployer’s experiences, while XXX not. l Two ways out: p Let the deployer specifies/recommends the firewall he trusts p Let the deployer specifies the firewall he doesn’t trust High Level Suggestion: Extend TOSCA Node. Template/Node. Type to support specifying additional conditions for target VM resources. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 4

Partially customable deployment packages l Deployable packages with some part which can be customized

Partially customable deployment packages l Deployable packages with some part which can be customized by the deployer. l Scenario: p The deployer chooses the APP to deploy. p Before deploying the APP/Service, the deployer finds that he can customize a third party auditor monitor the APP/Service, or even some key nodes. p The wanted third party auditor is specified, and then the APP is deployed. High Level Suggestion: Extend TOSCA to support flexible customization. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 5

Other rough ideas l Upgrade of APP instance l Extend TOSCA to describe APPs

Other rough ideas l Upgrade of APP instance l Extend TOSCA to describe APPs with specific hardware requirements, especially for telecom domain services. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 6

Thank you www. huawei. com

Thank you www. huawei. com

HUAWEI C 8650 HUAWEI TECHNOLOGIES CO LTD HuaweiHUAWEI C 8650 HUAWEI TECHNOLOGIES CO LTD Huawei
Security Level 20201126 www huawei com HUAWEI TECHNOLOGIESSecurity Level 20201126 www huawei com HUAWEI TECHNOLOGIES
Security Level GDP www huawei com 20190130 HUAWEISecurity Level GDP www huawei com 20190130 HUAWEI
Security Level e Space www huawei com HUAWEISecurity Level e Space www huawei com HUAWEI
Security Level 202199 PCN www huawei com HUAWEISecurity Level 202199 PCN www huawei com HUAWEI
Security Level 2021913 IPCCISV www huawei com HUAWEISecurity Level 2021913 IPCCISV www huawei com HUAWEI