5/26/2011 1
Thin Client NIPR/SIPR
Presented by team “Coming Soon”UNCLASSIFIED
5/26/2011 2
Customers
This project applies to all Army Users within the CONUS Theater of operations (Military, DA Civilian, Defense Contractor)
UNCLASSIFIED
5/26/2011 3
Mission
UNCLASSIFIED
1. Establish secure, easy to use, rapidly provisioned Information
Technology Cloud solution for the Army, including:
•Agile and simple acquisition processes
•CAC enabled NIPR/SIPR access from stationary and remote
terminals based on security postures
•Elastic, usage-based delivery of pooled computing resources
•Secure linkage and secure data base storage host
•Interoperable Thin Client stations
•Application grid based on user requested software options
•Always on and available, utility-like solutions.
2. Drive the Army-wide adoption of SIPR/NIPR protocols
using cloud computing solutions.
5/26/2011 4
Facts & Assumptions
UNCLASSIFIED
1. Current architecture /infrastructure is outdated and presents many maintenance issues.
2. Costs for licensing and new equipment are increasing/unaffordable by Government.
3. Bandwidth requirements/space allocation outweighs the value of on-hand technology.
4. The need for widgets that allow users to generate content and collaborate are available, but not compatible for inclusion in current architecture.
5. Government funding will not be available for reset/lifecycle.
6. A reduction in policy/instruction would put most users on the same page.
7. Cloud Computing Initiatives for the Army will set direction, establish guidelines and define the future vision and architecture for the LANDWARNET
5/26/2011 UNCLASSIFIED 5
Cloud Resource Model
Document current ArchitectureDocument current Architecture
Survey CustomersSurvey Customers
Develop Needs Statement
Develop Needs Statement
Review Available optionsReview Available options
Gather costs per optionGather costs per option
Develop visionDevelop vision
Goal AreaGoal Area
Determine SolutionDetermine Solution
Visualize your operation using new technologies
available
Visualize your operation using new technologies
available
Query Agencies within your parameter to determine technologies which will
remain
Query Agencies within your parameter to determine technologies which will
remain
Prepare initial statement of work identifying all
requirements and the need for cloud applications to replace
Prepare initial statement of work identifying all
requirements and the need for cloud applications to replace
Contact solutions providers for availability and provisioning costs
Contact solutions providers for availability and provisioning costs
Identify Communications equipment, software,
platforms architecture and policies
Identify Communications equipment, software,
platforms architecture and policies
Prepare budget criteria for decision makers
Prepare budget criteria for decision makers
Primary ObjectivePrimary Objective
Old Communications ModelOld Communications Model
Complete list of service needs
Establish Performance Metrics Initiative
Complete list of service needs
Establish Performance Metrics Initiative
Get Buy-in from leadershipGet Buy-in from leadership
Assign Clear Courses of action and needs per vendor
Assign Clear Courses of action and needs per vendor
Establish Communications Initiative and Develop Portal
Establish Communications Initiative and Develop Portal
New Communications ModelNew Communications Model
Establish Governance and install product
Establish Governance and install product
Reach InitiativeReach Initiative
Obtain Funding and specify contracting method
Obtain Funding and specify contracting method
5/26/2011 6
Use Cases Considered
COA’s:
1. DISA – DoD Provided Service
2. GSA – Gov’t negotiated contract thru commercial vendor(s)
3. Microsoft – Vendor Provided Service
4. Google – Vendor Provided Service
UNCLASSIFIED
VariousPrivate Cloud
Mission Applications
DISAPKI/CAC
DISAPKI/CAC
DISA-Army CloudSIPR/NIPR
Desktop Service
Army Enterprise
CDS Army Users1. End User to Enterprise
2. Enterprise to Cloud3. Enterprise to Cloud to Enterprise
1
2
3
Army – DISA Maintained Service
COA 1
5/26/2011 7UNCLASSIFIED
Commercial Cloud
NIPR Desktop Service
Commercial Cloud
NIPR Desktop Service
VariousPrivate Cloud
Mission Applications
DISAPKI/CAC
DISAPKI/CAC
DISA-Army CloudSIPR Desktop
Service
Army Enterprise
CDS
Army Users
1
3
3 2
1. End User to Enterprise2. Enterprise to Cloud3. Enterprise to Cloud to Enterprise
Commercial – DISA – Army Service
COA’s 2,3,4
5/26/2011 8UNCLASSIFIED
5/26/2011 9
Key Requirements
• Identity• Open Client• Federated Identity• Location Awareness• Metering and monitoring• Management and Governance• Security• A Common File Format for VMs• Common API for Cloud Storage and Middleware• Data and Application Federation• SLAs and Benchmarks• Lifecycle Management• Interoperability• Transaction / Concurrency
UNCLASSIFIED
5/26/2011 10
SLA Considerations
• Retention Time: During an emergency/outage, how long would it take for the organization to sustain its operations
• Uptime: The percent of the time that the system will be available (e.g., 99.9%) and the period over which the measurement is taken
• Performance and throughput
• Security and Data protection: Where is the data stored? What precautions are taken by the vendor to ensure the data isn't tampered with?
• The level of support offered (e.g., 24/7)
• Service credits if the SLA isn't met
• COOP
UNCLASSIFIED
5/26/2011 11
Cost Analysis (1500 Users)
Desktop Cost Assumptions
• Physical Desktop Cost: $888 (Source: Intel Destkop TCO Case study. Optimum Refresh Cycle and Method for Desktop Outsourcing)
• Desktop Technology Refresh Cycle: 3 Years
• Desktop Deployment Cost: $250 (Source: Intel Destkop TCO Case study. Optimum Refresh Cycle and Method for Desktop Outsourcing)
• Desktop Power Consumption: $146/year (11 cents per KwH Power Cost)
Thin Client Cost Assumptions
• 5 Year CAPEX of $1750/user
• Initial cost approx $615/user
• Direct cost savings of over $1.3M over a 5-year period against physical desktop deployment (1500 user system)
• 5 Year product maintenance
• Thin Client annual power consumption: $25/year (20W power consumption)UNCLASSIFIED
Comparative Cost Savings
5/26/2011 12UNCLASSIFIED
• Reductions in HW/SW Procurement Costs– No purchasing or re-purchasing of infrastructure equipment
• Reduction in O & M Costs– No lifecycle replacement costs– Green IT; lower energy and power consumption
• Decreased Manpower– Less System Admins needed for daily ops
• Increased Accessibility/Flexibility– Can access anywhere with an active internet connection
• Increased Security– Central Management– Increased Insider Threat capability
Benefits
5/26/2011 13UNCLASSIFIED
• Cultural retraining required– Users will have to get used to the idea of doing things different
than used to doing• Convincing ARMY to release hold on unclassified data• Reliability
– Speed at which work accomplished dependant on network connection speeds.
• Security of Thin Client in a cloud environment.– Data only as secure as the host cloud
Challenges
5/26/2011 14UNCLASSIFIED
5/26/2011 15
Cloud Performance Model
UNCLASSIFIED
5/26/2011 16
Security
• MAC 1• Cryptography• DoD “STIG” Compliance• Data/Storage – CONUS Based• Cross-Domain Solution• Auditing/Reporting• Remote Access• Compliance to DoD, Army Regulations (e.g., AR 25-series, DoD 8510-series)
UNCLASSIFIED
5/26/2011 17
Options/Architectural Considerations
UNCLASSIFIED
• Thin Client Architecture– Virtual Desktop– Blade– Citrix– Streaming apps/OS• Application Integration• Interoperability with Mission Services– Standards / Data Portability – Data Access/Ownership– Service – Service communications– Security /Data Authentication Accreditation,
Verification
5/26/2011 18
SCOPE Analysis
UNCLASSIFIED
5/26/2011 19
COA Recommendation
COA #3: Microsoft – Vendor Provided Service
• Stand up SaaS• Migrate End Users to Cloud
UNCLASSIFIED
5/26/2011 20
Proposed Strategy
UNCLASSIFIED
Recommended