Maritime Clouds for the European Ports

Download PDF
5 downloads 38278 Views 414KB Size Report
Comment
management in Private and Public Cloud Services. It is already used by Government and can provide insight in building a MC cloud. OpenNebula [17] is an ...
Maritime Clouds for the European Ports Kleanthis Dellios, Despina Polemi Department of Informatics University of Piraeus Piraeus, Greece e-mail(s): {kdellios, dpolemi}@unipi.gr Abstract— The adoption of Cloud Computing technology can lead to a new revolution in the maritime field, offering trustworthy cross-border, interoperable, secure e- port services to all maritime participants. In this paper, cloud technology is introduced in the maritime sector; maritime cloud delivery and deployment models are proposed in order to provide a holistic, harmonized European secure maritime environment. Keywords- e-port services, Maritime Cloud (MC), Ports’ Information Communication and Technology (PICT) systems

I.

INTRODUCTION

The European economy depends upon the maritime movement of cargo and passengers which increasingly relies on the Ports’ Information Communication and Technology (PICT) systems offering e-port services (e.g. cargo and vessel management). The existing national e-port services are not interoperable, recognized as a main obstacle in enhancing the competitiveness of the E.U. maritime market [1]. However the ports do not have the resources to invest (due to the economic crisis, which has highly affected their business) in order to enhance their e-port services and become antagonistic. The adoption of Cloud Computing technology can bring a revolution to the maritime sector offering a harmonized, secure maritime environment offering cross-border, trustworthy e-port services to all commercial E.U. ports and their users in a cost effective manner. The maritime environment is composed by electronic systems and services that manage various incoming and outgoing information and data through collaborative and automated processes and services [2, 3]. Cloud Computing (CC) technology is most appropriate for the nature of the maritime environment since it was evolved by the need of managing and offering a plethora, diverse, cross–border, cost effective, scalable services [4]. CC technology is also known as a collaborative model of provided resources and utilities via an independent distributed network regardless of the platform that is used [4, 5]. The questions that this paper raises are: How the evolving CC technology can be implemented by the E.U. ports? Which cloud services can be provided by the PICT systems and what kind of benefits merit from such approach? This paper proposes the implementation of Maritime Clouds (MCs) offering various delivery models and services according the ports’ needs. This paper is organized as follows: The second section is a brief overview of CC

technology and the various cloud service models. In the third section, open source cloud projects are described which are useful in the implementation of MCs. In the fourth section MC delivery models are proposed along with MC e-port services. In the fifth section a MC deployment model is proposed and the last section provides conclusions and draws research directions II.

BRIEF OVERVIEW OF CLOUD COMPUTING TECHNOLOGY

The Concept of Cloud Computing (CC) Technology derives from the idea of providing hardware resources, intermediate platforms and applications/software as services in order to be consumed by users [4, 5, 6]. Clouds are scalable matching the workload demand. The main service models [4,6] currently used and developed are: Infrastructure as a Service (IaaS) is the model where cloud infrastructure services deliver computer infrastructure, typically a platform virtualization environment, as a service, along with storage and networking following a utility computing basis. Platform as a Service (PaaS) facilitates the deployment of applications without the cost and complexity of managing the underlying hardware and software layers. Platforms enable developers to create their own applications that run in the cloud or even use services provided by the cloud. Software as a Service (SaaS) is the frontend model that delivers software over the Internet, eliminating the need to install and run the application on the user's personal computer unit and simplifying maintenance and support. The above models offer the following important features [6, 7] that make CC technology so attractive: On-demand self-service: Users via their terminals can obtain direct computing resources like storage without intervention or interaction of a third party service provider. Resource Pooling: Computer resources are used to serve multiple users. The physical and virtual resources are dynamically assigned on demand. These resources include: storage, processing memory, network bandwidth and the installed virtual machines. Scaling: Cloud Computing adopts two types of scaling: the horizontal scaling referring to the increasing computational resources in order to fulfill the loading (data) requirements. The resources are additional virtual servers. The second type is the vertical scaling referring to the adding computational resources in the existing server (e.g.

upgrading, increasing processing power, memory, or replacing the whole unit). Dynamic Scalability: There are two types of dynamic scalability: proactive scalability, which includes scheduled changes of infrastructure based on the needs and requirements of an organization (i.e. capacity can be increased or decreased depending up on the expected traffic and not upon the real traffic); reactive scalability which alternates infrastructure under current situation so that storage capacity can be increased or decreased upon traffic demands. Virtualization: Virtual systems group and share scalable resources to multiple users (multi-tenancy). Cloud computing technology gives certain advantages when implemented in a Port environment [8]. The access to services can be achieved via a browser or plug-in, from anywhere, anytime from independent devices or operating environments (systems) and users' data can be constantly updated and synchronized [6, 7, 8, 9]. Average port users are familiar using and navigating through the Internet browsers so there is no need for specialized knowledge in using future cloud port services or applications. The network scalability is also an important advantage as it provides load balance in data and failover and contributes into a very stable and reliable port environment. With Cloud Computing technology there is reduction of execution and response time via virtual machines that can satisfy maritime users' requirements on-demand. Moreover in IaaS, rather than purchasing servers, software, data-center space or network equipment, port users as clients can buy those resources as a fully outsourced service or even create, with the existing hardware, their own MC environment reducing the need for purchasing expensive equipment. In addition, issues like existing PICT resources, the workload variability and sensitivity of maritime data, software licensing, is considered when creating a MC delivery model [1, 6, 8]. III.

THE USE OF OPEN SOURCE CLOUD PROJECTS IN MC

Although the idea of adopting Cloud Computing technology for creating Maritime Clouds (MC) is new, the first attempt was made of U.S. Navy [10, 11] in creating a maritime cloud environment, exploiting technological resources from land, marine and aerial, dynamic, static, collaborative infrastructure and shared computer systems and resources [1, 11, 12], successfully offering more protection from malicious external threats. A MC can be implemented in a cost effective way [12, 13] since there are many open source solutions available. Open-source cloud projects [13, 14] provide guidance in adopting cloud computing technology aiming to deliver solutions for creating any type of cloud. They provide the opportunity of designing cost and resource effective cloud services and complex architectures. For instance, the open Cloud Project OpenStack [15] is a collaborative software project, designed to create freely available codes and scalable infrastructure for cloud clients. It consists of: the OpenStack Compute, an open source

software and standard for large scale deployments of automatically provisioned virtual compute; the OpenStack Object Storage is open source software and standard for large-scale, redundant storage of static objects and the OpenStack Image Service, which provides discovery registration and delivery services for virtual disk images. OpenStack can be deployed by a port infrastructure providing a Private Cloud offering port cloud services. The open source Cloud Project Eucalyptus [16], deploys on-premise (private) IaaS Clouds and creates scalable and secure cloud resources for computing networking and storing. It implements Amazon Web Services Application Programming Interface (AWS APIs) enabling interoperability with existing Cloud Services and tools, supporting multiple-side interfaces and resource management in Private and Public Cloud Services. It is already used by Government and can provide insight in building a MC cloud. OpenNebula [17] is an open source toolkit for Cloud Computing which can be used in order to build any type of Clouds, managing the complexity and heterogeneity of different distributed and decentralized data-center infrastructures. Beside the virtualized data centers, it also provides integration of existing deployed services and solutions for networking, storing and monitoring with user management. Nimbus [18] is an open source toolkit for deploying IaaS capabilities to the scientific community allowing the provider of resources to build either a private or community IaaS Cloud via the Nimbus Workspace Service by deploying VMs. Through the Nimbus Context Broker creation of configuration and security for the resources is offered. Scaling tools and an extensible open source implementation are provided for resource management options, interfaces and support of different virtualization implementations. For building from scratch a private or community Cloud Infrastructure, Ubuntu [19] provides tools or services in order to deploy, manage and scale services in close cooperation with OpenStack, managing cloud workloads in each organization's servers. EyeOS [20] is an example of Cloud Desktop that allows users to access their data, files or applications over any kind of device or operating system they are using in a worldwide scale. It provides virtualization for organizations workspace while data and files are synchronized and backed up in their main data center. It creates a Private Cloud over the client Server allowing system administration and oversight of users data at any time. It can be used by Maritime organizations, companies or Public Sector in order to create a more secure and closed desktop environment over the Maritime's Terminal devices. Collectd [21] is a Daemon Tool which collects system performance statistics periodically and provides mechanisms to store these values in a variety of ways such as prediction of future system load (capacity planning of CPU utilization). Particularly, this architecture allows the collection for a variety of services and servers like Apache, Linux-V-server giving Collectd the feature of feeding information to other systems/platforms management tools.

BitNami Cloud Hosting [22] is also an open source project that produces open source installers or software packages in order to run web applications, development environments as well as virtual appliances. Finally, Zimbra Desktop [23] is open source e-mail software providing cloud e-mail utilization. The above projects can be exploited for creating a MC, as an appropriate solution in port collaboration and delivering of cross-border e-port services, due to the vital need of receiving/sending large amounts of different information. IV.

CREATING THE MC DELIVERY MODELS

The maritime environment is a complex one involving many entities - ports, ships (with passengers, crew, cargo), port authorities, maritime and insurance companies, customs, ship-industry, banks, ministries, other commercial providers, other critical infrastructures (e.g. railroads, airports) which interact with each other and supported by complex, heterogeneous and non-interoperable ICT systems [1, 24]. The maritime entities are using a variety of software applications from different vendors without having a middleware solution for managing the huge amounts of data across the different applications, across the different regions [1, 24, 25]. The need for accessing their data, anytime, everywhere from different applications is a major concern. The cost of hardware and software (operating systems and applications) in all maritime entities is a major burden in the economics of the maritime sector. MC delivery models (Fig. 1), Infrastructure, Platform and Software as a Service, described in Section 2 can be specified in the MC as follows: A. Infrastructure as a Service (IaaS) IaaS is the so called cloud hosting model where all computing power from any type of Maritime ICT resource (hardware, bandwidth) can be used rather than purchasing new resources. It will be the virtual platform on which port ICT requirements will be deployed including storage and service offerings. This model will be responsible in providing server, storage, networking, load balancing services and system management. In the MC IaaS model (Fig. 2), infrastructure can derive from the already existing PICT infrastructure of ports or maritime organizations, shipping and cargo public or private companies and tourist agencies/companies without excluding other organizations or companies related to the maritime sector. B. Platform as a Service (PaaS) PaaS is a premium infrastructure and united platform, where all maritime applications can be developed providing the tools for development, testing and deployment of maritime application solutions. At this model integration of existing systems can be achieved. ICT standards and business models can be followed in order to create a fully customizable maritime platform based on the needs of each party. The PaaS model (Fig. 2), provides functions as a united platform where applications can be developed. It also

provides the tools for application design, development, testing, deployment and hosting; the required facilities to support the building and delivering applications and services. It enables collaboration, web service and data base integration, security, scalability, storage and management. Maritime Cloud environments crucial modules are: the operating system(s)/platform(s), databases, development tools (e.g. Java runtimes and web servers). Not all Cloud Models are appropriate for the maritime eco-system since the participating maritime entities have different requirements and expectations. Thus before selecting a Maritime Cloud model, the requirements need to be captured and considered at the design phase of the maritime cloud. For example PICT environments host, store or exchange information and data in order to provide the maritime participants with electronic and mobile port services. Interoperability and security are major drawbacks at all levels (PICT architectures, technologies, processes, procedures and data) in the realization of cross border e-port services [1, 25]. These two requirements (interoperability and security) need to be considered in the design of an appropriate MC delivery model providing port services [1, 25, 26].

Figure 1. Maritime Cloud Delivery Models

C. Maritime as a Service (MaaS) MaaS is the model where all maritime software and applications are deployed and provide the maritime services on demand. It is the most important component of the MC delivery model, as it can lead to the creation of new generation, crossborder, trustworthy e/m-port services embedding a variety of naval ICT systems [1, 25, 26]. MaaS (Fig. 2) is replacing in the MC delivery model, the already known Software as a Service model, so that all involved maritime entities can collaborate under the same community (E.U. ports) and use the same cross-border port services. The main port services [1, 24, 25] can be embedded in the MaaS layer as MC port services: •

Vessel management services: providing einformation about vessel status for all agents; eadministrative procedures; e-communication with port/maritime authorities, police, immigration, etc.; vessel authentication and monitoring services (via RFIDs, GIS systems); navigation services;









Cargo management services: providing edocumentation to all agents involved; e- information about container status, cargo e-management, cargo authentication and monitoring services (via RFIDs, GIS systems); navigation services; Inland Logistics services: e-management of inland transport operations (e.g. transport/accept/deliver eorders); e-procurement, e-invoicing, e-payment; etracing services (e.g. e-information about shipments across entire logistics chain); e-reservation; Communication at Port Level: Multichannel communication (Internet, Wi-Fi, VPNs) services in the port for communicating with all maritime entities (other ports, ships, crew, etc.); Integration services: with customs systems for eadministrative various customs documents (e.g. customs declarations, import/export) and controls (e.g. taxes, penalties); integration with port police and immigration systems for e-monitoring and auditing vessels, cargo, goods and people; integration with health organizations systems for offering e-health services (especially to the cru); integration with other transport CIIs (e.g. railways, airports) offering collaborative e-tourism services (reservation, scheduling, ticketing).

provide security and privacy to the cloud port services . As for example a disaster recovery cloud service [27] helping the maritime communities in emergency situations, ensuring the recovery of PICT system failures after a disaster. A disaster recovery cloud service may provide mechanisms for preventing, avoiding, recovering and restoring the PICT systems. Such a cloud PICT management service is crucial for the PICT security team in order to monitor and manage the security and stability of the PICT system [24, 25, 26] by offering also mechanisms for asset identification, threat analysis, risk assessment and management. V.

MARITIME CLOUD DEPLOYMENT MODEL

Cloud technology can be exploited by the Commercial ports and build various types of deployment models that can be used in order to implement a MC in the maritime sector [28], offering cloud services to the national or European ports. There are various types of clouds that can be implemented in the maritime sector: A private cloud is limited within the boundaries of a specific enterprise or environment. A maritime private cloud can be implemented at local level offering e-port services to a local port. A private cloud that is used by other enterprise of similar interests, target groups and policies (e.g. security, privacy, and certificate) is called community cloud. A maritime community cloud can be implemented at national, regional or E.U. level offering cross-border e-port services to the national, regional or E.U. ports (named maritime national/regional/ E.U. cloud respectively). When a maritime cloud provide services to the general public without limitations, similar to the above, then we have the public cloud. A maritime E.U. could be implemented in order to offer e-services e.g. information services: scheduling, navigations, cruise info, to all E.U. and neighboring ports as well as to their users. Finally a hybrid cloud is a combination of the previous types (as shown in Fig. 3). A maritime hybrid cloud can be implemented to offer services to the general public and also provide eservices to the various ports (either national, regional or E.U.).

Figure 2. Maritime Cloud Delivery Models

Every MC delivery model can also be parameterized upon the needs of a united Maritime Community or even a Private MC and each model can include the above described services. Besides the above mentioned cloud port services, horizontal cloud security services may be offered in order to

Figure 3. Hybrid European Maritime Cloud

VI.

CONCLUSIONS

The adoption of Cloud Computing technology can bring a new revolution to the maritime field enabling a holistic collaborative environment offering cross-border, trustworthy e-services to all commercial ports and their users in a cost effective way [29, 30]. Providing reliable information, immediate request processing and improved maritime services via a maritime cloud exploiting the known Cloud Computing Technology, could be a next step to the solution of these issues. Various types of clouds (e.g. private, community, public, and hybrid) can be implemented in order to offer maritime cloud services which can offer a variety of antagonistic, innovative, cross border maritime cloud services (e.g. security as a service, identity management as a service, e-port services) at national, regional and E.U. levels. Maritime cloud services could solve the interoperability problem of cross border services enhancing the E.U. maritime market sector in a holistic approach, contributing towards the implementation of an E.U. Integrated Maritime Policy [1,25,28, 31]. The creation of a MC delivery model for the EU Ports, hosted in organizations, such as the International Maritime Organization, can offer trusted eservices to E.U. commercial ports, enabling interoperability and collaboration among all the involved parties. Topics such as security, data interoperability, SLAs, or mobility are open issues for future research work.

[11]

[12]

[13]

[14]

[15] [16] [17] [18] [19] [20] [21] [22] [23] [24]

[25]

ACKNOWLEDGEMENTS The authors would like to thank the GSRT (General Secretariat for Research and Technology Development Department) for funding the S-Port project and the S-Port partners. REFERENCES [1]

N. Polemi, ENISA Report II “Security Management of the Ports Information and Communication Technology (PICT) systems” June 2012 (to appear) [2] Naval-technology.com, “In-Touch and In-Sync – Modern Naval Communications,http://www.navaltechnology.com/features/feature11 3764/ [3] Ducruet, C., Zaidi, F.: "Maritime constellations: A complex network approach to shipping and ports", Maritime Policy and Management 39, ver2, 2012 [4] NIST Special Publication: “The NIST Definition of Cloud Computing”. http://csrc.nist.gov/publications/nistpubs/800145/SP800-145.pdf [5] Reese, G.: "Cloud Application Architectures", chap. 1, O'Reilly, 2009 [6] Sosinsky, B.: "Cloud Computing-Bible", Wiley Publishing, 2011 [7] "Distributed Computing: Utilities, Grids & Clouds", ITU-T Technology Watch Report 9, 2009 [8] Wyld., D.: "Moving to the Cloud: An introduction to Cloud Computing in Government", E-Government Series, IBM Center for the Business of Government, 2009 [9] Halscott, J.: "Desktop Virtualization & Evolving Strategies for IT Service Delivery", Realtime Publishers, on-site: http://nexus.realtimepublishers.com/ [10] Military Information Technology “CANES and the Cloud”.http://www.military-information-technology.com/mit-

[26] [27] [28] [29] [30]

[31]

archives/219-mit-2009-volume-13-issue-11/2353-canes-and-thecloud.html Fierce Government IT, “Navy Embraces Cloud Computing”, http://www.fiercegovernmentit.com/story/navy-embraces-cloudcomputing/2011-07-13#ixzz1iz116Lqm BlackDuck: “Open Source Projects for Cloud on Rise, According to Black Duck Software Analysis”, http://www.blackducksoftware.com/ Socialized Software: “Eleven Open Source Cloud Computing Projects to watch”, http://socializedsoftware.com/2010/01/20/elevenopen-source-cloud-computing-projects-to-watch/ Critical Authoritative Strategic: “Five Open Source Cloud Computing Projects to Watch”, http://www.cio.com.au/article/374190/5_open_source_cloud_computi ng_projects_watch/ OpenStack Cloud Software, http://openstack.org/ Eucalyptus Open Source Cloud Platform, http://open.eucalyptus.com/ OpenNebula.org – The Open Source Solution for Data Center Virtualization, http://www.opennebula.org Nimbus, http://www.nimbusproject.org Ubuntu, http://www.ubuntu.com EyeOs, http://eyeos.org/ Collectd – System Statistics Collection daemon, http://collectd.org/ Bitnami, http://bitnami.org/ VMware Zimbra, http://www.zimbra.com/ Global Maritime information Sharing Symposium Proceedings, Baltimore,2010,http://www.gmsa.gov/gmiss/download/GMISS_2010 _Proceedings.pdf ENISA Report I “Analysis of cyber security aspects in the maritime sector”, http://www.enisa.europa.eu/act/res/other-areas/cybersecurity-aspects-in-the-maritime-sector/cyber-security-aspects-in-themaritime-sector-1, December 2011 Heiser, J., Nicolett, M.: "Assessing the Security Risks of Cloud Computing", Gartner Inc., ID Num: G00157782, June 2008 Liu, H., Dezhi, H.: "The Study and Design on secure-cloud storage system", ICECE, 2011 International Conference Kundra, V.: "State of Public Sector Cloud Computing", whitepaper, CIO Council, 2010 MARine Systems Software Architecture-MARSSA, http://www.marssa.org/index.php/about/marrsa Microsoft: "SOGET Solution Overview 2011", http://www.microsoft.com/publicsector/ww/internationalorganizations/projects/Pages/enabling-maritime-tradeautomation.aspx Shah M.A., Baker, M., Mogul J.C., and Swaminathan, R.: “Auditing to Keep Online Storage Services Honest,” Proc. 11th USENIX Workshop on Hot Topics in Operating Systems (HOTOS ’07)