Infrastructure Services (IaaS) provide the basic core capabilities that support higher-level capabilities in other areas of the architecture. This is the service layer that supports the cloud applications that are visible to the majority of cloud users. This level is comprised of the virtual machines, applications, and databases. Often IaaS services will be deployed centrally and will run standard machine images with all necessary services preconfigured to support ease of integration and reliable connectivity and access.
As they provide a foundation, they are largely invisible to end users of the cloud service. For example, a customer will likely be required by due diligence to assure that cloud facilities provide physical security to match the risk characteristics of the uses they make of cloud services but otherwise will ignore the operational details of how physical access controls are implemented.
Even the cloud needs to live somewhere physically. These datacenters are physically secured with fences, cameras, security guards, man-traps, and badge activated doors. Availability of the infrastructure is ensured with lines to multiple Internet service providers, power generators in the case of power failure, and multiple computers to do the same job in case one fails.
Relationships to Other Domains
Infrastructure Services provides many of the core components and capabilities that support capabilities provided in other parts of the architecture. For example, the higher levels of governance provided in the Security and Risk Management domain is largely meaningless without good physical security at the base level of the infrastructure. Service Delivery and Support under the ITOS domain similarly depend on the performance and reliability assurances provided at the infrastructure level.
|Controlled Physical Access
| Environmental Risk Management