Featured Product
This Week in Quality Digest Live
Standards Features
MSMEs are encouraged to uphold the highest standards
Steven Brown
21st-century standard candles at NIST
Kath Lockett
ISO standard for the cleaning, inspection, repair of firefighter PPE
Ann Brady
From farm to fork, how safe is your food?

More Features

Standards News
Run compliance checks against products in seconds
Aug. 25, 2022, at 3:00 p.m. Eastern
Could be used for basic performance information on raw materials used in the most common 3D printers
Now is not the time to skip critical factory audits and supply chain assessments
Google Docs collaboration, more efficient management of quality deviations
Program inspires leaders to consider systems perspective for continuous improvement and innovation
Collaboration produces online software for collecting quality inspection data
First responders may benefit from NIST contest to reward high-quality incident command dashboards

More News



The Importance of Framing the Cloud

ISO/IEC 17788 and ISO/IEC 17789 help companies avoid complex systems with complex failures

Published: Wednesday, October 29, 2014 - 13:28

(ISO: Geneva) -- If the cloud computing trend sounds a bit nebulous to you, you’re not alone. Many enterprises that opt for these services end up with complicated multicloud deployments that become unmanageable. These are complex systems with complex failures, which are in urgent need of systemization. Happily, two new ISO/IEC standards have put some order in the chaos.

The sky’s the limit for cloud computing, which seems set to change the entire computer industry. This revolutionary concept has reached unexpected heights in the last decade and is recognized by governments and private-sector organizations as major game-changing technology.

But what exactly is it? Until recently, most software programs ran on your personal computer. With cloud computing, they now run on large networks of remote servers that enable the sharing of data-processing tasks, centralized storage, and online access to computer services—all over the Internet.

Beyond its technical definition, cloud computing holds a host of benefits. By maximizing the effectiveness of shared resources, it achieves coherence and economies of scale, much like the electricity grid, for example.

Order out of chaos

Yet “the cloud,” as it is known, poses many issues, chiefly related to compatibility. With more providers offering cloud-based services, the technology has suffered from chaotic development, making it almost impossible for companies to ascertain the quality of services offered.

Addressing the problem, joint ISO/IEC technical committee JTC 1/SC 38, in collaboration with the International Telecommunication Union, has just released two key International Standards for cloud computing. Drawing on the knowledge of experts from more than 30 countries, the groundbreaking standards lay down the basic terminology and architectural framework for this expanding industry.

ISO/IEC 17788—“Cloud computing—Overview and vocabulary,” provides definitions of common cloud computing terms, including those for cloud service categories such as software as a service (SaaS), platform as a service (PaaS), and infrastructure as a service (IaaS). It also specifies the terminology for cloud deployment models such as “public” and “private” cloud. More technical in nature, ISO/IEC 17789—“Cloud computing—Reference architecture,” contains diagrams and descriptions of how the various aspects of cloud computing relate to one another.

The way forward

“Cloud computing is a shift in the paradigm for providing IT capabilities to users that may impact a great deal of future IT products, systems and services,” says Donald Deutsch, chair of ISO/IEC JTC 1/SC 38. “These first international cloud-computing standards provide a sound foundation for follow-on standards as needs become more clear in this area.”

As if to confirm this, JTC 1/SC 38 is already piloting a number of projects in areas such as service-level agreements, interoperability and portability, and data and their flow across devices and cloud services.

And if running your business “in the cloud” sounds dangerous, JTC 1 subcommittee SC 27, which focuses on security issues, is working on several projects that build on the fundamentals laid down by these two new standards.

The existing standards are available from your national ISO member or from the ISO Store.


About The Author

ISO’s picture


The International Organization for Standardization (ISO) is the world’s largest developer and publisher of international standards. ISO is a network of the national standards institutes of 162 countries, one member per country, with a Central Secretariat in Geneva, Switzerland, that coordinates the system. ISO is a nongovernmental organization that forms a bridge between the public and private sectors. ISO enables a consensus to be reached on solutions that meet both the requirements of business and the broader needs of society. View the ISO Standards list.