Cloud Data Management Interface Explained

Cloud Data Management Interface
Status:Published
Year Started:2009
Version:2.0.0
Organization:International Organization for Standardization
Base Standards:Hypertext Transfer Protocol
Related Standards:Network File System
Abbreviation:CDMI
Domain:Cloud computing

ISO/IEC 17826 Information technology — Cloud Data Management Interface (CDMI) Version 2.0.0 is an international standard[1] that specifies a protocol for self-provisioning, administering and managing access to data stored in cloud storage, object storage, storage area network and network attached storage systems. The CDMI standard is developed and maintained by the Storage Networking Industry Association,[2] who makes a publicly accessible version of the specification available.[3]

CDMI defines new resource representations[4] to enable standardized management of any URI-accessible data, and defines RESTful HTTP operations using these representations to discover the capabilities of the storage system, discover stored data, access and update management metadata, specify data storage protocols (such as iSCSI and NFS) through which the stored data is accessed, and provide cross-system and cross-cloud import and export in order to enable data portability.

Management functions enabled by CDMI include managing data ownership, identity mapping, access controls, user-specified metadata, and to declaratively specify desired data protection, data retention, constraints on geographic placement, desired quality of service, data versioning and security requirements.

CDMI also defines utility services to facilitate data management, such the ability to query data matching specific criteria, and includes extensions[5] to perform bulk updates using CDMI Jobs.[6]

Capabilities

Compliant implementations must provide access to a set of configuration parameters known as capabilities.These are either boolean values that represent whether or not a system supports things such as queues, export via other protocols, path-based storage and so on, or numeric values expressing system limits, such as how much metadata may be placed on an object. As a minimal compliant implementation can be quite small, with few features, clients need to check the cloud storage system for a capability before attempting to use the functionality it represents. Resource allocation assignments limited to the data management interface protocols must possess access bypass capabilities which extend beyond the layered framework.[7] This integral function is vital to the prevention of transport layer session hijacking by unauthorized entities which may circumvent standard interfacing security parameters.[8]

Containers

A CDMI client may access objects, including containers, by either name or object id (OID), assuming the CDMI server supports both methods. When storing objects by name, it is natural to use nested named containers; the resulting structure corresponds exactly to a traditional filesystem directory structure.

Objects

Objects are similar to files in a traditional file system, but are enhanced with an increased amount and capacity for metadata. As with containers, they may be accessed by either name or OID. When accessed by name, clients use URLs that contain the full pathname of objects to create, read, update and delete them. When accessed by OID, the URL specifies an OID string in the cdmi-objectid container; this container presents a flat name space conformant with standard object storage system semantics.

Subject to system limits, objects may be of any size or type and have arbitrary user-supplied metadata attached to them. Systems that support query allow arbitrary queries to be run against the metadata.

Domains, Users and Groups

CDMI supports the concept of a domain, similar in concept to a domain in the Windows Active Directory model. Users and groups created in a domain share a common administrative database and are known to each other on a "first name" basis, i.e. without reference to any other domain or system.

Domains also function as containers for usage and billing summary data.

Access Control

CDMI exactly follows the ACL and ACE model used for file authorization operations by NFSv4. This makes it also compatible with Microsoft Windows systems.

Metadata

CDMI draws much of its metadata model from the XAM specification. Objects and containers have "storage system metadata", "data system metadata" and arbitrary user specified metadata, in addition to the metadata maintained by an ordinary filesystem (atime etc.).

Queries

CDMI specifies a way for systems to support arbitrary queries against CDMI containers, with a rich set of comparison operators, including support for regular expressions.

Queues

CDMI supports the concept of persistent FIFO (first-in, first-out) queues. These are useful for job scheduling, order processing and other tasks in which lists of things must be processed in order.

Compliance

Both retention intervals and retention holds are supported by CDMI. A retention interval consists of a start time and a retention period. During this time interval, objects are preserved as immutable and may not be deleted. A retention hold is usually placed on an object because of judicial action and has the same effect: objects may not be changed nor deleted until all holds placed on them are removed.

Billing

Summary information suitable for billing clients for on-demand services can be obtained by authorized users from systems that support it.

Serialization

Serialization of objects and containers allows export of all data and metadata on a system and importation of that data into another cloud system.

Foreign protocols

CDMI supports export of containers as NFS or CIFS shares. Clients that mount these shares see the container hierarchy as an ordinary filesystem directory hierarchy, and the objects in the containers as normal files. Metadata outside of ordinary filesystem metadata may or may not be exposed.

Provisioning of iSCSI LUNs is also supported.

Client SDKs

See also

Notes and References

  1. Web site: ISO/IEC 17826:2022. ISO. 17 September 2024.
  2. Web site: Cloud Data Management Interface. SNIA. 26 June 2011.
  3. Web site: Cloud Data Management Interface (CDMI) v2.0.0. SNIA. 17 September 2024.
  4. Web site: Cloud Data Management Interface (CDMI) Media Types. IETF. 17 September 2024.
  5. Web site: Draft CDMI Extensions and Profiles. SNIA. 17 September 2024.
  6. Web site: CDMI Jobs Extension Version 2.0. SNIA. 17 September 2024.
  7. Book: Metheny . M . Federal Cloud Computing: The Definitive Guide for Cloud Service Providers . 2017 . Syngress . 202–245.
  8. Book: da Fonseca . N . Cloud Services, Networking, and Management . 2015 . John Wiley & Sons . 70–98.