blob: 54ba6b728716016cbcd4ff0a398e65550c647826 [file] [log] [blame]
Chris Donleyec36ceb2017-11-07 16:01:27 -08001.. This work is licensed under a Creative Commons Attribution 4.0 International License.
2.. http://creativecommons.org/licenses/by/4.0
3.. Copyright 2017 Huawei Technologies Co., Ltd.
4**Introducing the ONAP Architecture (Amsterdam Release)**
5=========================================================
6
7**Introduction **
8-----------------
9
10The ONAP project was formed in March, 2017 in response to a rising need
11for a common platform for telecommunication, cable, and cloud
12operatorsand their solution providersto deliver differentiated network
13services on demand, profitably and competitively, while leveraging
14existing investments.
15
16Prior to ONAP, operators of large networks have been challenged to keep
17up with the scale and cost of manual changes required to implement new
18service offerings, from installing new data center equipment to, in some
19cases, upgrading on-premises customer equipment. Many are seeking to
20exploit SDN and NFV to improve service velocity, simplify equipment
21interoperability and integration, and reduce overall CapEx and OpEx
22costs. In addition, the current, highly fragmented management landscape
23makes it difficult to monitor and guarantee service-level agreements
24(SLAs).
25
26ONAP is addressing these problems by developing global and massive scale
27(multi-site and multi-VIM) orchestration capabilities for both physical
28and virtual network elementsIt facilitates service agility by
29providing a common set of REST northbound APIs that are open and
30interoperable, and by supporting YANG and TOSCA data modelsONAPs
31modular and layered nature improves interoperability and simplifies
32integration, allowing it to support multiple VNF environments by
33integrating with multiple VIMs, VNFMs, SDN Controllers, and even legacy
34equipment. This approach allows network and cloud operators to optimize
35their physical and virtual infrastructure for cost and performance; at
36the same time, ONAPs use of standard models reduces integration and
37deployment costs of heterogeneous equipment, while minimizing management
38fragmentation.
39
40The ONAP platform allows end customers and their network/cloud providers
41to collaboratively instantiate network elements and services in a
42dynamic, closed-loop process, with real-time response to actionable
43events. In order to design, engineer, plan, bill and assure these
44dynamic services, there are three (3) major requirements:
45
46- A robust design framework that allows specification of the service in
47 all aspects modeling the resources and relationships that make up
48 the service, specifying the policy rules that guide the service
49 behavior, specifying the applications, analytics and closed-loop
50 events needed for the elastic management of the service
51
52- An orchestration and control framework (Service Orchestrator and
53 Controllers) that is recipe/policy driven to provide automated
54 instantiation of the service when needed and managing service demands
55 in an elastic manner
56
57- An analytic framework that closely monitors the service behavior
58 during the service lifecycle based on the specified design, analytics
59 and policies to enable response as required from the control
60 framework, to deal with situations ranging from those that require
61 healing to those that require scaling of the resources to elastically
62 adjust to demand variations.
63
64To achieve this, ONAP decouples the details of specific services and
65technologies from the common information models, core orchestration
66platform and generic management engines (for discovery, provisioning,
67assurance etc). Furthermore, it marries the speed and style of a
68DevOps/NetOps approach with the formal models and processes operators
69require to introduce new services and technologies. This is in stark
70contrast to the traditional OSS/Management software platform
71architectures, which hardcoded service and technologies and required
72lengthy software development and integration cycles to incorporate
73changes.
74
75The ONAP Platform enables product/service independent capabilities for
76design, creation and lifecycle management, in accordance with the
77following foundational principles:
78
79- Ability to dynamically introduce full service life-cycle
80 orchestration (design, provisioning and operation) and service API
81 for new services & technologies without the need for new platform
82 software releases or without affecting operations for the existing
83 services
84
85- Carrier-grade scalability including horizontal scaling (linear
86 scale-out) and distribution to support large number of services
87 and large networks
88
89- Metadata-driven and policy-driven architecture to ensure flexible
90 ways in which capabilities are used and delivered
91
92- The architecture shall enable sourcing best-in-class components
93
94- Common capabilities are developed once and used many times
95
96- Core capabilities shall support many diverse services
97
98- The architecture shall support elastic scaling as needs grow or
99 shrink
100
101|image0|\
102
103**Figure 1:** ONAP Platform
104
105**ONAP Architecture**
106=====================
107
108Figure 2 provides a high-level view of the ONAP architecture and
109microservices-based platform components. The platform provides the
110common functions (e.g., data collection, control loops, meta-data recipe
111creation, policy/recipe distribution, etc.) necessary to construct
112specific behaviors. To create a service or operational capability, it is
113necessary to develop service/operations-specific collection, analytics,
114and policies (including recipes for corrective/remedial action) using
115the ONAP Design Framework Portal.
116
117|image1|\ **Figure 2:** ONAP Platform components (Amsterdam Release)
118
1191. **Portal**
120
121ONAP delivers a single, consistent user experience to both design time
122and run time environments, based on the users role; role changes to be
123configured within the single ecosystem. This user experience is managed
124by the ONAP Portal, which provides access to design, analytics and
125operational control/administration functions via a shared, role-based
126menu or dashboard. The portal architecture provides web-based
127capabilities such as application onboarding and management, centralized
128access management, and dashboards, as well as hosted application
129widgets.
130
131The portal provides an SDK to enable multiple development teams to
132adhere to consistent UI development requirements by taking advantage of
133built-in capabilities (Services/ API/ UI controls), tools and
134technologies. ONAP also provides a Command Line Interface (CLI) for
135operators who require it (e.g., to integrate with their scripting
136environment). ONAP SDKs enable operations/security, third parties (e.g.,
137vendors and consultants), and other experts to continually define/refine
138new collection, analytics, and policies (including recipes for
139corrective/remedial action) using the ONAP Design Framework Portal.
140
141**Design time Framework**
142=========================
143
144The design time framework is a comprehensive development environment
145with tools, techniques, and repositories for defining/describing
146resources, services, and products. The design time framework facilitates
147re-use of models, further improving efficiency as more and more models
148become available. Resources, services and products can all be modeled
149using a common set of specifications and policies (e.g., rule sets) for
150controlling behavior and process execution. Process specifications
151automatically sequence instantiation, delivery and lifecycle management
152for resources, services, products and the ONAP platform components
153themselves. Certain process specifications (i.e., recipes’) and
154policies are geographically distributed to optimize performance and
155maximize autonomous behavior in federated cloud environments.
156
157Service Design and Creation (SDC) provides tools, techniques, and
158repositories to define/simulate/certify system assets as well as their
159associated processes and policies. Each asset is categorized into one of
160four (4) asset groups: Resource, Services, Products, or Offers.
161
162The SDC environment supports diverse users via common services and
163utilities. Using the design studio, product and service designers
164onboard/extend/retire resources, services and products. Operations,
165Engineers, Customer Experience Managers, and Security Experts create
166workflows, policies and methods to implement Closed Loop Automation and
167manage elastic scalability.
168
169To support and encourage a healthy VNF ecosystem, ONAP provides a set of
170VNF packaging and validation tools in the VNF Supplier API and Software
171Development Kit (VNF SDK) component. Vendors can integrate these tools
172in their CI/CD environments to package VNFs and upload them to the
173validation engine. Once tested, the VNFs can be onboarded through SDC.
174In the future, ONAP plans to develop a VNF logo program to indicate to
175users which VNFs have gone through formal ONAP validation testing.
176
177The Policy Creation component deals with polices; these are conditions,
178requirements, constraints, attributes, or needs that must be provided,
179maintained, and/or enforced. At a lower level, Policy involves
180machine-readable rules enabling actions to be taken based on triggers or
181requests. Policies often consider specific conditions in effect (both in
182terms of triggering specific policies when conditions are met, and in
183selecting specific outcomes of the evaluated policies appropriate to the
184conditions). Policy allows rapid updates through easily updating rules,
185thus updating technical behaviors of components in which those policies
186are used, without requiring rewrites of their software code. Policy
187permits simpler management / control of complex mechanisms via
188abstraction.
189
190The Closed Loop Automation Management Platform (CLAMP) provides a
191platform for designing and managing control loops. It is used to design
192a closed loop, configure it with specific parameters for a particular
193network service, then deploy and decommission it. Once deployed, a user
194can also update the loop with new parameters during runtime, as well as
195suspend and restart it.
196
197**Runtime Framework**
198=====================
199
200The runtime execution framework executes the rules and policies
201distributed by the design and creation environment. This allows us to
202distribute policy enforcement and templates among various ONAP modules
203such as the Service Orchestrator (SO), Controllers, Data Collection,
204Analytics and Events (DCAE), Active and Available Inventory (A&AI), and
205a Security Framework. These components use common services that support
206logging, access control, and data management.
207
208Orchestration
209-------------
210The Service Orchestrator (SO) component executes the
211specified processes and automates sequences of activities, tasks, rules
212and policies needed for on-demand creation, modification or removal of
213network, application or infrastructure services and resources. The SO
214provides orchestration at a very high level, with an end to end view of
215the infrastructure, network, and applications.
216
217Controllers
218-----------
219Controllers are applications which are coupled with cloud and network
220services and execute the configuration, real-time policies, and control
221the state of distributed components and services. Rather than using a
222single monolithic control layer, operators may choose to use multiple
223distinct Controller types that manage resources in the execution
224environment corresponding to their assigned controlled domain such as
225cloud computing resources (network configuration (SDN-C) and application
226(App-C). Also, the Virtual Function Controller (VF-C) provides an ETSI
227NFV compliant NFV-O function, and is responsible for life cycle
228management of virtual services and the associated physical COTS server
229infrastructureWhile it provides a generic VNFM, it also integrates
230with external VNFMs and VIMs as part of a NFV MANO stack.
231
232Inventory
233---------
234Active and Available Inventory (A&AI) provides real-time views of a
235systems resources, services, products and their relationships with each
236other. The views provided by A&AI relate data managed by multiple ONAP
237instances, Business Support Systems (BSS), Operation Support Systems
238(OSS), and network applications to form a top to bottom view ranging
239from the products end-users buy, to the resources that form the raw
240material for creating the products. A&AI not only forms a registry of
241products, services, and resources, it also maintains up-to-date views of
242the relationships between these inventory items.
243
244To deliver promised dynamism of SDN/NFV, A&AI is updated in real time by
245the controllers as they make changes in the Domain 2 environment. A&AI
246is metadata-driven, allowing new inventory types to be added dynamically
247and quickly via SDC catalog definitions, eliminating the need for
248lengthy development cycles.
249
250**Closed-Loop Automation**
251==========================
252
253The following sections describe the ONAP frameworks designed to address
254these major requirements. The key pattern that these frameworks help
255automate is
256
257***Design -> Create -> Collect -> Analyze -> Detect -> Publish ->
258Respond.***
259
260We refer to this automation pattern as closed-loop automation in that
261it provides the necessary automation to proactively respond to network
262and service conditions without human intervention. A high-level
263schematic of the closed-loop automation and the various phases within
264the service lifecycle using the automation is depicted in Figure 4.
265
266Closed-loop control is provided by Data Collection, Analytics and Events
267(DCAE) and other ONAP components. Collectively, they provide FCAPS
268(Fault Configuration Accounting Performance Security) functionality.
269DCAE collects performance, usage, and configuration data; provides
270computation of analytics; aids in troubleshooting; and publishes events,
271data and analytics (e.g., to policy, orchestration, and the data lake).
272Another component, Holmes”, connects to DCAE and provides alarm
273correlation for ONAP.
274
275Working with the Policy Framework and CLAMP, these components detect
276problems in the network and identify the appropriate remediation. In
277some cases, the action will be automatic, and they will notify Service
278Orchestrator or one of the controllers to take action. In other cases,
279as configured by the operator, they will raise an alarm but require
280human intervention before executing the change.
281
282|image2|
283
284\ **Figure 3:** ONAP Closed Loop Automation
285
286**Common Services**
287===================
288
289ONAP provides common operational services for all ONAP components
290including activity logging, reporting, common data layer, access
291control, resiliency, and software lifecycle management. These services
292provide access management and security enforcement, data backup,
293restoration and recovery. They support standardized VNF interfaces and
294guidelines.
295
296Operating in a virtualized environment introduces new security challenges
297and opportunities. ONAP provides increased security by embedding access controls
298in each ONAP platform component, augmented by analytics and policy components
299specifically designed for the detection and mitigation of security violations.
300
301**Amsterdam Use Cases**
302=======================
303
304The ONAP project uses real-world use cases to help focus our releases.
305For the first release of ONAP (“Amsterdam”), we introduce two use cases:
306vCPE and VoLTE.
307
308\ **Virtual CPE Use Case**
309
310In this use case, many traditional network functions such as NAT,
311firewall, and parental controls are implemented as virtual network
312functions. These VNFs can either be deployed in the data center or at
313the customer edge (or both). Also, some network traffic will be tunneled
314(using MPLS VPN, VxLAN, etc.) to the data center, while other traffic
315can flow directly to the Internet. A vCPE infrastructure allows service
316providers to offer new value-added services to their customers with less
317dependency on the underlying hardware.
318
319In this use case, the customer has a physical CPE (pCPE) attached to a
320traditional broadband network such as DSL (Figure 1). On top of this
321service, a tunnel is established to a data center hosting various VNFs.
322In addition, depending on the capabilities of the pCPE, some functions
323can be deployed on the customer site.
324
325This use case traditionally requires fairly complicated orchestration
326and management, managing both the virtual environment and underlay
327connectivity between the customer and the service provider. ONAP
328supports such a use case with two key components SDN-C, which manages
329connectivity services, and APP-C, which manages virtualization services.
330In this case, ONAP provides a common service orchestration layer for the
331end-to-end service. It uses the SDN-C component to establish network
332connectivity. Similarly, ONAP uses the APP-C component to manage the
333virtualization infrastructure. Deploying ONAP in this fashion simplifies
334and greatly accelerates the task of trialing and launching new
335value-added services.
336
337|image3|
338
339**Figure 4. ONAP vCPE Architecture**
340
341Read the Residential vCPE Use Case with ONAP whitepaper to learn more.
342
343**Voice over LTE (VoLTE) Use Case**
344
345The second use case developed with Amsterdam is Voice over LTE. This use
346case demonstrates how a Mobile Service Provider (SP) could deploy VoLTE
347services based on SDN/NFV.  The SP is able to onboard the service via
348ONAP. Specific sub-use cases are:
349
350- Service onboarding
351
352- Service configuration 
353
354- Service termination
355
356- Auto-scaling based on fault and/or performance
357
358- Fault detection & correlation, and auto-healing
359
360- Data correlation and analytics to support all sub use cases
361
362To connect the different data centersONAP will also have to interface
363with legacy systems and physical function to establish VPN connectivity
364in a brown field deployment.
365
366The VoLTE use case, shown in Figure 6, demonstrates the use of the VF-C
367component and TOSCA-based data models to manage the virtualization
368infrastructure.
369
370|image4|
371
372**Figure 5. ONAP VoLTE Architecture**
373
374Read the VoLTE Use Case with ONAP whitepaper to learn more.
375
376Conclusion
377----------
378
379The ONAP platform provides a comprehensive platform for real-time, policy-driven orchestration and automation of physical and virtual network functions that will enable software, network, IT and cloud providers and developers to rapidly automate new services and support complete lifecycle management.
380
381By unifying member resources, ONAP will accelerate the development of a vibrant ecosystem around a globally shared architecture and implementation for network automationwith an open standards focusfaster than any one product could on its own.
382
383.. |image0| image:: media/ONAP-DTRT.png
384 :width: 6in
385 :height: 2.6in
386.. |image1| image:: media/toplevel.png
387 :width: 6.5in
388 :height: 3.13548in
389.. |image2| image:: media/closedloop.jpeg
390 :width: 6in
391 :height: 2.6in
392.. |image3| image:: media/vcpe.png
393 :width: 6.5in
394 :height: 3.28271in
395.. |image4| image:: media/volte.png
396 :width: 6.5in
397 :height: 3.02431in