Skip to main content

Account Model

Overview

The Account Model, powered by kcp

kcp
An open source horizontally scalable control plane for Kubernetes-like APIs.
, serves as the foundational fabric for managing interactions across a distributed cloud-edge continuum, enabling seamless collaboration between service providers
A service provider offers services to consumers.
 and service consumers
An organization or individual that orders, utilizes, and manages the lifecycle of a service.
 within the Platform Mesh architecture. Built on kcp
kcp
An open source horizontally scalable control plane for Kubernetes-like APIs.
's hierarchical organization concept and the Kubernetes Resource Model
A framework used in Kubernetes to define and manage the various entities or resources.
, it introduces a sophisticated structure where each account functions as an isolated control plane
Central management system responsible for orchestrating and managing a target environment.
, transcending traditional approaches to service management. Through its export and bind mechanisms, isolated environments, and multi-tenancy support, it creates an environment that elegantly handles the complexities of modern service ecosystems while ensuring clear organizational boundaries and precise operational control across diverse cloud and edge environments.

Components

Account Structure

At its core, the Platform Mesh implements a hierarchical account model that naturally mirrors how organizations operate. This innovative approach provides isolated environments where companies can seamlessly map their business units, teams, and projects while maintaining clear ownership and access patterns.

The account structure offers several key capabilities:

  • Deep nesting support that allows organizations to create structures matching their operational needs without artificial constraints
  • Logical isolation ensuring secure multi-tenancy, where different roles like service consumers, providers, and marketplace functionality can operate independently
  • Built-in support for defining different account types, each tailored to specific organizational needs
  • Natural flow of policies and configurations through the hierarchy, simplifying governance
  • Robust service integration mechanisms enabling providers to expose services and consumers to discover and utilize them within their isolated environments

This comprehensive set of features enables the implementation of governance models that align perfectly with specific requirements and compliance needs, while ensuring secure and scalable service management across the platform.

Service Management Integration

The account model significantly enhances service interactions through automated relationship management between service consumers

An organization or individual that orders, utilizes, and manages the lifecycle of a service.
and service providers
A service provider offers services to consumers.
. When an organization engages with a provider, the platform automatically establishes necessary connections, creating dedicated shadow accounts and tenant spaces, ensuring secure and isolated service management while maintaining operational consistency.

Key aspects of Service Management Integration within the account model:

  • Automated Relationship Management: The platform automates the establishment of connections between service consumers and providers. This includes creating dedicated shadow accounts and tenant spaces, streamlining the onboarding process and reducing manual configuration.
  • Declarative Service Consumption: Leveraging the Kubernetes Resource Model
    A framework used in Kubernetes to define and manage the various entities or resources.
     (KRM), the platform enables declarative service consumption. Service consumers can define the desired state of their services through resources, and the platform ensures the actual state aligns with the desired state.
  • Managed Service Provider Pattern: The integration leverages the Managed Service Provider pattern, where service providers
    A service provider offers services to consumers.
     are responsible for automating the lifecycle of capabilities
    A concrete incarnation of a service that has been created and configured for a specific application or service.
    . This pattern promotes scalability and regional distribution by enabling service providers to manage multiple service runtimes
    A runtime environment that hosts one or more capabilities.
     and deploy capabilities close to the consumer's application.
  • Service Catalog and Marketplace: The platform facilitates a marketplace-like experience where service consumers can discover and select services offered by providers. This is enabled through export and bind mechanisms that allow providers to define service offerings and consumers to bind to these services.
  • Consumer Experience driven by KRM: The consumer experience is driven by the Kubernetes Resource Model, providing a unified API surface for declarative service consumption across different providers. Consumers can interact with the platform through tools like kubectl, IaC, or GitOps approaches.

This integration expertly balances clear boundaries between different services

A solution or active entity, which offers some API to its consumers.
with seamless integration across the service portfolio. It supports complex multi-tenant scenarios without compromising security and provides a foundation for a scalable and regionally distributed service ecosystem.

For more details about service management concepts and patterns, see Services and Service Management.

Key Features

Identity Management

Identity management within the account model delivers consistent authentication across the platform while preserving organizational control over user management. Organizations can implement centralized identity strategies with sophisticated delegation capabilities. The system seamlessly integrates with existing identity providers while upholding rigorous security standards and access controls, enabling organizations to maintain their established identity practices while leveraging the platform's advanced security features.

Key Management

The platform provides comprehensive key management capabilities for accounts, leveraging the KMS

Key Management Service (KMS) is a secure cloud service that manages cryptographic keys for data encryption, enabling users to easily create, control, and use encryption keys across various applications and services.
(Key Management Service) to offer flexible and robust data protection. Within the account model, organizations have granular control over key management, ensuring data security at every level.

Key features of the account-level Key Management include:

  • Flexible Data Protection Options: Organizations can choose to utilize their own encryption keys for accounts, maintaining full control over their data, or rely on the platform's robust security mechanisms for simplified key management.
  • Integration with Key Management Service (KMS): The account model seamlessly integrates with the platform's KMS, which can protect root keys using a Hardware Security Module
    A physical computing device that safeguards and manages digital keys for strong authentication and provides cryptoprocessing to enhance the security of sensitive data.
     (HSM). This integration ensures a high level of security for the encryption keys protecting account data.
  • Key Hierarchy (Keychain): The KMS employs a keychain concept, utilizing a hierarchy of keys including Data Encryption Keys (DEKs), Key Encryption Keys (KEKs), and Root Keys. This layered approach enhances security and allows for efficient key management. Root Keys, the top level in the hierarchy, can be protected by HSMs.
  • Advanced Key Management Features: The system supports advanced features such as key rotation policies to regularly update encryption keys, granular access controls to manage who can access and manage keys within accounts, and detailed audit capabilities for tracking key usage and modifications.
  • Account-Level Control: Key management is contextualized within the account model, allowing organizations to define and enforce key management policies and configurations at the account level, aligning with their organizational structure and compliance needs.

By leveraging these key management capabilities within the account model, organizations can ensure thorough data protection, maintain operational flexibility, and adhere to stringent security standards across their service ecosystem.

For more details about the Key Management Service, see Key Management Service.

Service Orchestration

Service orchestration within the account model achieves new levels of efficiency by employing dedicated orchestration contexts that intelligently group related services

A solution or active entity, which offers some API to its consumers.
. This sophisticated approach enables complex service compositions while preserving clear organizational boundaries. Unlike traditional orchestration, which relies on a central component to manage interactions, the Platform Mesh leverages a choreography-based approach, inspired by Kubernetes, for service orchestration.

Key aspects of Service Orchestration within the account model:

  • Choreography over Orchestration: The platform adopts a choreography-based model for service orchestration, where services manage their functions autonomously, contributing to the overall system behavior without a central orchestrator. This decentralized approach enhances resilience and flexibility.
  • Decentralized Control: In contrast to orchestration with a central control component, choreography distributes control among services. This reduces tight coupling and single points of failure, making the system more robust and adaptable to changes.
  • Emergent Behavior: The desired system behavior emerges from the collaboration of individual services, each managed by its own controller with a reconciling control loop. This approach, similar to the "invisible hand" concept, allows for coordinated behavior without central command.
  • Dedicated Orchestration Contexts: While leveraging choreography, the account model also introduces dedicated orchestration contexts. These contexts intelligently group related services
    A solution or active entity, which offers some API to its consumers.
    , enabling complex service compositions while maintaining clear organizational boundaries. Services can be seamlessly grouped and managed regardless of their account location, supporting sophisticated cross-service scenarios.
  • Flexibility and Adaptability: Choreography allows for a loosely coupled architecture where services can be easily added, removed, or exchanged. This enhances the platform's flexibility and adaptability to evolving service ecosystems and changing requirements.

By employing a choreography-based approach with dedicated orchestration contexts, the account model achieves efficient service orchestration, enabling complex compositions and cross-service scenarios while maintaining resilience, flexibility, and clear organizational boundaries. The system accommodates both managed

A service provided by a Managed Service Provider (MSP).
and unmanaged services
A service not set up and controlled by a service provider.
, providing ultimate flexibility in service deployment and management approaches.

For more details about orchestration and choreography patterns, see Control through Choreography.

Implementation Benefits

For Organizations

The account model provides organizations with unprecedented control and visibility over their service ecosystem through a unified management framework that spans cloud and edge environments. The hierarchical structure ensures that policies, permissions, and configurations flow naturally through the organization, significantly reducing administrative overhead while enhancing security through consistent policy enforcement. Organizations can implement sophisticated governance models that align precisely with their compliance requirements, while maintaining control over service deployments across distributed environments.

For Service Providers

Recognizing the crucial role of Managed Service Providers (MSPs) in modern cloud-edge environments, the account model is specifically designed to empower service providers

A service provider offers services to consumers.
with elegant integration patterns that streamline customer engagement while preserving operational independence. The account model, through its native support for the Managed Service Provider pattern, automates complex aspects of multi-tenancy, authentication, and authorization, allowing providers to focus on their core service capabilities.

Key benefits for Service Providers within the account model:

  • Streamlined Customer Engagement: The account model simplifies customer engagement by automating the establishment of connections and dedicated environments (shadow accounts, tenant spaces). This reduces friction in onboarding new customers and managing existing relationships.
  • Operational Independence: Service providers retain operational independence while seamlessly integrating with the platform mesh. The account model handles cross-cutting concerns like multi-tenancy and authorization, allowing providers to focus on their core service logic and innovation.
  • Managed Service Provider (MSP) Pattern Adoption: The platform encourages and supports the Managed Service Provider pattern. This pattern enables service providers to build scalable and regionally distributed services by managing multiple service runtimes
    A runtime environment that hosts one or more capabilities.
     and leveraging components like the service coordinator
    A central component of a service provider, containing the service scheduler and the service runtime manager.
     and servicelet
    A component managing capabilities on a service runtime.
     for automated capability lifecycle management.
  • Focus on Core Service Capabilities: By abstracting away complexities related to multi-tenancy, authentication, and authorization, the account model allows service providers to concentrate on enhancing their core service
    A solution or active entity, which offers some API to its consumers.
     offerings and delivering value to consumers.

In essence, the account model, by promoting the Managed Service Provider pattern and automating key operational complexities, empowers service providers to efficiently offer and manage their services within the Platform Mesh, fostering innovation and streamlining customer interactions.

For more details about the Managed Service Provider pattern, see Managed Service Provider Pattern.

Technical Foundation

The account model implements sophisticated integration with service providers

A service provider offers services to consumers.
for deployment operations, while providing comprehensive support for digital twins
A virtual representation of a physical object, system, or process that is continuously updated with real-time or near-real-time data to mirror its real-world counterpart.
 in service management. Leveraging kcp
kcp
An open source horizontally scalable control plane for Kubernetes-like APIs.
, the account model benefits from logical isolation and multi-tenancy features that enable secure and scalable service management across diverse cloud and edge environments. Built on standardized API interfaces based on the Kubernetes Resource Model
A framework used in Kubernetes to define and manage the various entities or resources.
, the implementation ensures consistency and interoperability across distributed infrastructure. Through advanced capability management supporting both deployment and tenant-based services, the platform enables complex service scenarios while maintaining operational simplicity in a multi-provider cloud-edge continuum.

Account Model Technical Architecture

The Platform Mesh account model, built on kcp technology, creates a flexible framework connecting service providers and consumers through standardized interfaces. At its core, providers expose their services as resources that consumers can discover and bind to within their isolated workspaces. This architecture maintains clear boundaries between different accounts while enabling seamless service consumption across the mesh.

The system organizes resources hierarchically, with parent-child account relationships that reflect organizational structures. Each workspace functions as an independent control plane where users can manage services through a consistent Kubernetes-compatible interface. This approach allows service providers to maintain control over their implementations while giving consumers a unified experience for discovering and managing services from multiple providers.

This architecture supports the Platform Mesh vision by creating an interoperable ecosystem where services can be easily discovered, consumed, and orchestrated across organizational boundaries, all while maintaining appropriate isolation and access controls.

note

The Platform Mesh Account Model represents ongoing research in service management patterns. The model continues to evolve to support enhanced service contracts, advanced security models, and improved cross-provider orchestration capabilities.