2.2 Flashcards
Summarize virtualization and cloud computing concepts.
Different configurations in which computing resources and services are provisioned, managed, and accessed within cloud infrastructure.
Cloud models
Cloud computing model that provides virtualized computing resources over the internet.
Infrastructure as a service (IaaS)
Cloud computing model that provides a platform allowing customers to develop, run, and manage applications without dealing with the complexities of underlying infrastructure.
Platform as a service (PaaS)
Cloud computing model that delivers software applications to end users from within the cloud.
Software as a service (SaaS)
Is a broad term that encompasses various cloud computing services delivered over the internet. It represents a model where different types of services, applications, and resources are provided on-demand
Anything as a service (XaaS)
Refers to a cloud service that is rendered over a system open for public use.
Public Cloud
Is a system in where several organizations with a common interest share a cloud environment for the specific purposes of the shared endeavor.
Community Cloud
Reserved resources used only by one organization. For organizations that are highly sensitive to sharing resources.
Private Cloud
Is a cloud structure where elements from private, public, and community cloud structures are combined.
Hybrid Cloud
Companies or organizations that offer a variety of cloud-based services and resources over the internet.
Cloud service providers
Is a company that remotely manages a customer’s IT infrastructure.
Managed service provider (MSP)
Is a specialized third-party company that offers a range of outsourced security services to organizations.
Managed security service
provider (MSSP)
When a system resides locally in the building of an organization.
On-premises
Computing resources, data storage, or services that are located outside of an organization’s physical premises or on-premises infrastructure.
Off-premises
Is a distributed form of cloud computing, in which workload is performed on a distributed, decentralized architecture. Some data is processed in the cloud while other data is processed locally.
Fog computing
Is a form of cloud computing, in which data processing occurs near or at the “edge” of the network, which could be on devices, routers, or local servers. This approach aims to reduce latency, enhance real-time decision-making, and alleviate the burden on centralized data centers.
Edge computing
Is a lightweight computer, with limited resources, whose primary purpose is to communicate with another machine.
Thin client
Virtualization enables multiple OS instances to coexist on a single hardware platform. The concept of ____________ is similar, but rather than having multiple independent OSs, a ____________ holds the portions of an OS that it needs separate from the kernel. Therefore, multiple ____________ can share an OS, yet have separate memory, CPU, and storage threads.
Containers
An architectural approach in software development where an application is decomposed into a set of small, independently deployable services.
Microservices
A set of protocols, tools, and definitions that allow different software applications to communicate and interact with each other.
Application Programming Interface (API)
Is the use of machine-readable definition files as well as code to manage and provision computer systems.
Infrastructure as code
Is a network architecture where the control plane and the data plane are separated. This allows for networking hardware to be under programmatic control, even while processing data.
Software-defined networking (SDN)
For a network device to operate on data, it must see the data flow. Firewalls can’t manage data they don’t see, so firewalls are physically positioned throughout the network in line with the system’s physical architecture. Just as software-defined networking has changed how networks are managed, ________________ is an extension of this infrastructure as code idea for the network visibility problem.
Software-defined visibility (SDV)
Is an approach to application development and deployment where the management of server infrastructure is abstracted away from the developer.
Serverless architecture
Is the connection of infrastructure and software elements to provide specific services to a business entity.
Services integration
A set of rules, configurations, and access controls that govern the use and management of cloud resources within a cloud environment.
Resource policies
Is a network connection that is used to interconnect virtual private clouds (VPCs) and on-premises networks.
Transit gateway
Is used to enable a computer to have more than one OS present and, in many cases, operating at the same time.
Virtualization
Is a low-level program that allows multiple operating systems to run concurrently on a single host computer.
Hypervisor
Is a type of hypervisor that runs directly on the system hardware. Are referred to as native, bare-metal, or embedded hypervisors.
Type I Hypervisor
Is a type of hypervisor that runs on top of a host operating system.
Type II Hypervisor
Is the uncontrolled spreading and disorganization caused by lack of an organizational structure when many VMs require management. An organization needs to implement ___________ avoidance through policy.
Virtual machine (VM)
sprawl
Where software, either malware or an attacker, escapes from one VM to the underlying OS.
VM escape
