2.2 Virtualization and Cloud Computing Flashcards
Cloud Model:
Sometimes called Hardware as a Service (HaaS)
– Outsource your equipment
• You’re still responsible for the management
– And for the security
• Your data is out there, but more within your control
• Web server providers
Infrastructure as a service (IaaS)
Cloud Model:
• No servers, no software, no maintenance team, no HVAC
– Someone else handles the platform, you handle the development
• You don’t have direct control of the data, people, or infrastructure
– Trained security professionals are watching your stuff
– Choose carefully
• Put the building blocks together
– Develop your app from what’s available on the platform
– SalesForce.com
Platform as a service (PaaS)
Cloud Model:
• On-demand software
– No local installation
– Why manage your own email distribution?
– Or payroll?
• Central management of data and applications
– Your data is out there
• A complete application offering
– No development work required
– Google Mail
Software as a service (SaaS)
Cloud model:
• A broad description of all cloud models
– Use any combination of the cloud
• Services delivered over the Internet
– Not locally hosted or managed
• Flexible consumption model
– No large upfront costs or ongoing licensing
• IT becomes more of an operating model
Anything as a Service (XaaS)
Cloud deployment model:
- Available to everyone on the internet
Public
cloud deployment model:
- Several organizations share the same resources
Community
Cloud deployment model:
- Your own virtualized local data center
Private
Cloud deployment model:
- Mix of public and private
Hybrid
Name a few benefits to cloud computing.
- Computing power is instantly available
- Massive data storage capabilities
- Rapid change adjustment
- Smaller start up costs
Name a few drawbacks of cloud computing.
- Latency
- Limited bandwidth
- Difficult to protect data
- Requires internet/network connectivity at all times
This type of computing is often associated with IoT devices. Processing occors on the local device and does not require any communication across the internet.
Edge Computing
Type of computing that involves IoT devices that process data locally as well as across the internet. Allows private data to stay local, reducing security risks.
Fog computing
What does it mean for cloud computing to be “elastic”?
Can scale up and down as needed
The concept of apps being self-contained in a cloud system, preventing them from interacting with each other.
app containerization
APIs are designed to break down monolithic apps into smaller instances that run independently. What are these services called?
Microservices
Also known as Function as a service (FaaS) and involves applications running autonomously without the need of an operating system. Runs in a stateless compute container that may be event triggered.
Serverless architecture
This gateway acts as a sort of “cloud router” which allows users to connect to multiple virtual private clouds (VPCs).
Transit gateway
Policies that assign permissions to cloud resources.
Resource policies
This is the integration of a wide variety of cloud service providers which allows the presentation of a single business facing interface.
Service integration and management (SIAM)
Code written to define an infrastructure such as servers, networks, and applications.
Infrastructure as code
A network that is configured to be centrally managed and configured programmatically with no human intervention.
Software defined networks (SDN)
The process of monitoring the security and flow of data over a SDN.
Software defined visibility (SDV)
This is something that’s easy to accidentally do when building VMs, but should be avoided at all costs to prevent VM escape attacks.
VM Sprawl
What is the best way to prevent VM escape attacks?
Avoid VM sprawl and maintain documentation for deprovisioning of servers
