4.0 Virtualization and Cloud Computing

Question 1

Cloud computing
* More than just a server hosted elsewhere
– Extend the m____ of applications and services
* Deploy an infrastructure in minutes
– C____ and tear down as you need
* International scope
– D___ in specific parts of the world
* Use only the required resources
– Cost is based on the amount of ___

Answer 1

– Extend the management of applications and services
*
– Create and tear down as you need
*
– Deploy in specific parts of the world
*
– Cost is based on the amount of use

Question 2

Cloud deployment models
* Private
– Your own virtualized local ___ center
* Public
– Available to everyone over the ___
* Hybrid
– A mix of public and ___
* Community
– Several organizations share the same ___

Answer 2

– Your own virtualized local data center
*
– Available to everyone over the Internet
*
– A mix of public and private
*
– Several organizations share the same resources

Question 3

Infrastructure as a service (IaaS)
* Sometimes called Hardware as a Service (HaaS)
– O___ your equipment
* You’re still responsible for the management
– And for the s___
* Your data is out there, but more within your control
– Web server ____

Answer 3

– Outsource your equipment
*
– And for the security
*
– Web server providers

Question 4

Question 5

Software as a service (SaaS)
* On-demand software
– No ___ installation
– Why ___ your own email distribution?
Or payroll?
* Central management of data and applications
– Your ___ is out there
* A complete application offering
– No development work __
– Google Mail, Microsoft 365

Answer 5

– No local installation
– Why manage your own email distribution?
*
– Your data is out there
*
– No development work required
– Google Mail, Microsoft 365

Question 6

Platform as a service (PaaS)
* No servers, no software, no maintenance team, no HVAC
– Someone else handles the ___,
you handle the development.
* You don’t have direct control of the data,
people, or infrastructure
– Trained security professionals are ___
– Choose carefully
* Put the building blocks together
– Develop your ___ from what’s available on the platform
– SalesForce.com

Answer 6

– Someone else handles the platform,
you handle the development.
*
– Trained security professionals are watching
– Choose carefully
*
– Develop your app from what’s available on the platform
– SalesForce.com

Question 7

Shared resources
* Internal cloud
– No resources are ___
– Build your own cloud
– Pay for everything up ___
– No o___ costs
* External cloud
– Share resources with a public ___
– Underlying infrastructure owned by a ___-party
– Cost may be m___ or up-front

Answer 7

– No resources are shared
– Build your own cloud
– Pay for everything up front
– No ongoing costs
*
– Share resources with a public cloud
– Underlying infrastructure owned by a third-party
– Cost may be metered or up-front

Question 8

Metered and non-metered
* Metered cloud services
– You pay for what you _
– Cost to u__
– Cost to s___
– Cost to d___
* Non-metered
– You pay for a block of ___
– No cost to u__
– No cost to d___

Answer 8

– You pay for what you use
– Cost to upload
– Cost to store
– Cost to download
*
– You pay for a block of storage
– No cost to upload
– No cost to download

Question 9

Cloud computing characteristics
* Rapid elasticity
– Scale ___ and scale down as needed
– S____ to everyone
– The cloud enables instant ___ provisioning
* High availability
– Systems are always a____
– Redundancy provides a___
* File synchronization
– Information can be ___ across cloud locations

Answer 9

– Scale up and scale down as needed
– Seamless to everyone
– The cloud enables instant resource provisioning
*
– Systems are always available
– Redundancy provides availability
*
– Information can be duplicated across cloud locations

Question 10

Desktop as a Service
* Basic application usage
– Applications actually run on a r___ server
– Virtual Desktop I____(VDI),
– L___ device is a keyboard, mouse, and screen.
* Minimal operating system on the client
– No huge ___ or CPU needs
* Network connectivity
– Big ___ requirement
– Everything happens across the wire

Answer 10

– Applications actually run on a remote server
– Virtual Desktop Infrastructure (VDI),
Desktop as a Service (DaaS)
– Local device is a keyboard, mouse, and screen.
*
– No huge memory or CPU needs
*
– Big network requirement
– Everything happens across the wire

Question 11

Virtualization
* One computer, many operating systems
– macOS, Windows 11, Linux Ubuntu,
all at the same time!
* Separate OS, independent CPU, memory, network, etc.
– But really one ___
* Host-based virtualization
– Your normal d___ plus others
* Standalone server that hosts virtual machines
– E____-level
* Been around since 1967
– IBM mainframe v___

Answer 11

– macOS, Windows 11, Linux Ubuntu,
all at the same time!
*
– But really one computer
*
– Your normal desktop plus others
*
– Enterprise-level
*
– IBM mainframe virtualization

Question 12

Legacy software and operating systems
* Need to run different application versions
on the same system
– Run each application instance in a separate ___
* Application only runs on a previous OS version
– Create a VM with the ___ operating system

Answer 12

– Run each application instance in a separate VM
*
– Create a VM with the older operating system

Question 13

Cross-platform virtualization
* Windows / macOS / Linux doesn’t do everything
– Each ___ has strengths and weaknesses
* Run different operating systems at the same time
– Move between each OS s___
– No r___
* Save time and resources
– One ___ computer

Answer 13

– Each OS has strengths and weaknesses
*
– Move between each OS seamlessly
– No rebooting
*
– One physical computer

Question 14

The hypervisor
* Virtual Machine Manager
– Manages the v___ platform and
guest operating systems
* May require a CPU that supports virtualization
– Can improve p___
* Hardware management
– CPU, networking, security

Answer 14

– Manages the virtual platform and
guest operating systems
*
– Can improve performance
*
– CPU, networking, security

Question 15

Resource requirements
* CPU Processor Support
– Intel: Virtualization Technology (VT)
– AMD: AMD-V
* Memory - Above and beyond host OS requirements
* Disk space - Each guest OS has it’s own image
* Network
– Configurable on each ___ OS
(standalone, NAT, bridged, etc.)
– V___ switch

Answer 15

– Intel: Virtualization Technology (VT)
– AMD: AMD-V
*
– Configurable on each guest OS
(standalone, NAT, bridged, etc.)
– Virtual switch

Question 16

Sandboxing
* Isolated testing environment
– No ___ to the real world or production system
– A technological ___ space
* Virtualize development process
– Try some code, break some code, nobody gets hurt
* Additional development features
– Roll ___ to a previous snapshot
– ___ additional systems

Answer 16

– No connection to the real world or production system
– A technological safe space
*
– Try some code, break some code, nobody gets hurt
*
– Roll back to a previous snapshot
– Run additional systems

Question 17

Building the application
* Develop
– S___ environment
– Writing ___
– Developers test in their sandboxes
* Test
– A separate ___ environment for testing
– Still in the d____ stage
– All of the pieces are put ___
– Does it all work?

Answer 17

– Secure environment
– Writing code
– Developers test in their sandboxes
*
– A separate virtual environment for testing
– Still in the development stage
– All of the pieces are put together
– Does it all work?

Question 18

Hypervisor security
* Hypervisor is a sweet spot for the bad guys
– No significant vulnerabilities yet
* VM escaping
– Malware recognizes it’s on a ___ machine
– Malware c___ the hypervisor
– Malware jumps from one guest OS to ____
* Many hosted services are virtual environments
– Malware on one customer’s server can gather
information from ___

Answer 18

– No significant vulnerabilities yet
*
– Malware recognizes it’s on a virtual machine
– Malware compromises the hypervisor
– Malware jumps from one guest OS to another
*
– Malware on one customer’s server can gather
information from another

Question 19

Guest operating system security
* Every guest is self-contained - Like a real computer
* Use traditional security controls
– Host-based ____, Anti-virus, anti-spyware
* Watch out for rogue virtual machines (VMs)
– The bad guys try to ___ their own system
– You’re in big trouble
* Self-contained VMs provided by 3rd parties
can be dangerous
– You have no idea what’s ___ on there

Answer 19

– Host-based firewall, Anti-virus, anti-spyware
*
– The bad guys try to install their own system
– You’re in big trouble
*
– You have no idea what’s running on there

Question 20

Network requirements
* Most client-side virtual machine managers have
their own virtual (internal) networks
* Shared network address
– The virtual machine shares the same ___ address
as the physical host
– Uses a private IP address i___
– Uses NAT to convert to the ___ host IP
* Bridged network address
– The VM is a device on the ___ network
* Private address
– The VM does not communicate outside of
the ___ network

Answer 20

– The virtual machine shares the same IP address
as the physical host
– Uses a private IP address internally
– Uses NAT to convert to the physical host IP
*
– The VM is a device on the physical network
*
– The VM does not communicate outside of
the virtual network