CCSP Flashcards
(32 cards)
Cloud Service Category Types
- IaaS – Infrastructure as a Service
- PaaS – Platform as a Service
- SaaS – Software as a Service
CSA
Cloud Service Auditor (CSA) Operations Manager Deployment Manager Service Manager Business Manager
CSB
Cloud Service Broker (CSB) Customer Support and Care Representative Inter-cloud provider Security and Risk Manager Network Provider
CSP
Cloud Service Provider (CSP) – Provides cloud environment
CSC
Cloud Service Customer (CSC) o Service User o Service Administrator o Service business Manager o Service Integrator
CSN
Cloud Service Partner (CSN)
Cloud Computing Characteristics
- Broad Network Access
- On-demand Self-service
- Multi-tenant Capability (client data isolation)
- Resource Pooling
- Rapid Elasticity and Scalability
- Measured service
Infrastructural Building Block
Compute o Physical Hosts o Virtual Machines Network o Physical Transport o Virtual LANs – data isolation Storage o Physical Volumes o Shared storage pools Services o Backend database structure – clusters and redundancy
SAML
Security Assertion Mark-up Language - used for active directory encryption (tickets)
Cryptographic Erase (CE)
The process of knowingly erasing the media that stored encryption/decryption keys, it is effectively sanitized because there is no way to decrypt the data without the keys.
802.1x
A security standard that supports RADIUS authentication server, VPN concentrators, Network switches, and Wireless Access Points.
Rogue Virtual Machine
A virtual machine that’s not being controlled or managed, usually by users either knowingly or unknowingly
VLAN Hopping
VLAN hopping to other VLANs, usually maliciously, as in a VLAN Hopping Attack
Asset Hardening
- Patching
- Disabling unnecessary software
- Ensuring firewall/antivirus installed
for VMs, always harden the hypervisor host and guest OS
Hypervisor
A hypervisor is a virtual machine monitor (VMM) that creates and runs virtual machines. A computer on which a hypervisor runs is called a host machine, and each virtual machine is called a guest machine.
Cloud Business Continuity (BC) considerations
- Incident reporting
- multi-location backup
- service uptime
- service load balancing and service response time
- Availability of CSP Business Impact Analysis (BIA) to cloud consumers
Clustering
building in backup servers for failover purposes
Distributed services
Cloud applications that are compatible with all cloud environments, located in multiple databases, and available in different regions
Vendor Lock-In
Customer is unable to move cloud services from one vendor to another vendor because their product or services cannot easily transition to a competitor cloud service provider.
Persistent Storage
Data the resides on physical servers:
- Block storage - always available
- Object storage - binary storage
Apache Cloud Stack
An open source cloud computing and IaaS platform developed to help make creating, deploying, and managing cloud services easier by providing a complete “stack” of features and components for cloud environments.
Cloud App (Cloud Application)
The phrase used to describe a software application accessed via the Internet; may include an agent or applet installed locally on the user’s device.
Cloud Computing
A type of computing, compared to grid computing, that relies on ensuring computing resources rather than having local server or personal devices to handle applications. The goal of cloud computing is to apply traditional supercomputing or high-performance computing power, normally used by military and research facilities, to perform tens of trillions of computations per second and consumer-oriented applications such as financial portfolios, or even to deliver personalized information or power immersive computer games.
Cloud Computing Reseller
A company that purchases hosting services from a cloud server hosting or computing provider and then resells them to its own customers.
