chapter 2 Flashcards
What is the primary responsibility of a cloud provider?
A cloud provider is responsible for making cloud services available to cloud consumers, as per agreed upon SLA
Define a cloud consumer.
A cloud consumer is an organization or individual that has a formal contract with a cloud provider to use IT resources made available by the cloud provider.
What role does a cloud broker play in cloud computing?
A cloud broker negotiates, manages, and operates cloud services on behalf of a cloud consumer. They provide mediation services between cloud consumers and cloud providers.
Who is a cloud service owner?
A cloud service owner is the person or organization that legally owns a cloud service [ externally accessible IT resources that reside in a cloud ]
Who can be a cloud service owner in a third-party cloud?
Either the cloud consumer that develops and deploys the service or the
cloud provider that hosts the service can be the cloud service owner in a third-party cloud.
What does a cloud resource administrator do?
A cloud resource administrator is responsible for administering a cloud-based IT resource, which can include cloud services. They can belong to the cloud consumer, cloud provider, or a third-party organization contracted to administer the resource.
when does A cloud provider become a cloud service owner
when it deploys its own cloud service, typically for other cloud consumers to use.
What distinguishes a cloud service owner from a cloud resource owner?
A cloud service owner owns the cloud service, which is an externally accessible IT resource in the cloud.
while a cloud resource owner may own any IT resource, not necessarily accessible as a cloud service.
cloud service owner vs cloud resource administrator
The service owner oversees the entire service lifecycle, while the resource administrator focuses on managing specific cloud resources.
Describe the role of a cloud auditor.
A cloud auditor is a third-party, often accredited, that conducts independent assessments of cloud environments.
including:
evaluating security controls,
privacy impacts, and
performance.
what is The reason a cloud resource administrator is not referred to as a “cloud service administrator”
A cloud resource administrator may manage any cloud-based IT resource, not limited to cloud services, while a cloud service administrator specifically manages cloud services.
Describe the role of a cloud auditor.
A cloud auditor is a third-party, often accredited, that conducts independent assessments of cloud environments, including evaluating security controls, privacy impacts, and performance.
What supplementary roles does The NIST Cloud Computing Reference Architecture define?
cloud auditor
cloud carrier
What is the responsibility of a cloud carrier?
A cloud carrier provides the wire-level connectivity between cloud consumers and cloud providers, often assumed by network and telecommunication providers.
Explain the concept of an organizational boundary in cloud computing.
An organizational boundary represents the physical perimeter surrounding a set of IT resources owned by an organization.
It does not represent the boundary of an actual organization but rather a set of IT assets and resources.
What is a trust boundary in cloud environments?
A trust boundary is a logical perimeter that extends beyond physical boundaries to represent the extent to which IT resources of a cloud provider are trusted by an organization acting as the cloud consumer.
List common cloud environments characteristics:
on-demand usage
ubiquitous access
multi-tenancy (and resource pooling)
elasticity
measured usage
resiliency
What does on-demand usage mean in cloud computing?
On-demand usage allows cloud consumers to access cloud-based IT resources when they want to.
enabling self-provisioning and automated usage
Define ubiquitous access in the context of cloud services.
the ability for a cloud service to be widely accessible across a range of devices, transport protocols, interfaces, and security technologies.
Explain multitenancy in cloud computing.
Multi-tenancy is a software architecture that allows a single instance of a software application to serve multiple customers (tenants), each isolated from the other.
What is elasticity in cloud computing?
Elasticity is the automated ability of a cloud to scale IT resources as required
Describe measured usage in cloud environments.
the ability of a cloud platform to track the usage of its IT resources, allowing providers to charge consumers based on the actual usage
What is resiliency in cloud computing?
the ability of a cloud to distribute redundant IT resources across physical locations, ensuring failover and continued operation in case of resource failure.
what is A cloud delivery model
A cloud delivery model represents a specific, pre-packaged combination of IT resources offered by a cloud provider.
Name the three common cloud delivery models.
Infrastructure-as-a-Service (IaaS),
Platform-as-a-Service (PaaS), and
Software-as-a-Service (SaaS).
What does IaaS provide to cloud consumers?
IaaS provides a self-contained IT environment comprising infrastructure-centric IT resources such as hardware, network, connectivity, and operating systems.
google cloud, aws
Explain the PaaS delivery model.
PaaS provides a ready-to-use environment with pre-deployed and configured IT resources.
relieving cloud consumers of infrastructure setup and maintenance.
- firebase, shopify …
What is the primary use of the SaaS delivery model?
The SaaS delivery model provides software applications as reusable cloud services, often commercially available,
google doc, zoom …
How does IaaS differ from traditional hosting environments?
IaaS differs from traditional hosting by offering virtualized IT resources that are typically bundled to simplify runtime scaling and customization
__________ provide cloud consumers with a high level of control and responsibility over its configuration and utilization.
IaaS
What are common reasons for using a PaaS environment is used by a cloud consumer?
to extend on-premise environments to the cloud
to substitute an on-premise environment
to deploy cloud services to become a cloud provider.
_______ provides limited administrative control and relying on the provider for service provisioning and maintenance.
SaaS
Compare the control levels of IaaS, PaaS, and SaaS.
IaaS: high control over the infrastructure
PaaS: high control over application development not over underlying infrastructure
SaaS: minimal control, focuses on software usage.
What are common combination of cloud delivery models?
- IaaS + PaaS
- IaaS + PaaS + Saas
Explain IaaS + PaaS
a PaaS environment is built upon an IaaS infrastructure to provide both the underlying hardware and a ready-made development platform.
List Cloud Delivery Sub Models
- Database-as-a-Service ( PaaS )
- Security-as-a-Service ( SaaS )
- Storage-as-a-Service ( IaaS )
- Communication-as-a-Service (SaaS)
- Integration-as-a-Service (PaaS)
- Testing-as-a-Service (SaaS)
- Process-as-a-Service (SaaS)
- Desktop-as-a-Service ( IaaS)
what is A cloud deployment model
represents a specific type of cloud environment, primarily distinguished by ownership, size, and access.
what are The four common cloud deployment models
Public cloud
Private cloud
Multi-cloud
Hybrid cloud
What is a Public Cloud
Imagine a giant public library.
This model offers on-demand access to computing resources (servers, storage, databases) over the public internet.
Anyone with an internet connection can sign up and use these resources, typically on a pay-as-you-go basis.
(AWS), Microsoft Azure, and Google Cloud …
Who is responsible for the maintenance of a public cloud?
The cloud provider is responsible for the creation and ongoing maintenance of the public cloud and its IT resources.
what is a private cloud
Think of a private research facility.
This model offers a dedicated cloud environment for a single organization.
The resources are not shared with the public and can be located on-premises or hosted by a cloud provider with a secure, private connection.
Private clouds provide greater control and security but require more investment in management.
How do private clouds affect organizational and trust boundaries?
by potentially reducing some risks and challenges associated with public clouds.
Who typically administers a private cloud environment?
by internal or outsourced staff.
Explain the roles of cloud provider and cloud consumer within a private cloud.
- a separate organizational department : cloud provider
- departments requiring access to the private cloud : cloud consumers.
Differentiate between “on-premise” and “cloud-based” within the context of a private cloud.
- “on-premise” means you have your own physical hardware
- “cloud-based” means the hardware is at a provider’s data center but dedicated to you.
- Think of it as your own research lab (on-premise) vs renting a private lab space (cloud-based).
What is a multi-cloud deployment model?
- when a cloud consumer organization uses cloud services and IT resources from different public clouds provided by multiple cloud providers.
List three benefits of a multi-cloud deployment model.
Improved redundancy and system backups.
Reduced vendor lock-in, enhancing mobility.
Leveraging best-of-breed cloud services from different vendors.
Define a hybrid cloud.
A hybrid cloud is a cloud environment comprised of two or more different cloud deployment models
Provide an example of a hybrid cloud deployment.
when an organization deploys cloud services processing sensitive data to a private cloud and other, less sensitive cloud services to a public cloud.
What are some challenges associated with hybrid cloud deployment architectures?
- potential disparity in cloud environments
- management is split between the private cloud provider organization and the public cloud provider.
