Week 2: Introduction to Cloud Computing Flashcards
Definition of Cloud Services
Services that are expressed by a cloud and delivered over the Internet or a private network. Services range from infrastructure-as-a-service (laaS), to platform-as-a-service (PaaS), and software-as-a-service (SaaS), and include other services that are layered on these basic service models.
Definition of Cloud Computing
An IT model or computing environment composed of IT components (hardware, software, networking, and services) as well as the processes around the deployment of these elements that together enable us to develop and deliver cloud services via the Internet or a private network.
This cloud model is composed of ___essential characteristics, ___service models, and ____deployment models.
five, three, four
Definition of Cloud Computing (2/2)
Cloud computing is a model for enabling ubiquitous, convenient, on-demandnetwork access to a sharedpool of configurablecomputing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and releasedwith minimal management effort or service provider interaction.
Essential Characteristics
On-demand self-service Broad network access Rapid elasticity Resource pooling Measured service
On-demand self-service
A consumer can unilaterally provision computing capabilities, such as server time and network storage, as needed automatically without requiring human interaction with each service provider
Broad network access
Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms
• e.g., mobile phones, tablets, laptops, and workstations
Rapid elasticity
Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand
To the consumer, the capabilities available for provisioning often appear to be unlimited and can be appropriated in any quantity at any time
Resource pooling
The provider’s computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand
Measured service
Cloud systems automatically control and optimize resource useby leveraging a metering capabilityat some level of abstraction appropriate to the type of service (e.g., storage, processing, bandwidth, and active user accounts)
Resource usage can be monitored, controlled, and reported, providing transparencyfor both the provider and consumer of the utilized service
Service Models
Software as a Service (SaaS)
Platform as a Service (PaaS)
Infrastructure as a Service (IaaS)
Software as a Service (SaaS)
The capability provided to the consumer is to use the provider’s applications running on a cloud infrastructure
The consumer does not manage or control the underlying cloud infrastructureincluding network, servers, operating systems, storage, or even individual application capabilities, with the possible exception of limited user-specific application configuration settings
Platform as a Service
The capability provided to the consumer is to deploy onto the cloud infrastructure consumer-created or acquired applicationscreated using programming languages, libraries, services, and tools supported by the provider
The consumer does not manage or control the underlying cloud infrastructure including network, servers, operating systems, or storage, but has control over the deployed applicationsand possibly configuration settings for the application-hosting environment
Infrastructure as a Service (IaaS)
The capability provided to the consumer is to provision processing, storage, networks, and other fundamental computing resourceswhere the consumer is able to deploy and run arbitrary software, which can include operating systems and applications
The consumer does not manage or control the underlying cloud infrastructurebut has control over operating systems, storage, and deployed applicationsand possibly limited control of select networking components(e.g., host firewalls)
Deployment Models
Private cloud
Community cloud
Public cloud
Hybrid cloud
Private cloud
The cloud infrastructure is provisioned for exclusive use by a single organizationcomprising multiple consumers (e.g., business units)
It may be owned, managed, and operated by the organization, a third party, or some combination of them, and it may exist on or off premises
Community cloud
The cloud infrastructure is provisioned for exclusive use by a specific community of consumersfrom organizations that have shared concerns
• e.g., mission, security requirements, policy, and compliance considerations
It may be owned, managed, and operated by one or more of the organizations in the community, a third party, or some combination of them, and it may exist on or off premises
Public cloud
The cloud infrastructure is provisioned for open use by the general public
It may be owned, managed, and operated by a business, academic, or government organization, or some combination of them
It exists on the premises of the cloud provider
Hybrid cloud
The cloud infrastructure is a composition of two or more distinct cloud infrastructures(private, community, or public) that remain unique entities, but are bound together by standardized or proprietary technology that enables data and application portability
e.g., cloud bursting for load balancing between clouds
cloud infrastructure
collection of hardware and software that enables the five essential characteristics of cloud computing
The cloud infrastructure can be viewed as containing both a __and an ___
physical layer, abstraction layer
physical layer (in cloud)
consists of the hardware resources that are necessary to support the cloud services being provided
abstraction layer
consists of the software deployed across the physical layer, which manifests the essential cloud characteristics
Conceptually the abstraction layer sits above the physical layer
Tenants
typically lease a dynamically provisioned piece of the cloud infrastructurein the form of either IaaSor PaaSin order to provide value-added services to their users
End users
typically interact with or consume specific application services that are expressed from a cloud
three qualities of successful cloud implementations
Massive scale
disciplined appearance
repeated patterns
By developing appropriate repeated patterns and implementing them at a massive scale cost advantages are gained at all phases of the cloud life cycle
These same qualities have a significant role with respect to security
Cloud elasticity entails
goes beyond simply flexing resource allocation as customers requires more servers or storage
continuous reconfiguration in network and related controls
There are profound security implications to performing such dynamic changes to security controls
– Internet Protocol (IP) addresses and VMs can come and go, only to reappear elsewhere in the infrastructure
– Traceability becomes difficult, and thus elasticity greatly complicates security monitoring
In cloud infrastructure, the network serves to
connect users to the cloud
interconnect the internal nodes of the cloud
Virtualization is used to partition
a single physical server into multiple Virtual Machines (VMs)
a single physical resource (such as storage or networking) into multiple virtual ones
Virtualization allows for
server consolidation with great utilization flexibility
For cloud computing, virtualization has great value in rapid commissioning and decommissioning of servers
Virtualization is the primary enabling technology for achieving cost-effective server utilization while supporting separation between multiple tenants on physical hardware
IT Foundation for Cloud -Software
Enables all aspects of cloud infrastructure management, provisioning, service development, accounting, and security
The regular patterns of cloud infrastructure enable software to
automate the tasks providing elasticity and shape shifting
key distinguishing element for cloud
The service interface between the provider and the consumer
It represents a contract that enforces the value propositionwith SLAs and price terms
With the addition of self-service interfaces, we gain further optimizations
Cloud Computing Qualities
Pooling Resources at Massive Scale Repeated Patterns Greater Automation Reliability Operational Efficiency Resource Elasticity Location Independence and On-demand Access Technology and IT Transparency for End Users
Greater Automation
Scale is impossible to manage manually, and so provisioning must be automated
Automation also contributes to cloud provider profitability and more competitive services for consumers
Reliability (Cloud Computing Quality)
Reliability is critical in operations as processes that are automated are less prone to human errors
Similar to Availability in CIA
Operational Efficiency
Defining and following patterns is empowering
Awell-designed cloud infrastructure can be built and operated more effectively and more efficiently by a smaller staffcompared traditional IT
Resource Elasticity
With cloud computing, tiered contracts can factor into how such elastic resources are managed
For example, a tenant may pay more for the same resources with the cost differential buying them prioritized access
Estimating IT cost in typical organizations
Data center costs and associated IT costs are aggregated to a degree where they are too coarse-grained
- For instance, initial estimates of the operational costs of adding an application to a corporate data center may fail to account for the consequent need to upgrade other components
Additional charges may be incurred for unanticipated IT costs
Cloud computing is transparent in how usage is metered and charged
In a traditional enterprise, one will generally find one systems administrator per _to _servers
10 - 1000
In a large scale cloud implementation, the systems administrator may be replaced by a systems engineer per _ to _servers
1,000 - 20,000
It indicated that long-term savings depend on
scale of the data center
the amount oftime required to move operationsinto the cloud
Cloud computing history progression
Mainframe -> Minicomputer -> PC -> service-based -> cloud
Cloud computing history progression
Mainframe -> Minicomputer -> PC -> service-based -> cloud
computers virtually multiplied in the form of Virtual Machines (VMs)
VMs are software implementations of computers
VMs are indistinguishable over a network from a physical computer
A VM is simply an environment, typically an operating system (OS), that is created within another environment
The term __usually refers to the VM whereas __ refers to the hosting environment
guest
host
A single host can dynamically support multiple guest environments
Virtualization enables
resource sharing and utilization
degree of isolation from the effect of some forms of vulnerability risk
Systems engineering has grown from being an approach into an interdisciplinary engineering practice
Components should be designed in light of how they will interoperate with other components
A primary objective of all architectures
develop coherent and efficient structures that meet the needs or mission of the organization,over the long term and in a sustainable manner
A successful architecture should
Guide systems life cycle processes
Support both stability and continual innovation
cloud computing presents security advantages
Because of the patterns in infrastructure, greater automation, and disciplinein process
Customers with very large infrastructure needs, or those who have data security, or national security needs will probably take the
build-a-private-cloud approach
If one seeks a solution for e-mail or document collaboration, then valid choices could be
Google Apps, Huddle, Zoho, or ThinkFreeOnline
If one needs a hosted virtual infrastructure, then three of many alternative choicesare
Amazon (AWS/EC2), GoGrid, and Rackspace
If one needs to build his own private cloud, then they might start with open source such as
Eucalyptus, Enomaly, or the Free Cloud Alliance
Despite concerns from many security professionals, cloud computing is not innately more or less secure
But the cloud model does force a movement toward a more robust and capable foundation of security services
With cloud, greater investment for in-common security serviceshas great potential for
return on investment (ROI)