Chapter 10 Cloud and Virtualization Security
Cloud Computing Definition
National Institute of Standards and Technology:
Cloud computing is a model for enablinb ubiqitous, convenient, on-demand
network access to a shared pool of configurable computing resources (
networks, servers, storage, applications, and services) that can be rapidly
provisioned and released with minimal management effort or service provider
interaction
Multitenancy is when different users share resources in the same cloud infrastructure.
*oversubscription*
Key benefits:
On demand self service computing
Scalability
Vertical Scaling:
- Increases the capacity of existing servers. Usually means adding physical hardware.
Horizontal scaling:
- Adding more servers to a pool of clustered servers.
Elasticity:
- Different from scalability. This focuses on the expansion and contraction of needs to
optimize costs.
Measured Service
- Everything you do is measured by provider. Processing time, storage, log entries
generated + more -- you pay for exactly how much you use
Agility and flexibility
- The speed to provision cloud resources and the ability to use them for short periods of
time. Allows developers to try new ideas with minimal effort and cost.
Cloud Roles:
5 Main roles:
1. Cloud service providers -- offer cloud service for sale
2. Cloud consumers -- organizations and individuals who purchase cloud services from cloud
service providers.
3. Cloud partners (or cloud brokers) -- organizations that offer ancillary produccts or services
that support or integrate with the offerings of a cloud service provider.
1. Could be things like training or consulting, software dev/ integration services or
somethings else
4. Cloud auditors -- independent organizations that provide third party assessments of cloud
services and operations
5. Cloud carriers -- intermediaries that provide the connectivity that allows the delivery of cloud
services from providers to consumers (browser? internet?)
Cloud Service Models:
1. Infrastructure as a service (IaaS)
Computing, Storage and networks.
2. Software as a service (SaaS)
Access to a fully managed application running in the cloud
Range of applications from web-based email to enterprise planning (ERP) and customer
relationship management (CRM) Suites
3. Platform as a service (PaaS)
Platform where users can run applications they have developed themselves
CSP builds and manages the infrastructure and offers customers an execution environment,
where they may include code libraries, services and tools that facilitate code execution
0
