1

UNIT 5

Topic: Cloud Computing

Unit5\Lecture1

Concept of Cloud
Cloud computing refers to applications and services that run on a distributed network
using virtualized resources and accessed by common Internet protocols and networking
standards. It is distinguished by the notion that resources are virtual and limitless and that
details of the physical systems on which software runs are abstracted from the user. In an
effort to better describe cloud computing, a number of cloud types have been defined.
There are two different classes of clouds: those based on the deployment model and
those based on the service model. The deployment model tells you where the cloud is
located and for what purpose. Public, private, community,
and hybrid clouds are deployment models .
Service models describe the type of service that the service provider is offering. The best-
known service models are Software as a Service, Platform as a Service, and Infrastructure
as a Service—the SPI model. The service models build on one another and define what a
vendor must manage and what the client's responsibility is.
Cloud computing represents a real paradigm shift in the way in which systems are
deployed. The massive scale of cloud computing systems was enabled by the
popularization of the Internet and the growth of some large service companies. Cloud
computing makes the long-held dream of utility computing possible with a pay-as-you-go,
infinitely scalable, universally available system. With cloud computing, you can start very
small and become big very fast. That's why cloud computing is revolutionary, even if the
technology it is built on is evolutionary. Not all applications benefit from deployment in
the cloud. Issues with latency, transaction control, and in particular
security and regulatory compliance are of particular concern.
Defining Cloud Computing
Cloud computing takes the technology, services, and applications that are similar to those
on the Internet and turns them into a self-service utility. The use of the word “cloud”
makes reference to the two essential concepts:
• Abstraction: Cloud computing abstracts the details of system implementation from
users and developers. Applications run on physical systems that aren't specified, data is
stored in locations that are unknown, administration of systems is outsourced to others,
 2

and access by users is ubiquitous.

• Virtualization: Cloud computing virtualizes systems by pooling and sharing resources.
Systems and storage can be provisioned as needed from a centralized infrastructure, costs
are assessed on a metered basis, multi-tenancy is enabled, and resources are scalable
with agility.
Computing as a utility is a dream that dates from the beginning of the computing industry
itself. A set of new technologies has come along that, along with the need for more effi-
cient and affordable computing, has enabled an on-demand system to develop.Many peo-
ple mistakenly believe that cloud computing is nothing more than the Internet given a
different name.
Many drawings of Internet-based systems and services depict the Internet as a cloud, and
people refer to applications running on the Internet as “running in the cloud,” so the con-
fusion is understandable. The Internet has many of the characteristics of what is now be-
ing called cloud computing. The Internet offers abstraction, runs using the same set of
protocols and standards, and uses the same applications and operating systems. These
same characteristics are found in an intranet, an internal version of the Internet. When an
intranet becomes large enough that a diagram no longer wishes to differentiate between
individual physical systems, the intranet too becomes identified as a cloud.
Cloud computing is an abstraction based on the notion of pooling physical resources and
presenting them as a virtual resource. It is a new model for provisioning resources, for
staging applications, and for platform-independent user access to services. Clouds can
come in many different types, and the services and applications that run on clouds may or
may not be delivered by a cloud service provider. These different types and levels of
cloud services mean that it is important to define what type of cloud computing system
you are working with. To help clarify how cloud computing has changed the nature of
commercial system deployment, consider these three examples:
• Google: In the last decade, Google has built a worldwide network of datacenters to ser-
vice its search engine. In doing so Google has captured a substantial portion of the world's
advertising revenue. That revenue has enabled Google to offer free software to users
based on that infrastructure and has changed the market for user-facing software.
• Azure Platform: By contrast, Microsoft is creating the Azure Platform. It enables .NET
Framework applications to run over the Internet as an alternate platform for Microsoft
developer software running on desktops.
 3

• Amazon Web Services: One of the most successful cloud-based businesses is Amazon
Web Services, which is an Infrastructure as a Service offering that lets you rent virtual
computers on Amazon's own infrastructure. These new capabilities enable applications to
be written and deployed with minimal expense and to be rapidly scaled and made avail-
able worldwide as business conditions permit. This is truly a revolutionary change in the
way enterprise computing is created and deployed.
 4

UNIT 5

Topic: Cloud Computing Service models

Unit5\Lecture2

Cloud computing services can be divided into three classes, according to the abstraction
level of the capabilities and resources provided and the service model of providers:
Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service
(SaaS) Figure defines the layered structure of the cloud stack from physical infrastructure
to applications. These service model levels can also be viewed as a layered architecture
where services of a higher layer can be composed from services of the underlying layer.

First layer IaaS is built on top of virtualized compute, storage, and network resources.
Second layer PaaS provides cloud development environments, which are built on top of
infrastructure services to offer application development and deployment capabilities. Top
level SaaS is build at the user application level providing applications and application
programming interfaces (APIs).
Software as A service
In SaaS model a software provider licenses a software application to be used and
purchased on demand. Applications can be accessed through networks from various
clients (web browser, mobile phone, etc.) by application users. The application requires
no client installation, just a browser or other client device and network connectivity .
 5

There are many reasons why SaaS model has become more popular and widely used.
Consumers have more access to computers and to the Internet. At the same time network
speeds continue to improve minimizing application response times. Small and medium-
sized businesses are willing to purchase software as a service applications like enterprise
resource planning (ERP) or customer relationship management (CRM) that previously
were available only in traditional delivery models and focused only to the largest
corporations. Mainframes and traditional software licenses have become a target for cost
reduction including along with the cost to maintain space for them, as well as the salaries
of the in-house staff to maintain and operate them.
Platform as a Service
The difference between SaaS and PaaS is that SaaS only hosts completed cloud
applications where PaaS offers a development platform for both completed and in-
progress cloud applications.
The platform services segment of the cloud market is still in its early phases . Currently
PaaS is mainly used for developing and deploying situational applications to enable the
rapid development cycles especially to cope with the scenarios with limited timeframe to
bring the solutions to the market.
PaaS offers an environment where developers can create and deploy applications and do
not necessarily need to know how much memory or how many processors their
application will be using. In addition multiple programming models and specialized
services (data access, authentication, etc) can be offered as a building block to new
applications . PaaS model provides developers a service that can be used to a complete
software development lifecycle management, from planning to design to building
applications to deployment to testing to maintenance .
PaaS clouds provider higher-level abstractions for cloud applications, which simplifies the
application development process and removes the need to manage the underlying
software and hardware infrastructure. PaaS offers automatic scalability, load balancing
and failure tolerance .
Infrastucture as a service
The infrastructure layer focuses on enabling technologies . IaaS model changes the way
developers deploy their applications. Instead of spending time with their own data centers
or managed hosting companies, they can just select one of the IaaS provider, get a virtual
server running in few minutes and pay only for the resources they use .
 6

From a technology viewpoint the IaaS type of cloud offerings have been the most
successful.
In the IaaS model cloud consumers directly use infrastructure components (storage,
firewalls, networks, and other computing resources) provided by the cloud provider.
Virtualization is widely used in order to provide physical resources in an ad-hoc manner to
meet current resource demand of cloud consumers .
Basic idea of a virtualization is that the resources of one physical computer can be
partioned into logical resources and rearranged into multiple virtual machines . For
example, operating systems can be set up to run as multiple, virtualized images and to run
simultaneously in order to maximize efficiency. Networks can be virtualized so that
available bandwidth can be partitioned into separate channels, thereby reducing network
complexity and improving the ability to manage the overall network. Storage virtualization
allows pooling of many storage resources so that all available storage is assigned and
managed centrally.
 7

UNIT 5

Topic: Cloud architectural framework

Unit5\Lecture3

Architectural Framework
Public Cloud
The public cloud, offer applications, storage and other services to the general public by a
service provider. This is based on “pay-as-you-go” model. A public cloud is constructed
with a view to offer unlimited storage space and increased bandwidth via Internet to all
businesses. Public clouds are owned, hosted and operated by third-party service
providers. A public cloud caters to all kind of requirements from small, medium or big
businesses. A public cloud is the most simplest to setup as it liberates that subscriber from
woes of hardware, application and bandwidth expenses. Enterprises pay for only those
condiments which they are utilizing. Users have to pay a monthly bill for public cloud
services. Public cloud functions on the prime principle of storage demand scalability,
which means it requires no hardware device. Popular examples of public clouds include
Amazon Elastic Cloud Compute, Google App Engine, Blue Cloud by IBM and Azure
services Platform by Windows.
 8

Private Cloud
Private cloud is a cloud infrastructure build exclusively for a single organization, deployed
within certain boundaries like firewall settings whether managed internally or by a third-
party and hosted internally or externally. Users are charged on the basis of per Gigabyte
usage along with bandwidth transfer fees. Data stored in the private cloud can only be
shared amongst users of an organization and third party sharing depends upon trust they
build with them. Popular examples of private cloud include Amazon Virtual Private Cloud
(Amazon VPC), Eucalyptus Cloud Platform, IBM SmartCloud Foundation and Microsoft
Private Cloud
Hybrid Cloud
Hybrid clouds combine the advantages of private and public clouds, offer flexibility,
control and security of multiple deployment models. IT organizations use hybrid clouds to
employ cloud bursting for scaling cross clouds.
Cloud bursting is an application deployment model in which an application runs in a
private cloud or data centre and "bursts" to a public cloud when the demand for
computing capacity increases. A primary advantage of cloud bursting and a hybrid cloud
model is that an organization only pays for extra compute resources when they are
needed. Hybrid cloud architecture requires both on-premises resources and off-site
(remote) server-based cloud infrastructure
Community Cloud
The cloud infrastructure is shared between the organizations with similar interests and
requirements whether managed internally or by a third-party and hosted internally or
externally. The costs are spread over fewer users than a public cloud (but more than a
private cloud), so only some of the cost savings potential of cloud computing are realized.
This may help limit the capital expenditure costs for its establishment as the costs are
shared among the organizations. For example, all the government agencies in a city can
share the same cloud but not the non government agencies.
Distributed Cloud
Cloud computing can also be provided by a distributed set of machines that are running at
different locations, while still connected to a single network or hub service. Examples of
this include distributed computing platforms . An interesting attempt in such direction is
Cloud@Home, aiming at implementing cloud computing provisioning model on top of
 9

voluntarily shared resource.

S.NO RGPV QUESTIONS Year Marks

Q.1 Explain architectural framework cloud? Dec 11,12 10
 10

UNIT 5

Topic: Cloud computing evolution

Unit5\Lecture4

Cloud Computing Evolution

The 1950

The underlying concept of cloud computing dates back to the 1950s, when large-
scale mainframe computers became available in academia and corporations, accessible
via thin clients/terminal computers, often referred to as "static terminals", because they
were used for communications but had no internal processing capacities. To make more
efficient use of costly mainframes, a practice evolved that allowed multiple users to share
both the physical access to the computer from multiple terminals as well as the CPU time.
This eliminated periods of inactivity on the mainframe and allowed for a greater return on
the investment. The practice of sharing CPU time on a mainframe became known in the
industry as time-sharing. During mid 70s it was popularly known as RJE Remote Job En-
try process mostly associated with IBM and DEC.

The 1960s–1990s

Almost all of the modern-day characteristics of cloud computing (elastic provision, pro-
vided as a utility, online, illusion of infinite supply), the comparison to the electricity in-
dustry and the use of public, private, government, and community forms, were thor-
oughly explored in 1966.Scholars have shown that cloud computing's roots go all the way
back to the 1950s when scientist Herb Grosch (the author of Grosch's law) postulated that
the entire world would operate on dumb terminals powered by about 15 large data cen-
ters.[15] Due to the expense of these powerful computers, many corporations and other
entities could avail themselves of computing capability through time-sharing and several
organizations, such as GE's GEISCO, IBM subsidiary The Service Bureau Corporation (SBC,
founded in 1957), Tymshare (founded in 1966), National CSS (founded in 1967 and bought
by Dun & Bradstreet in 1979), Dial Data (bought by Tymshare in 1968), and Bolt, Beranek
and Newman (BBN) marketed time-sharing as a commercial venture.

The 1990s

In the 1990s, telecommunications companies, who previously offered primarily dedicated

point-to-point data circuits, began offering virtual private network (VPN) services with
 11

comparable quality of service, but at a lower cost. By switching traffic as they saw fit to
balance server use, they could use overall network bandwidth more effectively. They be-
gan to use the cloud symbol to denote the demarcation point between what the provider
was responsible for and what users were responsible for. Cloud computing extends this
boundary to cover servers as well as the network infrastructure.

As computers became more prevalent, scientists and technologists explored ways to

make large-scale computing power available to more users through time-sharing, experi-
menting with algorithms to provide the optimal use of the infrastructure, platform and
applications which prioritized the CPU and efficiency for the end users.

Since 2000

After the dot-com bubble, Amazon played a key role in the development of cloud com-
puting by modernizing their data centers, which, like most computer networks, were us-
ing as little as 10% of their capacity at any one time, just to leave room for occasional
spikes. Having found that the new cloud architecture resulted in significant internal effi-
ciency improvements whereby small, fast-moving "two-pizza teams" (teams small enough
to feed with two pizzas) could add new features faster and more easily, Amazon initiated
a new product development effort to provide cloud computing to external customers, and
launched Amazon Web Services (AWS) on a utility computing basis in 2006.

In early 2008, Eucalyptus became the first open-source, AWS API-compatible platform for
deploying private clouds. In early 2008, Open Nebula, enhanced in the RESERVOIR Euro-
pean Commission-funded project, became the first open-source software for deploying
private and hybrid clouds, and for the federation of clouds. In the same year, efforts were
focused on providing quality of service guarantees (as required by real-time interactive
applications) to cloud-based infrastructures, in the framework of the IRMOS European
Commission-funded project, resulting in a real-time cloud environment. By mid-2008,
Gartner saw an opportunity for cloud computing "to shape the relationship among con-
sumers of IT services, those who use IT services and those who sell them" and observed
that "organizations are switching from company-owned hardware and software assets to
per-use service-based models" so that the "projected shift to computing will result in dra-
matic growth in IT products in some areas and significant reductions in other areas."

On March 1, 2011, IBM announced the IBM SmartCloud framework to support Smarter
Planet. Among the various components of the Smarter Computing foundation, cloud com-
 12

puting is a critical piece.

On June 7, 2012, Oracle announced the Oracle Cloud. While aspects of the Oracle Cloud
are still in development, this cloud offering is posed to be the first to provide users with
access to an integrated set of IT solutions, including the Applications (SaaS), Platform
(PaaS), and Infrastructure (IaaS) layers.

Growth and popularity

The development of the Internet from being document centric via semantic data towards
more and more services was described as "dynamic web". [29] This contribution focused in
particular in the need for better meta-data able to describe not only implementation de-
tails but also conceptual details of model-based applications.

The present availability of high-capacity networks, low-cost computers and storage de-
vices as well as the widespread adoption of hardware virtualization, service-oriented ar-
chitecture, and autonomic and utility computing have led to a growth in cloud computing.

S.NO RGPV QUESTIONS Year Marks

Q.1 Write note on cloud evolution? Dec 12 5
 13

UNIT 5

Topic: Cloud Vocabulary & characteristics

Unit5\Lecture 5

Cloud Vocabulary
 Agility improves with users' ability to re-provision technological infrastructure
resources.
 Application programming interface (API) accessibility to software that enables
machines to interact with cloud software in the same way that a traditional user
interface (e.g., a computer desktop) facilitates interaction between humans and
computers. Cloud computing systems typically use Representational State Transfer
(REST)-based APIs.
 Cost: cloud providers claim that computing costs reduce. A public-cloud delivery
model converts capital expenditure to operational expenditure.[ This purportedly
lowers barriers to entry, as infrastructure is typically provided by a third party and
does not need to be purchased for one-time or infrequent intensive computing
tasks. Pricing on a utility computing basis is fine-grained, with usage-based options
and fewer IT skills are required for implementation (in-house) The e-FISCAL
project's state-of-the-art repository contains several articles looking into cost
aspects in more detail, most of them concluding that costs savings depend on the
type of activities supported and the type of infrastructure available in-house.
 Device and location independence enable users to access systems using a web
browser regardless of their location or what device they use (e.g., PC, mobile
phone). As infrastructure is off-site (typically provided by a third-party) and
accessed via the Internet, users can connect from anywhere.
 Maintenance of cloud computing applications is easier, because they do not need
to be installed on each user's computer and can be accessed from different places.
 Multitenancy enables sharing of resources and costs across a large pool of users
thus allowing for:
 centralization of infrastructure in locations with lower costs (such as real
estate, electricity, etc.)
 peak-load capacity increases (users need not engineer for highest possible
load-levels)
 14

 utilisation and efficiency improvements for systems that are often only 10–
20% utilized.
 Performance is monitored, and consistent and loosely coupled architectures are
constructed using web services as the system interface.
 Productivity may be increased when multiple users can work on the same data
simultaneously, rather than waiting for it to be saved and emailed. Time may be
saved as information does not need to be re-entered when fields are matched, nor
do users need to install application software upgrades to their computer.
 Reliability improves with the use of multiple redundant sites, which makes well-
designed cloud computing suitable for business and disaster recovery.
 Scalability and elasticity via dynamic ("on-demand") provisioning of resources on
a fine-grained, self-service basis in near real-time(Note, the VM startup time varies
by VM type, location, os and cloud providers), without users having to engineer for
peak loads.
 Virtualization technology allows sharing of servers and storage devices and
increased utilization. Applications can be easily migrated from one physical server
to another
Cloud Characteristics
On demand self services: computer services such as email, applications, network or server
service can be provided without requiring human interaction with each service provider.
Cloud service providers providing on demand self services include Amazon Web Services
(AWS), Microsoft, Google, IBM and Salesforce.com. New York Times and NASDAQ are
examples of companies using AWS (NIST).

Broad network access: Cloud Capabilities are available over the network and accessed
through standard mechanisms that promote use by heterogeneous thin or thick client
platforms such as mobile phones, laptops and PDAs.

Resource pooling: The provider’s computing resources are pooled together to serve
multiple consumers using multiple-tenant model, with different physical and virtual
resources dynamically assigned and reassigned according to consumer demand. The
resources include among others storage, processing, memory, network bandwidth, virtual
machines and email services. The pooling together of the resource builds economies of
 15

scale .

Rapid elasticity: Cloud services can be rapidly and elastically provisioned, in some cases
automatically, to quickly scale out and rapidly released to quickly scale in. To the
consumer, the capabilities available for provisioning often appear to be unlimited and can
be purchased in any quantity at any time.

Measured service: Cloud computing resource usage can be measured, controlled, and
reported providing transparency for both the provider and consumer of the utilised
service. Cloud computing services use a metering capability which enables to control and
optimise resource use. This implies that just like air time, electricity or municipality water
IT services are charged per usage metrics – pay per use. The more you utilise the higher
the bill. Just as utility companies sell power to subscribers, and telephone companies sell
voice and data services, IT services such as network security management, data
centerhosting or even departmental billing can now be easily delivered as a contractual
service.

Multi Tenacity: is the 6th characteristics of cloud computing advocated by the Cloud
Security Alliance. It refers to the need for policy-driven enforcement, segmentation,
isolation, governance, service levels, and chargeback/billing models for different
consumer constituencies. Consumers might utilize a public cloud provider’s service
offerings or actually be from the same organization, such as different business units rather
than distinct organizational entities, but would still share infrastructure.

S.NO RGPV QUESTIONS Year Marks

Q.1 Write note on cloud vocabulary? Dec 11 5
2 What are the essential characteristics of cloud? Dec 11,12.13 10
 16

UNIT 5

Topic: Cloud benefits ,Application

Unit5\Lecture 6

Cloud Benefits

Cloud computing relies on sharing of resources to achieve coherence and economies of

scale, similar to a utility (like theelectricity grid) over a network. At the foundation of
cloud computing is the broader concept of converged infrastructureand shared services.

The cloud also focuses on maximizing the effectiveness of the shared resources. Cloud re-
sources are usually not only shared by multiple users but are also dynamically reallocated
per demand. This can work for allocating resources to users. For example, a cloud com-
puter facility that serves European users during European business hours with a specific
application (e.g., email) may reallocate the same resources to serve North American users
during North America's business hours with a different application (e.g., a web server).
This approach should maximize the use of computing power thus reducing environmental
damage as well since less power, air conditioning, rackspace, etc. are required for a vari-
ety of functions. With cloud computing, multiple users can access a single server to re-
trieve and update their data without purchasing licenses for different applications.

The term "moving to cloud" also refers to an organization moving away from a tradi-
tional CAPEX model (buy the dedicated hardware and depreciate it over a period of time)
to the OPEX model (use a shared cloud infrastructure and pay as one uses it).

Proponents claim that cloud computing allows companies to avoid upfront infrastructure
costs, and focus on projects that differentiate their businesses instead of infrastruc-
ture. Proponents also claim that cloud computing allows enterprises to get their applica-
tions up and running faster, with improved manageability and less maintenance, and en-
ables IT to more rapidly adjust resources to meet fluctuating and unpredictable business
demand.Cloud providers typically use a "pay as you go" model. This can lead to unexpect-
edly high charges if administrators do not adapt to the cloud pricing model.

Applications
 17

1. Infrastructure as a service (IaaS) and platform as a service (PaaS).When it comes to

aaS, using an existing infrastructure on a pay-per-use scheme seems to be an obvious
choice for companies saving on the cost of investing to acquire, manage and maintain an
IT infrastructure. There are also instances where organizations turn to PaaS for the same
reasons while also seeking to increase the speed of development on a ready-to-use plat-
form to deploy applications.
2. Test and development:Probably the best scenario for the use of a cloud is a test and
development environment. This entails securing a budget, setting up your environment
through physical assets, significant manpower and time. Then comes the installation and
configuration of your platform. All this can often extend the time it takes for a project to
be completed and stretch your milestones.With cloud computing, there are now readily
available environments tailored for your needs at your fingertips. This often combines,
but is not limited to, automated provisioning of physical and virtualized resources.
3. Big data analytics:One of the aspects offered by leveraging cloud computing is the abil-
ity to tap into vast quantities of both structured and unstructured data to harness the
benefit of extracting business value.Retailers and suppliers are now extracting informa-
tion derived from consumers’ buying patterns to target their advertising and marketing
campaigns to a particular segment of the population. Social networking platforms are now
providing the basis for analytics on behavioral patterns that organizations are using to de-
rive meaningful information.
4. File storage:Cloud can offer you the possibility of storing your files and accessing, stor-
ing and retrieving them from any web-enabled interface. The web services interfaces are
usually simple. At any time and place you have high availability, speed, scalability and se-
curity for your environment. In this scenario, organizations are only paying for the amount
of storage they are actually consuming, and do so without the worries of overseeing the
daily maintenance of the storage infrastructure.There is also the possibility to store the
data either on or off premises depending on the regulatory compliance requirements.
Data is stored in virtualized pools of storage hosted by a third party based on the cus-
tomer specification requirements.
5. Disaster recovery:This is yet another benefit derived from using cloud based on the
cost effectiveness of a disaster recovery (DR) solution that provides for a faster recovery
from a mesh of different physical locations at a much lower cost that the traditional DR
site with fixed assets, rigid procedures and a much higher cost.
 18

6. Backup:Backing up data has always been a complex and time-consuming operation.

This included maintaining a set of tapes or drives, manually collecting them and dispatch-
ing them to a backup facility with all the inherent problems that might happen in between
the originating and the backup site. This way of ensuring a backup is performed is not im-
mune to problems such as running out of backup media , and there is also time to load
the backup devices for a restore operation, which takes time and is prone to malfunctions
and human errors.Cloud-based backup, while not being the panacea, is certainly a far cry
from what it used to be. You can now automatically dispatch data to any location across
the wire with the assurance that neither security, availability nor capacity are issues.

S.NO RGPV QUESTIONS Year Marks

Q.1 Write note on cloud application? Dec 11,12 5

UNIT 5

Topic: Cloud Security Issues

Unit5\Lecture 7

Security issues associated with the cloud

Organizations use the Cloud in a variety of different service models (SaaS, PaaS, and IaaS)
 19

and deployment models (Private, Public, and Hybrid). There are a number of security
issues/concerns associated with cloud computing but these issues fall into two broad
categories: security issues faced by cloud providers (organizations
providing software-, platform-, or infrastructure-as-a-service via the cloud) and security
issues faced by their customers.[1] In most cases, the provider must ensure that their
infrastructure is secure and that their clients’ data and applications are protected while
the customer must ensure that the provider has taken the proper security measures to
protect their information. Authors Ryan and Falvey have pointed out that there is
increasingly a market for information and a competition among cloud providers for
information about security breaches in an effort to assist users in making a choice among
providers.
The extensive use of virtualization in implementing cloud infrastructure brings unique
security concerns for customers or tenants of a public cloud service.Virtualization alters
the relationship between the OS and underlying hardware - be it computing, storage or
even networking. This introduces an additional layer - virtualization - that itself must be
properly configured, managed and secured.Specific concerns include the potential to
compromise the virtualization software, or "hypervisor". While these concerns are largely
theoretical, they do exist.]For example, a breach in the administrator workstation with the
management software of the virtualization software can cause the whole datacenter to go
down or be reconfigured to an attacker's liking.
Dimensions of cloud security
Correct security controls should be implemented according to asset, threat, and
vulnerability risk assessment matrices.[While cloud security concerns can be grouped into
any number of dimensions these dimensions have been aggregated into three general
areas: Security and Privacy, Compliance, and Legal or Contractual Issues.
Security and privacy
Identity management
Every enterprise will have its own identity management system to control access to
information and computing resources. Cloud providers either integrate the customer’s
identity management system into their own infrastructure,
using federation or SSO technology, or provide an identity management solution of their
own.
Physical and personnel security
 20

Providers ensure that physical machines are adequately secure and that access to these
machines as well as all relevant customer data is not only restricted but that access is
documented.
Availability
Cloud providers assure customers that they will have regular and predictable access to
their data and applications.
Application security
Cloud providers ensure that applications available as a service via the cloud are secure by
implementing testing and acceptance procedures for outsourced or packaged application
code. It also requires application security measures be in place in the production
environment.
Privacy
Providers ensure that all critical data (credit card numbers, for example) are masked or
encrypted (even better) and that only authorized users have access to data in its entirety.
Moreover, digital identities and credentials must be protected as should any data that the
provider collects or produces about customer activity in the cloud.
Legal issues
Finally, providers and customers must consider legal issues, such as Contracts and E-
Discovery, and the related laws, which may vary by country.
Compliance
Numerous regulations pertain to the storage and use of data, including Payment Card
Industry Data Security Standard (PCI DSS), the Health Insurance Portability and
Accountability Act (HIPAA), the Sarbanes-Oxley Act, the Federal Information Security
Management Act of 2002 (FISMA), and Children's Online Privacy Protection Act of 1998,
among others. Many of these regulations require regular reporting and audit trails. Cloud
providers must enable their customers to comply appropriately with these regulations.
Business continuity and data recovery
Cloud providers have business continuity and data recovery plans in place to ensure that
service can be maintained in case of a disaster or an emergency and that any data loss will
be recovered. These plans are shared with and reviewed by their customers.
Logs and audit trails
In addition to producing logs and audit trails, cloud providers work with their customers to
ensure that these logs and audit trails are properly secured, maintained for as long as the
 21

customer requires, and are accessible for the purposes of forensic investigation
(e.g., eDiscovery).
Unique compliance requirements
In addition to the requirements to which customers are subject, the data centers
maintained by cloud providers may also be subject to compliance requirements. Using a
cloud service provider (CSP) can lead to additional security concerns around data
jurisdiction since customer or tenant data may not remain on the same system, or in the
same data center or even within the same provider's cloud.
Legal and contractual issues
Aside from the security and compliance issues enumerated above, cloud providers and
their customers will negotiate terms around liability (stipulating how incidents involving
data loss or compromise will be resolved, for example), intellectual property, and end-of-
service (when data and applications are ultimately returned to the customer). In addition,
there are considerations for acquiring data from the cloud that may be involved in
litigation.
Public records
Legal issues may also include records-keeping requirements in the public sector, where
many agencies are required by law to retain and make available electronic records in a
specific fashion. This may be determined by legislation, or law may require agencies to
conform to the rules and practices set by a records-keeping agency. Public agencies using
cloud computing and storage must take these concerns into account.

S.NO RGPV QUESTIONS Year Marks

Q.1 Write note on cloud security? Dec 11,12 5
2 Explain cloud challenges? Dec 13 10

UNIT 5

Topic: Cloud Service providers

Unit5\Lecture 8

Cloud Service providers

 22

1.Amazon
Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable
compute capacity in the cloud. It is designed to make web-scale computing easier for
developers.
Amazon EC2’s simple web service interface allows you to obtain and configure capacity
with minimal friction. It provides you with complete control of your computing resources
and lets you run on Amazon’s proven computing environment. Amazon EC2 reduces the
time required to obtain and boot new server instances to minutes, allowing you to quickly
scale capacity, both up and down, as your computing requirements change. Amazon EC2
changes the economics of computing by allowing you to pay only for capacity that you
actually use. Amazon EC2 provides developers the tools to build failure resilient
applications and isolate themselves from common failure scenarios.
2.Verizon
Cloud computing from Verizon and Terremark, a Verizon company, delivers on-demand
functionality, helping you accelerate IT innovation and control Costs for your business.
vCloudTM Express:
vCloud Express is a flexible, high-performance, pay-as-you-go, computing-on demand
service from Terremark, a Verizon company.
Key features include:
• Persistent storage (so you don’t lose your server if you power it down).
• Fully integrated network, security, and load-balancing features.
• An intuitive web console that lets you build and manage your virtual network in
just minutes—on-demand and at the click of a button.
• The ability to create your own system on blank servers with over 450 compatible
operating systems to choose from or use one of our preloaded templates—pricing
starts at just 3.7 cents per hour.
3.IBM
IBM Smart Cloud:
Cloud computing changes the way we think about technology. Cloud is a computing model
providing web-based software, middleware and computing resources on demand.
• Architecture for Private & Hybrid Cloud
( IBM SmartCloud Foundation)
• Cloud Computing as Service for IT
 23

(IBM SmartCloud Services)

• Software as a service (SaaS) business solutions
(IBM SmartCloud Solutions)
4.Salesforce.com
Salesforce is India's world class cloud technology company that builds your business faster,
more securely, with greater reliability and constant upgradeability.
5.Google
Google Cloud Connect for Microsoft Office brings collaborative multi-person editing to the
familiar Microsoft Office experience. You can share, backup and simultaneously edit
Microsoft Word, PowerPoint, and Excel documents with coworkers.
Google Apps Key features are:
• Security first
• Stay connected from anywhere
• Work better together
• Get stuff done faster
• Invisible IT that just works
• Go Green
6.Microsoft
Windows Azure is an open and flexible cloud platform that enables you to quickly build,
deploy and manage applications across a global network of Microsoft-managed
datacenters. You can build applications using any language, tool or framework. And you
can integrate your public cloud applications with your existing IT environment.
Key Features:
• Always up, Always on
• Open
• Unlimited servers, Unlimited storage
• Powerful Capabilities

S.NO RGPV QUESTIONS Year Marks

Q.1 Write note on cloud service provider? Dec 12 5
24