Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
www.edureka.co/cloudcomputing
What is Cloud Computing? (Contd.)
It’s a Fan!
It’s a
Snake!
It’s a Tree!
Slide 2 www.edureka.co/cloudcomputing
Cloud Introduction
According to Forrester, Cloud Computing is:
“A form of standardized IT-based capability — such as Internet-
based services, software, or IT infrastructure — offered by a
service provider that is accessible via Internet protocols from any
computer, is always available and scales automatically to adjust to
demand, is either pay-per-use or advertising-based, has Web- or
programmatic-based control interfaces, and enables full customer
self-service.”
Slide 3 www.edureka.co/cloudcomputing
Cloud Introduction
According to NIST, Cloud Computing is:
“Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing
resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with
minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five
essential characteristics, three service models, and four deployment models.” - (NIST)
Slide 4 www.edureka.co/cloudcomputing
Cloud Introduction
Software as a Service
Platform as a Service Infrastructure as a
(SaaS) Anything as Service
(PaaS) Service (IaaS)
CRM, Email, Social a Service Models
Middleware, Database, Compute, Storage,
Collaboration, Payment (XaaS)
Build/Dev/Test Network, Desktop
and Reconciliation
http://csrc.nist.gov/publications/nistpubs/800-145/SP800-145.pdf
Slide 5 www.edureka.co/cloudcomputing
Cloud Delivery Models
Software as a Service (SaaS):
» The application is hosted centrally
» Software testing takes place at a faster rate
» Reduction in IT operational costs
» No need to install new software to release updates
Slide 6 www.edureka.co/cloudcomputing
What does Pay-as-you-go Mean?
Service Typical Unit of Measure Typical values
Model
SaaS Per user per month, No norm. The vendor is free to set his
Per location per month, etc. pricing and the unit of measure!
PaaS Per GB per month for DBs, 10 USD/GB-month
Per connection per month for integration layer,
Data Transfer In/Out
IaaS Instance-hours per month, 10 cents/hour
Data Transfer in/Out, 10 cents/GB – in, 15 cents/GB-out
GB per month for storage 10 cents/GB-month
Slide 7 www.edureka.co/cloudcomputing
Sample Benefits and Risks for Cloud Types
Service Benefits Risks Best Fit
Model
On-Demand Infrastructure Security Non-legacy apps
Data persistence Consolidation Efforts
Data aggregation Hosting for Dev & Test
IaaS Business Risk of Outages
Service failures can affect
multiple tenants and
customers
Standardized development Similar risks as above New application development
environment Vendor Lock-in Application development that uses
PaaS Rapid development & testing provider building blocks to reduce
time-to-market
Re-usable services Similar risks as IaaS Configuration over customization
SaaS Only requires limited Lack of control Commoditized applications
configuration & management Vendor Lock-in
Slide 8 www.edureka.co/cloudcomputing
Distribution of Control between Service Models
Slide 9 www.edureka.co/cloudcomputing
Cloud Computing Deployment Models
Slide 10 www.edureka.co/cloudcomputing
Hybrid Cloud
Hybrid Cloud consisting of multiple internal and/or external
providers will be typical for most of the enterprises
Slide 11 www.edureka.co/cloudcomputing
Sample Benefits and Risks for Cloud Models
Delivery
Model Benefits Risks Best Fit
Costs Lack of Control Applications and Data that can be publicly hosted
Time-to-Market Security Applications that can be easily moved or ported to
Elasticity Regulatory & Compliance commodity virtual platforms
Self-Service Data Migration
Public Simplicity Application Development
Software Licensing
Vendor Lock-In
Limitations
Control Scale Applications and data that can not be hosted publicly for
Security Management Tools security or compliance reasons
Private Compliance Charge-back Applications and data the require a high-level of control
Adoption
ROI
Flexibility Multiple Points of Failure When it is required to separate applications and data
Security Same risks as public and between private and public clouds
Hybrid Efficiencies private clouds When public clouds can not accommodate requirements
When public cloud resources are only required temporarily
and workloads can be migrated between clouds
Slide 12 www.edureka.co/cloudcomputing
Key Characteristics
Agility :
» Improves with users able to rapidly and inexpensively re-provision technological infrastructure resources
Multi-tenancy:
» Enables sharing of resources and costs among a large pool of users, allowing for:
» Centralization of infrastructure in areas with lower costs (such as real estate, electricity, etc.)
» Peak-load capacity increases (users need not engineer for highest possible load-levels)
» Utilization and efficiency improvements for systems that are often only 10-20% utilized
Slide 13 www.edureka.co/cloudcomputing
Key Characteristics
Reliability : improves through the use of multiple redundant sites, which makes it suitable for business continuity
and disaster recovery
Scalability : via dynamic ("on-demand") provisioning of resources on a fine-grained, self-service basis near real-
time, without users having to engineer for peak loads
Sustainability : comes about through improved resource utilization, more efficient systems, and carbon neutrality.
Nonetheless, computers and associated infrastructure are major consumers of energy
Virtualized : applications are decoupled from the underlying hardware. Multiple applications can run on one
computer (virtualization a la VMWare) or multiple computers can be used to run one application
Slide 14 www.edureka.co/cloudcomputing
Typical Use Case for Cloud
Infrastructure SaaS (e-mail, Dev and Test Hosted Solutions Content Delivery
Transformation collaboration, etc. ) Networks
Slide 15 www.edureka.co/cloudcomputing
Verticals Cloud Caters to
Accounts for 20% of public Driven by mobile, storage,
storage budget cuts and hybrid
classes
Communication Education
& Media
Banking Healthcare
Slide 16 www.edureka.co/cloudcomputing
Cloud & Open Source
Slide 17 www.edureka.co/cloudcomputing
Cloud Computing Concerns
Loss of control
Slide 18 www.edureka.co/cloudcomputing
Cloud Computing Concerns
Policy/compliance concerns (privacy)
Business “surprises”
Slide 19 www.edureka.co/cloudcomputing
Security issues in Cloud Computing
Notorious Nine
1. Data Breaches
2. Data Loss
3. Account Hijacking
4. Insecure APIs
5. Denial of Service
6. Malicious Insiders
Slide 20 www.edureka.co/cloudcomputing
Amazon Web Services
Slide 21 www.edureka.co/cloudcomputing
Why AWS?
Slide 22 www.edureka.co/cloudcomputing
Regions & Zones
Amazon EC2 provides the ability to place instances in multiple
locations
Ref: http://aws.amazon.com/about-aws/globalinfrastructure/
Slide 23 www.edureka.co/cloudcomputing
Regions & Zones
11 regions
30 availability zones
53 edge locations
http://harish11g.blogspot.in/2012/07/amazon-availability-zones-aws-az.html
Slide 24 www.edureka.co/cloudcomputing
Regions & Zones
US East Region (N.VA) US West Region -1 (N.CA) US West Region -2 APAC Region
(Oregon) Australia
Availability Availability
Zone A Zone B
Availability Availability Availability
Availability Availability Availability Availability
Zone E Zone A Zone B
Zone A Zone B Zone A Zone B
Availability Availability
Availability Availability
Zone C Zone D
Zone C Zone C
South America (Sou Poulo) EU -IRELAND APAC Region Singapore APAC Region Tokyo
Availability
Availability Availability
Availability Availability Availability Availability AZvoanilaebBilty Availability Zone A Zone B
Zone A Zone B Zone A Zone B Zone A Zone B
Availability Availability
Zone C Zone C
*New customers can access three EC2 Availability Zones in US East http://aws.amazon.com/about-aws/globalinfrastructure/
(Northern Virginia) and two in US West (Northern California)
Slide 25 www.edureka.co/cloudcomputing
Amazon Cloud Characteristics
Availability & Reliability
Scalability & Elasticity
Performance
Flexible (Numerous options of Programming, APIs , Access)
Secure
Slide 26 www.edureka.co/cloudcomputing
Access AWS
AWS AWS
Management Web service AWS CLI AWS SDKs
Console APIs
Slide 27 www.edureka.co/cloudcomputing
Why AWS
http://aws.amazon.com/resources/gartner-mq-2014-learn-more/
Slide 63 www.edureka.co/cloudcomputing
EC2 Highlights
Pre-built
AMIs Reliable
Flexible
Secure
Slide 29
http://www.edureka.co/cloudcom
EBS Features
1 GB – 16 TB
Size Volume
Raw
Persistent
Unformatted
Storage
Volume
EBS
Features
Automatic High
Replication in Performance
same Zone and
for HA Durability
Slide 30
http://www.edureka.co/cloudcom
EBS Definitions
EBS:
» EBS is a distributed, replicated block data store that is optimized for consistency and low latency read and write
access from EC2 instances
EBS Volume:
» A volume can only be attached to one instance at a time, but many volumes can be attached to a single
instance
EBS Snapshot:
» Snapshots can also be used to instantiate multiple new volumes, expand the size of a volume or move volumes
across Availability Zones. Snapshots can be shared using AWS Management Console or using API calls
Amazon EBS is particularly well-suited for use as the primary storage for a file system, database, or for any
applications that require fine granular updates and access to raw, unformatted, block-level storage
Slide 31
http://www.edureka.co/cloudcom
EBS Volume Life Cycle
Call
create
volume
from
1 GB–
16TB
Slide 32
http://www.edureka.co/cloudcom
S3 Definitions
Bucket – Collection (container) of objects. Up to 100 per account. Names up to 255 characters long
Object – Objects are the fundamental entities stored in Amazon S3. Objects consist of object data and metadata. They are
Individually addressable data item. Any number per bucket and per account. An object is uniquely identified within a
bucket by a key (name) and a version ID
Key – A key is the unique identifier for an object within a bucket. Every object in a bucket has exactly one key
Slide 33
http://www.edureka.co/cloudcom
Amazon S3 Namespace
Amazon S3
Bucket Bucket
Bucket
My-Images Cloud.bucket.com
Test.mysite.com
Slide 35
Install.doc Snap/Kid.jpg
http://www.edureka.co/cloudcom
Server Side Encryption
Slide 36
http://www.edureka.co/cloudcom
Three Services Better Together
VPC Architecture Scenarios
3. VPC with Public and Private Subnets and Hardware VPN Access
VPN Connection
http://www.edureka.co/cloudcom
AWS IAM Functionality
Slide 39
http://www.edureka.co/cloudcom
Integration Option 2 : Identity Federation
Slide 29 http://www.edureka.co/cloudcom
Integration Option 2 : Identity Federation (Contd.)
Slide 42
http://www.edureka.co/cloudcom
RDS Highlights
Slide 43
http://www.edureka.co/cloudcom
Why RDS?
Supports Popular DB like MySQL, Oracle, MS SQL & Now PostgreSQL [Now Aurora]
Scaling
HA & Durability
Security
Cheap
http://aws.amazon.com/rds/
Slide 44
http://www.edureka.co/cloudcom
Security Best Practices (Contd.)
Example: Build security Into Every Layer
HA Architecture
Security Characteristics:
Route 53 (highly scalable DNS)
Autoscaling Groups
Security Groups
ELB Security Group
OS Firewalls (on Instances)
RDS
» DB Security Groups
» backup window
» snapshots
» multi-AZ
CloudFront
» Private Distribution
» Pre-signed URLs
S3 Bucket Policies
» Private bucket
Slide 57 http://www.edureka.co/cloudcomputing
How it Works?
Slide 47 www.edureka.co/cloudcomputing
AWS Architecture and Design
Module 1 Module 6
» Introduction to Cloud Computing & AWS » Identity and Access Management
Techniques (IAM) & IAM Techniques and
Module 2
Amazon Managed Relational Database (RDS)
» Amazon EC2 and Amazon EBS
Module 7
Module 3 » Multiple AWS Services and Managing the
» Amazon Storage & Monitoring Services : Resources' Lifecycle
S3, RRS & CloudWatch
Module 8
Slide 48 www.edureka.co/cloudcomputing
Survey
Your feedback is important to us, be it a compliment, a suggestion or a complaint. It helps us to make
the course better!
Please spare few minutes to take the survey after the webinar.
Slide 58 http://www.edureka.co/cloudcomputing
Slide 59 Course Url