Professional Documents
Culture Documents
Lesson 3 Cloud Services PDF
Lesson 3 Cloud Services PDF
SOLUTIONS
Krish Raghunundhun
02-06/11/2015
Email: raghunk@telkomsa.net
Cell: +27 81 765 4733
Lesson 3 – Cloud Services
• Software-as-a-Service Environments
• Platform-as-a-Service Cloud Environments
• Infrastructure-as-a-Service Cloud
Environments
On the Lighter side of Cloud…
4
Introduction: Cloud Services
5
Cloud Services and Cloud Roles
6
IaaS vs PaaS vs SaaS
7
Software as a Service (SaaS)
8
Platform as a Service (PaaS)
9
Infrastructure as a Service (IaaS)
10
Summary of cloud service providers
11
Major uses of cloud computing
• Software-as-a-Service Environments
• SaaS Cloud Offering
• Benefits
• Recommendations for Software as a Service
• SaaS Examples
Software-as-a-Service Environments
14
Software-as-a-Service Environments
15
SaaS Cloud Offering
16
SaaS Cloud Offering
17
SaaS Cloud Offering
18
Benefits
20
Benefits
21
Benefits
22
Benefits
23
Benefits
• Data Protection
– Analyze the SaaS provider’s data protection mechanisms, data location
configuration and database organization/transaction processing
technologies, and assess whether they will meet the confidentiality,
compliance, integrity and availability needs of the organization that will
be using the subscribed SaaS application.
• Client Device/Application Protection
– Protect the cloud consumer's client device (e.g., a computer running a
Web browser) so as to control the exposure to attacks.
25
Recommendations for Software as a Service
• Encryption
– Require that strong encryption using a robust algorithm with keys of
required strength be used for Web sessions whenever the subscribed
SaaS application requires the confidentiality of application interaction
and data transfers.
• Secure Data Deletion.
– Require that cloud providers offer a mechanism for reliably deleting
data on a consumer's request.
26
SaaS Examples
27
Software as a Service (SaaS) - example
28
Other Examples
• Google Drive
– The online service offered by google,
offers up to 15 GB of storage space.
– Many promotions offer a storage space
(even up to 10 gb) on the download of
quick office or on buying the
Chromebook.
– A business person looking for unlimited
space can pay a monthly fee of $9.99 &
can get 1TB of space .
– Google drive offers a security cover by
encrypting the data in 128-bit aes.
29
Other Examples
• One Drive
– One Drive offered by Microsoft is very
similar to the DropBox in terms of the
system for additional storage via referrals
and camera upload feature.
– The basic storage offer which is a
generous 15GB with One Drive as
opposed to 2GB with DropBox
– The referral limit, however, stands low at
5GB, averaging out the total free storage
to stand at 20GB and 18GB respectively
– There is, however, no data encryption
30
Niche Cloud Service Providers
31
Platform-as-a-Service Cloud
Environments
33
Platform-as-a-Service Cloud Environments
34
Platform-as-a-Service Cloud Environments
35
Platform-as-a-Service Cloud Environments
36
Benefits
37
Benefits
38
Benefits
39
Benefits
• Generic Interfaces
– PaaS clouds that support generic interfaces are preferable.
• Standard Languages and Tools
– Choose PaaS systems that work with standardized languages and
tools
• Data Access
– Choose PaaS systems that work with standard data access protocols
(e.g., SQL) when practicable.
• Data Protection
– Analyze the PaaS provider’s data protection mechanisms, data location
configuration and database organization/transaction processing
technologies, and assess whether they will meet the confidentiality,
compliance, integrity and availability needs of the organization that will
be using the subscribed PaaS application.
41
Recommendations for Platform as a Service
• Application Frameworks
– If available, choose PaaS systems that provide application
development frameworks that include an architecture and tools for
mitigating security vulnerabilities.
• Component Testing
– Before a decision is made to deploy a new application on a public
PaaS cloud platform (or in some cases composing an application from
the building blocks provided by the PaaS cloud provider), ensure that
software libraries included in the compilation phase or called during the
execution phase behave as intended both in terms of functionality and
performance
42
Recommendations for Platform as a Service
• Security
– Ensure that a PaaS application can be configured to run in a secure
manner (e.g., a dedicated VLAN segment, using cryptography for
client-server communications) and can be integrated with existing
enterprise/agency security frameworks such as identification and
authorization so that enterprise/agency security policies can be
enforced.
• Secure Data Deletion
– Require that a cloud provider offer a mechanism for reliably deleting
data on a consumer's request.
43
PaaS Example: Google App Engine
• Google App Engine offers users the ability to build and host
web applications on Google's infrastructure
44
Platform as a Service
45
Platform as a Service (PaaS) - Example
46
Platform as a Service (PaaS) - Example
47
Infrastructure-as-a-Service
Cloud Environments
• Infrastructure-as-a-Service Cloud
Environments
• Benefits
• Recommendations for Infrastructure as a
Service
• Infrastructure as a Service (IaaS) examples
Infrastructure-as-a-Service Cloud
Environments
• Evaluate whether IaaS clouds can satisfy particular reliability,
compliance, and security requirements, as well as
understand operational mechanisms.
• It is important to remember, however, that most public cloud
implementations are proprietary, and thus their operational
details are not publically available.
49
Infrastructure-as-a-Service Cloud
Environments
50
Infrastructure-as-a-Service Cloud
Environments
• Abstract Interaction Dynamics
51
Infrastructure-as-a-Service Cloud
Environments
• Software Stack and Provider/Consumer Scope of Control
52
Infrastructure-as-a-Service Cloud
Environments
• Operational View
53
Benefits
54
Benefits
55
Benefits
56
Benefits
57
Benefits
58
Recommendations for Infrastructure as a
Service
• Multi-tenancy.
– When an IaaS cloud provider provides computing resources in the form
of Virtual Machines (VMs), ensure that the provider has mechanisms in
place to protect VMs from attacks
• (a) from other VMs on the same physical host
• (b) from the physical host as well as
• (c) from network originated attacks.
– Data Protection.
• Analyze the IaaS provider’s data protection mechanisms, data location
configuration and processing technologies, and assess whether they will
meet the confidentiality, compliance, integrity and availability needs of the
organization that will be using the provider’s infrastructure.
– Secure Data Deletion.
• Require that a cloud provider offer a mechanism for reliably deleting data on
a consumer's request.
59
Recommendations for Infrastructure as a
Service
• Administrative Access.
– When renting computing resources from an IaaS cloud provider in the
form of virtual machines or physical servers, ensure that a limited set of
trained/trusted users (from the consumer organization) alone are
provided administrative access to those resources.
• VM Migration.
– Formulate a strategy for future migration of Virtual Machines and their
associated storage among alternate cloud providers (e.g., the OVF
standard could be a partial basis for such a strategy).
• Virtualization Best Practices.
– Follow best practices for the administration of conventional systems
and networks, and for use of virtualization (i.e., NIST Guide to Security
for Full Virtualization Technologies SP 800-125).
60
Infrastructure as a Service (IaaS)
61
Infrastructure As A Service (IaaS)
62
Infrastructure as a Service (IaaS) examples
64
Amazon infrastructure cloud
65
Infrastructure as a Service (IaaS)
66
Cloud Services Case Study
68
Business Operations
69
Challenges
70
Competitors
• Microsoft
• Oracle
• SAP
• NetSuite
• RightWay
71
Previous Systems and Problems
72
Results of using Information Systems
73
Case Study Questions & Answer's
services
– Software as a Service(SaaS): CRM is used as SaaS in
SalesForce.com
– Platform as a Service(PaaS): SalesForce.com divides their products as
three types of clouds.
• the Sales Cloud
• the Service Cloud
• the Custom Cloud
What are some of the challenges facing Salesforce as it continues
its growth? How well will it be able to meet those challenges?
77
What factors would you take into account in deciding
whether to use Salesforce.com for your business?
78
Could a company run its entire business using
Salesforce.com, Force.com, and App Exchange? Explain
your answer.
79