2. Cloud Services & Infrastructure Infrastructure-as-a-Service (IaaS) 2 laaS is a way to deliver a cloud computing infrastructure like servers, storage, nctwork and operating system. CD The customers can access these resources over cloud computing platform ie Internet as an on-demand service. In laaS, you buy complete resources rather than purchasing server, software, datacenter space or network equipment. las was earlier called as Hardware as a Service(HaaS). HaaS differs from laaS in the way that uscrs have the bare hardware on which they can deploy their own infrastructure using the most appropriate software. The provider maintains total control over the physical hardware and administrative control over the hypervisor layer Thus the consumer can make requests to the cloud to create and manage VMs but these requests are honored only in case they conform to the provider's policies over resource assignment. The consumer maintains complete control over the guest operating system functionality in each of virtual machines, and all the software layers above loud Consumer Total Control Hardware Tr No Control Fig. laa Component Stack and Scope of Control Advantages of IaaS © In I2aS, user can dynamically choose a CPU, memory storage configuration according to need. © Users can easily access the vast computing power available on laaS Cloud platform. © Rapid and effortless hardware employment. Compatibility with local environment. Disadvantages of IaaS © Legacy Security Vulnerabilities impact: Most of IaaS systems give its users a possibility to create and retain virtual machines in various states e.g., running, suspended and off. © Robustness of VM-level Isolati : Isolation of the virtual machines depends on the correct implementation and configuration of the hypervisor. © Data Frase Practices: Virtual machines access disk resources maintained by the provider: Data replication and backup practices also complicate data erase practices. Vendor outages make customers unable to access their data for a while. Data Collected By Omkar Javadwar© Intemet connection is a must. Platform-as-a-Service (PaaS) Q Paas is a programming platform for developers. This platform is generated for the programmers to create, test, run and manage the applications. A developer can easily write the application and deploy it directly into PaaS layer. PaaS gives the runtime environment for application development and deployment tools. Google Apps Engine(GAE), Windows Azure, SalesForce.com are examples of PasS. Gioud Provider} No controt —+- [Aopicaton eg. ma Admin Control — Middleware © g . Java’ Operating System ! | ' | | E Figure PaaS Component Stack and Scope of Control Advantages of PaaS, © Centralization of data: PaaS is easier to develop. Developer can concentrate on the development and innovation without worrying about the infrastructure. © No additional software needed: Working on the provider's environment is very convenient as very often it is just the browser that is needed for most of the operations. © In PaaS, developer only requires a PC and an Intemet connection to start building applications. Ready to use development environment. And, Pay for what you use model. Scalability: Cloud-based platforms offer reusable code which, of course, makes it easier to develop and deploy applications, but also offers increased scalability. Disadvantages of PaaS Vendor lock-in: One developer can write the applications as per the platform provided by PaaS vendor hence the moving the application to another PaaS vendor is a problem. © PaaS clouds are not portable: This is a concern particularly when platforms require proprietary languages and run-time environments. © Network Dependency: In case of network failure outsourced PaaS platforms become non-operational as there is no connection with them in such case. © Possibility of information disclosures: For example, the very presence or absence of message traffic, or the sizes of messages sent, or the originating locations may leak information that is indirect but still of importance to some consumers Data Collected By Omkar JavadwarSoftware-as-a-Service (SaaS) Saas is known as'On-Demand Software’. © It is a software distribution model. In this model, the applications are hosted by a cloud service provider and publicized to the customers over the internet. In Saas, associated data and software are hosted centrally on the cloud server. User ean access SaaS by using a thin client through a web browser. CRM, Office Suite, Email, games, etc, are the software applications which are provided as a service through the Internet. ‘Application e.g.. mail |—t Middleware ©.g.. Java’ Total Contro ‘Operating System Hardware Figure SaaS Provder/Consumer Scope of Contrl Advantages of SaaS Saas is easy to buy because the pricing of SaaS is based on monthly or annual fee and it allows organizations to access business functionalities at a small cost, which is less than licensed applications. © SaaS needed less hardware, because the software is hosted remotely, hence organizations do not need to invest in additional hardware. © Less maintenance cost is required for SaaS and do not require special software or hardware versions, © Global accessibility: We can access applications anywhere at any time from any device. © License management: No license is required for use of software © Regular Upgrading: SaaS Vendors regularly upgrade their software, so that the users don’t have to put any effort into installing and upgrading the applications. Disadvantages of SaaS © SaaS applications are totally dependent on Internet connection. They are not usable without Intemet connection. © No Portability: It is difficult to switch amongst the SaxS vendors. © Lack of 100% Security: Although browsers encrypt their communications with cloud providers, subtle disclosures of information are still possible. © Browser Dependence: If a consumer visits a malicious Web site and the browser becomes contaminated, subsequent access to a SaaS application might compromise the consumer's data. Data from different SaaS applications might be inadvertently mixed on consumer systems within consumer Web browsers. Data Collected By Omkar JavadwarIdentity as a Service (IDaaS) An identity refers to a set of attributes or characicristics which make something recognizable or known.An attribute and metadata of any object related to another object that enables an object to be identifiable is termed as Digital Identity. The establishment and proof of identity is a central network function. An identity service is one that stores the information associated with a digital entity in a form that can be queried and managed for use in electronic transactions. Identity services have as their core functions: a data store, a query engine, and a policy engine that maintains data integrity. The Domain Name Service(DNS) can run on a private network, but is at the heart of the Internet as a service that provides identity authorization and lookup. The name servers that run the various Internet domains (COM, ORG, .EDU, .MIL, TV, .RU, and so on) are [DaaS servers. DNS establishes the identity of a domain as belonging to a set of assigned addresses, associated with an owner and that owner's information, and so forth. ‘An identity can belong to an individual and may consist of the following: Things you are: Biological characteristics like gender, age etc. Things you know: Personal data like social security PINs etc. Things you have: Your fingerprint, bank account which you can access etc Things you relate to: Your family and friends, beliefs and values etc. An identity service stores the information linked with a digital entity in a form which can be ‘managed and queried for further utilization in electronic transactions. Major core functions of Identity Services are: 1. A data stores. 2. Query Engine. 3. Policy Engine. To establish your identity on a network 1. Single-factor authentication 2. Two-factor authentication 3. Multi-factor authentication Identity system codes of conduct User control for consent Minimal Disclosure Justifiable access Interoperability Unambiguous human identification Consistency of Service Data Collected By Omkar JavadwarStorage-as-a-service A storage cloud provides storage as a service to storage consumers. A storage cloud can be used to support a diverse range of storage needs, including mass data stores, file shares, backup. archive, and more. Implementations range from public user data stores to large private storage area networks (SAN) or network-attached storage (NAS), hosted in-house or at third-party managed facilities. The following examples are publicly available storage clouds: IBM SmartCloud offers a variety of storage options, including archive, backup, and object storage. QF Skydrive from Microsoft allows the public to store and share nominated files on the Microsoft public storage cloud service. Email services, such as Hotmail, Gmail, and Yahoo, store user email and attachments in their respective storage clouds. Facebook and YouTube allow users to store and share photos and videos. Primary. Fixed Storage dam Content Storage For written and Storage data Cloud read on ‘written once Demand and read any tims Virtual Siete) Machine is See rT See Coote CE Ra eae coe Se Advantages of a storage cloud © Facilitates rapid capacity provisioning supporting business agility © Improves storage utilization by avoiding unused capacity © Supports storage consolidation and storage virtualization functionality © Chargeback accounting for usage to conserve resources Benefits and features of storage cloud © Dynamic scaling and provisioning (elasticity):storage cloud can support « company’s growth while reducing net capital investment in storage. © Faster deployment of storage resources:New enterprise storage resources can be provisioned and deployed in minutes compared to less optimized traditional IT, which typically takes more time, sometimes days or even months. Data Collected By Omkar Javadwar© Reduction in TCO and better ROL: Enterprise storage virtualization and consolidation lowers infrastructure total cost of ownership (TCO) significantly, with centralized storage capacity and management driving improved usage and efficiency, generally providing a significantly higher retum on investment (ROI) through storage capacity cost avoidance. © Reduce cost of managing storage: Virtualization helps in consolidating storage capacity and helps achieve much higher utilization, thereby significantly reducing the capital expenditure on storage and its management. Multiuser file sharing, Dynamic, flexible chargeback model (pay-per-use) Greener data centers: By consolidating geographically dispersed storage into fewer data centers, you achieve a smaller footprint in terms of rackspace; You can save on energy (electrical power) and charges for infrastructure space, which also improves TCO and ROL ‘Cave Study: Platform as a Service: Google App Engine f uBsvow7vO 3 ‘Memcache- (3) Google File System t tT Fioure Google App Engine The Google cloud, called Google App Engine, is a ‘platform as a service” (PaaS) offering. In pue-W0H) V5 f contrast with the Amazon infrastructure as a service cloud, where users explicitly provision virtual machines and control them fully, including installing, compiling and running software on them, a PaaS offering hides the actual execution environment from users. A software platform is provided along with an SDK, using which users develop applications and deploy them on the cloud. Data Collected By Omkar JavadwarThe PaaS platform is responsible for exccuting the applications, including servicing extemal service requests, as well as running scheduled jobs included in the application Users upload code, in either Java or Python, along with related files, which are stored on the Google File System, a very large scale fault tolerant and redundant storage system, tis important to note that an application is immediately available on the internet as soon as it is suecessfilly uploaded O Resource usage for an application is metered in terms of web requests served and CPU-hours actually spent executing requests or batch jobs. A PaaS application can be deployed and made globally available 247, but charged only when accessed (or if batch jobs run); in contrast, in an IaaS model merely making an application continuously available incurs the full cost of keeping at least some of the servers running all the time. © Further, deploying applications in Google App Engine is free, within usage limits; thus applications can be developed and tried out free and begin to incur cost only when actually accessed by a sufficient volume of requests. The PaaS model enables Google to provide such a free service because applications do not run in dedicated virtual machines; a deployed application that is not accessed merely consumes storage for its code and data and expends no CPU cycles. Q GAE applications are served by a large number of web servers in Google's data centers that execute requests from end-users across the globe. The web servers load code from the GFS into memory and serve these requests. Each request to a particular application is served by any one of GAE’s web servers; there is no guarantee that the same server will serve requests to any two requests, even from the same HTTP session. Historical Perspective of Data Centers ‘What is Data Centre ? A data centre is a facility used to house computer systems and associated components, such as telecommunications and storage systems. It generally includes redundant or backup power supply units, redundant data communications connections, environmental controls (e.g. air conditioning & fire suppression units) and security devices. ‘What is Data Centre Tires? Tire system is a simple and effective means for identifying different data centre site infrastructure. This is useful for measuring: 1) Data centre performance 2) Investment 3) ROI (retum on investment) Data Collected By Omkar Javadwar\—al | > Data Centre Tires + Non-redundant capacity devices composed of a single path for power and cooling distribution, without redundant components, * Tier 2 + composed of multiple active power and cooling distribution paths, but only one path active. * Tier 3 + composed of multiple active power and cooling distribution paths, has redundant components, and is fault tolerant. Tier I data centre may be suitable for small businesses where IT is intended for intemal business processes. AA Tier II data centre may be appropriate for internet-based companies without serious financial penalties for quality of service commitments. Tier III application would include companies that span multiple time zones or whose IT resources support automated business process Tier IV requirements include companies who have extremely high-availability requirements for on-going business such as E-commerce or financial settlement processes, Datacenter Components: IT Equipment and Facilities 1 Server Technology IT servers take many forms. Server may be a software program connected locally or remotely. Servers are designed to carry out a dedicated function: email, Web, print, database servers. Server hosts a particular OS, but within a data center there may be capacity for different OSs. In data centre large numbers of servers are networked. A data center server will typically be headless. This design is due to the machine-to-machine service interaction mode. Human interaction is required for administration, setup and maintenance, and a control terminal is then provided with a monitor, keyboard and mouse interface. Data Collected By Omkar JavadwarNetworking The gateway machine of a data center. Its primary function is protocol translation in and out of the data center. The millions of requests, for Web page content (hits). Message must be routed to a server instantly able to satisfy the request. Routers use routing tables and message address standards to manage the traffic. Routers may be configured to manage the vast quantities of messages flowing through the center's networking Cables. While a router will work at the network layer, switches may be deployed to manage messages across a number of different layers. To provide connectivity between different network segments within the data center. Storage Storage ‘Network Attached Storage (NAS) Storage Area Networks (SANs) NAS — Client Machine as Network based File Server. NAS then manages the access to the file space via client-side requests using the NFS protocol. SAN - The dise space appears as local to the client machine. Direct access storage (DAS) is another option, where the disc storage is connected exclusively to the server machine, Data Collected By Omkar JavadwarSMe) tes trmmec nn nome CMe teste erate ad PU SMe ete Nan ecco Cates closely linked to provide the logical Cluster computing een m Rents neon Gra Computing SNOT Mem ime oe) integrate disparate resources acros: CTI CZ Teme METI Seams et ets eet (SOU ey Ror Mea cn es here en : ca Pre ean TeeX CO Cori KO BERR a a oa CesT competing (server hardware) er ean ORE ME TSS ROS Sted STM eR cee Montes Roem yo UCM ANCOR caComene Ti mca Coo Me? virtualized system enables a single hardware Vietualzation Peete STO ae eT CMTE TE CO NT CoMmOSTCOT may or may not be running the same OS. VIET Oy ETC MRS TTT) cites Pe OEM mC ncn tts resource provision: cloud comput Cloud computing makes a separation of onthe Cen aCe Te rte MCS COO Lo Neo son virtualized and provided as a service in itself. Networking is used to communicate betwee Po ad ENO MOET Cera ia Renmecsnn ane Data Collected By Omkar JavadwarFacilities Infrastructure ‘Consequently, the two main functions of the supporting infrastructure are as follows: © Ensure that the IT and facilities are supplied with power at all times. © Keep the data center at the required temperature by removing the heat generated. Power Supply © Losing power extremely disruptive, even catastrophic. © To avoid such disruption, a data centre employs an UPS together with a battery bank, © Power distribution units (PDUs), are also used to smooth the alternating current (AC) power and to distribute that power to the IT equipment racks within the data centre. © Within the IT equipment, AC power is subsequently converted to direct current (DC) power. © If electrical supply is lost, the UPS utilizes the batteries to provide ‘ride-through” power which allows time for electrical generators to come online until the mains power supply is restored. Back Centar obi ieeen [oo] “tow” Co) seuss Source: ine! | BmWAtOnd ical dual-power paths to the IT lead Cooling * The objective of cooling is to ensure that components within the IT equipment do not overheat, causing damage or degrading the performance and thus impacting service. © Air remains the dominant medium used to cool IT equipment at the server level, whereby the intemal components of the server transfer their heat to cool air which is drawn by server fans across the devices and subsequently directed out the back of the chassis. © In the majority of data centers, server racks sit front-to-front to form cold aisles and back-to-back to form hot aisles. © One of three types of air-based systems is utilized, all three of which employ a computer room air conditioner (CRAC) or computer room air handler (CRAH), © The systems can be characterized by location and size — namely, ‘room-based” large units, ‘row-based” medium units or ‘rack-based” small units Data Collected By Omkar Javadwar12 Under usual operation, heat within the air is transferred via the CRAC or CRAH at the room, row or rack level, to a liquid medium, normally water, chilled water or glycol. Wet-side or water-side economization is one best practice employed to reduce energy consumption by minimizing reliance on costly mechanical refrigeration. (Condenser) Airside economization, sometimes referred to as direct-free air cooling or natural cooling, represents current best practice in terms of energy-efficient heat removal Room Row Rack Source: APC white paper # 130 Figure: Room, Raw, Rack level cooling Data Collected By Omkar Javadwar