about:blank

Chapter Introduction to Cloud

Topics covered in this unit:

• Introduction to Cloud Computing

• What

• Why

• Traditional

• Cloud Cloud Advantage

• Key Attributes of Cloud Computing

• Examples of Cloud Advantage

• Cloud Segments

• Cloud

• Cloud

• Cloud

• Examples of Cloud Services

1 of 44 3/9/2020, 2:41 PM
 about:blank

• Amazon Simple Storage Service (S3)

• Amazon Elastic Compute Cloud (EC2)

• Windows Azure Blob Storage

• Windows Azure SQL Database

• Google

What Computing

"Cloud computing is the delivery of computing as a service rather than a product."

Before the introduction of Cloud computing IT infrastructure had been a product. One
must buy IT infrastructure first to be able to use it. To be able to deploy an application
on 100 servers, one must first buy them, rack them, install software on them, and
then takes considerable time,
Cloud the drawbacks mentioned
IT infrastructure

Why Matters

Below are some stats, facts and predictions that signify the importance of cloud
computing.

• The 148 Billion$ in 2016

by cross the 270 Billion$.

• Amazon own in 2017 with their

services is more than three
Microsoft

• Today, Cloud services are used 70% for file storage, 62% for backup and recovery

2 of 44 3/9/2020, 2:41 PM
 about:blank

and 51% for application deployment.

• Today, 75% of enterprises with greater than 1,000 employees have at least one
app or platform running in the cloud

• 41% of businesses are planning to increase their investment in Cloud

technologies, and midsize companies
spend smaller firms.

• Experts zettabytes of data will be held

• The saves 5.5 Billion$ every

Services.

The Evolution of Software

No
un
au
tho
ri ze
d co
pie
s all
ow
ed
!

Illustration

The above a mainframe. The

old comprising and only 1.7kB of RAM.
fast that contain million times million
more compared the above machines. Compared
much development in areas like things like cars, building, etc. The companies used
mainframes to install and run their applications. Most companies incorporated the IT
infrastructure on mainframes by the early 2000s. There are two main components of

3 of 44 3/9/2020, 2:41 PM
 about:blank

software namely the data and applications. In mainframes, both are on the same
machines. In mainframes, there were a lot of dumb terminals which could be used for
login to access your application.

Advantages and Disadvantages of Mainframes

For example, word processor and working

of the one part of the document,
return, different terminal. There
the terminal. if there is no centralized
the application, install the application
When a writing document on one of the servers, log into any
machine and resume the work as the application and the data will be bounded by the
PC.

In the mainframe days, PC and applications were provided by the same company,
which world. The split-up between
providers prospect of providing a and
the applications

This managers shoulder

well as anything fails, the corresponding contacted.
Microsoft made its fortune by selling CDs as PC made the software product.

The second advantage the mainframe gave was a single point of management,
which provides benefits like the same frame for data and applications, centralized
software vendor for both; hardware
providers everything. With IT entering
abilities isolated computing recourses,
independent mainframes where there
resources. was doing something
mainframe, the mainframe would get affected. was
resolved by PCs as everyone had their own dedicated processing capacity.

4 of 44 3/9/2020, 2:41 PM
 about:blank

But with the advantages came the problems.

Illustration of Difference Between Working on Mainframes and Individual PCs

“One PC in every home and Microsoft products on each PC.”

- Bill

In today’s however not true, a

with every smartphone, tablets, etc. came
data. document on a tablet, the
to be accessed

The companies quickly identified this problem, and the concept of hosted applications
was introduced where the applications and data are in the same location as Google
Docs, Salesforce, etc.

For Example, Web-based application

for creating, updating documents,
stored from any computer
connection. Google Docs, companies
Office 365 similar functionality as Google Docs

Traditional IT Infrastructure

5 of 44 3/9/2020, 2:41 PM
 about:blank

When you need to deploy an application on your hardware for the users to use it
online, you need to invest more in your IT infrastructure compared to when you
provide software on a CD and users deploy the software themselves on their
hardware. The hosted software is commonly called Software as a Service (SaaS).
For example, Microsoft Office is available on a CD, which can be installed on a
computer and then used. On the contrary, Microsoft Office 365 is available online and
the users Office 365 website and
without software. Although it is
will take such an application.

Deploying applications was complicated

requires hardware and software to keep which
involves a team of experts to install, configure, test and maintain them. We will see
the kind of infrastructure that will be required to host such an application.

There are different layers of traditional IT infrastructure, which are explained below.

Illustration Infrastructure

Physical

This layer includes your data center, machines, and networking equipment. The data
center is the backbone of the hosted application. It should be established in a secure

6 of 44 3/9/2020, 2:41 PM
 about:blank

location. The location should be away from floods, hurricanes, and other natural
disasters. It should have access to a good power grid, possibly multiple power grids.
Good generators and diesel storage should be present in case of power failure. It
should have the proper cooling equipment. Proper physical security measures should
be set up. Authorized people should have access, and security personnel should be
present to enforce these measures. After preparing the data center, there will be a
need them installed. A
networking switches, and cabling.

Issues

Need of capital upfront: a company will need to invest physical

hardware and networking equipment, rent, cooling equipment, etc. thus even before
an application can be deployed and given to users to test, the company will have to
put down a lot of money on the infrastructure. Has a lot of physical limitation: the floor
space of data center, cooling capacity, etc. are physical limitations that cannot be
easily wants to move up. Adding
mean from scratch.

Need company will need decent

engineers equipment. It is not
thousand

Low-Level Hardware Resources

The low-level hardware resources are a computation, storage, bandwidth, etc. Most
people in terms these low-level
not how example, one might be
storage concerned how many
physical Thus, the physical layer,
amount resources.

Issues Faced

7 of 44 3/9/2020, 2:41 PM
 about:blank

It is tough to estimate in advance: when you deploy your application, it is tough to

predict how the resources are going to be consumed and therefore difficult to arrive
at an estimate of the hardware resources needed.

Becomes cheaper every month: another thing about hardware is that the cost always
decreases. From the time, you bought the hardware to the time you start using it; the
prices the hardware technology

Low-Level

This web server, application

Most developers/testers work at this layer or above. If their functioning
and their servers are up and running, they are good. It's only when a problem creeps
up when they must dig deeper into the lower layers and find the cause.

Issues Faced

Upfront associated licensing

use. development phase and not
software using all its features
but you features of the software
you have generate revenue from your application.

Needs good software maintenance team: it's easy for a maintenance team to
manage a few machines but when the size of your company grows, simple tasks like
installation, patching and updating can get cumbersome. You need an experienced,
dedicated

Application

Developers at this layer. If the

is acceptable. when a problem creeps up that deeper into
lower layers and find the culprit.

8 of 44 3/9/2020, 2:41 PM
 about:blank

Issues Faced

Tightly coupled to the geographic location: when you develop an application, you
never know which part of the world it's going to be popular. Let’s say you have an
application in India that gets popular in the US. For your US users to get better
performance, you need to have a data-center up in the US. You need to go through
the same datacenter but in a foreign

Users

Support users in different geographic

of devices application. If it is a browser-based application, users
should be able to access it using their cell-phones, tablets, MACs, or Windows
systems.

Cloud Infrastructure and Cloud Advantage

Cloud a lot of the above

than above, you use Cloud
layers. experienced vendor
Google, Salesforce, etc. to maintain that shared
infrastructure you only pay for what you use. All the upgrades are automatic, so
scaling becomes easier.

Cloud-based applications can be set up in days or weeks, and they are less
expensive. just like opening a browser,
using

Here and their products at

above.

• Physical Layer

9 of 44 3/9/2020, 2:41 PM
 about:blank

o Rack space cloud servers

o Amazon Elastic Compute Cloud

o Google Compute Engine

• Low-Level hardware resources

o Service

o Balancer

• Low-Level software resources

o Windows SQL Azure

o Amazon RDS

• Application

o Microsoft Exchange Online

o Salesforce.com CRM

IT Infrastructure: Issues

Key issues Infrastructure:

Infrastructure Core Business: Infrastructure

Application layer; this layer concerns engineers. A user will only notice the
infrastructure issues if Facebook/Google+ started throwing errors.

10 of 44 3/9/2020, 2:41 PM
 about:blank

Hard to Scale: High-performance computing requires scaling up and down of

servers as and when needed. If the traffic is high at night, it should scale from 10 to
20 servers and scale down when the traffic falls. Traditional IT infrastructure does not
support this ability.

Illustration of Infrastructure Issues

The Pyramid of Effort

Illustration of Pyramid of Effort

Cloud the black area shown

Effort” the products. A company
recourses which takes efforts,
only certain reasons, it stops

What are the challenges faced in moving a desktop application to a hosted

software?

11 of 44 3/9/2020, 2:41 PM
 about:blank

Let’s consider an example to understand this question. A popular company has a

desktop accounting software called MyAccountant, which is used by various
accounting teams across many organizations. Now, the company wants to move from
being a desktop software to a hosted software called OnlineAccountant. From being
a desktop software given on CD to a hosted software, there are many challenges
faced.

• Infrastructure

In

o required to procure
includes buying servers data center lease, cooling equipment, backup
generators, etc.

o Servers: To support your application.

o Data Center: To host the servers on which the application is running.

o Team: To manage, monitor

o For installing and

of checks, monitoring and replacements disks, drivers,
old server, etc.

o Network Engineers: To connect all the servers with routers, switches, etc.
create a network, configurations, and troubleshooting.

o center: Which runs

always up and running
tackled swiftly.

• Software

In this

o Software engineers who can write distributed applications, which can run on

12 of 44 3/9/2020, 2:41 PM
 about:blank

multiple servers. This will be a big challenge as this is a skillset which is

acquired over time, it is not taught in universities

o The Applications needs to be Scalable and fault tolerant, when there are
1000 servers on which the application is running, due to annual hardware
failure rate, something is always bound to fail.

o bottlenecks should be

• Software must be tested for fault

performance integration testing, etc.
which the testing is done is smaller in size compared to the actual application
deployed. This can later cause problems as there are some issues which only
manifests on a larger cluster when used for different clients. Since the application
is now hosted on the internet and can be accessed by a wide variety of entities,
testing should be done accordingly.

• Marketing/Business

o business models; One-time

o As software MyAccountant, the customers one-time

purchase of the CD, install the software on the own desktop and use it. There
was no extra cost as the responsibility of the of the software maker ends when
the CD is sold.

o center is a recurring
and replacement

o application requires a subscription-based

subscription for a specific
pay recurring cost.

13 of 44 3/9/2020, 2:41 PM
 about:blank

• Project Management

o For hosted applications, traditional software developmental methodologies like

waterfall model are not suitable as it takes months and years to develop the
latest version of any software. In this, there is a linear progression through the
various stages of requirement gathering, design, development, testing, and

the customers expect

Agile model is best

o incremental based
continuous improvement. This style keeps the development with
business needs. It also gives the ability to try new features faster. If the
customer request for a new feature or a bug fix, the delivery rate will be faster.

Key Computing

There attributes that a product needs

Cloud. Cloud Computing

• Self-Service: A clouds must allow self-service access to their services. A

customer should be able to sign up online by providing your credit card details and
be able to access resources at will through an online control panel. Customers
should be able to request, pay and use the desired services, without the
intervention

• Pay Cloud providers must allow

the without any upfront
resources Example: if a user uses
and data, by the end of the month
machine hours and that 1 TB of storage only. Any provider, which needs a
contractual commitment and upfront payments to use their services, cannot be

14 of 44 3/9/2020, 2:41 PM
 about:blank

considered as a cloud provider.

• Elastic: Clouds must allow users to quickly provision and de-provision their
resources as and when required. For Example, in an E-commerce site which
needs to have 20 servers to support traffic during peak hours of the day but at
night the traffic is low and need only two servers running. Clouds should give the
ability from 20 to 2 servers
servers to happen, there are
feature allows to easily and
down.

If scaling was manual and tedious, it will service

being elastic. And secondly, the billing model should allow elasticity. For example,
if the cloud provider charges a minimum of 24 hours of usage, each time the
server is started, then the e-commerce site mentioned above, will not be able to
be elastic, as there is no financial benefit. Most cloud providers though charge for
a minimum of hour, and many even ten mins, which allows elasticity.

• High must allow users

their In today’s time, it is
or users within few days.
on should be able to give enough
traffic. limit the user to very puny limits few TB of
storage cannot be considered Cloud services.

• Fully Virtualized and Automated: Cloud must have virtualized their physical
recourses, and these virtualized recourses must be made available to users.
Users configure the recourse
intervention

This actual access to actual

a This allows great sharing
architecture, physical server could be
two

And it must be fully automated. Provisioning VMs or storage cannot be a manual

15 of 44 3/9/2020, 2:41 PM
 about:blank

task performed by someone at the backend. It must be fully automated.

• Use Internet Protocols and Technologies (HTTP, REST, SOAP, etc.): Cloud
must have standardized APIs that provide instructions on how two application or
data sources can communicate with each other. For example, there is an
application which lets the user upload files to backup and downloads them when
needed. application, browse for
data server. When the
he/she and click download.
driven must give access
of can access them without
instantly application more usable and automatable. Amazon S3
as an example or DropBox, not only will they have UI using which the user can
upload and download data, but it will also provide an API for upload and download
methods.

Now there is need for human to click on Upload of the UI, Upload methods
can name, and the file is automatically
centralized download method,
file enables the user to write can
interact application to upload and download
humans.

• Resource Pooling: This is achieved by Multi-Tenant application architecture.

Multitenancy makes the software to be available to multiple user entities (tenants),
and each entity can operate with logical isolation whereas, in fact, they are all
using a physically shared resources. An entity can be an organization that is co-
using other entities or an
resources applications.

Examples Advantage

Successful scaling can be the deciding factor in success and failure of a company.

16 of 44 3/9/2020, 2:41 PM
 about:blank

Let’s look at companies who have successful scaled using the cloud and later look at
some who didn't.

RedBus.in

RedBus started in 2006 is an online travel agency that sells bus tickets in India. After
using for a year, they realized
was growing needs and began
solution. Web Services to
over day.

Zynga.

Zynga is a social game company. The company has made games for MySpace and
then Facebook. It was started in 2007 and is now a $6.6 billion company. Zynga has
over 250 million monthly active users globally and owns 7 of top 10 games on
Facebook. include Farmville, Mafia

The above daily users after the

games.

From the graph, see that within six months of the the
number of active users was close to 29 million. Now how do you support this many
active users a day?

Imagine the kind of infrastructure and investment needed to accommodate these

numbers?

How is going to be so successful? Zynga

had it infrastructure to support when
the popularity down? What happens

As said by Mark Williams the company's VP of network operations -"given the game's
huge growth, without Amazon Farmville would have failed."

17 of 44 3/9/2020, 2:41 PM
 about:blank

Source: news sources

Animoto

Animoto is a web application that converts music and photos to videos. It got popular
when Facebook application. It got sign-up
in 3 days.

According co-founder of Animoto, for

requirement company would have required
capacity

This additional capacity was provided by Amazon Web Services and has led to the
success of the company.

Examples Companies that Failed

Friendster

Friendster networking site launched in 2002.

within the first few months. With their expanding fan base, they began to run into
problems with scaling.

18 of 44 3/9/2020, 2:41 PM
 about:blank

Friendster began to decline, and rival social networking site Facebook began to rise.
Jim Scheinman, former Bebo and Friendster exec, puts the blame squarely on
Friendster's inability to scale as for why they lost the social networking race. In June
2011, the company repositioned itself into a social gaming site and discontinued user
social network accounts.

Cuil

Cuil ( launched as "Google Killer"

larger engine, with about
said way too much traffic got
so many that its servers crashed. The messages "Due to
excessive load, our servers didn't return results.

Please try your search again," which were displayed when accessing the site was a
huge embarrassment.

Moreover, company said a "serious

overloading.

Concerns website's slow response

search least one case, inappropriately pornographic
displayed alongside search results.

Cloud Advantage: Redundancy (AWS Regions)

One of cloud other than

infrastructure.

This their infrastructure. Amazon in

US, Brazil, Australia, and China.

19 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration of AWS Regions

Let’s take the example of Japan. A few years back, they had a severe earthquake,
and resultant tsunami, which destroyed the entire power line and many cities were
under water.

For example, popular news website: The

on physical Tsunami comes. It is a time at
the newspapers information. A crucial time needed
the most, under water!

The Japan Express of the most prominent competitor is on AWS. So, even if AWS’
Japan infrastructure was shut down, they can quickly with a few modifications, move
their website from Japan to Singapore, and they are still up. Despite the raging
tsunami, their website is still up giving information to people.

Can which will be made on

Followers company are coming to The

information! for this kind of Publicity.

Tsunami may happen once in a lifetime, but things like this happen all the time.
Natural disasters are likely to occur anywhere anytime. The idea behind is that a user

20 of 44 3/9/2020, 2:41 PM
 about:blank

must always be ready. An unfortunate incident could wipe out all the data, but if there
is a copy in Singapore, US or any other region, the application can still be hosted
from those regions.

Another advantage is that infrastructure in different regions for cloud providers look
the same.

Many in different regions

providers infrastructure, and the IT
different

But cloud providers the same infrastructure from user’s perspective all
locations, with the UI and APIs being same for all regions, making migration from one
region to another simple.

Cloud Segments

Cloud divided into three segments:

• Infrastructure

• Platform as a Service

• Software as a Service

21 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration Segments

Infrastructure as a Service (IaaS)

Infrastructure as a service is the most basic Cloud service model. This is a

standardized model offering infrastructure
networking service to subscribers.

IaaS which offers the building

entities choose as per requirement
infrastructure. model, the entire responsibilities of services and
infrastructure are on users.

Examples: Amazon Simple Storage Service, Amazon Elastic Compute Cloud, Google
Compute Engine, Rackspace Cloud servers, Azure Virtual Machines, etc.

22 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration of Infrastructure as a Service

Benefits

• Very

• Drastic capital investment

• Scale

• Pay for only the resources used

• Drastic reduction in IT Support, networking and system admin staff required for
maintenance

• Takes critical infrastructure components

Platform

PaaS stands for Platform as a Service. In this deployment model, the customers are
provided with a pre-configured platform, which can be used to deploy the applications

23 of 44 3/9/2020, 2:41 PM
 about:blank

without any hassles of managing the infrastructure. Customers can focus on the
development of application rather than focusing on the complexity of managing the
underlying infrastructure. It is the service provider’s responsibility to maintain the
underlying infrastructure making it easy for developers to develop a line of business
applications. Unlike IaaS, PaaS includes middleware, development tools, and other
services, which makes a server deployment ready. PaaS is designed to support
complete including building, testing,
management.

Illustration

Benefits

• No upfront licensing costs

• Pay for only the resources used

• Easy

• Rapid

• Takes critical platform components

• Drastic reduction in IT staff required for software maintenance

24 of 44 3/9/2020, 2:41 PM
 about:blank

Software as a Service (SAAS)

SaaS stands for Software as a Service. SaaS is a rapidly growing market over recent
years. It uses the Internet to deliver the application to the customer and are
sometimes called “on-demand” software. These applications are hosted remotely and
are managed by third-party vendors. The pricing model is usually per license per user
on a commitment. It is the
manage patches and to bind
applications “one-to-many” model. Some
are Office Salesforce, etc.

Benefits

• No installation and maintenance requirements

• Pay for only the resources used

• No

• Ability

• Ability devices

• Usually one can achieve on their own

Cloud Deployment Models

The primary models are:

• Public

• Private

• Protected Cloud

25 of 44 3/9/2020, 2:41 PM
 about:blank

• Community Cloud

Public Cloud

The cloud infrastructure is made available to the public or a large industry group and
is owned cloud services.

Illustration

Private

The cloud for organizations. It

organization or any third party and can exist on premise or the cloud.

Illustration of a Private Cloud

26 of 44 3/9/2020, 2:41 PM
 about:blank

Community Cloud

The cloud infrastructure is shared by various organizations which have shared goals.

Illustration of a Community Cloud

Hybrid

The cloud compose of two or more clouds

public are unique entities bounded
portability

27 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration of a Hybrid Cloud

Companies Included in Public Cloud

Illustration in Public Cloud

Companies Private Cloud

28 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration Included in Private Cloud

IaaS Gartner Magic Quadrant: 2016

Illustration Quadrant: 2016

Amazon Web Services

29 of 44 3/9/2020, 2:41 PM
 about:blank

Amazon Web Services started in 2002 provide a wide range of web services
including the very popular S3 and EC2.

Azure

Windows Azure is Microsoft's cloud computing platform providing both PaaS and
IaaS

Google Google Compute Engine

Google's Google Application Engine (GAE)

through Google Compute Engine.

Rackspace Cloud Services

Rackspace provides services including Cloud Files (hosting), Cloud Servers (IaaS)
and Cloud

Salesforce

Salesforce. company specializing

popularity for its customer relationship management (CRM) software. Its PaaS
offering is Force.com

Examples of Cloud Services

Amazon S3)

Amazon is designed to be
Data downloaded from Amazon
using web

Objects can also be accessed using other tools like web browsers. The power of S3

30 of 44 3/9/2020, 2:41 PM
 about:blank

is that it is a virtually infinite storage resource for web applications. There are no such
contracts to be signed, just start storing data in Amazon S3, and pay for the
resources used at the end of the billing cycle.

S3 stores any objects up to 5 terabytes in size. Objects are stored buckets and are
retrieved by a unique key. Buckets can be stored in any one availability region.
Objects region never leave that
them 99% availability, which
downtime 99.999999999% durability,
have single object occurs
Reduced RSS) option wherein
durability

Amazon Elastic Compute Cloud (EC2)

EC2 is a huge farm of virtualized servers hosted in many different data centers.
When request for a server,
farm, handle to the client.
RAM list of configurations),
storage and the number of
of compute operating system, you can
of Linux, Microsoft Windows Server. The client the server
as any normal server connected to the Internet. With EC2 it is possible to start
publicly accessible servers in minutes.

Its other features include:

• Amazon offers persistent storage

persists instances can be attached
block

They durability the local Amazon

• Amazon Elastic IPS allows you to attach public IP addresses to your EC2

31 of 44 3/9/2020, 2:41 PM
 about:blank

instances. These can be detached and attached to other EC2 instances.

• Auto scaling allows you to automatically scale up and scale down your EC2 fleet
according to the conditions you define.

• Elastic Load-balancing allows you to distribute incoming traffic across your

instances.

Windows

Azure blob allows you to store large amounts unstructured data in

the cloud.

This data can be accessed from anywhere from the web. Using this service is as
simple as creating a Windows storage account, creating a container and upload
blobs to the container.

The word Large Object. The size

hundreds storage account can
blobs. with two kinds of

• Block blobs: the most commonly used blob type. Blobs are subdivided into
blocks. If there is an error in the transfer a block blob, the transfer can resume with
the most recent block rather than sending the entire blob again. Each block blob
can contain up to 200 gigabytes of data.

• Page divided into pages. They

access be read or written individually.
contain blob is replicated to
data "geo-replication" for
replicated in the same region.
streaming audio, back up disasterrecovery,
documents, etc.

32 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration of Blob Storage

Windows Database

Windows brings in the SQL Server

Azure SQL a multi-tenant service, with each receiving a
logical SQL Database server. Physically all customers share a common compute and
storage capacity.

Illustration Database

SQL Database is self-managing. You don't have to be concerned with physical

aspects, like disk usage. It takes care of patching, updating, and low administrative
tasks. The service scales as your data grows.

It maintains within an Azure datacenter.

to be data-centers. Using Azure Data
data other Windows Azure
centers. Reporting, which allows
your Azure SQL Database
can spend database design, not on physical

Google Application Engine (GAE)

33 of 44 3/9/2020, 2:41 PM
 about:blank

Google Application Engine (GAE) allows you to run web applications on Google's
infrastructure.

It Supports applications written in different programming languages. You can develop

and deploy apps in Java, Python, and Go. You only upload your application, and it is
ready to serve your users. It auto-scales up or down according to usage. You pay for
the resources are no setup costs and

GAE called App engine

The data transactions with optimistic
Multiple without locking the data

GAE provides you the following services that allow you to perform common
operations when managing your application.

• URL Fetch: allows your application to access resources from the Internet.

• Mail send email messages.

• Memcache application with a high-performance

value

• Image allows your application to manipulate

Applications can be configured to perform scheduled tasks using the Cron Service
and perform tasks added to a queue using the Task Queue.

Cloud Strategy

34 of 44 3/9/2020, 2:41 PM
 about:blank

Illustration Cloud Migration

Phase Assessment Phase

This phase helps in building a business case for moving to Cloud, in this phase the
companies do their Financial, Technical, Security and Compliance assessment which
will report on the gaps between the existing Traditional Architecture and Cloud
Architecture. It will also give fair idea about the tools which be reused, and the
tools

Phase

In this phase, platform and built

services offered. Test the existing software in the cloud and try to build a pilot and
validate the technology, which will help in assessing migrating risks involved in the
architecture proposed.

Phase 3: Moving your Data

In this need to understand the

offered migrating data with
backup.

Phase 4: Moving your App

Move your app to the cloud using migration strategies like Forklift migration, Staged

35 of 44 3/9/2020, 2:41 PM
 about:blank

migration, Hybrid migration, etc. Build “Cloud-aware “layers of the code as needed.
Decoupling your application allows you to host different components on different
services on the cloud which in turn helps you to scale your application on cloud
seamlessly.

Phase 5: Leveraging the Cloud

Leveraging benefit of the various

computing the deployment model.
is a reduction

There is getting the hardware when you leverage Other

benefits include high availability, scalability, automation, etc. Presence of Cloud
Service providers in different regions allows you to deploy your application in various
locations to improve the overall performance of the application. The customized
dashboard allows easy management of your resources on the cloud.

Phase

This Migration, once the architecture

company usage based on demand,
efficiency, advanced monitoring and telemetry.

Cloud Security

As with security is one of the

shown

Types

Cloud security into the following categories:

• Physical Security: Cloud providers should enforce proper security measures for

36 of 44 3/9/2020, 2:41 PM
 about:blank

their data centers. They must ensure that the data centers are secure from threats
like breakins, fires, etc.

• Data Confidentiality: Cloud providers should ensure the confidentiality of their

customer's data. Any kind of access to customer's data should not only be
restricted, but that access should be documented.

• Data should assure the

wherein response to authorized

• Service providers should assure

predictable services.

Cloud Security Model

Illustration

Cloud following:

• Cloud Security

• Cloud Service Security Controls

37 of 44 3/9/2020, 2:41 PM
 about:blank

• Application Security

Cloud Infrastructure Security

• Certifications: should have their security

official examples are SOX, HIPPA.

o SOX) also known as

Responsibility Act is a US federal
all company boards, management, and firms.

o HIPPA: The Health Insurance Portability and Accountability Act (HIPAA)

address the security and privacy of medical data.

• Proper Decommissioning of Hardware: Hardware that has become obsolete or

faulty decommissioned.

• Network providers should ensure

and network attack.

Cloud Services Security Controls

To set up a secure environment, the provider must implement certain security

controls. Some of them are:

• Identity Management: Identity and Access

concerned and controlling their

• Firewalls Applications (Security Groups):

be protected called security groups, which traffic.
Users should be able to set up security group rules to choose which protocols and
ports are open to a computer over the Internet.

38 of 44 3/9/2020, 2:41 PM
 about:blank

• Virtual Private Cloud (VPC): Virtual Private Cloud is a private section of a public
cloud where you can launch resources.

• Dedicated Instances: Dedicated instances are single tenant servers, i.e., they
run hardware dedicated to a single customer.

• Server-Side Server-Side Encryption feature

ensures uploaded, it is encrypted

Application

The user is responsible for the application security. Needed steps must be taken for
ensuring the security of the application. Some of them are given below:

• Keep OS/Database and applications libraries up-to-date Use automated pack

updating

Rolling

Automated RDS Design applications

attacks

• Open ports

Proper authentication APIs

Various third-party tools for security

• Penetration applications against attacks

aws.

Challenges

• Loss of physical control of data

39 of 44 3/9/2020, 2:41 PM
 about:blank

• Faith in vendor's security infrastructure

• Lack of visibility in third-party audit reports

• Obtaining support for investigations

• Lack of clarity into the system architecture

• Further

• Remember credentials safe

• Use stored in the cloud

• Many providers offer VPN access to the cloud

• Self-screen for security incidents: audit logs

• Cloud data is subjected to the laws of the country where the data center of the
cloud

Why infrastructure to Cloud?

Most of day are taking a leap from traditional infrastructure to

cloud. There is no one reason to move to the cloud. A seamless benefit when they
take a leap to cloud.

Some of the crucial reasons to move your applications to the cloud are listed as
follows:

• Pay Cloud Computing you

CAPEX cloud service provider
expenses. resources you utilize.
infrastructure consider CAPEX and OPEX costs and
maintaining the required infrastructure.

40 of 44 3/9/2020, 2:41 PM
 about:blank

• High Availability: The application hosted on the cloud is highly available

compared to the one hosted in traditional infrastructure due to several obvious
reasons. Cloud hosting provides high network bandwidth and guarantees no
single point of failure. As the system is designed using interconnected servers,
even if one server fails to serve the request, there are multiple other servers to
take up the workload and serve the requests. On the contrary, if there is a
traditional performance bottleneck.

• Highly outburst of Flash sales and

E-Commerce e-commerce application
a Applications on the cloud are
instantaneous and deallocation of resources required from
a large pool of resources available. Whereas in traditional infrastructure, there are
a limited set of resources available in which instantaneous scaling is not possible.

• Better Performance: As there is no limitation of resources on the cloud, you can

choose resources based on
requirements. options to deploy your
geographical the globe which provides
applications the world.

CDN which will help you deliver

images, etc. faster to different users around Thus, the
latency is decreased and overall performance of your application increases.
Whereas in traditional infrastructure, there is only single site serving all the
requests which result in degraded performance.

• Backup Recovery: Cloud service provider

recovery backed up with their
mechanism environment. In a
another required to set up DR

Challenges in Cloud Environment

41 of 44 3/9/2020, 2:41 PM
 about:blank

• Downtime: No cloud provider, even the very best, claims immunity to service
outages.

Cloud computing systems are internet based. This means the access is fully
dependent on the Internet connection. And, like any hardware, cloud platforms
themselves can fail for any one of a thousand reasons.

Can elongated sessions of frequent

slowdowns?

In few incidents where

DropBox long as two days.

The two main points to consider here are:

First, which of the process can be delayed or ceased if the service provider goes
down?

Second, connection is down, all the

dropped

• Security company data we talk about

and comes to managing
Space referred to as “Murder
Code Space hacked, the attacker gained access company’s AWS
Control panel and demanded money in exchange. When the demands were not
complied with, the data was eventually deleted including EBS snapshots, S3
buckets, all AMI’s, some EBS instances and several machine instances forcing the
company to close doors. By leveraging cloudbased remote infrastructure,
companies outsourcing everything they
expected safeguard hardware infrastructure
However, responsibility for remote access.

• Vulnerability component in the Cloud

accessed internet. Anything connected to never entirely
secure, even with the best terms can undergo attacks and breaches, and there is
no one to check your administrative skills before giving you an AWS or Azure

42 of 44 3/9/2020, 2:41 PM
 about:blank

account, all you need a valid credit card to get started.

• Limited Control and Flexibility: EULAs and management policies imposed by

some cloud providers put limits on what customers can do with their deployments.
Customers can manage their applications, data, and services but have limited
access and control over the underlying backend infrastructure. It will not become a
significant use, but it is essential

• Platform Platform dependencies can

Lock-in”.

The vendors can lead to

impossible from one cloud platform to another. complicated and
expensive to reconfigure the applications to meet the requirements of a new host
and it can also lead to exposure of data and can lead to new security and privacy
vulnerabilities.

• Costs: sure about what will work

especially short-term projects, cloud
It and hardware cost,
price company anticipated.

Overview of ITIL

IT infrastructure library or ITIL provides well-defined guidelines for service

management. ITIL gives specific definitions and processes for service management.
The IT organizations to grow
businesses laid down by ITIL
traditional advanced setups.

ITIL is shared by public and

1980s, Computing and Telecommunications Agency (CCTA) government
agency of Great Britain was assigned with the job of coming up with a solution to
manage the inferior quality of IT services procured by the British government. The

43 of 44 3/9/2020, 2:41 PM
 about:blank

CCTA is now known as Office of Government Commerce (OGC) which initially came
up with 31 books for ITIL. The second version of ITIL (ITIL V2) consolidated the 31
books into seven books. The third and the current version of ITIL (ITIL V3) have five
core books that discuss service lifecycle. These core books describe the phases of
the service lifecycle. To understand ITIL and its uses in cloud setup, you need first to
understand few terminologies and their definitions.

"A service value to customers

customers the ownership of specific

44 of 44 3/9/2020, 2:41 PM