Cloud Computing - Module 04

1 .Explain modes of operation in Openstack. (2 M)

Ans - OpenStack primarily operates in two modes:
1. Single Host Mode: In this mode, a single physical server hosts the entire
OpenStack environment. This is suitable for small-scale deployments or
testing purposes. All network services are managed by the Cluster
Controller (CLC), which acts as the gateway for all traffic to and from the
instances.
2. Multi-Host Mode: This mode involves multiple physical servers working
together to form a distributed OpenStack cloud. Each compute node
runs a copy of the network services, allowing for better scalability and
fault tolerance. Instances running on each node can directly
communicate with the internet, eliminating the need for a centralized
gateway.

2. What is Eucalyptus and give Features of Eucalyptus. (2 M)

Ans - Eucalyptus is an open-source cloud computing platform that allows
organizations to build and manage private and hybrid clouds. It offers a
comprehensive set of features that enable flexible and scalable IT
infrastructure, including:
Infrastructure as a Service (IaaS): Provides the fundamental building
blocks of IT infrastructure, such as compute, storage, and networking
resources.
Compatibility with Amazon Web Services (AWS): Eucalyptus is designed
to be compatible with AWS APIs, making it easier for organizations to migrate
applications and workloads between public and private clouds.
Scalability and Performance: Provides scalable and high-performance
computing resources to meet the needs of demanding applications.
Cost-Effective: Reduces IT costs by eliminating the need for large
investments in hardware and software.
 Community Support: Benefits from a strong and active community of
developers and users, providing support and resources.

3. Explain Components of Eucalyptus architecture. (3 M)

Ans - Eucalyptus architecture consists of several key components that work
together to provide a comprehensive cloud computing solution. These
components include:
1. Cloud Controller (CLC): The central brain of the Eucalyptus system,
managing all aspects of the cloud, including resource allocation, security,
and user management.
2. Cluster Controller (CC): Manages a group of physical servers, known as
nodes, and coordinates resource allocation among them.
3. Node Controller (NC): Manages individual physical servers, handling
virtualization and resource allocation for virtual machines.
4. Storage Controller (SC): Manages storage resources, including block
storage and object storage.
5. Walrus: Eucalyptus's object storage service, compatible with Amazon S3,
providing scalable and durable storage for data.
6. User-Facing Services (UFS): Provides a user interface and API for
interacting with the cloud, including EC2-compatible APIs for launching
and managing virtual machines.
 4. What is Openstack. Give its features, advantages and disadvantages of
using Openstack. (3 M)
Ans- OpenStack is a powerful open-source cloud computing platform
that allows organizations to build and manage private and public clouds. It
provides a flexible and scalable infrastructure for deploying and managing a
wide range of applications and services.
Key Features of OpenStack:
Scalability: Easily scale your cloud infrastructure up or down to meet
changing demands.
Flexibility: Customize and tailor your cloud environment to specific
needs.
Open Source: Benefit from a large and active community of developers.
High Availability: Ensure business continuity with built-in redundancy
and fault tolerance.
 Advantages of Using OpenStack:
Cost-Effective: Reduce infrastructure costs by leveraging open-source
software and commodity hardware.
Flexibility: Customize and tailor your cloud to specific needs.
Scalability: Easily scale your cloud infrastructure to meet changing
demands.
Community Support: Benefit from a large and active community of
developers.
Disadvantages of Using OpenStack:
Complexity: OpenStack can be complex to deploy and manage, requiring
specialized expertise.
Maturity: While OpenStack has matured significantly, it may still lack
some features and stability compared to commercial cloud providers.
Vendor Lock-In: While open-source, there can still be vendor lock-in if
you rely heavily on specific distributions or third-party integrations.

5. Explain Components of Openstack with diagram. (4 Marks)

Ans - OpenStack Architecture
OpenStack is a modular cloud computing platform composed of several
interconnected services. Here's a brief overview of its key components:
1. Keystone:
o Centralized Identity service
o Manages users, projects, roles, and tokens for authentication and
authorization.
2. Nova:
o Compute service
o Manages the lifecycle of virtual machines, including provisioning,
booting, and termination.
 3. Neutron:
o Networking service
o Handles network connectivity between virtual machines, including
IP addresses, routing, and security groups.
4. Cinder:
o Block storage service
o Manages persistent block storage volumes for virtual machines,
similar to traditional hard drives.
5. Swift:
o Object storage service
o Stores and retrieves large amounts of unstructured data, such as
images, videos, and documents.
6. Glance:
o Image service
o Stores and manages virtual machine images, which are used to
create new instances.
7. Horizon:
o Dashboard service
o Provides a web-based user interface for managing OpenStack
resources.

Module 05
1. What are the challenges in Cloud Security and risks associated with it.
(2 M)
Ans - Cloud security presents a unique set of challenges and risks. Some
of the key challenges include:
Insecure API : Poorly secured APIs may allow attackers to access to cloud
Services.
 Data Loss and Breach: Accidental data loss or intentional data breaches
can have significant consequences for organizations.
Misconfigurations: Incorrect configurations can expose systems to
vulnerabilities and attacks.
Insider Threats: Employees can exploit their access to sensitive data and
systems.

2. Explain Disaster Recovery in Cloud. (2 M)

Ans - Disaster Recovery in the Cloud involves implementing strategies to
protect critical data and applications from potential disasters, such as natural
disasters, cyberattacks, or system failures. Cloud providers offer various tools
and services to ensure business continuity. These include data backup and
replication, disaster recovery as a service (DRaaS), and business continuity
planning (BCP). By leveraging cloud technologies, organizations can recover
quickly and minimize downtime in the event of a disaster.

3. What are the data security issues in the cloud. (2 M)

Ans - Data security in the cloud is a significant concern. As data is stored
and processed remotely, organizations must address various security
challenges. These include unauthorized access, data breaches, data loss, and
data privacy violations. To mitigate these risks, robust security measures must
be implemented, such as encryption, access controls, regular security audits,
and incident response plans. Additionally, organizations should choose
reputable cloud providers with strong security practices and compliance
certifications.

4. Give applications of security in the cloud. (2 M)

Ans - Security in the cloud is essential to protect sensitive data and
applications. Here are some key applications of cloud security:
Data Encryption: Protecting data at rest and in transit using encryption
techniques.
 Network Security: Securing network connections between cloud
resources and on-premises systems.
Identity and Access Management (IAM): Managing user identities,
authenticating users, and authorizing access to resources.
Security Information and Event Management (SIEM): Monitoring and
analyzing security events to detect and respond to threats.
Regular Security Audits and Penetration Testing: Identifying
vulnerabilities and weaknesses in cloud environments.

5. Explain cloud computing security architecture. (3 M)

Ans - Cloud computing security architecture is a framework that defines how to
protect data, applications, and infrastructure in the cloud. Key components of
cloud security architecture include:
 Identity and Access Management (IAM): Controlling who can access
cloud resources and what they can do.
 Network Security: Protecting network traffic and preventing
unauthorized access.
 Data Security: Encrypting data at rest and in transit, and implementing
data loss prevention measures.
 Application Security: Securing applications and APIs from vulnerabilities
and attacks.
 Infrastructure Security: Protecting the underlying infrastructure,
including servers, storage, and networking components.
 Monitoring and Logging: Continuously monitoring cloud environments
for security threats and analyzing logs to detect anomalies.

6. Explain AAA Model and examples of it. How to establish trusted cloud
computing. (4 M)
Ans - AAA Model
 The AAA model is a framework for controlling access to computer
resources. It consists of three components:
Authentication: Verifying the identity of a user. (Example:
username/password, biometric authentication)
Authorization: Determining what a user is allowed to do. (Example:
granting permissions to access specific files or applications)
Accounting: Tracking user activity and resource usage. (Example: logging
login/logout times, bandwidth usage)
To establish trust in cloud computing, consider the following:
Strong Security Measures: Implement robust security measures like
encryption, firewalls, and intrusion detection systems.
Data Privacy and Compliance: Adhere to data privacy regulations and
industry standards.
Transparent Security Practices: Be transparent about security measures
and incident response procedures.
Regular Security Audits: Conduct regular security assessments to
identify and address vulnerabilities.
Trusted Cloud Providers: Choose reputable cloud providers with strong
security track records.
User Awareness and Training: Educate users about security best
practices to prevent social engineering attacks.

7. What is Access control in cloud computing and give practices for

access control. (4 M)
Ans - Access control in cloud computing is the process of determining who can
access specific resources and what actions they can perform. It's a crucial
security measure to protect sensitive data and applications.
Practices for Access Control:
1. Strong Authentication: Implement strong authentication methods like
multi-factor authentication (MFA) to verify user identities.
 2. Role-Based Access Control (RBAC): Assign specific permissions to users
based on their roles within the organization.
3. Least Privilege Principle: Grant users only the minimum level of access
required to perform their tasks.
4. Network Access Control (NAC): Enforce security policies on devices
before granting network access.
5. Regular Security Audits: Conduct regular security audits to identify and
address vulnerabilities.
6. User Awareness and Training: Educate users about security best
practices to prevent social engineering attacks.
7. Data Loss Prevention (DLP): Implement DLP solutions to protect
sensitive data from unauthorized access, use, or disclosure

Module 06
1. What is Scientific cloud give its benefits and example. (2 M)
Ans - Scientific Cloud Computing is a new way of doing scientific
calculations leveraging cloud computing resources. It provides access to high-
performance computing resources on-demand, eliminating the need for large
investments in hardware.
Benefits:
Scalability: Easily scale resources up or down to meet changing
computational needs.
Cost-Effectiveness: Pay only for the resources used, reducing costs.
Accessibility: Access powerful computing resources from anywhere with
an internet connection.
Collaboration: Facilitate collaboration among researchers and scientists.
Example: Researchers can use cloud-based platforms to run complex
simulations, analyze large datasets, and develop machine learning models,
accelerating scientific discovery.
 2. Explain Cloud based CRM and ERP. (2 M)
Ans -
Cloud-Based CRM (Customer Relationship Management): It enables
businesses to manage customer interactions, track sales, and analyze customer
data from anywhere with an internet connection. Cloud-based CRM offers
benefits like scalability, cost-effectiveness, and easy accessibility.
Cloud-Based ERP (Enterprise Resource Planning): This provides ERP solutions
over the internet, allowing businesses to manage various operations, including
finance, HR, supply chain, and manufacturing. Cloud-based ERP offers
advantages like rapid deployment, lower upfront costs, and automatic updates.

3. Explain ECG analysis through Cloud. (3 M)

Ans- Cloud-based ECG analysis leverages cloud computing to process and
analyze ECG data remotely. This enables faster and more accurate diagnosis of
heart conditions. ECG signals are transmitted to the cloud, where advanced
algorithms and machine learning models analyze them to detect abnormalities
like heart attacks. This technology allows for remote monitoring, early
detection, and improved patient care.

4. What is IOT based cloud computing. Explain it with one example. (4 M)

Ans - IoT-based Cloud Computing is the integration of Internet of Things (IoT)
devices with cloud computing. IoT devices collect vast amounts of data from
the physical world, which is then processed and analyzed on cloud platforms.
This enables real-time insights, automation, and innovative applications.
Example: Smart City: IoT devices like sensors, cameras, and smart meters
collect data on traffic, pollution, and energy usage. This data is stored and
processed on cloud platforms to optimize traffic flow, reduce pollution, and
improve energy efficiency.

5. What are recent Trends in Cloud computing. (4 M)

Ans - Recent trends in cloud computing include:
 AI and ML Integration: Leveraging AI and ML to automate tasks, enhance
decision-making, and improve overall efficiency.
Multi-cloud and Hybrid Cloud Strategies: Utilizing multiple cloud
providers to optimize performance, cost, and risk.
Edge Computing: Processing data closer to the source to reduce latency
and improve real-time applications.
Serverless Computing: Automating infrastructure management and
scaling applications seamlessly.
Sustainable Cloud Computing: Adopting eco-friendly practices to reduce
carbon footprint.
Low-Code and No-Code Platforms: Empowering developers and non-
technical users to build applications without extensive coding knowledge.
Quantum Computing: Exploring the potential of quantum computing for
solving complex problems and accelerating scientific research.