UNIT-II

 Cloud Type- The NIST model

 The Cloud Cube Model
 Deployment models
 Service models
 Characteristics of Cloud Computing-Paradigm
shift
 Benefits of cloud computing
 Disadvantages of cloud computing
 Assessing the Role of Open Standards.
 Since cloud technology provides many benefits to
users, these benefits should be classified based on
the needs of the users.
 The cloud deployment model represents the exact
category of cloud environment based on
proprietorship, size, and access and also describes
the nature and purpose of the cloud.
 Most organizations implement cloud infrastructure
to minimize capital expenditure & regulate operating
costs.
 The NIST Model
• The National Institute of Standards and Technology (NIST) is an agency
under the scope of the US Department of Commerce, which is responsible
for expounding & defining standards in Science and Technology.

• The Computer Security Division of NIST has provided a formal definition of

Cloud computing.

• The US government is a major consumer of computer technology and one

of the major cloud computing network users.

• According to the NIST working definition of cloud, the deployment model

is one of the two categories of the model illustrated by NIST.

• The NIST model doesn't require cloud technology to use virtualization to

share resources. Cloud support multi-tenancy; multi-tenancy is the
concept of sharing of resources among two or more clients. The latest
NIST model of cloud computing requires virtualization and utilizes the
concept of multi-tenancy.
As cloud computing, we have to approach a set
of interactive components, such as service-
oriented architecture; users can expect that
future versions of the NIST model may also
include more features.
1)The Cloud Cube Model
2)The Deployment Model
3)The Service Model
 The Deployment Model
To know which deployment model matches your need and
desire, it is essential for users and learners to understand the
four sub-categories of the deployment model.
These are:
•Public Cloud Model
•Private Cloud Model
•Hybrid Cloud Model
•Community Cloud Model
 Public cloud
Public Cloud is a type of cloud hosting that easily allows the
accessibility of systems & its services to its clients/users.
Some examples of companies that provide public cloud
facilities are IBM, Google, Amazon, Microsoft, etc.
This cloud service is open for use. This type of cloud
computing is a true specimen of cloud hosting, where the
service providers render services to various clients.
From the technical point of view, there is the least difference
between private clouds and public clouds along with the
structural design.
Only the security level depends based on the service providers
and the type of cloud clients use.
The public cloud is better suited for business purposes for
managing the load. This type of cloud is economical due to
the decrease in capital overheads.
The advantages of the public cloud are:
•Flexible
•Reliable
•High Scalable
•Low cost
•Place independence
Disadvantages:
•Less Secured
•Poor Customizable
 Private Cloud
Private Cloud is also termed as 'Internal Cloud', which allows the
accessibility of systems and services within a specific boundary
or organization.
The cloud platform is implemented in a cloud-based secure
environment guarded by advanced firewalls under the
surveillance of the IT department that belongs to a particular
organization.
Private clouds permit only authorized users, providing the
organizations greater control over data and its security.
Business organizations that have dynamic, critical, secured,
management demand-based requirements should adopt Private
Cloud.
The advantages of using a private cloud are:
•Highly private and secured: Private cloud resource
sharing is highly secured.
•Control Oriented: Private clouds provide more control
over their resources than public clouds as it can be
accessed within the organization's boundary.
Disadvantages:
•Poor scalability: Private type of clouds is scaled within
internal limited hosted resources.
•Costly: It provides secured and more features, so it's
more expensive than a public cloud.
•Pricing: is inflexible; i.e., purchasing new hardware for
up-gradation is more costly.
•Restriction: It can be accessed locally within an
organization and is difficult to expose globally.
 Hybrid Cloud Model
Hybrid Cloud is another cloud computing type, which is
integrated, i.e., it can be a combination of two or more
cloud servers, i.e., private, public, or community
combined as one architecture, but remain individual
entities.
Non-critical tasks such as development and test
workloads can be done using the public cloud. In
contrast, critical tasks that are sensitive such as
organization data handling, are done using a private
cloud.
Advantages of Hybrid Cloud Computing are:
•Flexible
•Secure
•Cost-Effective
•Rich Scalable
Disadvantages of Hybrid Cloud are:
•Complex networking problem
•Organization's security Compliance
 Community Cloud
Community Cloud is another type of cloud computing in which
the cloud setup is shared manually among different
organizations that belong to the same community or area.
An example of such a community is where organizations/firms
are there, along with the financial institutions/banks.
For joint business organizations, ventures, research
organizations, and tenders, a community cloud is an appropriate
solution.
The selection of the right type of cloud hosting is essential in this
case. Thus, community-based cloud users need to know and
analyze the business demand first.
 Cloud Cube Model
There is an open-group association Jericho Forum & their focus
is on how to protect and secure cloud network. They put
forward a model that helps to categorize a cloud network based
on four-dimensional factors. The figure is drawn below showing
the Cloud Cube model.
As the name Four-Dimensional, the working is also categorized into four parts
viz:
•Physical Location of Data: The location of data may be
internally or externally which ultimately defines the
organization's boundary.
•Ownership: Ownership is proprietary or open; is a
measurement for not only ownership of technology but also its
interoperability, use of data & ease of data-transfer & degree of
vendor's application's lock-in.
•Security Range: is parameterized or de-parameterized; which
measures whether the operations are inside or outside the
security boundary, firewall, etc.
•Sourcing: In-sourcing or out-sourcing; which defines whether
the customer or the service provider provides the service.
• The Jericho Forum has designed the Cloud Cube
Model to help select cloud formations for security
cooperation.
• Their fascinating new cloud model helps IT managers
and business tycoons assess the benefits of cloud
computing.
• The Cloud Cube Model may be designed to let users
show that the traditional notion of network ranges &
its boundaries with network firewall no longer
applies in cloud computing
 Service Model
Service Models are the reference models on
which the Cloud Computing is based.
These can be categorized into three basic
service models as listed below:
1.Infrastructure as a Service (laaS)
2.2. Platform as a Service (PaaS)
3.3. Software as a Service (SaaS)
4.IDaaS(Identity as a service)
5.NaaS (Network as a Service)
SAAS: (Software as a Service)
SaaS is defined as the software distribution model deployed on
the internet in which a cloud service provider provides
applications.
It is also known as "on-demand software" or "pay-as-you-go
application". Here the customer licenses their product via SaaS-
providers
In SaaS, the software & the applications associated with it are
centrally located on the cloud server. Users can access them via
a thin client connecting application, i.e., using a web browser.
The SaaS provides various applications such as:
•CRM applications(Customer relationship
management)
•Solution to Human Resource (HR)
•Pre-existing Billing & Invoicing systems
•Other daily usable application suites
 SAAS Advantages
• Easy to buy: SaaS's cost is based on monthly or yearly fees
allowing new organizations to access the world of business at
a low-cost, at least lesser than licensed application.
• Minimization of Hardware Requirement: All SaaS software is
hosted remotely & so there is no or lesser need for hardware
for the organizations.
• Special Software: No special software versions are required,
as all the users will use the same software version. SaaS
reduces IT costs by outsourcing hardware & software
maintenance.
• Low Maintenance: SaaS removes the daily problem of
installing, maintaining, and updating software. The set-up
cost of SaaS is also less in comparison to enterprise software.
 Disadvantages of SAAS
Latency factor: comes due to a variable distance of data
between the cloud & the end-user, and hence a possibility of
latency may arise while interacting with applications.
Internet Connection: is a major issue. Without an internet
connection, SaaS applications are unusable.
Switching between SaaS vendors in case of any change is very
difficult.
The SaaS cloud service is not very secure as in-house
deployment
PAAS( Platform as a service):
PaaS is a platform for programming developers and brings
benefits.
PaaS has a similarity with that SaaS except that SaaS delivers
software over the web.
In contrast, PaaS provides a platform for the creating of
software delivered over the web.
PaaS has a feature of a point-and-click tool that allows non-
programmers to develop web applications.
Examples:
App-Engine of Google & Force.com, Windows Azure, AppFog,
Openshift, and VMware Cloud Foundry are PaaS examples.
 Advantages of PAAS
• Scalability: of users ranges from hundreds to thousands.
• Prebuilt Business Plan: PaaS vendors provide pre-defined
business functionality for users to directly start the project.
• Low Cost: Development via PaaS requires a computer & a
good internet connection and less investment in hardware &
software.
• Instant Community: PaaS providers facilitates user providing
online communities where a developer can get new ideas &
share their experience & advice.
• Simple & easy to use
 Disadvantages of PAAS
• Vendor Migration: Migration from one PaaS
vendors' application to another PaaS vendor will
create some problem.
• Data-Privacy: The privacy of data can get hamper if it
is not held within the company's boundary or
organization.
• Mix-up Complexity: Some of the applications
developed may be local while others are from the
cloud, which may increase the complexity.
IAAS(Infrastructure as a service):
IaaS, as the name suggests, is a way of providing Cloud computing
infrastructure such as virtual machines, storage drives, servers, operating
systems & networks, which is also an on-demand service like that of SaaS.
Rather than purchasing servers or developing software, clients buy those
resources as a fully outsourced service based on their requirements.
"Public cloud" is considered as an infrastructure that consists of shared
resources, based on a self-service over the Internet.
IaaS provides users with:
•Load balancers
•Disk storage via virtual machines
•Software Packages
•IP address
•VLANs
 Advantages of IAAS
• Dynamic: Users can dynamically opt & configure
devices such as CPU, storage drive, etc.
• Easy Access: Users can easily access the vast cloud
computing power.
• Renting: Flexible and efficient while renting IT
infrastructures.
• Full control of computer resources along with
portability.
 Disadvantages of IAAS
• Internet connection is a must.
• IaaS depends on virtualization services.
• This service restricts user-privacy &
customization.
 IDaaS(Identity as a service)
IDaaS (Identity as a Service): This provides management of
employee or user's identity information as a digital entity. It
minimizes remembering every different username & password
combination or disabling of account when an employee leaves
the company.
IDaaS may include:
•Directory services
•Registration information
•Authentication services
•Risk & event monitoring
•Profile management
•Sign-on services
 User logs into the authentication server
using a username and password.
 The authentication server returns the
user's ticket.
 User sends the ticket to intranet server.
 Intranet server sends the ticket to the
authentication server.
 Authentication server sends the user's
security credentials for that server back
to the intranet server.
 NaaS (Network as a Service)
NaaS (Network as a Service) allows users to access network
infrastructure directly.
This service uses the virtualized network infrastructure &
provides users & customers with network services securely.
NaaS providers maintain & manage network resources, which
decrease the workload of customers/users.
It is also based on the pay-per-use model.
 Characteristics of Cloud Computing-
Paradigm shift
The Cloud has been around for 20 years now and has radically
changed our way of running a business as it accelerates
innovation and lowers a lot of risks for companies (like wasting
money before finding a market).
But most importantly, it triggered a paradigm shift in the IT
world as companies (and engineers) started thinking differently
about accessing computing resources to run applications and
businesses.
• Before the emergence of the Cloud (before
~2006), companies had to buy or loan Data
centers, buy servers and hire a lot of people to
build and operate their infrastructures to
provide computing resources. This means
investing a lot before seeing any value.
• With the Cloud, companies started moving
into something else; they don’t only change
the way they operate their infrastructures but
also the tools and solutions they use.
 Why is there a Paradigm Shift in Cloud Computing?
Because:
•The Cloud is the default choice for almost all
companies (90% of companies are in the Cloud,
according to Statista).
•We have created a lot of complexity, and the
Cloud is both complex and costly.
•The same challenges since the creation of the
Cloud are still there: people, processes, and
tools.
People, Processes and Tools
People:
Companies need qualified engineers, skilled Cloud architects, and trained
DevOps people to build and operate the Cloud. At the same time, these
engineers need to master between 30% to 40% of cloud services to be able to
do their work correctly

Processes:
People within the organization generally follow processes & workflows to
manage their Cloud infrastructure. Naturally, these workflows are built
manually, which raises questions about security and how policies are created
and respected
These processes need to be maintained as far as the infrastructure and
applications on top of it are alive.

Tools:
It is just crazy the number of tools we created to manage the
Cloud/applications, With all these tools we do not have an ecosystem for
managing the Cloud. Engineers spend tremendous time manually combining
tools and processes/workflows to manage Cloud infrastructures.
 Benefits of cloud computing
As per the NIST definition of cloud computing,
beyond its cloud types and services it must also
provide essential characteristics.
On Demand Self Service
Broad Network Access
Resource Pooling
Rapid Elasticity
Measured Service
Beyond this characteristics, we need to also consider some
advantages and disadvantages
Advantages: Disadvantages:
Lower Cost
Latency
Ease of Utilization Privacy
Quality of Service Security
Reliability
Outsourced IT Management
Simplified maintenance and upgrade
 Assessing the role of open standards
An open standard is a standard that is openly accessible and
usable by anyone.
Without standards, the industry creates proprietary systems
with vendor lock-in. As clients do not want to be locked into any
single system, there is a strong industry push to create
standards-based clouds.
The cloud computing industry is working with these architectural
standards:
Platform virtualization of resources
 Service-oriented architecture
 Web-application frameworks
 Deployment of open-source software
 Standardized Web services
 Autonomic systems
 Grid computing
These standards help to enable different business models that
cloud computing vendors can support, most notably Software as
a Service (SaaS), Web 2.0 applications, and utility computing.
These businesses require open standards so that data is both
portable and universally accessible
Cloud Architecture:
Cloud Computing Stack-
 Composability,
Infrastructure,
Platforms,
Virtual Appliances,
Communication Protocols,
Applications,
Connecting to the Cloud-Chromium OS: The Browser as an
Operating System.
 Using the cloud computing stack to describe
different models
 Understanding how platforms and virtual appliances
are used
 Learning how cloud communications work
Discovering the new world of the cloud client
 Cloud Computing Stack
Cloud computing builds on the architecture developed for
staging large distributed network applications on the Internet
over the last 20 years.

Many descriptions of cloud computing describe it in terms of

two architectural layers:
A client as a front end
The “cloud” as a backend

Each of these two components is composed of several

component layers, complementary functionalities, and a mixture
of standard and proprietary protocols.
 A cloud can be created within an organization’s own
infrastructure or outsourced to another data-center.
 The resources in a cloud can be real physical resources, more
often they are virtualized resources because virtualized
resources are easier to modify and optimize.
 A compute cloud requires virtualized storage to support the
staging and storage of data.
 From a user’s perspective, it is important that the resources
appear to be infinitely scalable, that the service be
measurable, and that the pricing be metered.
 Composability
Composable infrastructure allows computational, storage, and networking
resources to be freed from their physical locations and managed by software
via a web-based interface.
It makes data center resources as accessible as cloud services.

A composable component must be:

Modular: It is a self-contained and independent unit that is cooperative,
reusable, and replaceable.
Stateless: A transaction is executed without regard to other transactions or
requests
 Infrastructure
Most large Infrastructure as a Service (IaaS) providers rely on
virtual machine technology to deliver servers that can run
applications. Virtual servers described in terms of a machine
image or instance have characteristics that often can be
described in terms of real servers delivering a certain number of
microprocessor (CPU) cycles, memory access, and network
bandwidth to customers. Virtual machines are containers that are
assigned specific resources. The software that runs in the virtual
machines is what defines the utility of the cloud computing
system
 Platforms
A platform in the cloud is a software layer that is used to create higher levels
of service.
Major examples:
Salesforce.com’s Force.com Platform
Windows Azure Platform
Google Apps and the Google AppEngine
These three services offer all the hosted hardware and software needed to
build and deploy Web applications or services that are custom built by the
developer within the context and range of capabilities that the platform
allows.
Virtual Appliances
 Connecting to the cloud
Clients can connect to a cloud service in a number of different ways. These
are the two most common means:
A Web browser
A proprietary application(owned by an organization or an
individual)
There are three basic methods for securely connecting over a
connection:
Use a secure protocol to transfer data such as SSL (HTTPS),
FTPS, or IPsec, or connect using a secure shell such as SSH to
connect a client to the cloud.
Create a virtual connection using a virtual private network
(VPN), or with a remote data transfer protocol such as Microsoft
RDP or Citrix ICA, where the data is protected by a tunneling
mechanism.
 Encrypt the data so that even if the data is intercepted or
sniffed, the data will not be meaningful.