UNIT 3

CLOUD ARCHITECTURE, SERVICES AND STORAGE

Layered Cloud Architecture Design

Layered Architecture in Cloud Computing is a design approach that

organizes cloud services into different layers, each with specific roles
like infrastructure, platforms, and software. This structure helps manage
complexity by separating functions, making it easier to build, deploy,
and manage cloud applications.
Application Layer

The application layer is the top part of the cloud stack where cloud apps
run. Unlike traditional apps, cloud apps can automatically scale to
improve performance, availability, and lower costs. This layer includes
various cloud services that users can access as needed. It also manages
data transfer by checking if communication partners and resources are
available. The application layer handles internet traffic with protocols like
Telnet, FTP, web browsers, HTTP, and HTTPS.
Platform Layer

The platform layer includes the operating system and application

software. It provides users with scalability, reliability, and security to
build and test their apps. This layer sits above the infrastructure layer
and aims to simplify app deployment on virtual machines. For example,
Google App Engine works at this layer to offer tools for storage,
databases, and app logic.
Infrastructure Layer

The Infrastructure Layer is where physical resources, like servers and

storage, are divided into virtual resources using technologies like Xen,
KVM, and VMware. It acts as the central hub of the cloud, allowing
resources to be added and managed easily. This layer helps create the
platform layer and provides flexibility by automating resource
management and allocation. It's essential for cloud computing because it
enables dynamic and efficient use of resources.
Datacenter Layer

The Datacenter Layer handles the physical parts of a cloud, like servers,
switches, routers, and cooling systems. It ensures that all these resources
are properly managed and connected to provide services to users. In
software design, separating business logic from data is important because
data is often used in different ways. With microservices, each service might
need its own database to avoid problems when updating or adding new
services. This helps prevent conflicts and keeps services running smoothly.
NIST Cloud Computing Reference Architecture

The NIST Cloud Computing Reference Architecture is a framework that

outlines the components and interactions in cloud computing systems. It
defines key elements like service models (IaaS, PaaS, SaaS), deployment
models (public, private, hybrid), and actors (providers, consumers,
brokers). This architecture provides a standardized approach to
understanding, designing, and managing cloud environments.
There are five major actors in NIST cloud computing reference architecture.

These actors are listed below

• Cloud Consumer.

• Cloud Provider.

• Cloud Carrier.

• Cloud Auditor.

• Cloud Broker.

Each actor is an entity may be a person or an organization that participates in a

transaction or process and/or performs tasks in cloud computing.
1. Cloud Consumer

The primary user of cloud services, which can include individuals,

organizations, or other entities that use cloud offerings like SaaS, PaaS, or IaaS.

The cloud consumer selects and uses cloud services offered by a provider based
on their specific needs. They do not have to worry about managing the technical
details or infrastructure behind the service. The consumer also agrees to a
Service Level Agreement (SLA) with the provider, which outlines the expected
quality, performance, and security of the service they will receive.
2. Cloud Provider

This actor delivers cloud services to consumers, managing the infrastructure,

platforms, and software necessary to offer these services.

The cloud provider takes care of the cloud's infrastructure, making sure the
services are always available, safe, and running well. Depending on the type
of service (SaaS, PaaS, or IaaS), the provider handles different tasks, from
running software applications to managing the servers and network
equipment.
3. Cloud Carrier

It provides the network and connectivity services that link the cloud
provider's data centers to the cloud consumers.

It ensures the reliable, secure, and efficient transport of data between the
cloud service provider and the consumer. The carrier is responsible for the
physical and virtual networks that enable access to cloud services.
4. Cloud Auditor

It is an independent entity that evaluates and verifies the performance,

security, and compliance of cloud services.

The auditor checks that the cloud provider follows important rules, meets
security guidelines, and keeps the promises made in service agreements. The
auditor reviews how the cloud provider operates and gives a clear report. This
helps users feel confident about the safety and quality of the services they rely
on.
4. Cloud Auditor

It is an independent entity that evaluates and verifies the performance,

security, and compliance of cloud services.

The auditor checks that the cloud provider follows important rules, meets
security guidelines, and keeps the promises made in service agreements. The
auditor reviews how the cloud provider operates and gives a clear report. This
helps users feel confident about the safety and quality of the services they rely
on.
5. Cloud Broker

It acts as an intermediary between cloud consumers and cloud providers,

often managing and optimizing the use of cloud services.

It helps customers find the best cloud services by making deals, improving
how they use services from different companies, and sometimes offering extra
services like combining them. Brokers make things easier by managing
complex tasks and helping customers get the most value from their cloud
services.
Public cloud, Private cloud and Hybrid cloud

The following are the types of cloud also known as cloud deployment models as follows:
• Public cloud
• Private cloud
• Hybrid cloud
• Community cloud
• Public Cloud: The cloud resources that are owned and operated by a third-party cloud service
provider are termed as public clouds. It delivers computing resources such as servers, software, and
storage over the internet.

• Private Cloud: The cloud computing resources that are exclusively used inside a single business or
organization are termed as a private cloud. A private cloud may physically be located on the
company’s on-site datacentre or hosted by a third-party service provider.

• Hybrid Cloud: It is the combination of public and private clouds, which is bounded together by
technology that allows data applications to be shared between them. Hybrid cloud provides flexibility
and more deployment options to the business.

• Community Cloud : A community cloud is a cloud infrastructure that allows a group of organizations
in a same community to share the same computing resources, such as servers, data storage, etc., in
order to save costs and improve efficiency.
IaaS, PaaS and SaaS
• Infrastructure as a Service (IaaS): In IaaS, we can rent IT infrastructures like servers
and virtual machines (VMs), storage, networks, operating systems from a cloud service
vendor. We can create VM running Windows or Linux and install anything we want on it.
Using IaaS, we don’t need to care about the hardware or virtualization software, but other
than that, we do have to manage everything else. Using IaaS, we get maximum flexibility,
but still, we need to put more effort into maintenance.

• Platform as a Service (PaaS): This service provides an on-demand environment for

developing, testing, delivering, and managing software applications. The developer is
responsible for the application, and the PaaS vendor provides the ability to deploy and run
it. Using PaaS, the flexibility gets reduce, but the management of the environment is taken
care of by the cloud vendors.
• Software as a Service (SaaS): It provides a centrally hosted and
managed software services to the end-users. It delivers software over
the internet, on-demand, and typically on a subscription basis. E.g.,
Microsoft One Drive, Dropbox, WordPress, Office 365, and Amazon
Kindle. SaaS is used to minimize the operational cost to the maximum
extent.