Introduction to Cloud Computing (CSC467)

Unit 2: Cloud Computing Architecture

1
Chapter Overview
Topics
• Platform as Service
• Software as a Service
• Infrastructure as Service
• Public Cloud
• Private Cloud
• Hybrid Cloud
• Community Cloud
• Cloud Design and Implementation using SOA,
• Security, Trust and Privacy

2
• Platform as Service
• Software as a Service
• Infrastructure as Service

3
Cloud Computing Architecture
• Cloud Computing Architecture is
divided into two parts :
• front-end
• back-end
• Front-end and back-end communicate
via a network or internet.

4
Cloud Computing Architecture
a. Front-End
• Provides applications and the
interfaces required for the cloud-
based service.
• Consists of client’s side
applications (web browsers) such
as Google Chrome and Internet
Explorer.
• Cloud infrastructure is the only
component of the front-end and
consists of hardware and
software components such as
data storage, server,
virtualization software, etc.
• Provides a Graphical User
Interface to the end-users to
perform respective tasks.

5
Cloud Computing Architecture
b. Back-End
• Responsible for monitoring all the programs that run the application on the front-end
• It has a large number of data storage systems and servers.
• The components of the back-end cloud architecture are mentioned below.
1. Application- Software or a platform which provides the result to the end- user (with resources).
2. Service – Provide utility in the architecture,
• Widely used services are storage application development environments and web
services
3. Storage - It stores and maintains data like files, videos, documents, etc. over the internet.
• Eg: Amazon S3, Oracle Cloud-Storage, Microsoft Azure Storage
4. Management - Its task is to allot specific resources to a specific task and establishes
coordination among the cloud resources.
• It helps in the management of components like application, task, service, security, data
storage, and cloud infrastructure.
5. Security - Implements security management to the cloud server with virtual firewalls .
• It provides secure cloud resources, systems, files, and infrastructure to end-users
6
Cloud Computing Architecture Components
• Components of Cloud Computing architecture :
• Hypervisor
• Management Software
• Deployment Software
• Network
• Cloud Server
• Cloud Storage

7
 Cloud Computing Architecture Components
• Hypervisor
• It is a virtual machine monitor which provides Virtual Operating Platforms to every user
• Manages guest operating systems in the cloud
• It runs a separate virtual machine on the back end which consists of software and hardware
• Its main objective is to divide and allocate resources
• Management Software
• Its responsibility is to manage and monitor cloud operations with various strategies to increase
the performance of the cloud
• Some of the operations performed by the management software are: compliance, auditing
management of overseeing disaster contingency plans
• Deployment Software
• It consists of all the mandatory installations and configurations required to run a cloud service
• All deployment of cloud services is performed using a deployment software
• The three different models which can be deployed are: SaaS, PaaS, IaaS

8
 Cloud Computing Architecture Components
• Network
• It connects the front-end and back-end.
• Allows every user to access cloud resources
• Helps users to connect and customize the route and protocol
• Cloud Server
• It is a virtual server which is hosted on the cloud computing platform
• It is highly flexible, secure, and cost-effective
• Cloud Storage
• Here, every bit of data is stored and accessed by a user from anywhere over the internet
• It is scalable at run-time and is automatically accessed
• Data can be modified and retrieved from cloud storage over the web

9
Cloud Reference Model
• The reference model for cloud
computing is an abstract model that
characterizes and standardizes a cloud
computing environment by partitioning it
into abstraction layers and cross- layer
functions.

10
 Infrastructure as a Service (IaaS)
• IaaS is the basic layer in cloud computing model.
• It offers servers, network devices, load balancers, database, Web servers etc.
• Delivers customizable infrastructure on demand.
• IaaS examples can be categorized in two categories
a. IaaS Management layer
b. IaaS Physical infrastructure
• Some service providers provide both categories where as some provide only
management layer.
• IaaS management layer also required integration with other IaaS solutions
that provide physical infrastructure.
• On virtual machines applications are installed and deployed.
• One of the examples of virtual machine is Oracle VM.
• Hardware virtualization includes workload partitioning, application isolation,
sandboxing (testing in isolated environment), and hardware tuning.
• Instead of purchasing, user can access virtual hardware’s on pay per use
basis.
• Users can take advantage of the full customization offered by virtualization to
deploy their infrastructure in the cloud.
11
 Infrastructure as a Service (IaaS)
• Some virtual machines can be with pre-installed operating systems and other software’s.
• On some virtual machines operating systems and others software’s can be installed as per use.
• Some examples:
1. Amazon Web Services (AWS),
2. Google Compute Engine (GCE)
3. Openstack
• Characteristics of IaaS
• Resources are available as a service
• Services are highly scalable
• Dynamic and flexible
• GUI and API-based access
• Automated administrative tasks

12
Infrastructure as a Service (IaaS)

13
 Infrastructure as a Service (IaaS)
• IaaS provider provides the following services -
1. Compute:
• Computing as a Service includes virtual
central processing units and virtual main
memory for the VMs that is provisioned to
the end- users.
2. Storage:
• IaaS provider provides back-end storage for
storing files.
3. Network:
• Network as a Service (NaaS) provides
networking components such as routers,
switches, and bridges for the VMs.
4. Load balancers:
• It provides load balancing capability at the
infrastructure layer.

14
Infrastructure as a Service (IaaS)
Advantages of IaaS Cloud Computing layer
1. Shared Infrastructure - Allows multiple users to share the same physical infrastructure.
2. Web access to the Resources - Allows IT users to access resources over the internet.
3. Pay-as-per-use Model - IaaS providers provide services based on the pay-as-per-use basis.
4. Focus on the Core Business - IaaS providers focus on the organization's core business rather than
on IT infrastructure.
5. On-demand Scalability - Users do not worry about to upgrade software and troubleshoot the issues
related to hardware components.

• Disadvantages of IaaS Cloud Computing layer

1. Security - Most of the IaaS providers are not able to provide 100% security.
2. Maintenance & Upgrade - Although IaaS service providers maintain the software, but they do not
upgrade the software for some organizations.
3. Interoperability issues - It is difficult to migrate VM from one IaaS provider to the other, so the
customers might face problem related to vendor lock-in.

15
 Infrastructure as a Service (IaaS)
Top IaaS Providers who are providing IaaS Cloud Computing platform

16
 Platform as a Service (PaaS)
• Provides a computing platform with a programming language
execution environment and a development and deployment
platform for running applications in the cloud.
• It constitute the middleware on top of which applications are built.
• Application management is the core functionality of the middleware.
• Provides run time environments for the applications.
• PaaS provides
a.Applications deployment
b.Configuring application components
c.Provisioning and configuring supporting technologies
• For users PaaS interfaces can be in the form of a Web-based
interface or in the form of programming APIs and libraries.
• PaaS solutions generally include the infrastructure as well.
• Pure PaaS offered only the user-level middleware.
• Some examples:
• Google App Engine, Azure, AWS, Force.com

17
 Platform as a Service (PaaS)
• PaaS classification:
a. PaaS-I: Runtime environment with Web-
hosted application development platform.
Rapid application prototyping.
• For example Force.com which is a
combination of middleware and infrastructure
product type.
b. PaaS-II: Runtime environment for scaling
Web applications. The runtime could be
enhanced by additional components that
provide scaling capabilities.
• For example Google AppEngine which is a
combination of middleware and infrastructure
product type. Appscale is middlware product type.
c. PaaS-III: Middleware and programming
model for developing distributed
applications in the cloud.
• For example Microsoft Azure which is a combination
of middleware and infrastructure product type.
Manjrasoft Aneka is a middleware product type.
18
Platform as a Service (PaaS)

19
 Platform as a Service (PaaS)
• PaaS providers provide the Programming languages,
Application frameworks, Databases, and Other tools:
1. Programming languages - PaaS providers provide
various programming languages for the developers to
develop the applications.
• Eg. Java, PHP, Ruby, Perl, and Go.
2. Application frameworks - PaaS providers provide
application frameworks to easily understand the
application development.
• Eg. Node.js, Drupal, Joomla, WordPress, Spring, Play,
Rack, and Zend.
3. Databases - PaaS providers provide various
databases such as ClearDB, PostgreSQL, MongoDB,
and Redis to communicate with the applications.
4. Other tools - PaaS providers provide various other
tools that are required to develop, test, and deploy the
applications.

20
 Platform as a Service (PaaS)
• Characteristics of PaaS:
1. Runtime framework: The runtime framework executes end-user code according to the policies
set by the user and the provider.
2. Abstraction: PaaS offer a way to deploy and manage applications on the cloud rather than a
virtual machine on top of which the IT infrastructure is built and configured.
3. Automation: PaaS deploy the applications automatically.
4. Cloud services: Provide services for creation, delivery, monitoring management, reporting of
applications.

21
 Platform as a Service (PaaS)
• Advantages of PaaS Cloud Computing layer
1. Simplified Development - Allows developers to focus on development and innovation without
worrying about infrastructure management.
2. Lower risk - No need for up-front investment in hardware and software.
3. Prebuilt business functionality - Some PaaS vendors also provide already defined business
functionality so that users can avoid building everything from very scratch and hence can
directly start the projects only.
4. Instant community - Provide online communities where the developer can get the ideas to
share experiences and seek advice from others.
5. Scalability - Applications deployed can scale without any changes to the applications.

• Disadvantages of PaaS Cloud Computing layer

1. Vendor lock-in - The migration of an application to another PaaS vendor can become a problem.
2. Data Privacy - Corporate data can be a risk in terms of privacy of data.
3. Integration with the rest of the systems applications - There will be chances of increased
complexity when we want to use data which in the cloud with the locally stored data.
22
 Platform as a Service (PaaS)
Popular PaaS Providers

23
 Software as a Service (SaaS)
• Allows users to connect to and use cloud-based apps
over the Internet.
• SaaS is the service with which end users interact directly.
• It provides a means to free users from complex
hardware and software management.
• Do not need to purchase the software and required the
license.
• They simply access the application website or use
application with their credentials and billing details
• Customer can customize their software.
• Application is available to the customer on demand.
• It can be considered as a “one-to-many” software delivery
model.
• Applications are built as per the user needs.
• Some examples:
a. G Suite, Office 365, Dropbox, WhatsApp
24
 Software as a Service (SaaS)
Services Provided by SaaS providers -
• Business Services -. The SaaS business services
include ERP (Enterprise Resource Planning), CRM
(Customer Relationship Management), billing, and
sales.
• Document Management - SaaS document
management is a software application offered by a
third party (SaaS providers) to create, manage,
and track electronic documents.
• Example: Slack, Samepage, Box, and Zoho
Forms.
• Social Networks - Social networking service
providers use SaaS for their convenience and
handle the general public's information.
• Mail Services - To handle the unpredictable
number of users and load on e-mail services, many
e-mail providers offering their services using SaaS.

25
 Software as a Service (SaaS)
Advantages of SaaS Cloud Computing layer
1. SaaS is easy to buy - SaaS pricing is based on a monthly fee or annual fee subscription,
2. One to Many - SaaS services are offered as a one-to-many model means a single instance
of the application is shared by multiple users.
3. Less hardware required for SaaS - Organizations do not need to invest in additional
hardware.
4. Low maintenance required for SaaS - Software as a service removes the need for
installation, set-up, and daily maintenance for the organizations.
5. No special software or hardware versions required - All users will have the same version
of the software and typically access it through the web browser and reduces IT support
costs by outsourcing hardware and software maintenance and support to the IaaS provider.
6. Multidevice support - Can be accessed from any device such as desktops, laptops, tablets,
phones.
7. API Integration - SaaS services easily integrate with other software or services through
standard APIs.
8. No client-side installation - SaaS services are accessed directly from the service provider
using the internet connection, so do not need to require any software installation.
26
Software as a Service (SaaS)

27
 Software as a Service (SaaS)
Disadvantages of SaaS Cloud Computing layer

1. Security – Since data is stored in the cloud it is not as secure as in-house deployment.
2. Latency issue - There may be greater latency when interacting with the application
compared to local deployment.
3. Total Dependency on Internet - Without an internet connection, most SaaS applications
are not usable.
4. Switching between SaaS vendors is difficult - Switching SaaS vendors involves the
difficult and slow task of transferring the very large data files over the internet and then
converting and importing them into another SaaS .

28
Software as a Service (SaaS)
Popular SaaS Providers

29
• Public Cloud
• Private Cloud
• Hybrid Cloud
• Community Cloud

30
 Deployment Models
• Deployment models define the type of
access to the cloud, i.e., how the cloud is
located?
• Cloud can have any of the four types of
access:
• Public
• Private
• Hybrid
• Community

31
 Public Cloud
• The public cloud allows systems and
services to be easily accessible to general
public.
• Eg: Amazon Elastic Compute Cloud
(EC2), Microsoft Azure, IBM's Blue Cloud,
Sun Cloud, and Google Cloud

32
 Public Cloud
Advantages
• Cost effective - Resources are shared with large number of
consumer.
• Reliability - Employs large number of resources from different
locations, if any of the resource fail, public cloud can employ
another one.
• Flexibility - Easy to integrate public cloud with private cloud, hence
gives consumers a flexible approach.
• Location independence - Services are delivered through internet,
therefore ensures location independence.
• Utility style costing - Based on pay-per-use model .
• High scalability - Resources are made available on demand from
a pool of resources
• Disadvantages
• Low security - Data is hosted off-site and resources are shared
publicly, therefore does not ensure higher level of security.
• Less customizable - It is comparatively less customizable than
private cloud.
33
 Private Cloud
• The private cloud allows
systems and services to be
accessible within an
organization.
• The private cloud is operated
only within a single organization.
However, it may be managed
internally or by third-party.
• The main advantage of these
systems is that the enterprise
retains full control over corporate
data, security guidelines, and
system performance.

34
 Private Cloud
Advantages
• Higher security and privacy - Private cloud operations are not
available to general public and resources are shared from distinct pool
of resources, therefore, ensures high security and privacy.
• More control - Private clouds have more control on its resources and
hardware because it is accessed only within an organization.
• Cost and energy efficiency - Private cloud resources are not as cost
effective but they offer more efficiency than public cloud.
• Improved Reliability
Disadvantages
• Restricted area - Only accessible locally and is difficult to deploy
globally.
• Inflexible pricing – To meet demand, purchasing new hardware is very
costly.
• Limited scalability - Can be scaled only within capacity of internal
hosted resources.
• Additional skills - In order to maintain cloud deployment, organization
requires more skilled and expertise.
35
 Hybrid Cloud
• This can be a combination of private and public clouds that support the requirement to retain
some data in an organization, and also the need to offer services in the cloud.
• A company may use internal resources in a private cloud and maintain total control over its
proprietary data. It can then use a public cloud storage provider for backing up less sensitive
information.

36
 Hybrid Cloud
Advantages
• Scalability - It offers both features of public cloud scalability and
private cloud scalability.
• Flexibility - It offers both secure resources and scalable public
resources.
• Cost efficiencies - Public cloud are more cost effective than
private, therefore hybrid cloud can have this saving.
• Security - Private cloud in hybrid cloud ensures higher degree of
security.

Disadvantages
• Networking issues - Networking becomes complex due to
presence of private and public cloud.
• Security compliance - It is necessary to ensure that cloud
services are compliant with organization's security policies.
• Infrastructural dependency - The hybrid cloud model is
dependent on internal IT infrastructure, therefore it is necessary to
ensure redundancy across data centers.
37
 Community Cloud
• The community cloud allows system
and services to be accessible by
group of organizations.
• It shares the infrastructure between
several organizations from a specific
community.
• It may be managed internally or by
the third-party.

38
 Community Cloud
Advantages
• Cost effective – It offers same advantage as that of public cloud at low cost. Sharing between
organizations community cloud provides an infrastructure to share cloud resources and capabilities
among several organizations.
• Security - It is comparatively more secure than the public cloud.

Disadvantages
• Since all data is housed at one location, it might be accessible by others.
• It is also challenging to allocate responsibilities of governance, security and cost.

39
• Cloud Design and Implementation using SOA
• Security, Trust and Privacy

40
 Service Oriented Architecture (SOA)
• Service-Oriented Architecture (SOA) is a software design
approach that involves building software components as
reusable services.
• Each service represents a specific business function and
can be accessed over a network using standard
protocols.
• In cloud design and implementation, SOA is used to
create a flexible, scalable, and modular architecture that
can support a wide range of applications and services.
• SOA enables the creation of loosely-coupled services
that can be combined and orchestrated to support
complex business processes.
• SOA is particularly well-suited for cloud computing
because it allows for the creation of services that can be
accessed from anywhere on the internet.
• This means that applications can be built using services
from multiple sources, including public cloud providers,
private cloud infrastructure, and legacy systems.
41
 Service Oriented Architecture (SOA)
• Service
• A service is a well-defined, self-contained function that represents a unit of functionality.
• A service can exchange information from another service.
• It is not dependent on the state of another service.
• It uses a loosely coupled, message-based communication model to communicate with
applications and other services.
• Service Connections
• Service consumer sends a service request to the service provider, and the service provider
sends the service response to the service consumer.
• The service connection is understandable to both the service consumer and service provider.

42
Service Oriented Architecture (SOA)
Service-Oriented Terminologies
• Services - The logical entities defined by
one or more published interfaces.
• Service provider - Software entity that
implements a service specification.
• Service consumer - Requestor or client that
calls a service provider. A service consumer
can be another service or an end-user
application.
• Service locator - A service provider that acts
as a registry and is responsible for
examining service provider interfaces and
service locations.
• Service broker - A service provider that pass
service requests to one or more additional
service providers.
43
 Service Oriented Architecture (SOA)
Characteristics of SOA

• Are loosely coupled.

• Support interoperability.
• Are location-transparent
• Are self-contained.

SOA cloud computing along with the models

44
 Service Oriented Architecture (SOA)
Components of service-oriented architecture
• The service-oriented architecture stack can be
categorized into two parts –
• Functional Aspects
• Quality of Service Aspects

45
Service Oriented Architecture (SOA)
Functional Aspects
• Transport - It transports the service requests
from the service consumer to the service provider
and service responses from the service provider
to the service consumer.
• Service Communication Protocol - It allows the
service provider and the service consumer to
communicate with each other.
• Service Description - It describes the service
and data required to invoke it.
• Service - It is an actual service.
• Business Process - It represents the group of
services called in a particular sequence
associated with the particular rules to meet the
business requirements.
• Service Registry - It contains the description of
data which is used by service providers to publish
their services.
46
 Service Oriented Architecture (SOA)
Quality of Service Aspects

• Policy - It represents the set of protocols

according to which a service provider makes and
provide the services to consumers.
• Security - It represents the set of protocols
required for identification and authorization.
• Transaction - It provides the surety of consistent
result.
• This means, if we use the group of services to complete a
business function, either all must complete or none of the
complete.
• Management - It defines the set of attributes
used to manage the services.

47
Service Oriented Architecture (SOA)
Advantages of SOA
• Easy to integrate - The integration is a service specification that provides implementation
transparency.
• Manage Complexity - Due to service specification, the complexities get isolated, and
integration becomes more manageable.
• Platform Independence - The services are platform-independent as they can
communicate with other applications through a common language.
• Loose coupling - It facilitates to implement services without impacting other applications
or services.
• Parallel Development - As SOA follows layer-based architecture, it provides parallel
development.
• Available - The SOA services are easily available to any requester.
• Reliable - As services are small in size, it is easier to test and debug them.

48
Service Oriented Architecture (SOA)
Practical Applications of SOA:
• SOA is used in many ways around us whether it is mentioned or not.
1. SOA infrastructure is used by many armies and air force to deploy situational awareness
systems.
2. SOA is used to improve the healthcare delivery.
3. Nowadays many apps are games and they use inbuilt functions to run.
• For example, an app might need GPS so it uses inbuilt GPS functions of the device. This is SOA in mobile
solutions.
4. SOA helps maintain museums a virtualized storage pool for their information and content.

49
 Practical Security , Trust and Privacy
• In the modern digital world, effective sharing of information between individuals and organizations has
become a critical requirement. This increases the demand for data sharing and privacy. The presence of
personal information such as medical records, financial records and school records have been identified as
a major barrier to data sharing. This limits the sharing of data for different purposes, such as academic or
academic research which are important to support various activities in society such as improving public
health care and policy making.
• Sharing of data effectively and without any revelation of personal information is still a major challenge.
• Several approaches, such as anonymization and encryption, have emerged to solve this problem, but this
is achieved with a significant loss of information. There is therefore a problem of sharing the micro data
while protecting the data. The main challenge when disclosing information is to provide as much
information as possible while ensuring the confidentiality of an individual. This means that limiting
disclosure of shared data requires careful consideration between data utility and individual privacy.
• This problem can be represented by asking the following main questions:
• How can we ensure privacy in a cloud environment while reducing the loss of information? What approaches can be put in place to
reduce the amount of information loss while striving to protect the privacy of the individual in a cloud environment?
• How to design, develop and implement anonymization approaches to improve data privacy and utility in a distributed environment
and especially in a cloud mode? What approaches can be put in place to reduce the amount of information loss while striving to
protect the privacy of the individual in a cloud environment?
• How to design, develop and implement anonymization approaches to improve data privacy and utility in a distributed environment
and especially in a cloud mode?
50
 Practical Security , Trust and Privacy
Ways to ensure the Privacy and Confidentiality of data.
• Maintain Trust –
• In the cloud industry, privacy and security of personal data are still among the barriers to
adoption. Even if most companies use cloud technologies and consumers are increasingly
adopting cloud-based products and services, it is still very difficult to know exactly if the data
stored online is secure. In highly sensitive sectors such as health and finance, this
uncertainty represents a major obstacle to the adoption and implementation of Cloud
solutions. Adherence to a set of standards may be insufficient in the face of the most
advanced issues of confidentiality but will in fact stimulate longer-term adoption in the most
vulnerable sectors would enjoy the benefits of the cloud.
• Ensure Confidentiality –
• Confidentiality ensures that customer data is accessible only by authorized entities. Different
cloud computing solutions include privacy mechanisms such as identity and access
management, encryption, and anonymization. The most secure access controls have no
protection against an attacker gaining access to information, identification or keys. Thus,
credentials or key management information are essential links in the design of security.
51
Questions

52
 Questions
1. Discuss the various dimensions used by Jericho cloud model to describe cloud computing. 2076
2. Explain the Platform-as-a-Service (PaaS) and its characteristics. 2072
3. Describe possible services that can be achieved through Infrastructure-as-a-Service (IaaS). 2071(II)
4. Describe the cloud services provided under Monitoring-as-a-Service. 2076
5. Discuss the capabilities that the cloud users can get through Platform-as-a-Service (PaaS). Also mention the key
characteristics of PaaS. 2073
6. Define cloud migration. What are the reasons for the companies to migrate from traditional computing environment
to cloud computing environments? 2074
7. What is communication as a service? What features are provided under this service? Mention advantages of this
cloud service. 2076
8. What are the benefits of using Software-as-a-Service (SaaS) model? Briefly discuss about the maturity levels of
SaaS Architecture. 2071(I)
9. What do we mean by Anything-as-a-Service? How external and internal dimension in Jericho cloud cube model
differs from the proprietary and open dimension? 2074
10. Explain the Software-as-a-Service (SaaS) and its characteristics. 2072
11. What are the implementation issues on SaaS? Explain. 2069
12. Mention the characteristics of Software-as-a-Service(SaaS). What implementation issues should be considered in
SaaS? 2075
13. Explain how services like early detection, log centralization and continuous system patching are provided under
Monitoring-as-a-Service? 2074
53
 Questions
15. Explain the platform as a service and its challenges. 2069
16. Explain the service provided by the amazon EC2 service from user perspective. 2072
17. What computing services are provided under PaaS? Discuss, with example, the concepts of perimeterized and de-
perimeterized dimensions in Jericho Cube Model. 2075
18. What computing can be provided under Communication-as-a-Service? Mention the advantages of using
Communication-as-a-Service Cloud Model. 2075
19. Discuss about Jericho Cloud Cube Model. What are the advantages of Communication-as-a-service (CaaS) Model?
20. Explain the Jericho cloud cube model. 2072
21. Discuss about the implementation issues that need to be considered while maintaining Software-as-a-Service (SaaS)
22. Discuss the various services provided under Infrastructure-as-a-Service(IaaS)? 2074
23. Describe the services provided by the Monitoring-as-a-service (MaaS) vendors in cloud service systems.

54
The End

55