Collegenote
- Defining the Cloud
- Cloud Computing
- Emergence of Cloud Computing
- Cloud Based Service Models
- Grid Computing or Cloud Computing
- Components of Cloud Computing
- Cloud Computing Deployment Models
- Benefits of using cloud models
- Legal Issues in Using Cloud Models
- Ethical issues in cloud computing
- Characteristics of Cloud Computing
- Evolution of cloud computing
- Challenges for cloud computing
- Grid Computing
- Distributed Computing in Grid and Cloud
- Cloud Communication
- Communication-as-a-Service (CaaS)
- Advantages of CaaS
- Infrastructure-as-a-Service (IaaS)
- Popular IaaS solutions
- Modern On-Demand Computing
- Amazon’s Elastic Cloud
- Amazon EC2 Service Characteristics
- Elastic IP Addressing
- Monitoring-as-a-Service (MaaS)
- The Traditional On-Premises Model
- Platform-as-a-Service (PaaS)
- Key Characteristics of PaaS
- Software-as-a-Service
- SaaS Implementation Issues
- The key characteristics of SaaS
- Benefits of SaaS Model
- Jericho Cube Model
- XaaS
- Evolution from Managed service providers (MSP) to Cloud Computing
- Single Purpose architectures to multi-purpose architectures
- Service Oriented Architectures (SOA)
- Combining Cloud and SOA
- Characterizing SOA
- Open Source Software in Data Centers
- Data center virtualization
- Cloud data center
Security Architecture Design #
A security architecture framework should be established with consideration of processes (enterprise authentication and authorization, access control, confidentiality, integrity, non- repudiation, security management, etc.), operational procedures, technology specifications, people and organizational management, and security program compliance and reporting. A security architecture document should be developed that defines security and privacy principles to meet business objectives. Documentation is required for management controls and metrics specific to asset classification and control, physical security, system access controls, network and computer management, application development and maintenance, business continuity, and compliance. A design and implementation program should also be integrated with the formal system development life cycle to include a business case, requirements definition, design, and implementation plans. Technology and design methods should be included, as well as the security processes necessary to provide the following services across all technology layers:
- Authentication
- Authorization
- Availability
- Confidentiality
- Integrity
- Accountability
- Privacy
The creation of a secure architecture provides the engineers, data center operations personnel, and network operations personnel a common blueprint to design, build, and test the security of the applications and systems. Design reviews of new changes can be better assessed against this architecture to assure that they conform to the principles described in the architecture, allowing for more consistent and effective design reviews.