Cloud Architecture (Unit 3)

Cloud Architecture - CA - Unit 3 - SRMIST Syllabus - Short Notes

Information Security

• Confidentiality - Secrecy of information.
• Integrity - Unaltered information & data.
• Availability - Authorization & timely access.
• Accountability - Accounting tasks that take place in the data center.
• Risk Triad - Managing risks.

Security Concerns

• Velocity of attack - Existing threat spreads more rapidly.
• Data Privacy - Personal data must not be vulnerable.
• Compute level security - Server security, Hypervisor failure, etc.
• Network-level security - Firewall, authorization, etc.
• Storage level security - Data encryption, data shredding, LUN masking.

Security Audit & SIEM

• Ensures compliance with regulations and standards.
• Ensures confidentiality, integrity & data availability.
• Effectiveness of cloud security.
• Access risk control and data security.
• Improves overall security posture.

Business Continuity

• Information Availability - All available infrastructure and data of an organization.
• Accessibility - Information must be available to users.
• Reliability - Data shown must be consistent and true wiz reliable.
• Timeliness -  Uptime or available time of data to the user.
• Information Unavailability
• Planned Outages - Maintenance, etc.
• Unplanned Outages - Server down or disaster etc.

• Terminologies

• Disaster Recovery - Restoring data.
• Disaster Restart - Restarting business operation.
• RPO
  
  
  
• RTO
  
  
  
• Hot Site - The organization can move entirely in event of a disaster.
• Cold Site - Only operations of organizations can be moved.
• Server Clustering

• Life Cycle

• Establish objectives
• Analysis
• Design & Develop
• Implement
• Train, test, access & maintain

Failure Analysis

• Single-point failure
  
  
  
• Resolving single-point failure
• Multipathing - Create multiple access points & duplications to remove single-point failure.
  

Storage Options

Intelligent Storage System

Components

• Front-end interface
• Master nodes
• Compute nodes
• File System
• High-Speed fabric

Communication Protocols

• Peripheral component Interconnect - Interaction between CPU's
• Integrated Device Electronics - Connects disk to drives.
• Small Computer System Interface - Storage connectivity.
• Transmission Control Protocol - Compute communication.

Storage Solutions (Know something to write about these)

 VDC - Roles

• Network admin
• Network operator
• VDC-Admin
• VDC-operator

VDC - Types

Features - Traditional Network Management

• Administration of resources
• Configuring resources
• Enforcing security
• Monitoring operations
• Optimizing performance
• Policy management
• Performing maintenance
• Provision of resources

Features - Network Management

• Fault
• Configuration
• Accounting
• Performance
• Security

NOTE

*Some parts of unit 3 like SOA and Virtualization is already covered in unit 2 and 1.