cloud computingarchitecturesecurityreliability
DESCRIPTION
A faculty development program on Cloud Architecture Security and Reliability.TRANSCRIPT
Cloud Architecture Security & Reliability
Prasad Chittahttp://www.linkedin.com/in/prasadchitta
“Faculty Development Program”
Definition & Essential Characteristics
“Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. This cloud model promotes availability and is composed of five essential characteristics, three service models, and four deployment models.” - (NIST)
NIST - Conceptual Reference Model
http://www.nist.gov/itl/cloud/upload/NIST_SP-500-291_Version-2_2013_June18_FINAL.pd
Security Threats
Notorious Nine
Threats
Translate To
protecting
• 1. Data Breaches • 2. Data Loss • 3. Account Hijacking • 4. Insecure APIs • 5. Denial of Service • 6. Malicious Insiders • 7. Abuse of Cloud Services • 8. Insufficient Due Diligence • 9. Shared Technology Issues
• Application Access• Separation of Concerns• Key – Management• Data at Rest
https://downloads.cloudsecurityalliance.org/initiatives/top_threats/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdf
Threat Landscape
http://op.bna.com/pl.nsf/id/dapn-9ebrtg/$File/ENISA%20Threat%20Landscape%202013.pdf
Threat Management
https://knome.ultimatix.net/r?url=http%3A%2F%2Fwww.booz.com%2Fmedia%2Ffile%2FBoozCo-Cloud-Computing.pdf
Reliability and Redundancy
Reliability Redundancy
Discussion on: how do we achieve better reliability of a complex IT system consisting of multiple components across multiple layers (i.e., web, application, database) to make best utility of non failing components to share the load while isolating the failure component and decoupling it from the cluster and seamlessly re-balancing the workload to the rest of the working components.
Recap & Discussion
Cloud Providers Cloud Brokers Cloud Deployment
Models Cloud Characteristics Cloud Concerns Hardware / Software /
Network
Cloud Consumers Cloud Service
Models Cloud Isolation
Models
Grid and Cloud Cloud and
Virtualization SOA and Cloud
