TMF6044

ICT Infrastructure

Cloud Computing Infrastructure

1
 Outline
• Introduction
• Cloud Computing: Essential Characteristics
• Types of Cloud Computing
• Public
• Private
• Hybrid
• Components of Cloud Computing
• Attributes of Cloud Networking
• Cloud Computing Architecture
• Components of Cloud Computing Architecture
• Cloud Computing Services
• IaaS
• PaaS
• Saas

2
 Outline
• Cloud Management
• Cloud Management Components
• The Importance of Cloud Computing for Development and Test
• IT Benefits from Cloud Computing
• Cloud Computing Risks
• Summary

3
Are we using the cloud yet?
Contoh:
• google drive
Are we using the cloud yet?
 Introduction
• Cloud computing is referred as data storage, type of
software outsourcing and processing. Software outsourcing
consists of networking, servers, analytics, storage,
databases, software and intelligence through the Internet.
• Through the internet connection, users can log in and gain
accessibility to files and applications.
• Programs and data are hosted by external parties and
accommodate it on the global network of protected data
locations rather than storing in the user’s external
components such as pen drive, hard disk, and others.
• This endorses for power management, simplifies data
sharing and shows the path for easy mobile access
irrespective of asking user details.
6
 Introduction (cont.)
• Inspired by consumer Internet services (online banking, for example)
and industrialization in traditional areas (sharing power from a grid is
essentially a precursor to cloud computing), the cloud is a “power
grid” for IT-supported services.
• It’s a way for end users to get the services they need and provide
businesses with economies of scale, and it’s a way to handle
workloads in the way that is best for your individual business. Some
workloads are ideal for the cloud—some may not be. But that model
can change from year to year, or even month to month.
• Several types of clouds coexist, often in one business environment—
private clouds, public clouds and virtually any number of
combinations of the two.

7
 Parallel computing (1980s)
• max processor up to 2000 which is Barcelona
Grid computing
• still in one single computing
Distributed computing
• extension of grid computing

Introduction (cont.)
• connect between grid using internet
• mutual understanding (sharing resources)
° sharing resources
1. CPU power (computing power)
2. RAM
3. Storage
Cloud computing
• extension to distributed computing
• run by service provider

• Computing • Applications
power

• Networking • Data storage • Services

Visual Model of Cloud Computing
Definition
Rapid elasticity
• can expand or minimize
Cloud Computing: Essential
Characteristics
• On-demand self service
• Users automatically access computing resources (e.g. servers, storage etc.) as
needed.

• Broad network access

• Services available over the network can be accessed using mobile/smart phones,
tablets, laptops and desktops.

• Resource pooling
• Computing resources (including memory and bandwidth) can be pooled to serve
multiple customers at the same time.
• Location independence

• Rapid elasticity
• Ability to quickly scale in/out service with demand, at any time.

• Measured service
• Control, optimise services based on metering (i.e. pay-per-use pricing model)
• Type of service include storage, processing, bandwidth etc.
 Types of Cloud Computing
• Public cloud is cloud computing that’s delivered via the
internet and shared across organizations.

• Private cloud is cloud computing that is dedicated solely to

your organization.

• Hybrid cloud is any environment that uses both public and

private clouds.

Community Cloud? There are community in the world gather themselves to make a
community cloud.
Example: anonymous group (to access the dark web)

11
 Public Cloud
• The public cloud refers to the cloud computing model in which IT
services are delivered via the internet. As the most popular model of
cloud computing services, the public cloud offers vast choices in
terms of solutions and computing resources to address the growing
needs of organizations of all sizes and verticals.
• The public cloud is most suitable for these types of environments:
• Predictable computing needs, such as communication services for a specific
number of users
• Apps and services necessary to perform IT and business operations
• Additional resource requirements to address varying peak demands
• Software development and test environments

12
Popular Cloud Service Providers

13
 Private Cloud
• The private cloud refers to any cloud solution dedicated for use by a
single organization. In the private cloud, you’re not sharing cloud
computing resources with any other organization.
• The data center resources may be located on-premise or operated by
a third-party vendor off-site. The computing resources are isolated
and delivered via a secure private network, and not shared with
other customers.
• Private cloud is customizable to meet the unique business and
security needs of the organization. With greater visibility and control
into the infrastructure, organizations can operate compliance-
sensitive IT workloads without compromising on the security and
performance previously only achieved with dedicated on-premise
data centers.

14
 Private Cloud
• The private cloud is best suited for:
• Highly regulated industries and government agencies
• Sensitive data
• Companies that require strong control and security over their IT
workloads and the underlying infrastructure
• Large enterprises that require advanced data center technologies to
operate efficiently and cost-effectively
• Organizations that can afford to invest in high performance and
availability technologies

15
 Hybrid Cloud
• The hybrid cloud is any cloud infrastructure environment that
combines both public and private cloud solutions.
• The resources are typically orchestrated as an integrated
infrastructure environment. Apps and data workloads can share the
resources between public and private cloud deployment based on
organizational business and technical policies around aspects like:
• Security
• Performance
• Scalability
• Cost
• Efficiency
• Usually, non-critical activities perform by Public cloud and more
critical activities perform by Private cloud.

16
 Hybrid Cloud
• Here’s who the hybrid cloud might suit best:
• Organizations serving multiple verticals facing different IT security,
regulatory, and performance requirements
• Optimizing cloud investments without compromising on the value
that public or private cloud technologies can deliver
• Improving security on existing cloud solutions such as SaaS offerings
that must be delivered via secure private networks
• Strategically approaching cloud investments to continuously switch
and tradeoff between the best cloud service delivery model available
in the market

17
Components in Cloud Computing

18
 Components in Cloud Computing
• Clients in cloud computing are in general to the operation of Local
Area Networks (LAN’s).
• They are just the desktops where they have their place on desks.
• These might be also in the form of laptops, mobiles, tablets to enhance
mobility.
• Clients hold the responsibility of interaction which pushes for the
management of data on cloud servers.
• Datacentre It is an array of servers that houses the subscribed
application.
• Progressing the IT industry has brought the concept of virtualizing servers,
where the software might be installed through the utilization of various
instances of virtual servers.
• This approach streamlines the process of managing dozens of virtual servers
on multiple physical servers.

19
 Components in Cloud Computing
• Distributed Servers - These are considered as a server where that
is housed in the other location.
• So, the physical servers might not be housed in a similar location.
• Even the distributed server and the physical server appear to be in different
locations, they perform as they are so close to each other.
• While the other component is Cloud Applications, where it is defined
as cloud computing in the form of software architecture.
• So, cloud applications serve as a service which operates both the hardware
and software architecture.

20
Cloud made possible via Virtualization

A piece of program
Contoh: VMWare

VM – Virtual Machine

21
Server Virtualization

22
 Components in Cloud Computing
• From a networking standpoint,
each service model requires the
cloud provider to expose part or
all of the network and provide
more or less networking
capabilities to cloud users.

• Each service model requires cloud

users to understand and design
more or less of the network to
which they are exposed.

• Without networks, users cannot

access their cloud services.
Without networks, applications,
data, and users cannot move
between clouds. Without
networks, the infrastructure
Today’s high speed broadband components that must work
together to create a cloud cannot.
networks made Cloud
Computing possible
23
Attributes of Cloud Networking
• Scalability: The cloud network must scale to the overall
level of throughput required to ensure that it does not
become a bottleneck.
• Low Latency: The cloud network must deliver
microsecond latency across the entire network fabric
because low latency improves application performance
and server utilization.
• Guaranteed Performance: The cloud network must
provide predictable performance to service many
simultaneous applications in the network, including
video, voice, and web traffic.
• Extensible Management: Real-time upgrades and
image/patch management in a large cloud-network is a
daunting challenge to network administrators.
• Self-Healing Resilience: Cloud networks operate 24x7,
so downtime is not an option. This requires a network
architecture that offers self-healing and the ability for
transparent in-service software updates.
 Cloud Computing Architecture
• Cloud computing architecture is a combination of service-oriented
architecture (SOA) and event-driven architecture (EDA).
• SOA – a software design where services are provided to other components
by application components through a communication protocol over a
network. Similar idea as an application programming interface (API)
• EDA – a software architecture or programming approach that treat the
capture, communication, processing and persistence of events as it core
structure.
• Cloud computing architecture is divided into the following two parts :
• Front End
• Back End

25
Cloud Computing Architecture

26
 Components of Cloud Computing
Architecture
• Client Infrastructure - Client Infrastructure is a Front end component.
It provides GUI (Graphical User Interface) to interact with the cloud.
• Application - The application may be any software or platform that a
client wants to access.
• Service - A Cloud Services manages that which type of service you
access according to the client’s requirement.
• Runtime Cloud - Runtime Cloud provides the execution and runtime
environment to the virtual machines.
• Storage - Storage is one of the most important components of cloud
computing. It provides a huge amount of storage capacity in the
cloud to store and manage data.

27
 Components of Cloud Computing
Architecture
• Infrastructure - It provides services on the host level, application
level, and network level. Cloud infrastructure includes hardware and
software components such as servers, storage, network devices,
virtualization software, and other storage resources that are needed
to support the cloud computing model.
• Management - Management is used to manage components such as
application, service, runtime cloud, storage, infrastructure, and other
security issues in the backend and establish coordination between
them.
• Security - Security is an in-built back end component of cloud
computing. It implements a security mechanism in the back end.
• Internet - The Internet is medium through which front end and back
end can interact and communicate with each other.

28
 Cloud Computing Services

Software as a service

Platform as a service

Infrastructure as a service

SaaS is the most

expensive because any
service IaaS and PaaS
offered, SaaS can offered
it too (tangga pyramid)

29
Cloud Service Models
IaaS
Infrastructure as a service
•Provision servers
•Storage
•Networking resources

PaaS
Platform as a service
•Middleware platform
•Solution stack
•Both accessible over a network
SaaS
Software as a service
•Software
•Applications
•Or services that are delivered over a
network
 Infrastructure as a service (IaaS)
architecture
• An infrastructure provider (IP) makes an entire computing infrastructure
available “as a service”

• Manages a large pool of computing resources and uses virtualization to assign

and dynamically resize customer resources
• Customers rent processing capacity, memory, data storage, and networking
resources that are provisioned over a network
 Cloud Computing Services
• Infrastructure as a Service (IaaS)
• The fundamental classification of cloud computing
services. This service allows for the rent of servers and
virtual systems, networks, IT infrastructure and storage
too. It avoids the complication behind acquiring and
administering own physical servers and infrastructure.
Few of the business aspects offered by IaaS are:
• Economical web hosting services
• Supports application and web servers and manage networking resources
• Increased performance on computing
• Assists in big data analysis
• Maintains huge storage, backup, and recovery

32
 Popular IaaS

• Microsoft Azure
• Amazon Web Services
• Google Cloud Infrastructure
• IBM Cloud
• Oracle Cloud Infrastructure
• Alibaba Cloud

33
 Platform as a service (PaaS)
architecture
• Service provider (SP) supplies the software platform or
middleware where the applications run
• Service user is responsible for the creation, updating, and
maintenance of the application

• The sizing of the hardware that is required for the execution of

the software is made in an understandable manner
 Cloud Computing Services
• Platform as a Service (PaaS)
• This is the one service offering an on-demand
atmosphere for development, testing, deployment of
many software applications. It serves as a cloud
deployment environment that maintains servers, and this
enables the delivery of both simple cloud applications
and complex enterprise applications. Few of the business
aspects offered by PaaS are:
• Stands as a platform for the development and customization of cloud-
based applications.
• PaaS tools allow you to investigate and mine their information thus
finding deeper insights to deliver better outcomes.
• Offers services for enhanced protection, workflow, directory, and
scheduling.
35
 Popular PaaS

• SAP Cloud
• an open business platform. It was designed to help developers build
applications more easily
• Microsoft Azure
• a deployment and development environment. Support the entire
web app development life cycle, from build to deploy and thereafter
• AWS Lambda
• Google App Engine
• IBM Cloud Foundry

36
Software as a service (SaaS)
architecture
• Service provider (SP) is responsible for the creation, updating,
and maintenance of software and application

• Service user accesses the service through Internet-based

interfaces
 Cloud Computing Services
• Software as a Service (SaaS)
• This is the approach to deliver software applications over the Internet
and it might be on-demand or through a subscription basis. It allows
individuals to get connected and utilize cloud applications through the
Internet. SaaS offers the feature of enhancement and operation of
application at a reduced cost. Few of the business aspects offered by
SaaS are:
• Shows simple accessibility for complex applications
• Allows using client software in a free manner
• Mobilize workforce
• Accessibility for application information from any location
• So, the other services/components of cloud computing are:
• Cloud Clients
• Cloud Services
• Cloud Applications
• Cloud Platform
• Cloud Storage
• Cloud Infrastructure
38
 Popular SaaS

• Salesforce
• The Customer Relationship Management (CRM) platform for sales and
services
• Dropbox
• Apart from file storage, it offers collaborative tools
• DocuSign
• Offers e-Signature platform
• Google G Suite
• Offers suite of business tools; Gmail, Calendar, Hangouts, Google Drive, Docs
• Canva
• Offering templates for almost everything, business cards, post layouts etc

39
Cloud Layer Architecture
 Split of Responsibilities: provider-
side and consumer-side
Problem could
happen if Traditional Infrastructure Platform Software
subsribe to cloud on-premises as a service as a service as a service
computing?
• data security Applications Applications Applications Applications
( the access to the
data)
Data Data Data Data
• company yang
provide cloud
computing Runtime Runtime Runtime Runtime
memang akan
dapat access your Middleware Middleware Middleware Middleware
data walaupun
nya madah ur O/S O/S O/S O/S
data is secure and
sekda org boleh
access tapi
Virtualization Virtualization Virtualization Virtualization
company yang
own the cloud Servers Servers Servers Servers
computing can
access Storage Storage Storage Storage

Networking Networking Networking Networking

Client manages Vendor manages in the cloud

 Cloud Management
• Cloud management refers to the exercise of control over public,
private or hybrid cloud infrastructure resources and services.
• A well-designed cloud management strategy can help IT pros maintain
control over those dynamic and scalable computing environments.
• Cloud management can also help organizations achieve three goals:
• Self-service refers to the flexibility achieved when IT pros can access cloud
resources, create new ones, monitor usage and cost and adjust resource
allocations.
• Workflow automation lets operations teams manage cloud instances without
the need for human intervention.
• Cloud analysis helps track cloud workloads and user experiences.
• But without a competent IT staff in place, it's difficult for any cloud
management strategy to succeed.
• These individuals must possess knowledge of the proper tools and
best practices while they keep in mind the cloud management goals of
the business.
42
 Cloud
Management
Components

Note:
VM – Virtual Machine
IAM – Identity and Access Management

43
 Automation and orchestration
• Cloud automation reduces repetitive, manual work
associated with managing cloud workloads.
• It is sometimes referred to as orchestration.
• The main idea is to boost operational efficiencies, speed
application deployment and reduce any human error that
can bring down applications.
• To make it happen, IT pros need orchestration or automation
tools.

44
 Automation and orchestration
• Functions, also called serverless computing services, are
used to provision workloads and avoid the need to supply
and pay for compute instances. The cloud provider that
operates the service loads, executes and unloads the
function when it meets trigger parameters:
• Compute instances refer to the volume and performance (processor,
memory, disk, etc.) of a virtual server. Data about these metrics' utilization
provides insight about the overall health of the application.
• Storage consumption refers to storage tied to the compute instances.
• Load-balancing services distribute incoming network traffic.
• Database instances help pool and analyze data.
• Cache instances use memory to hold frequently accessed data and thus
avoid the need to use slower media, such as disk storage.

45
Automation and orchestration

46
 Security Management
• Security dashboards and trend analysis tools let enterprises look into
their environment to help it stay secure. The online versions are far
more flexible than the tools that live on premises. For example, an
enterprise can activate a service provider's online dashboard and
quickly receive visibility into an online attack.
• Challenges: Cloud security breaches and incidents still occur even as
security technologies improve and service providers gird their
networks. There is also a human factor that is not easily solved.
People can attack network hosts and web apps as fast as they can be
fortified. Cloud administrators should test their environments and
have the latest security audits and reports. Take care when adopting
new technologies, such as AI and machine learning, which use many
data sources and therefore broaden the range for potential attacks.

47
 Cost Management
• Cloud computing costs can spiral if they are not managed
from the start. Numerous short-term and long-term cost
optimization strategies for cloud configurations can help
keep budgets in line.
• Choose the right provider. There are different ways to run an
application -- it could be hosted on VMs on a service, it could be
containerized or it could even be hosted in a serverless computing
environment. The cost and management complexity of each will vary.
The trick is to find the right balance between cost and enterprise
needs.
• Determine how much redundancy your application needs. There are
different ways to achieve cloud redundancy. One way is to pick a
hosting option that distributes workloads across multiple data
centers within a region. It's a low-cost strategy, but has the least
amount of redundancy. Another way is for users to mirror workloads
across more than one region, which offers more redundancy but at a
higher cost. 48
Cost Management
• Determine the appropriate size and scale for your installation. Tools
can help identify a more efficient --- meaning less expensive -- VM
instance for the workload you want to run. Reserved instances cost
less than on-demand VMs, though they must be booked in advance;
preemptible instances are cheapest but risk interruption by the cloud
service provider, so they aren't a fit for consistent workloads that
require uptime. Autoscaling, typically part of a cloud vendor's overall
framework, can increase or decrease resources as demand shifts.
• Minimize data movement. Cloud providers charge for data egress, so
if you need to move data frequently, choose the appropriate cloud
services setup for that. Recognize that moving data could increase
security risks.
• Consider third-party tools. Third-party vendors may offer better
capabilities for management, monitoring and security than a cloud
platform's native services, and they are likely to work in multi-cloud
environments.
49
Cost Management
• Look to advanced technologies for assistance. Cloud
management can be tricky even if you do everything
right. Some users and experts pin their hopes on the fact
that artificial intelligence and machine learning can more
efficiently, and significantly, reduce cloud costs. Vendors
already offer tools that incorporate capabilities to scan
cloud workloads, quickly detect anomalies and alert
administrators about an issue that might affect the cloud
bill.

50
 Governance and Compliance
• In recent years, cloud vendors have grappled with
regulations that govern how they can use personal data.
• Specifically, the European Union's General Data Protection
Regulation (GDPR) and the California Consumer Privacy Act
(CCPA) took effect.
• Cloud providers offer different responses to these
regulations, but in general, they sufficiently ensure their
services are compliant with regulations that involve data
transparency.

51
 Performance Monitoring
• The goal of application management is to achieve peak application
performance. While there is no single architecture that can
guarantee peak performance for every application, there are ways to
help boost cloud performance across the board.
• Rightsizing instances. As mentioned, a good place to start is to select the
right resources to run a workload.
• Autoscaling. Public cloud computing is dynamic by nature, and you want to
be able to add and subtract instances on demand. These services provide
ways to apply rules to track when a workload exceeds or recedes from a
certain threshold, and set triggers for resources to readjust.
• Caching. Accessing storage can slow application responsiveness. With cached
data, an application can execute tasks much faster than if it had to access
data that resides in regular storage.
• Microservices. In a microservices architecture, an application's major
features and functions are built in modular services. An application that is
broken into a series of programs that are individually deployed, operated and
scaled will be more responsive than one that's monolithic.

52
 Performance Monitoring
• Event-driven architectures. Also called serverless computing, event-driven
architectures can run on cloud services, such as AWS Lambda, Azure
Functions and Google Cloud Functions. Here, developers place code for
certain software behaviors and functions into the cloud platform. It only
operates when it's triggered by an actual event. When the function is
complete, it no longer consumes cloud resources.
• Another way IT shops can manage application performance in the
cloud is through load balancing, which refers to the distribution of
network traffic in a way that each instance operates at peak
efficiency.
• In prior days, load balancers operated locally as a data center
appliance. Today, it is typically an application that lives on a server
and is offered as a network service.

53
 The Importance of Cloud Computing
for Development and Test

Traditional
• Reduced installation and
High deployment costs to administration costs
deliver software • Lower TCO by improved utilization of
software assets

• Better governance through

Control and governance standardized delivery of services
chaos in software • Preconfigured software embodying
processes best practices

• Tools can be provisioned in minutes.

Onramp and on-boarding No download, installation or setup.
of teams reduces time to • Self-administered portal to access to
software delivery software resources for a globally
distributed team

54
 IT Benefits from Cloud Computing

Results from IBM cloud computing

engagements Traditional Cloud
Increasing Test provisioning Weeks Minutes
speed and
Change management Months Days/hours
flexibility
Release management Weeks Minutes
Service access Administered Self-service
Standardization Complex Reuse/share
Metering/billing Fixed cost Variable cost
Reducing Server/storage utilization 10–20% 70–90%
costs
Payback period Years Months
SOURCE: Based on IBM and client experience.

55
Categories of Cloud Computing Risks

Technology Immaturity
Less Control Lack of world-wide adopted Standards. Use Data Security
Many companies and governments of closed proprietary technologies. Lack of Migrating workloads to a shared
are uncomfortable with the idea of knowledge and trust. network and compute
their information located on systems API Jungle. infrastructure increases the
they do not control. Providers must Legal uncertainties. potential for unauthorized
offer a high degree of security exposure. Authentication and
transparency to help access technologies become
put customers at ease. increasingly important.
Vendor Lock-in
Interoperability constraints.
Low level of portability of application
and services based on cloud.
Contract and exit strategies
Compliance Limitations on sharing or transferring
Security Management
Complying with SOX, HIPAA data
Providers must supply easy controls
and other regulations may
to manage firewall and security
prohibit the use of clouds for
settings for applications and
some applications.
runtime environments in the cloud.
Comprehensive auditing
capabilities are essential.
Reliability
High availability will be a key concern. IT
departments will worry about a loss of service
should outages occur. Mission critical
applications may not run in the cloud without
strong availability guarantees.
 Cloud Computing Security Risks
Security is among a top concern with cloud computing...
Application and process
People and identity Help keep applications secure,
protected from malicious or
Mitigate the risks associated
fraudulent use, and hardened against
with user access to
failure
corporate resources
Network, server and end
Data and point
information Optimize service availability by mitigating
Understand, deploy and risks to network components
properly test controls for Physical infrastructure
access to and usage of Provide actionable intelligence on the
sensitive data desired state of physical infrastructure
security and make improvements

57
 Summary
• Cloud computing is referred as data storage, type of software
outsourcing and processing. Software outsourcing consists of
networking, servers, analytics, storage, databases, software and
intelligence through the Internet.
• There are 3 major types of Cloud Computing; Public, Private & Hybrid.
• Cloud computing architecture is divided into: Front End and Back
End
• Client infrastructure, Application, Service, Run-time Cloud, Storage,
Infrastructure, Management, Security and Internet are the
components of Cloud Computing Architecture
• There are 3 major types of Cloud Service; IaaS, PaaS & SaaS.
• Cloud management refers to the exercise of control over public,
private or hybrid cloud infrastructure resources and services.
• The main components of cloud management; Automation and
orchestration, Security, Governance and compliance, Performance
monitoring and Cost Management.
58
 (END)
Any Questions?

59