Chapter 5

Internet of Things IoT

Cloud Services
Virtualization
 Part II:
Cloud Services & Virtualization
Cloud and Virtualization
Cloud and Virtualization (Cont.)
Virtualization

 It is a technology that provides an abstraction of the resources used by some

software which runs in a simulated environment called a virtual machine (VM).
 It benefits include better efficiency in the use of the physical system resources.

 It provides support for multiple distinct operating systems and associated

applications on one physical system.
 Less equipment is required - server consolidation and lower maintenance costs.

 Less energy is consumed - consolidating servers lowers the monthly power and
cooling costs.
 Less space is required - fewer servers, network devices, and racks reduce the
amount of required floor space.
 However, it raises additional security concerns.
Virtualization Alternatives

Application Virtualization

Full Virtualization

allows
applications
written for one
environment to
Virtual Machine Monitor (VMM)
execute on some multiple full
other operating operating system
system instances execute coordinates access between
in parallel
hypervisor each of the guests and the actual
physical hardware resources
What is Hypervisor?

 Hypervisor is the key to enable virtualization,

 known as a software installed on top of computer hardware,

 creating the virtualization layer,

 acting as a platform for the VMs to be created on,

 and it manages the sharing of physical resources into virtual.

What is Hypervisor? Cont.

 In this figure, eight dedicated servers have been

consolidated into two servers using hypervisors
to support multiple virtual instances of the
operating systems.
 Hypervisor is a program, firmware, or hardware
that adds an abstraction layer on top of the real
physical hardware.
 The abstraction layer is used to create virtual
machines which have access to all the hardware
of the physical machine such as CPUs, memory,
disk controllers, and NICs.
 It is not uncommon for 100 physical servers to
be consolidated as virtual machines on top of 10
physical servers that are using hypervisors.
Type 1: Native Virtualization Layers
Type 2: Hosted Virtualization Layers
Type 1 vs. Type 2
Virtualization: Pros and Cons
Hypervisor Security
 Should be secured using a process similar to securing an operating system,

 installed in an isolated environment,

 configured so that it is updated automatically,

 monitored for any signs of compromise,

 accessed only by authorized administration,

 and configured appropriately to support both local and remote administration.

 Remote administration access should be considered and secured in the design of

any network firewall and IDS capability in use.
 Ideally administration traffic should use a separate network with very limited
access provided from outside the organization.
Cloud Overview
 Cloud computing involves large numbers of computers connected through a network that can be
physically located anywhere.
 Providers rely heavily on virtualization to deliver their cloud computing services.

 Cloud computing can reduce operational costs by using resources more efficiently.

 Enables access to organizational data anywhere and at any time

 Streamlines the organization’s IT operations by subscribing only to needed services

 Eliminates or reduces the need for onsite IT equipment, maintenance, and management

 Reduces cost for equipment, energy, physical plant requirements, and personnel training needs

 Enables rapid responses to increasing data volume requirements

 Cloud computing, with its “pay-as-you-go” model, allows organizations to treat computing and
storage expenses more as a utility rather than investing in infrastructure. Thus. capital expenditures
are transformed into operating expenditures.
Cloud Computing: Cloud Services
 Cloud computing services defined by the National Institute of Standards and
Technology (NIST):

• Software as a Service (SaaS): Access to services, such as Gmail, Office 365,

Dropbox, iCloud, and others that are delivered over the Internet.
• Platform as a Service (PaaS): Access to the development tools and services
used to deliver the applications.
• Infrastructure as a Service (IaaS): Access to the network equipment,
virtualized network services, and supporting network infrastructure.
• IT as a Service (ITaaS): IT Professionals support applications, platforms and
infrastructure.
Cloud Computing : Cloud Models
 Public clouds: Application and services made available to the general population.
Services may be free or are offered on a pay-per-use model, such as paying for
online storage. Uses the Internet to provide services.
 Private clouds: Applications and services are intended for a specific organization
or entity, such as the government. A private cloud can be set up using the
organization’s private network, though this can be expensive to build and maintain.
A private cloud can also be managed by an outside organization with strict access
security.
 Hybrid clouds: Made up of two or more clouds (example: part private, part public),
where each part remains a distinctive object, but both are connected using a single
architecture.
 Community clouds: A community cloud is created for exclusive use by a specific
community. For example, healthcare organizations must remain compliant with
policies and laws (e.g., HIPAA) that require special authentication and
confidentiality.
Cloud Computing: Cloud Computing versus Data Center
 Data center: Typically a data storage and processing facility run by an in-house IT
department or leased offsite.
 Cloud computing: Typically an off-premise service that offers on-demand access
to a shared pool of configurable computing resources. These resources can be
rapidly provisioned and released with minimal management effort.

Cloud computing is
Cloud computing is
possible because of
often a service provided
data centers.
by data centers.
Cloud Computing vs. Data Center
 Cloud computing is possible because of data centers. A data center is a facility used to
house computer systems and associated components. A data center can occupy one
room of a building, one or more floors, or an entire building. Data centers are typically
very expensive to build and maintain.
 For this reason, only large organizations use privately built data centers to house their
data and provide services to users. Smaller organizations that cannot afford to maintain
their own private data center can reduce the overall cost of ownership by leasing server
and storage services from a larger data center organization in the cloud.
 Cloud computing is often a service provided by data centers. Cloud service providers
use data centers to host their cloud services and cloud-based resources. To ensure
availability of data services and resources, providers often maintain space in several
remote data centers.
 However, data privacy is always a concern.
Cloud Computing and Virtualization

 Virtualization is the foundation of cloud computing. without it, cloud computing

would not be possible.
 Cloud computing separates the application from the hardware.

 Virtualization separates the OS from the hardware.

 For example, Amazon Elastic Compute cloud (Amazon EC2) web service provides
a simple way for customers to dynamically provision the computer resources they
need. These virtualized instances of servers are created on demand in Amazon’s
EC2.
Cloud Computing and Virtualization
 To fully appreciate cloud virtualization, it is first necessary to understand some of the
history of server technology and related issues.
• Historically, enterprise servers consisted of a server operating system (OS), such as
Windows Server or Linux Server, installed on specific hardware. All of a server’s
RAM, processing power CPU, and hard drive space were dedicated to the service
provided (e.g., Web, email services, etc.)
• The major problem with this configuration is that when a component fails, the service
that is provided by this server becomes unavailable. This is known as a single point of
failure.
• Another problem was that dedicated servers were underused. Dedicated servers
often sat idle for long periods of time, waiting until there was a need to deliver the
specific service they provide. These servers wasted energy and took up more space
than was warranted by their amount of service. This is known as server sprawl.
End of Part II