CLOUD COMPUTING (4360709) ENROLLMENT NO.

___________________
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

Cloud Computing (4360709) Lab Manual

INDEX

Sr. Practical Name Date Signature

No.
1. To study cloud architecture and cloud computing
model.
2. Study and implementation of Infrastructure as a
Service
 OpenStack Computing Components
 Install OpenStack on Ubuntu 18.04 with DevStack
3. Study and implementation of Storage as a Service
4. Case Study: "Choosing the Right Cloud Deployment
Model"
 Examine case studies of organizations adopting
different cloud deployment models (public, private,
hybrid, community).
 Analyze the advantages and disadvantages of each
model.
 Discuss key drivers influencing the choice of a
specific cloud deployment model.
5. Case Study: "Comparative Analysis of Cloud Service
Providers"
 Evaluate case studies of major cloud service
providers (e.g., AWS, Azure, Google Cloud).
 Analyze their service models (SaaS, PaaS, IaaS) and
advantages/disadvantages.
 Discuss the impact of cloud computing on users
using realworld examples.
6. Working and installation of Google App Engine
7. Working and installation of Microsoft Azure.
8. Design an Assignment to retrieve, verify, and store
user credentials using Firebase Authentication, the
Google App Engine standard environment, and
Google Cloud Data store
9. Develop a hello world program web application and
deploy it on the Google app engine.
10. Case Study: "Implementing Virtualization in
Enterprise IT"
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

 Explore a case where an organization successfully

implemented virtualization.
 Discuss the types of virtualization used (desktop,
network, storage, data).
 Analyze the advantages and disadvantages
experienced by the organization.
11. Installation and Configuration of virtualization using
KVM.
12. Case Study: "Data Security and Privacy in a Cloud-
Based Healthcare System"
 Investigate a case where a healthcare organization
adopted cloud computing.
 Discuss infrastructure security at the network, host,
and application levels.
 Analyze data security, storage, and privacy issues in
the context of sensitive healthcare data.
13. "Migration to the Cloud: A Banking Sector
Perspective"
 Explore how a traditional bank migrated its
infrastructure to a public cloud.
 Analyze the security considerations and challenges
faced during the migration.
14. "Global Company's Hybrid Cloud Strategy"
 Examine a multinational corporation’s use of a
hybrid cloud model.
 Analyze how the organization balances data storage,
compliance, and efficiency.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:1
Aim: To study cloud architecture and cloud computing model.
 Cloud Computing Architecture:
 Cloud Computing Architecture is a combination of components required for a Cloud
Computing service.
 A Cloud computing architecture consists of several components like a frontend platform,
a backend platform or servers, a network or Internet service, and a cloud-based delivery
service.
 The cloud architecture is divided into 2 parts:
1. Front-end:
 It is a GUI (Graphical User Interface) which is use by user side (Web
Browser).
 The front end consists of the client part of a cloud computing system.
 It comprises interfaces and applications that are required to access the Cloud
computing or Cloud programming platform.
 The front end includes web servers (Chrome, Firefox, Opera, etc.), clients,
and mobile devices.
2. Back-end:
 Cloud Provider
 The back end refers to the cloud itself, it provides the resources required for
cloud computing services.
 It consists of virtual machines, servers, data storage, security mechanisms,
traffic control mechanisms, etc.
 It is under the provider’s control.

 Components of Cloud Computing Architecture: There are the following components of

cloud computing architecture -
1. Client Infrastructure: Client Infrastructure is a Front-end component. It provides GUI
(Graphical User Interface) to interact with the cloud.
2. Application: The application may be any software or platform that a client wants to
access.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

3. Services: A Cloud Services manages that which type of service you access according
to the client’s requirement.
Three Cloud computing services are:

i. Software as a Service (SaaS) – It is also known as cloud application

services. Mostly, SaaS applications run directly through the web browser
means we do not require to download and install these applications. Some
important examples of SaaS are given below –

Example: Google Apps, Salesforce Dropbox, Slack, Hubspot, Cisco

WebEx.

ii. Platform as a Service (PaaS) – It is also known as cloud

platform services. It is quite similar to SaaS, but the difference is that
PaaS provides a platform for software creation, but using SaaS, we can
access software over the internet without the need of any platform.

Example: Windows Azure, Force.com, Magento Commerce Cloud,

OpenShift.

iii. Infrastructure as a Service (IaaS) – It is also known as cloud

infrastructure services. It is responsible for managing applications data,
middleware, and runtime environments.

Example: Amazon Web Services (AWS) EC2, Google Compute Engine

(GCE), Cisco Metapod.

4. Runtime Cloud: Runtime Cloud provides the execution and runtime

environment to the virtual machines.
5. Storage: It provides a huge amount of storage capacity in the cloud to store and
manage data.
6. Infrastructure: It provides services on the host level, application level,
and network level. Cloud infrastructure includes hardware and software
components such as servers, storage, network devices, virtualization software,
and other storage resources that are needed to support the cloud computing
model.
7. Management: Management is used to manage components such as application,
service, runtime cloud, storage, infrastructure, and other security issues in the
backend and establish coordination between them.
8. Security: Security is an in-built back-end component of cloud computing. It
implements a security mechanism in the back end.
9. Internet: The Internet is medium through which front end and back end can
interact and communicate with each other.
 Types of Cloud Deployment Models:
 Deployment is movement of software, hardware, computing resources, processing
power to remote servers on internet.
 Cloud Deployment Model acts as a virtual computing environment that offers a
choice of deployment model according to how much data users want to store and
who will have access to the infrastructure.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

 It signifies how servers are deployed and provisioned over the internet so that
various organizations and companies can access these servers without configuring
them.
 Different types of cloud computing deployment models are as below.
1) Public Cloud
2) Private Cloud
3) Hybrid Cloud
4) Community Cloud

1. Public Cloud Model:

 It is accessible to the public.
 Public cloud as the name suggests, this type of cloud deployment model
supports all users who want to make use of a computing resource, such as
hardware (OS, CPU, memory, storage) or software (application server,
database) on a subscription basis.
 The public cloud makes it possible for anybody to access systems and
services.
 The public cloud is one in which cloud infrastructure services are provided
over the internet to the general people or major industry groups.
 It is a type of cloud hosting that allows customers and users to easily access
systems and services.
 In this arrangement, storage backup and retrieval services are given for free,
as a subscription, or on a per-user basis. For example, Google App Engine
etc.

2. Private Cloud Model:

 Private cloud is infrastructure used by a single organization. There is no need to
share your hardware with anyone else
 Such infrastructure may be managed by the organization itself to support various
user groups, or it could be managed by a service provider that takes care of it
either on-site or off-site.
 The cloud platform is implemented in a cloud-based secure environment that is
protected by powerful firewalls and under the supervision of an organization’s
IT department.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

 Private clouds are more expensive than public clouds due to the capital
expenditure involved in acquiring and maintaining them.
 However, private clouds are better able to address the security and privacy
concerns of organizations today.

3. Hybrid Cloud Model:

 In a hybrid cloud, an organization makes use of interconnected private and
public cloud infrastructure.
 Both the private and public cloud work together to meet our organization
requirements.
 Hybrid cloud = Private cloud + Public cloud

4. Community Cloud Model:

 This deployment model allows systems and services to be accessible by a group of
organizations.
 It is a distributed system that is created by integrating the services of different clouds to
address the specific needs of a community, industry, or business.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

 The infrastructure of the community could be shared between the organization which has
shared concerns or tasks.
 It is generally managed by a third party or by the combination of one or more organizations
in the community.
 Example: Universities cooperating in certain areas of research, or police departments
within a county or state sharing computing resources. Access to a community cloud
environment is typically restricted to the members of the community.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:2

Aim: Study and implementation of Infrastructure as a Service

 OpenStack Computing Components

 Install OpenStack on Ubuntu 18.04 with DevStack

Solution:

1. Study and Implementation of Infrastructure as a Service (IaaS) with OpenStack:

Objective: Learn about OpenStack computing components and install OpenStack on
Ubuntu 18.04 using DevStack.
OpenStack Computing Components:
OpenStack is an open-source cloud computing platform that provides IaaS by enabling the
management of large pools of compute, storage, and networking resources through a web-
based dashboard. Here are the core components of OpenStack:

1. Nova (Compute): Manages and provisions large numbers of virtual machines (VMs).
2. Neutron (Networking): Provides networking as a service between interface devices
managed by other OpenStack services.
3. Cinder (Block Storage): Manages block storage that instances can use.
4. Swift (Object Storage): Stores and retrieves unstructured data objects.
5. Keystone (Identity): Provides authentication and authorization services.
6. Glance (Image Service): Stores and retrieves virtual machine disk images.
7. Horizon (Dashboard): Provides a web-based user interface to OpenStack services.
8. Heat (Orchestration): Manages the infrastructure needed for a cloud application.

Installing OpenStack on Ubuntu 18.04 with DevStack:

DevStack is a series of extensible scripts used to quickly bring up an OpenStack
environment for development and testing. Here are the steps to install OpenStack on
Ubuntu 18.04 using DevStack:

Prerequisites:
1. Ubuntu 18.04 Server: Ensure you have a fresh installation of Ubuntu 18.04.
2. Non-root User: Create a non-root user with sudo privileges.

Steps to Install OpenStack with DevStack:

1. Update and Upgrade the System:
sudo apt update
sudo apt upgrade -y

2. Install Git:
sudo apt install git -y
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

3. Create a Stack User:

sudo useradd -s /bin/bash -d /opt/stack -m stack
echo "stack ALL=(ALL) NOPASSWD: ALL" | sudo tee /etc/sudoers.d/stack
sudo su – stack

4. Clone the DevStack Repository:

git clone https://opendev.org/openstack/devstack
cd devstack

5. Create the `local.conf` File:

Create a `local.conf` file within the `devstack` directory to configure your DevStack
installation.
# Bash terminal code
nano local.conf

Add the following content to the `local.conf` file:

ini
[[local|localrc]]
ADMIN_PASSWORD=secret
DATABASE_PASSWORD=$ADMIN_PASSWORD
RABBIT_PASSWORD=$ADMIN_PASSWORD
SERVICE_PASSWORD=$ADMIN_PASSWORD

6. Run the DevStack Script:

# Bash terminal code
./stack.sh
This process will take some time as it installs and configures all the necessary
components.

7. Access the OpenStack Dashboard:

Once the installation is complete, you can access the OpenStack Horizon dashboard by
navigating to `http://your_server_ip/dashboard` in a web browser. Use the following
credentials:
- Username: `admin`
- Password: `secret`

Conclusion
By following these steps, you will have a basic OpenStack setup running on Ubuntu 18.04
using DevStack. This setup is primarily for development and testing purposes, allowing
you to explore and understand various OpenStack components and their functionalities.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:3

Aim: Study and implementation of Storage as a Service

Solution:
Study and Implementation of Storage as a Service (SaaS)
Objective: Understand Storage as a Service (StaaS) and implement a cloud storage solution
using Amazon S3.

Overview of Storage as a Service (StaaS)

Storage as a Service (StaaS) is a business model in which a company leases or provides
storage resources to another company or individuals over the internet. This model is
typically used to address storage needs without requiring organizations to manage their own
storage infrastructure. StaaS is a core component of cloud computing, allowing scalable,
flexible, and cost-effective storage solutions.

Key Benefits of StaaS

1. Scalability: Easily scale storage up or down based on demand.

2. Cost Efficiency: Pay only for the storage used, avoiding large capital expenditures.
3. Accessibility: Access data from anywhere with an internet connection.

4. Durability and Reliability: High durability and availability of data with built-in
redundancy.
5. Security: Advanced security features to protect data.

Common StaaS Providers:

- Amazon Simple Storage Service (S3)

- Google Cloud Storage

- Microsoft Azure Blob Storage

- IBM Cloud Object Storage

Implementation of StaaS with Amazon S3

Amazon Simple Storage Service (S3) is a highly scalable and durable object storage service
provided by AWS. Below are the steps to implement a simple StaaS solution using Amazon
S3.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

Prerequisites:

- An AWS account.
- AWS CLI installed and configured on your machine.

Steps to Implement S3 Storage:

1. Create an S3 Bucket:
- Log in to the AWS Management Console.

- Navigate to the S3 service.

- Click on "Create bucket."

- Enter a unique bucket name and select a region.

- Configure options such as versioning, logging, and tags if needed.
- Review and create the bucket.

2. Install and Configure AWS CLI:

- Install AWS CLI:
# Bash terminal code

sudo apt update

sudo apt install awscli -y

- Configure AWS CLI with your credentials:

# Bash terminal code

aws configure
Provide your AWS Access Key ID, Secret Access Key, region, and output format when
prompted.

3. Upload a File to S3:

- Use the following AWS CLI command to upload a file to your S3 bucket:
# Bash terminal code
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

aws s3 cp path/to/your/file.txt s3://your-bucket-name/

- Verify the file upload by navigating to the S3 bucket in the AWS Management Console.

4. Set Bucket Policies (Optional):

- Set bucket policies to manage permissions. For example, to make the bucket public, use
the following policy:
# json code

{
"Version": "2012-10-17",

"Statement": [
{

"Sid": "PublicReadGetObject",
"Effect": "Allow",

"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::your-bucket-name/*"

}
]

- Apply the policy in the "Permissions" tab of your S3 bucket.

5. Access and Manage Data:

- List the contents of your S3 bucket:

# Bash terminal code

aws s3 ls s3://your-bucket-name/

- Download a file from S3:

# Bash terminal code
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

aws s3 cp s3://your-bucket-name/file.txt path/to/local/directory/

Conclusion
By following these steps, you will have implemented a basic Storage as a Service (StaaS)
solution using Amazon S3. This setup allows you to store, manage, and retrieve data
efficiently using AWS's robust cloud infrastructure.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:4
Aim: Case Study: "Choosing the Right Cloud Deployment Model"

 Examine case studies of organizations adopting different cloud deployment models

(public, private, hybrid, community).

 Analyze the advantages and disadvantages of each model.

 Discuss key drivers influencing the choice of a specific cloud deployment model.
Solution:
Case Study: Choosing the Right Cloud Deployment Model
Cloud deployment models include public, private, hybrid, and community clouds, each
offering unique benefits and challenges. Analyzing case studies of organizations adopting
different models helps understand their decision-making process and outcomes.
1. Public Cloud
Case Study: Netflix
Adoption:
Netflix adopted the public cloud, specifically AWS, to manage its vast data and streaming
services. The decision was driven by the need for scalability, global reach, and cost-
effectiveness.
Advantages:
- Scalability: Public clouds offer virtually unlimited scalability, allowing Netflix to handle
fluctuating demand seamlessly.
- Cost-Effectiveness: Pay-as-you-go pricing models reduce capital expenditure.
- Global Reach: AWS provides a global network of data centers, enabling Netflix to deliver
content worldwide.
Disadvantages:
- Security Concerns: Public clouds may pose security risks, though providers like AWS
invest heavily in security measures.
- Compliance Issues: Meeting regulatory requirements can be challenging in a shared
environment.
Key Drivers:
- Business Agility: Rapid deployment of services.
- Cost Savings: Reduced need for physical infrastructure.
- Scalability: Ability to handle peak loads efficiently.
2. Private Cloud
Case Study: The Bank of America
Adoption:
The Bank of America adopted a private cloud to maintain control over its highly sensitive
financial data while leveraging cloud benefits.
Advantages:
- Enhanced Security: Greater control over data security and compliance with financial
regulations.
- Customization: Tailored solutions to meet specific business needs.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Performance: Dedicated resources improve performance for critical applications.

Disadvantages:
- Higher Costs: Significant capital and operational expenditure for infrastructure and
maintenance.
- Complexity: Managing a private cloud requires specialized skills and resources.
Key Drivers:
- Data Security: Protecting sensitive financial information.
- Regulatory Compliance: Meeting stringent industry regulations.
- Control: Maintaining control over IT resources and data.

3. Hybrid Cloud
Case Study: General Electric (GE)
Adoption:
GE uses a hybrid cloud model, combining public and private clouds to balance flexibility
and control.
Advantages:
- Flexibility: Optimizes workloads by placing them in the most suitable environment.
- Cost Management: Balances cost between private and public clouds.
- Business Continuity: Enhances disaster recovery and backup options.
Disadvantages:
- Complex Management: Requires integrated management tools and processes.
- Security Risks: Potential vulnerabilities in data transfer between environments.
Key Drivers:
- Workload Optimization: Choosing the best environment for different workloads.
- Cost Efficiency: Balancing expenditure between private and public clouds.
- Resilience: Ensuring business continuity and disaster recovery.

4. Community Cloud
Case Study: European Union (EU) Research Institutions
Adoption:
EU research institutions adopted a community cloud to facilitate collaboration and share
resources across different organizations.
Advantages:
- Collaboration: Shared infrastructure promotes collaboration among similar
organizations.
- Cost Sharing: Reduces costs by sharing resources.
- Tailored Services: Meets specific needs of the community.
Disadvantages:
- Limited Control: Shared governance can lead to conflicts and slower decision-making.
- Resource Limitations: Resources are shared among multiple organizations, potentially
limiting availability.
Key Drivers:
- Shared Goals: Common interests and goals among the community members.
- Cost Sharing: Reducing individual expenditure by pooling resources.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Collaboration: Facilitating research and innovation through shared infrastructure.

Conclusion
Choosing the right cloud deployment model depends on an organization's specific needs,
including security, compliance, cost, scalability, and flexibility. Public clouds offer cost-
effective scalability, private clouds provide enhanced security and control, hybrid clouds
balance flexibility and control, and community clouds foster collaboration. Understanding
these factors helps organizations make informed decisions that align with their strategic
goals.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:5
Aim: Case Study: "Comparative Analysis of Cloud Service Providers"

 Evaluate case studies of major cloud service providers (e.g., AWS, Azure, Google Cloud).

 Analyze their service models (SaaS, PaaS, IaaS) and advantages/disadvantages.

 Discuss the impact of cloud computing on users using realworld examples.

Solution:
Case Study: Comparative Analysis of Cloud Service Providers
Objective: Evaluate major cloud service providers (AWS, Azure, Google Cloud), analyze
their service models (SaaS, PaaS, IaaS), and discuss the impact of cloud computing on users
using real-world examples.

 Major Cloud Service Providers:

1. Amazon Web Services (AWS)
Case Study: Airbnb
Service Models:
- IaaS (Infrastructure as a Service): AWS EC2 for scalable computing capacity, S3 for
storage.
- PaaS (Platform as a Service): AWS Elastic Beanstalk for deploying and scaling web
applications.
- SaaS (Software as a Service): Amazon Chime for communication services.

Advantages:
- Scalability: AWS provides extensive scalability options, enabling Airbnb to handle
fluctuating demands.
- Global Reach: AWS’s global infrastructure allows Airbnb to serve customers worldwide
efficiently.
- Rich Ecosystem: Wide range of services and integrations.

Disadvantages:
- Complex Pricing: AWS’s pricing model can be complex and difficult to predict.
- Learning Curve: Steep learning curve for mastering AWS services.

Impact on Users:
Airbnb leverages AWS to provide a reliable, scalable platform for millions of users
worldwide, ensuring high availability and performance. AWS enables rapid deployment of
new features and services, enhancing user experience.

2. Microsoft Azure
Case Study: ASOS
Service Models:
- IaaS: Azure Virtual Machines for scalable computing power.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- PaaS: Azure App Services for building and hosting web apps.
- SaaS: Office 365 for productivity and collaboration.

Advantages:
- Integration with Microsoft Products: Seamless integration with existing Microsoft tools
and software.
- Hybrid Cloud Solutions: Strong support for hybrid cloud scenarios.
- Enterprise Focus: Robust security and compliance features suitable for enterprises.

Disadvantages:
- Regional Availability: Some services may have limited availability in certain regions.
- Cost: Higher costs compared to other providers for some services.

Impact on Users:
ASOS uses Azure to provide a scalable and resilient platform for its global e-commerce
operations. Azure’s integration with Office 365 enhances productivity and collaboration
among ASOS’s employees, leading to improved service delivery for customers.

3. Google Cloud Platform (GCP)

Case Study: Spotify
Service Models:
- IaaS: Google Compute Engine for virtual machines.
- PaaS: Google App Engine for building and deploying applications.
- SaaS: Google Workspace for collaboration and productivity tools.

Advantages:
- Big Data and Analytics: Advanced tools like BigQuery for data analytics.
- Machine Learning: Powerful machine learning services, including TensorFlow.
- Network Infrastructure: Fast and reliable network infrastructure.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:6
Aim: Working and installation of Google App Engine.

Solution:
Working and Installation of Google App Engine
Objective: Understand how Google App Engine (GAE) works and learn the steps to install
and deploy a simple application on GAE.

Overview of Google App Engine

Google App Engine (GAE) is a Platform as a Service (PaaS) offering from Google Cloud
that allows developers to build and deploy scalable web applications and mobile backends.
It provides built-in services and APIs, handles infrastructure concerns such as scaling, load
balancing, and monitoring, and supports several programming languages, including Java,
Python, Go, PHP, and Node.js.

Key Features
- Automatic Scalability: Automatically scales your application up and down based on
traffic.
- Managed Infrastructure: Google manages the servers, reducing the need for manual
server configuration and maintenance.
- Integrated Services: Easily integrates with other Google Cloud services like Datastore,
Cloud SQL, and BigQuery.
- Support for Multiple Languages: Provides runtime environments for several
programming languages.

Installation and Deployment Steps

Prerequisites
1. Google Cloud Account: You need a Google Cloud account. Sign up at [Google
Cloud](https://cloud.google.com/).
2. Google Cloud SDK: Install the Google Cloud SDK to interact with GAE from your
local machine.

Steps to Install and Deploy on Google App Engine

1. Install Google Cloud SDK:

- Download and install the Google Cloud SDK from [Google Cloud
SDK](https://cloud.google.com/sdk/docs/install).
- Initialize the SDK:
# Bash terminal code
gcloud init

Follow the prompts to authenticate and configure the SDK with your Google Cloud
account and project.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

2. Set Up Your Project:

- Create a new project in the Google Cloud Console:
# Bash terminal code
gcloud projects create your-project-id

- Set the project:

# Bash terminal code
gcloud config set project your-project-id

3. Create Your Application:

- Create a directory for your project:
# Bash terminal code
mkdir my-app
cd my-app

- Write a simple application. For example, a Python Flask app (`main.py`):

#Code in Python
from flask import Flask
app = Flask(__name__)

@app.route('/')
def hello():
return 'Hello, World!'

if __name__ == '__main__':
app.run(host='0.0.0.0', port=8080)

4. Create `app.yaml`:
- The `app.yaml` file specifies the configuration for your GAE app. Create `app.yaml` in
your project directory:
# yaml code
runtime: python39
entrypoint: gunicorn -b :$PORT main:app

- This configuration specifies that the app uses Python 3.9 and the Gunicorn server.

5. Deploy Your Application:

- Deploy your application to Google App Engine:
# Bash terminal code
gcloud app deploy

- Follow the prompts to confirm the deployment.

CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

6. Access Your Application:

- After deployment, you can access your application via the provided URL:
# Bash terminal code
gcloud app browse
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:7
Aim: Working and installation of Microsoft Azure.

Solution:
Working and Installation of Microsoft Azure
Objective: Understand how Microsoft Azure works and learn the steps to set up and deploy
resources on Azure.

Overview of Microsoft Azure

Microsoft Azure is a comprehensive cloud computing platform that provides a range of
services including IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS
(Software as a Service). It supports numerous programming languages, frameworks, and
tools, offering a wide array of services such as virtual machines, databases, AI, and IoT.

Key Features
- Scalability and Flexibility: Easily scale services up or down based on demand.
- Global Reach: Azure has data centers in multiple regions around the world.
- Security and Compliance: Advanced security features and compliance with various
industry standards.
- Integration with Microsoft Products: Seamless integration with other Microsoft tools
like Office 365, Dynamics 365, and Active Directory.

Prerequisites
1. Microsoft Azure Account: You need an Azure account. Sign up at
[Azure](https://azure.microsoft.com/).
2. Azure CLI: Install the Azure Command-Line Interface (CLI) to interact with Azure from
your local machine.

Steps to Install and Deploy on Microsoft Azure

1. Set Up Your Azure Account
- Sign up for an Azure account if you don't already have one. You can sign up for a free
account which provides limited free services for the first 12 months along with credits for
additional services.

2. Install Azure CLI

- Windows:
- Download and run the installer from the [Azure CLI installation
page](https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-windows?view=azure-
cli-latest).

- macOS:
# Bash terminal code
brew update && brew install azure-cli
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Linux:
# Bash terminal code
curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash

- Verify the installation:

# Bash terminal code
az --version

3. Login to Azure
- Use the Azure CLI to log in to your Azure account:
# Bash terminal code
az login
This command opens a browser window where you can enter your Azure credentials.

4. Create a Resource Group

- A resource group is a container that holds related resources for an Azure solution:
# Bash terminal code
az group create --name myResourceGroup --location eastus

5. Create a Virtual Machine (IaaS Example)

- Use the following command to create a virtual machine:
# Bash terminal code
az vm create \
--resource-group myResourceGroup \
--name myVM \
--image UbuntuLTS \
--admin-username azureuser \
--generate-ssh-keys

- This command creates an Ubuntu VM with SSH key authentication. The VM will be part
of the specified resource group.

6. Deploy a Web App (PaaS Example)

- Create an App Service plan:
# Bash terminal code
az appservice plan create --name myAppServicePlan --resource-group myResourceGroup
--sku FREE

- Create a Web App:

# Bash terminal code
az webapp create --resource-group myResourceGroup --plan myAppServicePlan --name
myUniqueAppName

- Deploy code to the Web App. For example, if using a Node.js app:
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

# Bash terminal code

az webapp up --name myUniqueAppName --resource-group myResourceGroup

- Browse to the Web App:

# Bash terminal code
az webapp browse --name myUniqueAppName --resource-group myResourceGroup
7. Manage Resources
- List all resources in a resource group:
# Bash terminal code
az resource list --resource-group myResourceGroup

- Delete a resource group and all associated resources:

# Bash terminal code
az group delete --name myResourceGroup --yes --no-wait

Conclusion:
By following these steps, you can set up and deploy resources on Microsoft Azure. Azure
provides a robust platform for a variety of cloud computing needs, from infrastructure to
platforms to software services. Its integration with Microsoft products and extensive global
infrastructure makes it a powerful choice for businesses of all sizes.
PRACTICAL:8

Aim: Design an Assignment to retrieve, verify, and store user credentials using
Firebase Authentication, the Google App Engine standard environment, and Google
Cloud Data store.

Solution:
Assignment: Retrieve, Verify, and Store User Credentials using Firebase Authentication,
Google App Engine, and Google Cloud Datastore

Objective: Create a web application that allows users to register and log in using Firebase
Authentication, verify their credentials, and store user information in Google Cloud
Datastore using the Google App Engine standard environment.

Requirements:
1. Firebase Authentication: Set up Firebase Authentication to handle user registration and
login.
2. Google App Engine (GAE): Deploy the web application using the Google App Engine
standard environment.

3. Google Cloud Datastore: Store and manage user information in Google Cloud
Datastore.

Tools and Technologies

CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Frontend: HTML, CSS, JavaScript

- Backend: Python (Flask)

- Firebase: Firebase Authentication

- Google Cloud Platform: Google App Engine, Google Cloud Datastore

Step-by-Step Instructions

1. Set Up Firebase Authentication:

1. Create a Firebase Project:
- Go to the [Firebase Console](https://console.firebase.google.com/).
- Click on "Add project" and follow the instructions to create a new project.

2. Enable Authentication:
- In the Firebase Console, go to "Authentication" -> "Sign-in method".

- Enable Email/Password authentication.

3. Add Firebase SDK to Your Web App:

- In the Firebase Console, go to "Project settings" -> "General".

- Add a new web app and copy the Firebase configuration snippet.

4. Frontend Code for Authentication:

- Include Firebase SDK in your HTML file and set up authentication logic.

# html script
<!-- Include Firebase SDK -->
<script src="https://www.gstatic.com/firebasejs/9.6.1/firebase-app.js"></script>

<script src="https://www.gstatic.com/firebasejs/9.6.1/firebase-auth.js"></script>

<script>
// Your Firebase configuration
var firebaseConfig = {
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

apiKey: "YOUR_API_KEY",
authDomain: "YOUR_AUTH_DOMAIN",

projectId: "YOUR_PROJECT_ID",
storageBucket: "YOUR_STORAGE_BUCKET",

messagingSenderId: "YOUR_MESSAGING_SENDER_ID",
appId: "YOUR_APP_ID"

};
// Initialize Firebase

firebase.initializeApp(firebaseConfig);

// Register user
function register() {
var email = document.getElementById('email').value;

var password = document.getElementById('password').value;

firebase.auth().createUserWithEmailAndPassword(email, password)

.then((userCredential) => {
// Signed in

var user = userCredential.user;

console.log('User registered:', user);

})
.catch((error) => {

var errorCode = error.code;

var errorMessage = error.message;
console.error(errorCode, errorMessage);

});
}

// Login user
function login() {
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

var email = document.getElementById('email').value;

var password = document.getElementById('password').value;

firebase.auth().signInWithEmailAndPassword(email, password)
.then((userCredential) => {

// Signed in
var user = userCredential.user;

console.log('User logged in:', user);

})

.catch((error) => {
var errorCode = error.code;

var errorMessage = error.message;

console.error(errorCode, errorMessage);
});

}
</script>

2. Set Up Google App Engine

1. Install Google Cloud SDK:

- Follow the instructions to install the Google Cloud SDK: [Install Google Cloud
SDK](https://cloud.google.com/sdk/docs/install).

2. Create a New GAE Project:

- Create a new directory for your project.
- Initialize your project:

# Bash terminal code

gcloud init

gcloud app create --project=YOUR_PROJECT_ID

3. Backend Code with Flask:

- Create a `main.py` file with a simple Flask application.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

#Code in Python
from flask import Flask, request, jsonify

from google.cloud import datastore

app = Flask(__name__)
datastore_client = datastore.Client()

@app.route('/')

def index():
return 'Hello, World!'

@app.route('/register', methods=['POST'])
def register():

data = request.get_json()
email = data['email']

user_data = {
'email': email,

# Additional user data here

}

key = datastore_client.key('User', email)

entity = datastore.Entity(key=key)

entity.update(user_data)
datastore_client.put(entity)
return jsonify({'status': 'User registered successfully'}), 201

@app.route('/login', methods=['POST'])

def login():
data = request.get_json()
email = data['email']
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

key = datastore_client.key('User', email)

user = datastore_client.get(key)

if user:
return jsonify({'status': 'User logged in successfully'}), 200

else:
return jsonify({'status': 'User not found'}), 404

if __name__ == '__main__':

app.run(host='0.0.0.0', port=8080)

4. Create `app.yaml`:
- This file configures the App Engine environment.

# yaml code
runtime: python39

entrypoint: gunicorn -b :$PORT main:app

handlers:
- url: /.*

script: auto

5. Deploy to Google App Engine:

- Deploy your application using the following command:

# Bash terminal code

gcloud app deploy

3. Store User Information in Google Cloud Datastore

CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

1. Configure Datastore Client:

- Ensure the Google Cloud SDK is authenticated and set up to use Datastore.

- The `datastore.Client()` in your Flask app connects to Datastore.

2. Define User Entity:

- Use Datastore entities to store user information.

- Example in the `register` route where a new user is saved as an entity.

Testing the Application

- Register a User: Use the `/register` endpoint to create a new user.
- Login a User: Use the `/login` endpoint to authenticate a user.

- Verify Data in Datastore: Check the Google Cloud Console to ensure user data is being
stored correctly in Datastore.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:9
Aim: Develop a hello world program web application and deploy it on the Google app
engine.
Solution:
Certainly! Below is a basic "Hello World" web application using Python and Flask. We'll
then deploy it to Google App Engine.

1. Create a Flask App:

First, let's create a directory for our project and navigate into it:

# Bash terminal code

mkdir hello_world_app
cd hello_world_app

Then, create a file named `app.py` with the following content:

#Code in Python
# app.py
from flask import Flask

app = Flask(__name__)
@app.route('/')
def hello_world():
return 'Hello, World!'

if __name__ == '__main__':
app.run(host='127.0.0.1', port=8080, debug=True)

2. Set Up App Engine:

Create a file named `app.yaml` for App Engine configuration:

# yaml code
# app.yaml
runtime: python39

3. Deploy to App Engine:

Make sure you have the Google Cloud SDK installed and configured. Then, run the
following command to deploy your app:
# Bash terminal code
gcloud app deploy

Follow the prompts to select your project and deploy the application.

4. Access Your App:

CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

Once deployment is successful, you can access your Hello World web application at
`https://your-project-id.appspot.com`.

That’s how we have now deployed a simple Hello World web application on Google App
Engine.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:10
Aim: Case Study: "Implementing Virtualization in Enterprise IT"

 Explore a case where an organization successfully implemented virtualization.

 Discuss the types of virtualization used (desktop, network, storage, data).

 Analyze the advantages and disadvantages experienced by the organization.

Solution:
Case Study: Implementing Virtualization in Enterprise IT
Introduction:
Virtualization has become a cornerstone technology in modern IT infrastructure, enabling
organizations to maximize resource utilization, improve scalability, and enhance flexibility.
In this case study, we'll explore the implementation of virtualization in a hypothetical
organization and analyze the types of virtualization used, along with the advantages and
disadvantages experienced.

Organization Background:
XYZ Corporation is a medium-sized enterprise operating in the financial services sector.
With a diverse range of IT systems supporting various business functions, the organization
faces challenges related to resource inefficiency, high maintenance costs, and limited
scalability.

Implementation of Virtualization:
In response to these challenges, XYZ Corporation decides to embark on a virtualization
initiative aimed at streamlining IT operations and optimizing resource utilization. The
organization's IT team collaborates with virtualization experts to design and implement a
comprehensive virtualization solution.

Types of Virtualization Used:

1. Server Virtualization:
- The organization adopts server virtualization to consolidate multiple physical servers
into virtual machines (VMs) running on a smaller number of physical hosts.
- Hypervisor technology such as VMware vSphere or Microsoft Hyper-V is utilized to
manage and allocate resources to VMs.

2. Desktop Virtualization (VDI):

- XYZ Corporation implements Virtual Desktop Infrastructure (VDI) to centralize
desktop management and provide employees with remote access to their desktop
environments.
- VMware Horizon or Citrix Virtual Apps and Desktops are deployed to deliver virtual
desktops to end-users.

3. Network Virtualization:
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Network virtualization technologies are employed to abstract network resources and

create virtual networks that operate independently of the underlying physical infrastructure.
- Software-defined networking (SDN) solutions like VMware NSX or Cisco ACI are
implemented to enable network agility and automation.

4. Storage Virtualization:
- The organization leverages storage virtualization to pool storage resources from
disparate storage systems and present them as a single, centralized storage pool.
- Technologies such as Storage Area Network (SAN) virtualization or Network-Attached
Storage (NAS) virtualization are deployed to optimize storage utilization and simplify
management.

Advantages Experienced by the Organization:

1. Cost Savings: By consolidating hardware resources through virtualization, XYZ
Corporation reduces hardware acquisition and maintenance costs.
2. Improved Resource Utilization: Virtualization enables better utilization of server,
storage, and network resources, leading to increased efficiency.
3. Scalability and Flexibility: The organization gains the ability to scale infrastructure
resources dynamically to meet changing business demands.
4. Enhanced Disaster Recovery: Virtualization facilitates faster and more reliable disaster
recovery processes through features like live migration and snapshotting.
5. Simplified Management: Centralized management consoles provided by virtualization
platforms streamline IT administration tasks and reduce complexity.

Disadvantages Experienced by the Organization:

1. Complexity: Implementing and managing virtualized environments can be complex,
requiring specialized skills and expertise.
2. Performance Overhead: Virtualization introduces a slight performance overhead due
to the abstraction layer, which may impact application performance in certain scenarios.
3. Vendor Lock-In: Dependency on specific virtualization vendors may limit flexibility
and increase reliance on proprietary technologies.
4. Security Concerns: Virtualized environments introduce new security challenges, such
as VM escape vulnerabilities and increased attack surface area.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:11
Aim: Installation and Configuration of virtualization using KVM.

Solution:
To install and configure virtualization using Kernel-based Virtual Machine (KVM) on a
Linux system, follow these steps:

Step 1: Check Hardware Support

First, ensure your hardware supports virtualization and it's enabled in the BIOS settings.
Most modern CPUs support virtualization extensions like Intel VT-x or AMD-V.

Step 2: Install KVM Packages

1. Update your system's package repository:
# Bash terminal code
sudo apt update

2. Install KVM packages:

# Bash terminal code
sudo apt install qemu-kvm libvirt-daemon-system libvirt-clients virtinst bridge-utils
- `qemu-kvm`: The KVM hypervisor.
- `libvirt-daemon-system`: The virtualization API and management daemon.
- `libvirt-clients`: Command-line tools for managing virtual machines.
- `virtinst`: Utilities for creating and managing virtual machines.
- `bridge-utils`: Utilities for managing network bridges.

Step 3: Verify Installation

1. Check if the KVM module is loaded:

# Bash terminal code

lsmod | grep kvm

You should see output containing `kvm` and `kvm_intel` or `kvm_amd`.

2. Check if the libvirtd service is running:
# Bash terminal code
sudo systemctl status libvirtd

Ensure the service is active and running.

Step 4: Set Up Networking (Optional)

You can use bridge networking to allow virtual machines to communicate with the external
network.

1. Edit the network configuration file:

# Bash terminal code
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

sudo nano /etc/netplan/01-netcfg.yaml

Replace `ens33` with your network interface name:

# yaml code
network:
version: 2
renderer: networkd
ethernets:
ens33:
dhcp4: no
bridges:
br0:
dhcp4: yes
interfaces: [ens33]

2. Apply the changes:

# Bash terminal code
sudo netplan apply

Step 5: Create Virtual Machines

You can create virtual machines using command-line tools like `virt-install` or graphical
tools like Virt-Manager.

Example: Creating a Virtual Machine with Virt-Manager

1. Install Virt-Manager:
# Bash terminal code
sudo apt install virt-manager

2. Launch Virt-Manager:
# Bash terminal code
virt-manager

3. Click on "Create a new virtual machine" and follow the wizard to create a new VM.
Step 6: Manage Virtual Machines
You can manage virtual machines using command-line tools (`virsh`) or graphical tools
(Virt-Manager).

- To start a virtual machine:

# Bash terminal code
virsh start vm_name

- To stop a virtual machine:

# Bash terminal code
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

virsh shutdown vm_name

- To list virtual machines:

# Bash terminal code
virsh list --all

Step 7: Firewall Configuration (Optional)

If you're using a firewall, ensure it allows traffic for virtualization services. You may need
to open ports for VNC, SSH, etc.

Step 8: Additional Configuration (Optional)

Explore additional configuration options such as storage management, CPU pinning, and
memory allocation based on your requirements.

That's how we have now installed and configured virtualization using KVM on our Linux
system. We can now create, manage, and run virtual machines as needed.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:12
Aim: Case Study: "Data Security and Privacy in a Cloud-Based Healthcare System"

 Investigate a case where a healthcare organization adopted cloud computing.

 Discuss infrastructure security at the network, host, and application levels.

 Analyze data security, storage, and privacy issues in the context of sensitive healthcare
data.

Solution:

Case Study: Data Security and Privacy in a Cloud-Based Healthcare System

Introduction:
The adoption of cloud computing in healthcare has brought about significant advancements
in patient care, data accessibility, and operational efficiency. However, ensuring data
security and privacy remains a critical concern for healthcare organizations due to the
sensitivity of patient information. In this case study, we'll explore how a healthcare
organization implemented cloud computing and address the infrastructure security and data
privacy challenges associated with sensitive healthcare data.

Healthcare Organization Background:

ABC Healthcare is a large healthcare provider offering a wide range of medical services to
patients. To enhance its IT infrastructure and improve accessibility to patient records, ABC
Healthcare decides to migrate its data and applications to the cloud.

Cloud Computing Adoption:

ABC Healthcare partners with a reputable cloud service provider to migrate its IT
infrastructure to the cloud. The organization opts for a hybrid cloud deployment model,
leveraging both public and private cloud resources.

Infrastructure Security:

1. Network Security:
- ABC Healthcare implements robust network security measures to protect against
unauthorized access and data breaches.
- Virtual private networks (VPNs), firewalls, and intrusion detection/prevention systems
(IDS/IPS) are deployed to secure network traffic between on-premises systems and the
cloud.

2. Host Security:
- Virtual machines (VMs) running in the cloud environment are hardened to mitigate the
risk of compromise.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

- Security patches and updates are applied regularly to ensure the integrity of host
systems.
- Access controls and identity management solutions are implemented to restrict
unauthorized access to cloud resources.

3. Application Security:
- ABC Healthcare conducts regular security assessments and code reviews of cloud-based
applications to identify and remediate vulnerabilities.
- Web application firewalls (WAFs) are deployed to protect against common web-based
attacks such as SQL injection and cross-site scripting (XSS).
- Secure coding practices and encryption mechanisms are employed to safeguard
sensitive data transmitted and stored by cloud-based applications.

Data Security, Storage, and Privacy Issues:

1. Data Security:
- ABC Healthcare implements encryption-at-rest and encryption-in-transit mechanisms
to protect sensitive patient data stored in the cloud.
- Data loss prevention (DLP) solutions are employed to monitor and prevent unauthorized
transmission of sensitive data.

2. Storage Security:
- Data stored in the cloud is segmented and classified based on its sensitivity, with access
controls enforced accordingly.
- ABC Healthcare implements data redundancy and backup strategies to ensure data
availability and resilience against potential data loss incidents.

3. Privacy Concerns:
- ABC Healthcare adheres to regulatory compliance requirements such as HIPAA (Health
Insurance Portability and Accountability Act) to protect patient privacy and confidentiality.
- Privacy impact assessments (PIAs) are conducted to evaluate the potential privacy risks
associated with cloud-based systems and mitigate them effectively.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:13
Aim: "Migration to the Cloud: A Banking Sector Perspective"

 Explore how a traditional bank migrated its infrastructure to a public cloud.

 Analyze the security considerations and challenges faced during the migration.
Solution:

Migration to the Cloud: A Banking Sector Perspective

Introduction:
As technology continues to evolve, traditional banks are increasingly looking towards
cloud computing to modernize their IT infrastructure, enhance agility, and improve
customer experience. In this case study, we'll explore how a traditional bank successfully
migrated its infrastructure to a public cloud and analyze the security considerations and
challenges encountered during the migration process.

Banking Sector Background:

XYZ Bank is a well-established financial institution with a large customer base and a wide
range of banking services. To remain competitive in the digital age and address the growing
demands of its customers, XYZ Bank decides to transition its IT infrastructure to a public
cloud environment.

Migration to Public Cloud:

1. Assessment and Planning:

- XYZ Bank conducts a thorough assessment of its existing IT infrastructure,
applications, and data to identify workloads suitable for migration to the cloud.
- The bank develops a comprehensive migration strategy, including timelines, resource
allocation, and risk mitigation plans.

2. Selection of Cloud Service Provider:

- After careful evaluation of various public cloud service providers, XYZ Bank selects a
reputable provider known for its robust security measures, compliance certifications, and
scalability.

3. Migration Process:
- XYZ Bank begins the migration process by moving non-critical workloads and
applications to the cloud in a phased approach.
- Data migration tools and methodologies are employed to ensure minimal downtime and
data integrity during the migration process.
- The bank leverages automation and orchestration tools to streamline the migration of
complex, interdependent systems.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

4. Testing and Validation:

- XYZ Bank conducts thorough testing and validation of migrated workloads to ensure
functionality, performance, and security in the cloud environment.
- Various testing scenarios, including load testing, security testing, and disaster recovery
testing, are performed to identify and address any issues proactively.

Security Considerations and Challenges:

1. Data Security and Compliance:

- Ensuring the security and compliance of sensitive customer data is a top priority for
XYZ Bank during the migration.
- The bank implements robust encryption, access controls, and data loss prevention (DLP)
mechanisms to protect data both in transit and at rest.
- Compliance with regulatory requirements such as GDPR (General Data Protection
Regulation) and PCI DSS (Payment Card Industry Data Security Standard) is carefully
considered throughout the migration process.

2. Identity and Access Management (IAM):

- Managing user identities and access rights in a cloud environment presents challenges
for XYZ Bank, particularly in ensuring least privilege access and maintaining segregation
of duties.
- The bank adopts IAM solutions provided by the cloud service provider to enforce strong
authentication mechanisms, role-based access controls, and continuous monitoring of
access activities.

3. Network Security:
- Securing network connectivity between on-premises systems and the cloud poses
challenges for XYZ Bank, particularly in ensuring secure communication and preventing
unauthorized access.
- The bank implements virtual private networks (VPNs), firewalls, and intrusion
detection/prevention systems (IDS/IPS) to protect network traffic between on-premises and
cloud environments.

4. Vendor Risk Management:

- XYZ Bank must carefully assess and manage the risks associated with its cloud service
provider, including vendor lock-in, service availability, and data sovereignty concerns.
- The bank establishes clear contractual agreements, service level agreements (SLAs),
and regular audits to monitor and mitigate vendor-related risks effectively.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

PRACTICAL:14
Aim: "Global Company's Hybrid Cloud Strategy"

 Examine a multinational corporation’s use of a hybrid cloud model.

 Analyze how the organization balances data storage, compliance, and efficiency.
Solution:

Global Company's Hybrid Cloud Strategy

Introduction:
In today's digital landscape, multinational corporations face complex challenges related to
data storage, compliance with regulatory requirements, and operational efficiency. To
address these challenges, many organizations adopt a hybrid cloud strategy, leveraging both
public and private cloud resources. In this analysis, we'll examine how a multinational
corporation implements a hybrid cloud model and how it balances data storage,
compliance, and efficiency considerations.

Multinational Corporation Background:

ABC Inc. is a global corporation with operations spanning multiple countries and regions.
With a diverse range of business units and subsidiaries, ABC Inc. manages a vast amount
of data critical to its operations, including customer information, financial data, and
proprietary business applications.

Hybrid Cloud Implementation:

1. Infrastructure Setup:
- ABC Inc. establishes a hybrid cloud environment comprising both on-premises
infrastructure and public cloud services.
- On-premises infrastructure includes data centers and private cloud resources located in
strategic locations worldwide, providing high availability and low-latency access to critical
applications and data.
- Public cloud services, such as Amazon Web Services (AWS), Microsoft Azure, or
Google Cloud Platform (GCP), are utilized for scalability, elasticity, and cost-effective
storage solutions.

2. Data Storage and Management:

- Critical and sensitive data, such as personally identifiable information (PII) and
financial records, are stored in on-premises data centers or private cloud environments to
maintain maximum control and compliance with regulatory requirements.
- Non-sensitive and less-critical data, such as application logs and development/test
environments, are stored in public cloud storage services, leveraging their scalability and
cost-effectiveness.
CLOUD COMPUTING (4360709) ENROLLMENT NO.___________________

3. Compliance Considerations:
- ABC Inc. prioritizes compliance with regulatory requirements governing data privacy,
security, and residency across different regions and jurisdictions.
- For sensitive data subject to regulations such as GDPR (General Data Protection
Regulation) or HIPAA (Health Insurance Portability and Accountability Act), the
organization ensures data sovereignty and compliance by storing data in on-premises or
private cloud environments located within the respective regions.

4. Efficiency and Optimization:

- The hybrid cloud model allows ABC Inc. to optimize resource utilization and costs by
dynamically scaling infrastructure resources based on demand.
- The organization implements cloud management and orchestration tools to automate
provisioning, monitoring, and optimization of hybrid cloud resources, maximizing
operational efficiency and reducing administrative overhead.

Balancing Data Storage, Compliance, and Efficiency:

1. Data Storage:
- ABC Inc. strategically distributes data across on-premises and cloud environments
based on sensitivity, criticality, and performance requirements.
- Sensitive and critical data are stored in on-premises or private cloud environments to
maintain control and compliance, while less-sensitive data are stored in public cloud
services to leverage scalability and cost-effectiveness.

2. Compliance:
- The organization ensures compliance with regulatory requirements by adhering to data
residency and sovereignty regulations and implementing appropriate data protection and
access controls.
- By segregating sensitive data and enforcing encryption and access controls, ABC Inc.
mitigates the risk of data breaches and maintains compliance with industry standards and
regulations.

3. Efficiency:
- ABC Inc. optimizes resource utilization and reduces costs by dynamically allocating
workloads between on-premises and cloud environments based on workload characteristics
and performance requirements.
- The organization leverages cloud-native services and automation tools to streamline
deployment, management, and scaling of hybrid cloud resources, enhancing operational
efficiency and agility.