Cloud Computing Exam Model Answers

QUESTION 1
a. Describe the evolution of cloud computing and the key factors that contributed to
its development. (10 marks)

Answer:
The evolution of cloud computing is shaped by a series of advancements:

1. Mainframes to Utility Computing – In the early days, organizations owned mainframes.

Eventually, cloud emerged as a utility model—on-demand and scalable.
2. Grid Computing – Promoted distributed computing by aggregating resources across
networks.
3. Web Services & SOA – Enabled software interaction across networks, paving way for
service-based models.
4. Virtualization – Allowed multiple operating systems to run on the same hardware,
boosting resource efficiency.
5. Autonomic & Green Computing – Introduced self-healing and energy-efficient designs.
6. Business Needs – The push for lower operational costs, flexibility, and fast deployment
drove cloud adoption.

b. Describe in detail the various cloud computing platforms. (10 marks)

Answer:
1. Amazon Web Services (AWS) – Offers IaaS (EC2), storage (S3), databases (RDS), and VPC.
Leading in global market share.
2. Google Cloud Platform (GCP) – Offers PaaS via App Engine, supports machine learning
and containerization.
3. Microsoft Azure – Strong integration with Windows and .NET; provides all three service
models.
4. IBM Cloud – Offers hybrid and AI-based services, often preferred for legacy enterprise
systems.
5. Salesforce.com – Primarily SaaS for CRM, also provides Force.com as a PaaS.
6. GoGrid – Focused on IaaS, now defunct but historically known for simplified user
interfaces.

QUESTION 2
a. Describe the major security concerns in cloud computing and how they can be
addressed effectively. (10 marks)

Answer:
Key Security Concerns:
1. Data Breaches
2. Data Loss
3. Insider Threats
4. Insecure APIs
5. Account Hijacking
6. Regulatory Noncompliance

Mitigation Strategies:
- Encryption (in transit and at rest)
- Strong authentication and IAM
- Regular audits and penetration testing
- Use of firewalls and intrusion detection
- Data backup and disaster recovery planning

b. Explain the different benefits of cloud computing, including scalability, cost-

effectiveness, and vendor support. (10 marks)

Answer:
1. Scalability – Easily scale resources up or down based on demand.
2. Cost-effectiveness – Pay-as-you-go model reduces capital expenditure.
3. Flexibility – Users can access services from anywhere.
4. Vendor Support – Major cloud providers offer 24/7 support and automated monitoring
tools.
5. Speed – Quick provisioning of infrastructure boosts time-to-market.
6. Reliability – Cloud systems often have redundancy and failover capabilities.

QUESTION 3
a. Explain the Cloud Delivery Model and its significance in cloud computing. (10
marks)

Answer:
Cloud Delivery Models define how services are delivered:
1. IaaS (Infrastructure as a Service): Offers virtualized computing resources. Example:
Amazon EC2.
2. PaaS (Platform as a Service): Offers platforms for app development. Example: Google App
Engine.
3. SaaS (Software as a Service): Delivers software over the internet. Example: Microsoft 365.

Significance:
- Provides flexibility in choosing service levels
- Reduces infrastructure complexity for users
- Enhances scalability, agility, and innovation
- Shifts maintenance responsibility to providers

b. Compare the Software as a Service (SaaS) model with traditional software

deployment. (10 marks)
Answer:

Aspect SaaS Traditional Deployment

Deployment Online / cloud - based Installed on local machines
Cost Subscription/ pay - per use One - time license + hardware costs
Updates Automatic,handled by provider Manual and periodic
Accessibility Any device, anywhere Limited to local devices
Maintenance Provider's responsibility User/IT team's responsibility

QUESTION 4
a. Compare and contrast the IaaS offerings of Amazon EC2 and GoGrid. (10 marks)

Answer:

Features Amazon EC2 GoGrid

Market share Leading market provider Smaller niche provider

Features Rich ecosystem, autoscaling Simpler interface

Pricing Complex pricing tiers Simpler pricing

Available zone Global Limited

Community Support Vast resources Limited

b. Explain the concept of Thin Client and its role in virtualization. (10 marks)

Answer:
A Thin Client is a lightweight computer that relies on a central server for processing and
storage.

Role in Virtualization:
- Acts as an interface to access virtual desktops or applications hosted on servers.
- Reduces hardware cost and maintenance at the client-side.
- Enhances security, as data is stored centrally.
- Commonly used in Desktop as a Service (DaaS) environments.
QUESTION 5
a. Explain the role of Microsoft Hyper-V, VMware, and VirtualBox in virtualization.
(10 marks)

Answer:

Software Key Features

Hyper - v Windows / Linux Microsoft’s hypervisor; integrated with Windows Server; supports

VMware Industry leader; vSphere for enterprise-grade virtualization

Virtual Box Open-source; best for desktop virtualization; cross-platform

Support for cloud:

- Enable resource pooling
- Isolate applications/OS
- Allow efficient server utilization
- Foundation for IaaS environments

b. Critically evaluate the advantages of cloud computing using at least two examples
of businesses. (10 marks)

Answer:
Example 1: Netflix
- Uses AWS for streaming and scaling
- Handles spikes in demand (e.g., during new releases)

Example 2: Dropbox
- Moved from its own data centers to cloud
- Improved scalability and focus on core service

Advantages:
- Reduces CapEx
- Enables global service delivery
- Accelerates innovation
- Improves disaster recovery and uptime

QUESTION 6
a. Differentiate between Public, Private, Hybrid, and Community clouds. (10 marks)

Answer:
Model Description Use Case

Public Open to general public; managed by providers Startups, SaaS apps

Private Exclusive to one organization Government, banking

Hybrid Mix of public and private Backup, variable workloads

Community Shared by organizations with common interests Healthcare, research institutions

b. Explain the concept of virtualization and its importance in cloud computing. (10
marks)

Answer:
Virtualization is the creation of virtual versions of hardware, OS, storage, etc.

Importance:
- Resource Efficiency – Multiple VMs on one server.
- Isolation – Each VM operates independently.
- Scalability – Resources can be scaled as needed.
- Cost Saving – Reduces physical infrastructure needs.

Virtualization is the foundation of IaaS and essential to modern cloud infrastructure.

QUESTION 7

a. Describe cloud application development challenges and how security concerns can
be addressed in cloud-based software development. (10 marks)

Answer:
Cloud-based application development offers scalability and agility, but also presents unique
challenges:

Challenges:

1. Data Security and Privacy – Ensuring sensitive data is secure in transit and at rest.

2. Multi-tenancy – Sharing resources among multiple users raises concerns over isolation
and data leakage.

3. Latency and Bandwidth – Applications may experience delays due to network constraints.

4. Integration Complexity – Difficulties in integrating legacy systems or third-party APIs.

5. Compliance and Legal Issues – Developers must ensure apps comply with regulations
(e.g., GDPR, HIPAA).

6. Testing and Debugging in Distributed Environments – Tracking bugs in multi-node,

cloud-native apps can be difficult.

7. Vendor Lock-in – Applications tightly coupled to one cloud provider’s services can be
hard to migrate.

Security Solutions:

Implement encryption protocols (TLS, AES) for data transmission and storage.

Use Identity and Access Management (IAM) to define user roles and restrict access.

Employ DevSecOps practices, integrating security checks throughout the development

lifecycle.

Secure APIs with OAuth 2.0 and input validation.

Perform regular vulnerability scans and penetration testing.

Utilize cloud-native firewalls, Web Application Firewalls (WAF), and DDoS protection.

b. Discuss in detail about the cloud security threats. (10 marks)

Answer:

Cloud security threats refer to vulnerabilities and risks that can compromise the integrity,
confidentiality, and availability of cloud-based systems. Key threats include:

1. Data Breaches

Unauthorized access to sensitive data due to weak security measures or misconfigurations.

2. Data Loss

Caused by accidental deletion, disasters, or malicious attacks (e.g., ransomware).

3. Insecure Interfaces and APIs

Poorly secured APIs can be exploited by attackers to manipulate cloud services.

4. Denial of Service (DoS) Attacks

Overwhelm services, making them unavailable to legitimate users.

5. Insider Threats

Malicious actions by employees or contractors who have access to cloud systems.

6. Account Hijacking

Attackers use phishing, credential theft, or brute force to gain unauthorized access.
7. Lack of Visibility and Control

Especially in multi-cloud environments, organizations may not fully understand where their
data resides.

8. Misconfiguration

A leading cause of breaches—includes leaving storage buckets or VMs publicly accessible.

Mitigation Measures:

Use security monitoring tools (e.g., AWS CloudTrail, Azure Security Center).

Enforce strong password policies and multi-factor authentication.

Apply least privilege access and periodic audits.

Conduct employee training on phishing and social engineering.

Regularly update and patch systems.