KCS713 Unit 3 Lecture 3
KCS713 Unit 3 Lecture 3
KCS713 Unit 3 Lecture 3
1. Cloud consumer interacts with the cloud broker instead of contacting a cloud
provider directly.
2. The cloud broker may create a new service (mash up) by combining
multiple services or by enhancing an existing service.
3. Actual cloud providers are invisible to the cloud consumer.
1. Cloud carriers provide the connectivity and transport of cloud services from cloud providers to
cloud consumers.
2. Cloud provider participates in and arranges for two unique service level agreements (SLAs), one
with a cloud carrier (e.g. SLA2) and one with a cloud consumer (e.g. SLA1).
3. A cloud provider may request cloud carrier to provide dedicated and encrypted connections to
ensure the cloud services (SLA’s).
1. Cloud auditor conducts independent assessments for the operation and security of the cloud
service.
2. The audit may involve interactions with both the Cloud Consumer and the Cloud Provider.
• Cloud consumers need SLAs to specify the technical performance requirements fulfilled by a
cloud provider.
• SLAs cover the quality of service, security, remedies for performance failures.
• A cloud provider list some SLAs that limit and obligate the cloud consumers by must acceptance.
• Cloud consumer can freely choose a cloud provider with better pricing with favorable
conditions.
• Pricing policy and SLAs are non-negotiable.
Cloud Consumer
SaaS consumers
• SaaS consumers can be organizations that provide their members with access to
software applications, end users who directly use software applications, or
software application administrators who configure applications for end users.
• SaaS consumers can be billed based on the number of end users, the time of
use, the network bandwidth consumed, the amount of data stored or duration
of stored data.
PaaS consumers
• PaaS consumers can be application developers or administrators
• SaaS provider deploys, configures, maintains and updates the operation of the software applications
on a cloud infrastructure. SaaS provider maintains the expected service levels to cloud consumers.
• PaaS Provider manages the computing infrastructure for the platform and components (runtime
software execution stack, databases, and other middleware).
• IaaS Cloud Provider provides physical hardware and cloud software that makes the provisioning of
these infrastructure services, for example, the physical servers, network equipments, storage devices,
host OS and hypervisors for virtualization.
Cloud Provider
• Security auditing, can make an assessment of the security controls to determine the extent to
which the controls are implemented correctly, operating as intended, and producing the desired
outcome.This is done by verification of the compliance with regulation and security policy.
• Privacy audit helps in Federal agencies comply with applicable privacy laws and regulations
governing an individual's privacy, and to ensure confidentiality, integrity, and availability of an
individual's personal information at every stage of development and operation.
Cloud Broker
• Integration of cloud services can be complex for consumers. Hence cloud broker, is needed.
• Broker manages the use, performance and delivery of cloud services and negotiates relationships
between cloud providers and cloud consumers.
• In general, a cloud broker can provide services in three categories:
• Service Intermediation: Broker enhances a service by improving capability and providing value-
added services to consumers.The improvement can be managing access to cloud services, identity
management, performance reporting, enhanced security, etc.
• Service Aggregation: Broker combines and integrates multiple services into one or more new
services.The broker provides data integration and ensures the secure data movement.
• Service Arbitrage: It is similar to service aggregation with the flexibility to choose services from
multiple agencies. For example, broker can select service with the best response time.
Cloud Carrier
• Cloud carriers provide access to consumers through network, telecommunication and other access devices.
• For example, cloud consumers can obtain cloud services through network access devices, such as computers,
laptops, mobile phones, mobile internet devices (MIDs), etc.
• The distribution of cloud services is normally provided by network and telecommunication carriers or a transport
agent, where a transport agent refers to a business organization that provides physical transport of storage media
such as high-capacity hard drives.
• Cloud provider can set up SLAs with a cloud carrier to provide services consistent with the level of SLAs
offered to cloud consumers.
Scope of Control between Provider and Consumer
• Application layer are used by SaaS consumers, or installed/managed/ maintained by PaaS
consumers, IaaS consumers, and SaaS providers.
• Middleware is used by PaaS consumers, installed/managed/maintained by IaaS consumers
or PaaS providers. Middleware is hidden from SaaS consumers.
• IaaS layer is hidden from SaaS consumers and PaaS consumers.
• Consumers have freedom to choose OS to be hosted.
Cloud Service Models
SPI Model
• Cloud Software as a Service (SaaS)
• Cloud Platform as a Service (PaaS)
• Cloud Infrastructure as a Service (IaaS)
Infrastructure as a Service (IaaS)
• The capability provided to the consumer is to provision processing, storage, networks, and other
fundamental computing resources.
• Consumer is able to deploy and run arbitrary software, which can include operating systems and
applications.
• The consumer does not manage or control the underlying cloud infrastructure but has control over
operating systems, storage, deployed applications, and possibly limited control of select networking
components (e.g., host firewalls).
Platform as a Service (PaaS)
The capability provided to the consumer is to deploy onto the cloud infrastructure
consumer created or acquired applications created using programming languages and
tools supported by the provider.
The consumer does not manage or control the underlying cloud infrastructure including
network, servers, operating systems, or storage, but has control over the deployed
applications and possibly application hosting environment configurations.
Software as a Service (SaaS)
The capability provided to the consumer is to use the provider’s applications running on a cloud
infrastructure.
The applications are accessible from various client devices through a thin client interface such as
a web browser (e.g., web-based email).
The consumer does not manage or control the underlying cloud infrastructure including
network, servers, operating systems, storage, or even individual application capabilities, with the
possible exception of limited userspecific application configuration settings.
• Software as a service (or SaaS) is a way of delivering applications over the Internet—as a service. Instead of
installing and maintaining software, you simply access it via the Internet, freeing yourself from complex
software and hardware management.
• SaaS customers have no hardware or software to buy, install, maintain, or update. Access to applications is
easy: You just need an Internet connection.
• By using SaaS, you get:
• Multitenant Architecture
• Easy Customization
• Easy Access
• Harnesses the consumer web
Important Questions