book

Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

Name: Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)
Author: Michael Kavis
ISBN: 9781118617618

by Michael Kavis

January 2014

Intermediate to advanced

199 pages

6h 14m

English

Wiley

Read now

Unlock full access

Cover
Contents
Title
Copyright
Dedication
Foreword
Preface
Acknowledgments
About the Author
Chapter 1: Why Cloud, Why Now?
Evolution of Cloud ComputingEnter the CloudStart-Up Case Study: Instagram, from Zero to a Billion OvernightEstablished Company Case Study: Netflix, Shifting from On-Premises to the CloudGovernment Case Study: NOAA, E-mail, and Collaboration in the CloudNot-for-Profit Case Study: Obama Campaign, Six-Month Shelf-Life with One Big PeakSummary

Chapter 2: Cloud Service Models
Infrastructure as a ServicePlatform as a ServiceSoftware as a ServiceDeployment ModelsSummary
Chapter 3: Cloud Computing Worst Practices
Avoiding Failure When Moving to the CloudMigrating Applications to the CloudMisguided ExpectationsMisinformed about Cloud SecuritySelecting a Favorite Vendor, Not an Appropriate VendorOutages and Out-of-Business ScenariosUnderestimating the Impacts of Organizational ChangeSkills ShortageMisunderstanding Customer RequirementsUnexpected CostsSummary
Chapter 4: It Starts with Architecture
The Importance of Why, Who, What, Where, When, and HowStart with the Business ArchitectureIdentify the Problem Statement (Why)Evaluate User Characteristics (Who)Identify Business and Technical Requirements (What)Visualize the Service Consumer Experience (Where)Identify the Project Constraints (When and with What)Understand Current State Constraints (How)Summary
Chapter 5: Choosing the Right Cloud Service Model
Considerations When Choosing a Cloud Service ModelWhen to Use SaaSWhen to Use PaaSWhen to Use IaaSCommon Cloud Use CasesSummary
Chapter 6: The Key to the Cloud
Why REST?The Challenges of Migrating Legacy Systems to the CloudSummary
Chapter 7: Auditing in the Cloud
Data and Cloud SecurityAuditing Cloud ApplicationsRegulations in the CloudAudit Design StrategiesSummary
Chapter 8: Data Considerations in the Cloud
Data CharacteristicsMultitenant or Single TenantChoosing Data Store TypesSummary
Chapter 9: Security Design in the Cloud
The Truth about Data in the CloudHow Much Security Is RequiredResponsibilities for Each Cloud Service ModelSecurity StrategiesAreas of FocusSummary
Chapter 10: Creating a Centralized Logging Strategy
Log File UsesLogging RequirementsSummary
Chapter 11: SLA Management
Factors That Impact SLAsDefining SLAsManaging Vendor SLAsSummary
Chapter 12: Monitoring Strategies
Proactive vs. Reactive MonitoringWhat Needs to Be Monitored?Monitoring Strategies by CategoryMonitoring by Cloud Service LevelSummary
Chapter 13: Disaster Recovery Planning
What Is the Cost of Downtime?Disaster Recovery Strategies for IaaSRecovering from a Disaster in the Primary Data CenterDisaster Recovery Strategies for PaaSDisaster Recovery Strategies for SaaSDisaster Recovery Hybrid CloudsSummary
Chapter 14: Leveraging a DevOps Culture to Deliver Software Faster and More Reliably
Developing the DevOps Mind-SetAutomate InfrastructureAutomate DeploymentsDesign Feature FlagsMeasure, Monitor, and ExperimentContinuous Integration and Continuous DeliverySummary
Chapter 15: Assessing the Organizational Impact of the Cloud Model
Enterprise Model vs. Elastic Cloud ModelIT ImpactBusiness ImpactsOrganization Change PlanningChange in the Real WorldSummary
Chapter 16: Final Thoughts
The Cloud Is Evolving RapidlyCloud CultureNew Business ModelsPaaS Is the Game ChangerSummary
Index

Content preview from Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

Chapter 7 Auditing in the Cloud

Two thirds of the earth’s surface is covered with water, the other third is covered with auditors from headquarters.

—Norman R. Augustine

Historically, data has been stored behind corporate firewalls in the control of the company that owns the data. It was up to the company to secure the perimeter, harden the infrastructure, and secure the databases. Auditors could come on-site and inspect the processes and controls to make their assessments. If any government agency wanted to seize any data for an investigation, it had to confront the company before doing so. The bottom line was the company that owned the data was in control. That is not the same as saying the data was secure, but responsibility for securing the data was owned by the company.

Storing the data in the cloud is a different story. Now the company has a shared responsibility with the cloud service provider (CSP) and the further up the cloud stack they go, the more responsibility the CSP takes on. In some respects this is a good thing. Why not let the CSP, whose core competencies include security and compliance, handle some of the heavy lifting around securing and encrypting data, hardening the environment, managing backup and recovery processes, and various other infrastructure-related tasks? Off-loading security and compliance to a CSP does not mean that the company is no longer accountable. It simply means the CSP provides secure and compliant cloud services, but it is still up to ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Learning Amazon Web Services (AWS): A Hands-On Guide to the Fundamentals of AWS Cloud

Publisher Resources

ISBN: 9781118826461Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

by Michael Kavis

Chapter 7

Auditing in the Cloud

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.