book

Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

Name: Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)
Author: Michael Kavis
ISBN: 9781118617618

by Michael Kavis

January 2014

Intermediate to advanced

199 pages

6h 14m

English

Wiley

Read now

Unlock full access

Cover
Contents
Title
Copyright
Dedication
Foreword
Preface
Acknowledgments
About the Author
Chapter 1: Why Cloud, Why Now?
Evolution of Cloud ComputingEnter the CloudStart-Up Case Study: Instagram, from Zero to a Billion OvernightEstablished Company Case Study: Netflix, Shifting from On-Premises to the CloudGovernment Case Study: NOAA, E-mail, and Collaboration in the CloudNot-for-Profit Case Study: Obama Campaign, Six-Month Shelf-Life with One Big PeakSummary

Chapter 2: Cloud Service Models
Infrastructure as a ServicePlatform as a ServiceSoftware as a ServiceDeployment ModelsSummary
Chapter 3: Cloud Computing Worst Practices
Avoiding Failure When Moving to the CloudMigrating Applications to the CloudMisguided ExpectationsMisinformed about Cloud SecuritySelecting a Favorite Vendor, Not an Appropriate VendorOutages and Out-of-Business ScenariosUnderestimating the Impacts of Organizational ChangeSkills ShortageMisunderstanding Customer RequirementsUnexpected CostsSummary
Chapter 4: It Starts with Architecture
The Importance of Why, Who, What, Where, When, and HowStart with the Business ArchitectureIdentify the Problem Statement (Why)Evaluate User Characteristics (Who)Identify Business and Technical Requirements (What)Visualize the Service Consumer Experience (Where)Identify the Project Constraints (When and with What)Understand Current State Constraints (How)Summary
Chapter 5: Choosing the Right Cloud Service Model
Considerations When Choosing a Cloud Service ModelWhen to Use SaaSWhen to Use PaaSWhen to Use IaaSCommon Cloud Use CasesSummary
Chapter 6: The Key to the Cloud
Why REST?The Challenges of Migrating Legacy Systems to the CloudSummary
Chapter 7: Auditing in the Cloud
Data and Cloud SecurityAuditing Cloud ApplicationsRegulations in the CloudAudit Design StrategiesSummary
Chapter 8: Data Considerations in the Cloud
Data CharacteristicsMultitenant or Single TenantChoosing Data Store TypesSummary
Chapter 9: Security Design in the Cloud
The Truth about Data in the CloudHow Much Security Is RequiredResponsibilities for Each Cloud Service ModelSecurity StrategiesAreas of FocusSummary
Chapter 10: Creating a Centralized Logging Strategy
Log File UsesLogging RequirementsSummary
Chapter 11: SLA Management
Factors That Impact SLAsDefining SLAsManaging Vendor SLAsSummary
Chapter 12: Monitoring Strategies
Proactive vs. Reactive MonitoringWhat Needs to Be Monitored?Monitoring Strategies by CategoryMonitoring by Cloud Service LevelSummary
Chapter 13: Disaster Recovery Planning
What Is the Cost of Downtime?Disaster Recovery Strategies for IaaSRecovering from a Disaster in the Primary Data CenterDisaster Recovery Strategies for PaaSDisaster Recovery Strategies for SaaSDisaster Recovery Hybrid CloudsSummary
Chapter 14: Leveraging a DevOps Culture to Deliver Software Faster and More Reliably
Developing the DevOps Mind-SetAutomate InfrastructureAutomate DeploymentsDesign Feature FlagsMeasure, Monitor, and ExperimentContinuous Integration and Continuous DeliverySummary
Chapter 15: Assessing the Organizational Impact of the Cloud Model
Enterprise Model vs. Elastic Cloud ModelIT ImpactBusiness ImpactsOrganization Change PlanningChange in the Real WorldSummary
Chapter 16: Final Thoughts
The Cloud Is Evolving RapidlyCloud CultureNew Business ModelsPaaS Is the Game ChangerSummary
Index

Content preview from Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

Chapter 9 Security Design in the Cloud

The only truly secure system is one that is powered off, cast in a block of concrete, and sealed in a lead-lined room with armed guards.

—Gene Spafford, professor, Purdue University

Prior to cloud computing, buyers of commercial software products did not demand the level of security from vendors that they do today. Software that was purchased and installed locally within the enterprise provided various security features for the buyer to configure in order to secure the application. The vendors would make it easy to integrate with enterprise security data stores such as Active Directory and provide single sign-on (SSO) capabilities and other features so that buyers could configure the software to meet their security requirements. These commercial software products were run within the buyer’s perimeter behind the corporate firewall. With cloud computing, vendors have a greater responsibility to secure the software on behalf of the cloud consumers. Since consumers are giving up control and often allowing their data to live outside of their firewall, they are now requiring that the vendors comply with various regulations. Building enterprise software in the cloud today requires a heavy focus on security. This is a welcome change for those of us who have been waving the red flag the past several years about the lack of focus on application security in the enterprise. There is a common myth that critical data in the cloud cannot be secure. The reality ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Learning Amazon Web Services (AWS): A Hands-On Guide to the Fundamentals of AWS Cloud

Publisher Resources

ISBN: 9781118826461Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS)

by Michael Kavis

Chapter 9

Security Design in the Cloud

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.