Logical Model

At a high level, both cloud and traditional computing adhere to a logical model that helps identify different layers based on functionality. This is useful to illustrate the differences between the different computing models themselves:
  • Infrastructure: The core components of a computing system: compute, network, and storage. The foundation that every else is built on. The moving parts.
  • Metastructure: The protocols and mechanisms that provide the interface between the infrastructure layer and the other layers. The glue that ties the technologies and enables management and configuration.
  • Infostructure: The data and information. Content in a database, file storage, etc.
  • Applistructure: The applications deployed in the cloud and the underlying application services used to build them. For example, Platform as a Service features like message queues, artificial intelligence analysis, or notification services.
Cloud Logical Model
Different security focuses map to the different logical layers. Application security maps to applistructure, data security to infostructure, and infrastructure security to infrastructure.
The key difference between cloud and traditional computing is the metastructure. Cloud metastructure includes the management plane components, which are network enabled and remotely accessible. Another key difference is that, in cloud, you tend to double up on each layer. Infrastructure, for example, includes both the infrastructure used to create the cloud as well as the virtual infrastructure used and managed by the cloud consumer. In private cloud, the same organization might need to manage both; in public cloud the provider manages the physical infrastructure while the consumer manages their portion of the virtual infrastructure.
As we will discuss later this has profound implications on who is responsible for, and manages, security.
These layers tend to map to different teams, disciplines, and technologies commonly found in IT organizations. While the most obvious and immediate security management differences are in metastructure, cloud differs extensively from traditional computing within each layer. The scale of the differences will depend not only on the cloud platform, but on how exactly the cloud consumer utilizes the platform.
For example, a cloud-native application that makes heavy utilization of a cloud provider's PaaS products will experience more applistructure differences than the migration of an existing application, with minimal changes, to Infrastructure as a Service.

Comments

Post a Comment

Popular posts from this blog

Characteristics of Cloud Computing

Described as: On-demand computing, pay as you go, software as a service, utility computing Usually costs, but cost-effective Emphasizes availability Virtualization Scalable (expand on current hardware) Elastic (dynamically add hardware as needed by application/user) Distributed and highly parallel approach Replication, replication, replication. On-demand self service: Cloud computing resources can be provisioned on-demand by the users, without requiring interactions with the cloud service provider.   The process of provisioning resources is automated. Broad network access: Cloud computing resources can be accessed over the network using standard access mechanisms that provide platform-independent access through the use of heterogeneous client platforms such as workstations, laptops, tablets and smartphones. Resource pooling: The computing and storage resources provided by cloud service providers are pooled to serve multiple users using multi-tenancy. Multi-tenant aspects o
Read more

Cloud Architectures

Image
Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. cloud computing customers do not own the physical infrastructure. Cloud computing users avoid capital expenditure ( CapEx ) on hardware, software, and services when they pay a provider only for what they use. Low shared infrastructure and costs, low management overhead, and immediate access to a broad range of applications
Read more