Information Technology /Security+ (SY0-701): Lesson 6: Secure Cloud Part 1
Security+ (SY0-701): Lesson 6: Secure Cloud Part 1
This deck covers key concepts related to cloud deployment models, service models, architectures, and vendor management in cloud computing.
Define a ‘cloud deployment model’
Classifying the ownership and management of a cloud as public, private, community, or hybrid.
Tap or swipe ↕ to flip
Swipe ←→Navigate
SSpeak
FFocus
1/40
Key Terms
Term
Definition
Define a ‘cloud deployment model’
Classifying the ownership and management of a cloud as public, private, community, or hybrid.
Define a ‘Public (or multi-tenant)’ cloud model
A cloud that is deployed by cloud service providers (CSPs) for shared use by multiple independent tenants; Subscriptions or pay-as-you-go financing.
Define ‘Multi-cloud architecture’
Cloud deployment model where the cloud consumer uses multiple public cloud services.
Define a ‘Hosted Private’ cloud model
Hosted by a third party for the exclusive use of an organization.
Define a ‘Private’ cloud model
A cloud that is deployed for use by a single entity.
Define a ‘Community’ cloud model
A cloud that is deployed for shared use by cooperating tenants/organizations.
Related Flashcard Decks
Study Tips
- Press F to enter focus mode for distraction-free studying
- Review cards regularly to improve retention
- Try to recall the answer before flipping the card
- Share this deck with friends to study together
| Term | Definition |
|---|---|
Define a ‘cloud deployment model’ | Classifying the ownership and management of a cloud as public, private, community, or hybrid. |
Define a ‘Public (or multi-tenant)’ cloud model | A cloud that is deployed by cloud service providers (CSPs) for shared use by multiple independent tenants; Subscriptions or pay-as-you-go financing. |
Define ‘Multi-cloud architecture’ | Cloud deployment model where the cloud consumer uses multiple public cloud services. |
Define a ‘Hosted Private’ cloud model | Hosted by a third party for the exclusive use of an organization. |
Define a ‘Private’ cloud model | A cloud that is deployed for use by a single entity. |
Define a ‘Community’ cloud model | A cloud that is deployed for shared use by cooperating tenants/organizations. |
Define ‘Single-tenant architecture’ | Dedicated infrastructure to a single customer, ensuring that only that customer can access the infrastructure; More secure but most expensive. |
Define ‘Multi-tenant architecture’ | Multiple customers share the same infrastructure, with each customer’s data and applications separated logically from other customers. |
What are positives/negatives of Multi-tenant architecture? | Cost-effective but can increase the risk of unauthorized access or data leakage if not properly secured. |
Define ‘Hybrid architecture’ | Combination of public and private cloud. |
Define ‘Serverless architecture’ | Cloud provider manages the server infrastructure and automatically scales resources up or down based on demand. |
Define a ‘Cloud service model’ | Classifying the provisioning of cloud services and the limit of the cloud service provider’s responsibility as software, platform, infrastructure, and so on. |
Define ‘anything as a service (XaaS)’ | The concept that most types of IT requirements can be deployed as a cloud service model. |
Define ‘Software as a service (SaaS)’ | A cloud service model that provisions fully developed application services to users; O365, Salesforce; RingCentral. |
Define ‘Platform as a service (PaaS)’ | Between SaaS and IaaS; Cloud service model that provisions application and database services as a platform for development of apps. |
Define ‘Infrastructure as a service (IaaS)’ | A cloud service model that provisions virtual machines and network infrastructure. |
Define a ‘Third-party vendor’ | External entities that provide organizations with goods, services, or technology solutions. |
How do organizations manage 3rd party vendor (CSP) agreements? | By adopting SLAs (Service Level Agreements) to mitigate cloud platform risks, ensure service quality, and optimize cloud deployments. |
Define a ‘Service Level Agreement (SLA)’ | Contractual agreement between organizations and service providers that outline the expected levels of service delivery. |
What is the purpose of a Service-level agreement (SLA)? | Provide a framework to hold vendors accountable for delivering services at required performance levels. |
What components of Service-level agreements (SLAs) determine service levels? | Metrics, such as uptime, performance, and support response times, along with penalties or remedies if service levels are not met. |
Define ‘Centralized computing architecture’ | A model where all data processing and storage is performed in a single location, typically a single server. |
Define ‘decentralized computing architecture’ | A model in which data processing and storage are distributed across multiple locations or devices. |
What are examples of Centralized computing architecture? | Mainframe computers and client-server architectures. |
What are examples of decentralized computing architecture? | Blockchain, Peer-to-peer (P2P) networks, Content delivery networks (CDNs), IoT devices, Tor, Distributed databases. |
What is the foundation of cloud services? | Virtualization |
Define 'high availability (HA)' | Metric that defines how closely systems approach the goal of providing service/data availability 100% of the time while maintaining a high level of system performance. |
How is high high availability (HA) achieved? | Redundancy of hardware/links; Replication |
Define 'Replication' | Automatically copying data between two processing systems. |
Define 'synchronous replication' | Data is copied from one system to another simultaneously. |
Define 'asynchronous replication' | Data is copied from a primary system to a secondary system. |
Define 'hot storage' | CSP storage performance tier; Data is retrieved quickly at a high rate. |
Define 'cold storage' | CSP data storage performance tier where data is retrieved at a slower at a rate. |
What is the best replication solution for a cloud database? | Low-latency hot storage with synchronous replication. |
How can an organization provide a lower latency service to customers utilizing a cloud service? | Provisioning resources in multiple availability zones and regions. |
List the 3 cloud service provider replication tiers |
|
Define 'local replication' | Replicates customer data within a single datacenter in the region where you created your storage account. |
Define 'Regional replication/zone-redundant storage' | Replicates customer data across multiple datacenters within one or two regions. |
Define 'Geo-redundant storage (GRS)' | Replicates customer data to a secondary region that is distant from the primary region. |
Define 'Application virtualization' | A software delivery model where the code/application runs on a server and is streamed to a client. |