Облачные вычисления (Cloud)
Облачные провайдеры, такие как Amazon Web Services (AWS), Microsoft Azure и Google Cloud Platform (GCP), владеют глобальными сетями дата-центров. Эти центры располагаются в различных географических зонах для обеспечения отказоустойчивости и уменьшения задержек.
Облачные вычисления обычно связываются с использованием компьютерных ресурсов через интернет и предоставляются в виде сервиса провайдером облачных услуг (CSP). Они сравнимы с электросетью и поставкой электроэнергии. Компьютерные ресурсы размещаются в определенных географических местоположениях и доступны для пользователей через стандартный интерфейс. Как и с электричеством, пользователи платят только за фактически использованные ресурсы.
“a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (such as networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.” NIST SP 800-145
Облачные вычисления представляют собой масштабируемый, гибкий и простой в использовании «утилитарный» подход к предоставлению и развертыванию информационных технологических (ИТ) услуг. В соответствии с определением, предложенным Национальным институтом стандартов и технологий (NIST), облачные вычисления обеспечивают всеобщий, удобный и по запросу доступ к общему пулу конфигурируемых компьютерных ресурсов, таких как сети, серверы, хранилища, приложения и услуги. Эти ресурсы могут быть быстро предоставлены и освобождены с минимальными затратами на управление или взаимодействие с поставщиком услуг.
Таким образом, облачные вычисления представляют собой удобную и эффективную модель предоставления ИТ-ресурсов, которая позволяет пользователям гибко масштабировать свои потребности в вычислительных ресурсах, платить только за использованные ресурсы и не заморачиваться на управлении инфраструктурой. Эта модель стала широко распространенной и получила признание как эффективный и экономичный способ использования ресурсов ИТ.
Cloud-based assets include any resources that an organization accesses using cloud computing. Cloud computing refers to on-demand access to computing resources available from almost anywhere, and cloud computing resources are highly available and easily scalable. Organizations typically lease cloud-based resources from outside the organization. Cloud computing has many benefits for organizations, which include but are not limited to:
- Usage is metered and priced according to units (or instances) consumed. This can also be billed back to specific departments or functions.
- Reduced cost of ownership. There is no need to buy any assets for everyday use, no loss of asset value over time and a reduction of other related costs of maintenance and support.
- Reduced energy and cooling costs, along with “green IT” environment effect with optimum use of IT resources and systems.
- Allows an enterprise to scale up new software or data-based services/solutions through cloud systems quickly and without having to install massive hardware locally.
Cloud service providers
Cloud service providers (CSPs) are companies that offer cloud computing services to businesses and individuals. These services may include hosting applications and data, storing and managing data, providing infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS). CSPs may also offer security services, backup and recovery, and other services related to cloud computing. Examples of CSPs include Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform, and IBM Cloud.
Cloud
Cloud-based apps used federated identify management (FIM) systems, which are a form of SSO
Cloud-based federation typically uses a third-party service to hsare federated identities (e.g. training sites use federated SSO systems)
commonly matching the user’s internal login ID with a federated identify
Service Models
Some cloud-based services only provide data storage and access. When storing data in the cloud, organizations must ensure that security controls are in place to prevent unauthorized access to the data.
There are varying levels of responsibility for assets depending on the service model. This includes maintaining the assets, ensuring they remain functional, and keeping the systems and applications up to date with current patches. In some cases, the cloud service provider is responsible for these steps. In other cases, the consumer is responsible for these steps.
Types of cloud computing service models include Software as a Service (SaaS) , Platform as a Service (PaaS) and Infrastructure as a Service (IaaS).
Cloud models
Cloud computing has become an increasingly popular method of delivering IT resources and services over the internet. There are several cloud service models that organizations can use, each with their own set of characteristics and considerations.
Infrastructure as a Service (IaaS)
Infrastructure as a Service (IaaS) – это как аренда пустого помещения, где вы сами решаете, что и как разместить. В Yandex Cloud это означает, что вы арендуете виртуальные серверы. Подобно тому, как вы решаете, где поставить столы и стулья в арендованном помещении, вы можете разместить виртуальные серверы в облаке для хостинга своего веб-сайта, мобильного приложения или других приложений.
Инфраструктура как сервис (IaaS)
- IaaS предоставляет виртуализированные серверы и другие инфраструктурные ресурсы.
- Пользователи могут выбирать и настраивать инфраструктуру, такую как серверы, хранилище и сети, по своим требованиям.
- Примеры IaaS включают в себя Amazon Web Services (AWS), Microsoft Azure и Google Cloud Platform (GCP).
Infrastructure as a Service (IaaS): A cloud provides network access to traditional computing resources such as processing power and storage. IaaS models provide basic computing resources to consumers. This includes servers, storage, and in some cases, networking resources. Consumers install operating systems and applications and perform all required maintenance on the operating systems and applications. Although the consumer has use of the related equipment, the cloud service provider retains ownership and is ultimately responsible for hosting, running and maintenance of the hardware. IaaS is also referred to as hardware as a service by some customers and providers. IaaS has a number of benefits for organizations, which include but are not limited to: Ability to scale up and down infrastructure services based on actual usage. This is particularly useful and beneficial where there are significant spikes and dips within the usage curve for infrastructure. Retain system control at the operating system level.
Platform as a Service (PaaS)
Platform as a Service (PaaS) – это уже как аренда кафе, где вам не нужно беспокоиться о том, как организовать кухню и сервировать столы. Например, в Yandex Cloud управляемые базы данных – это как готовое кафе с готовыми блюдами. Вы не заботитесь о том, как установить базу данных на виртуальной машине; просто выбираете нужный размер базы данных с автоматическим резервным копированием и другими удобствами.
Платформа как сервис (PaaS)
- PaaS предоставляет платформу для разработки и развертывания приложений.
- Он предоставляет разработчикам инструменты и среду для создания и запуска приложений, не заботясь о управлении инфраструктурой.
- Примеры PaaS включают в себя Heroku, Google App Engine и Microsoft Azure.
Platform as a Service (PaaS): A cloud provides an environment for customers to use to build and operate their own software. PaaS is a way for customers to rent hardware, operating systems, storage and network capacity over the internet from a cloud service provider. The service delivery model allows customers to rent virtualized servers and associated services for running existing applications or developing and testing new ones. The consumer does not manage or control the underlying cloud infrastructure, including network, servers, operating systems or storage, but has control over the deployed applications and possibly application-hosting environment configurations. A PaaS cloud provides a toolkit for conveniently developing, deploying and administering application software that is structured to support large numbers of consumers, process very large quantities of data and potentially be accessed from any point on the internet. PaaS clouds will typically provide a set of software building blocks and a set of development tools such as programming languages and supporting run-time environments that facilitate the construction of high-quality, scalable applications. Additionally, PaaS clouds will typically provide tools that assist with the deployment of new applications. In some cases, deploying a new software application in a PaaS cloud is not much more difficult than uploading a file to a web server. PaaS clouds will also generally provide and maintain the computing resources (e.g., processing, storage and networking) that consumer applications need to operate. PaaS clouds provide many benefits for developers, including that the operating system can be changed and upgraded frequently, along with associated features and system services.
Software as a Service (SaaS):
In this model, cloud service providers deliver fully functional software applications over the internet. SaaS applications are typically accessible via a web browser or a mobile app, and are managed by the provider.
Программное обеспечение как сервис (SaaS)
Software as a Service (SaaS) – это как подписка на готовый обед, который приносят вам прямо под дверь. В Yandex Cloud примером SaaS может быть GitLab – система для совместного управления кодом. Вы просто оплачиваете за использование этого инструмента, не беспокоясь о его установке, администрировании или обновлениях. Это подобно тому, как вы оплачиваете за готовый продукт, в данном случае – удобный сервис для работы с кодом.
SaaS предоставляет программное обеспечение как услугу.
Пользователи могут получать доступ к приложениям и сервисам через интернет, без необходимости установки и поддержки программного обеспечения на своем устройстве.
Примеры SaaS включают в себя Microsoft Office 365, Google Workspace и CRM системы, такие как Salesforce.
Software as a Service (SaaS): A cloud provides access to software applications such as email or office productivity tools. SaaS is a distributed model where software applications are hosted by a vendor or cloud service provider and made available to customers over network resources. SaaS is a widely used and adopted form of cloud computing, with users most often needing an internet connection and access credentials to have full use of the cloud service, application and data. SaaS has many benefits for organizations, which include but are not limited to: Ease of use and limited/minimal administration. Automatic updates and patch management. The user will always be running the latest version and most up-to-date deployment of the software release, as well as any relevant security updates, with no manual patching required. Standardization and compatibility. All users will have the same version of the software release.
Anything as a Service (XaaS): This model refers to the delivery of any kind of IT service over the internet. This includes services like security as a service, data as a service, and network as a service.
Cloud services can also be categorized based on their deployment models:
Public cloud: Public cloud services are hosted by third-party providers and can be accessed by anyone with an internet connection. Public cloud services are typically delivered over a pay-as-you-go model, where customers only pay for the resources they use.
Community cloud: Community clouds are shared by several organizations with common computing requirements. This deployment model enables organizations to benefit from the advantages of cloud computing while retaining control over their data and applications.
Private cloud: Private clouds are dedicated to a single organization and are typically hosted on-premises or in a data center. Private clouds offer greater control and security, but require significant upfront investment.
Hybrid cloud: Hybrid clouds are a combination of two or more cloud deployment models (public, private, or community) that remain separate entities but are integrated to provide a cohesive infrastructure. Hybrid clouds enable organizations to take advantage of the benefits of both public and private clouds.