Questions and Answers
What is the main focus of scalability in cloud environments?
What does vertical scaling involve?
How does horizontal scaling work in cloud environments?
What is the relationship between elasticity and scalability?
Signup and view all the answers
What does measured service refer to in cloud computing?
Signup and view all the answers
What provides tremendous agility and flexibility in utilizing cloud resources?
Signup and view all the answers
Which of the following actions is part of vertical scaling?
Signup and view all the answers
What happens when a website experiences a burst in activity in an elastic cloud environment?
Signup and view all the answers
What is a key responsibility of the SaaS provider in a cloud environment?
Signup and view all the answers
Why is it important to document the division of responsibilities for cybersecurity?
Signup and view all the answers
What does the Cloud Controls Matrix (CCM) help organizations with?
Signup and view all the answers
Which organization published a high-level taxonomy for cloud services?
Signup and view all the answers
What is a major benefit of utilizing the Cloud Reference Architecture?
Signup and view all the answers
Which compliance standard requires organizations to document specific controls alongside cloud providers?
Signup and view all the answers
What is the primary focus of the Cloud Security Alliance (CSA)?
Signup and view all the answers
Which statement about shared control in a SaaS environment is true?
Signup and view all the answers
What is a primary limitation of API-based CASBs?
Signup and view all the answers
What does implementing resource policies help to mitigate?
Signup and view all the answers
Which action is specifically denied by the sample service control policy?
Signup and view all the answers
What is the effect of the statement with the Sid 'DenyAllOutsideUSEastEUWest1'?
Signup and view all the answers
Which of the following regions is NOT permitted under the policy's conditions?
Signup and view all the answers
What does the 'Effect' property in the policy specify?
Signup and view all the answers
Which of the following conditions restricts the instance types that can be used?
Signup and view all the answers
Which of the following services is included in the NotAction list of the policy?
Signup and view all the answers
What is the primary function of block storage?
Signup and view all the answers
How does AWS Elastic Block Storage (EBS) charge for storage?
Signup and view all the answers
Which of the following statements about object storage is true?
Signup and view all the answers
What is a significant cost difference between block storage and object storage?
Signup and view all the answers
What is one critical security consideration when working with object storage?
Signup and view all the answers
What does AWS Simple Storage Service (S3) primarily offer?
Signup and view all the answers
Which method does block storage use for data allocation?
Signup and view all the answers
What might happen if access policies are not set correctly in object storage?
Signup and view all the answers
What should cloud customers primarily focus on from a storage perspective?
Signup and view all the answers
Which strategy would best ensure high availability in a cloud environment?
Signup and view all the answers
What is a key design consideration for virtual networks in a cloud environment?
Signup and view all the answers
What does the term 'elasticity' refer to in a cloud environment?
Signup and view all the answers
From a compute perspective, what is essential for maintaining instance security?
Signup and view all the answers
In a Type I hypervisor environment providing IaaS, which security control is least applicable?
Signup and view all the answers
What is an important factor when designing resilient cloud implementations?
Signup and view all the answers
What action should cloud customers take regarding permissions?
Signup and view all the answers
Study Notes
Cloud Scalability and Elasticity
- Scalability allows cloud providers to adjust resources transparently, enhancing performance based on demand.
- Vertical scaling increases server capacity by adding CPU cores or memory, enabling quick resource upgrades.
- Horizontal scaling involves adding more servers to a cluster to manage increased user load, enhancing system capacity gradually.
Elasticity vs. Scalability
- Elasticity enables automatic adjustment of resources, allowing expansion during high demand and contraction when the demand reduces.
- Scalability focuses on increasing capacity quickly, while elasticity optimizes costs associated with resource usage.
Measured Service
- Cloud providers track user resource consumption (e.g., processing time, storage use, log entries).
- Charges are based on actual usage, ensuring customers only pay for what they use.
Agility and Flexibility
- Rapid provisioning of cloud resources grants organizations flexibility to meet short-term demands.
- Customers retain some control over data and access configurations, while providers manage operational and cybersecurity tasks.
Cybersecurity Responsibilities
- Clear documentation of cybersecurity responsibilities is crucial for compliance with regulations like PCI DSS.
- Cloud providers often have resources detailing controls for compliance with various standards.
Cloud Standards and Guidelines
- NIST’s Cloud Reference Architecture offers a comprehensive taxonomy for understanding cloud services and their roles.
- The Cloud Security Alliance (CSA) promotes best practices in cloud security and has developed the Cloud Controls Matrix to assist organizations.
Storage Types
- Block Storage: Allocates large volumes for virtual servers, functioning like physical drives. Example: AWS Elastic Block Storage (EBS). Customers pay for allocated capacity.
- Object Storage: Allows file storage in buckets, treating files as independent entities. Example: AWS Simple Storage Service (S3). Customers pay for actual storage used.
Cost Comparison
- Block storage costs are typically 3 to 10 times higher than object storage as block storage is preallocated.
Security Considerations for Cloud Storage
- Properly set permissions to prevent unauthorized access, especially in object storage where misconfigurations can lead to data exposure.
- API-based Cloud Access Security Brokers (CASBs) monitor but may have limitations in blocking policy violations upfront.
Resource Policies
- Cloud providers offer resource policies to limit user actions, enhancing security. For example, a JSON policy can restrict access to specific regions and instance types.
- Appropriate security controls should be maintained, considering permissions, encryption, and availability of cloud resources.
High Availability and Network Design
- Resilient cloud implementations should achieve high availability through design across multiple zones.
- Network segmentation is vital, using public and private subnets to enhance security.
Review Questions Context
- Example of vertical scaling: Adding a CPU in response to high traffic demands.
- Importance of maintaining security patches in environments utilizing a Type I hypervisor for IaaS.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
Description
Test your knowledge on how cloud providers achieve scalability through vertical and horizontal scaling. This quiz explores the concepts and practical implications of resource management in cloud environments. Get ready to deepen your understanding of the technical aspects behind cloud computing.