A public cloud is a platform that uses the standard cloud computing model to make resources -- such as virtual machines, applications or storage -- available to users remotely. Public cloud services may be free or offered through a variety of subscription or on-demand pricing schemes, including a pay-per-usage model. Show
The main benefits of the public cloud are as follows:
How does the public cloud work?Public cloud is an alternative application development approach to traditional on-premises IT architectures. In the basic public cloud computing model, a third-party provider hosts scalable, on-demand IT resources and delivers them to users over a network connection, either over the public internet or a dedicated network. The public cloud model encompasses many different technologies, capabilities and features. At its core, however, a public cloud consists of the following key characteristics:
The public cloud provider supplies the infrastructure needed to host and deploy workloads in the cloud. It also offers tools and services to help customers manage cloud applications, such as data storage, security and monitoring. Understand the basics of cloud computing.When selecting a provider, organizations can opt for a large, general-use provider -- such as AWS, Microsoft Azure or Google Cloud Platform (GCP) -- or a smaller provider. General cloud providers offer broad availability and integration options and are desirable for multipurpose cloud needs. Niche providers offer more customization. MigrationMyriad factors drive businesses to migrate from on-premises facilities to the public cloud. For example, some organizations require support for more diverse workload types that data centers can't provide. Cost considerations, less overhead maintenance and redundancy are other common reasons. After choosing a provider, the IT team must select a cloud migration method to move data into the provider's cloud. Offline migration requires IT teams to copy local data onto a portable device and physically transfer that hardware to the cloud provider. Online data migration occurs via network connection over the public internet or a cloud provider's networking service. When the amount of data to transfer is significant, offline migration is typically faster and less expensive. Online migration is a good fit for organizations that won't move high volumes of data.
Organizations also onboard existing on-premises applications into the cloud, and there are a few approaches to consider. A lift-and-shift method moves the application to the cloud as is, without any redesign. This approach is fast, but is prone to complications -- the application may not perform properly within cloud architecture and may cost more than if it remained on premises. Alternatively, IT teams can refactor on-premises applications ahead of the migration. Refactoring takes more time and planning, but this method ensures that the application will function effectively in the cloud. Another option is to rebuild entirely as a cloud-native application. Whichever strategy you choose, there are a range of cloud-native and third-party migration tools to help you manage the move to the public cloud. Public cloud architectureA public cloud is a fully virtualized environment that relies on high-bandwidth network connectivity to transmit data. Providers have a multi-tenant architecture that enables users -- or tenants -- to run workloads on shared infrastructure and use the same computing resources. A tenant's data in the public cloud is logically separated and remains isolated from the data of other tenants. Providers operate cloud services in logically isolated locations within public cloud regions. These locations, called availability zones, typically consist of two or more connected, highly available physical data centers. The links below describe the dozens of regions and availability zones worldwide for AWS, Azure and GCP:
Organizations select availability zones based on compliance and proximity to end users. Cloud resources can be replicated across multiple availability zones for redundancy and protection against outages. Public cloud architecture can be further categorized by service model. These are the three most common service models:
The service model determines how much control the user has over certain aspects of the cloud. For example, in IaaS deployments, cloud customers create virtual machines, install operating systems and manage cloud networking configurations. But in PaaS and SaaS models, the cloud networking architecture is fully managed by the provider. In addition to the three main service models, a function-as-a-service model further abstracts cloud infrastructure and resources. This is particularly useful for customers that create microservices. It is based on serverless computing, a mechanism that breaks workloads into small, event-driven resource components, and runs the code without the need to deliberately create and manage virtual machines. This enables organizations to execute code-based tasks on demand when trigged; the components exist only for as long as the assigned task runs. In this model, the provider handles the underlying server maintenance. Organizations can also opt for a storage-as-a-service provider in the public cloud. The provider delivers a storage platform with offerings such bare-metal storage capacity, storage object and storage applications, such as backup and archiving. Benefits and challenges of public cloud computingEnterprises must weigh the advantages and drawbacks of public cloud adoption in order to determine whether it's the right fit. BenefitsThe cloud has many advantages over on-premises IT:
Other public cloud benefits include access to the provider's reliable infrastructure and the abstraction of overhead management tasks. These enable IT staff to focus on tasks that are more important to the business, such as writing code for applications. ChallengesWhile the public cloud presents many advantages, organizations also face a range of challenges and must separate cloud computing myths from realities:
Cloud management tools and strategies can help organizations address some of these public cloud challenges and optimize their use of cloud resources and costs. As a start, even a general understanding of cloud basics is helpful. Test your cloud knowledge to see what gaps you might need to fill. Weigh the pros and cons of cloud computing.Differences between public clouds, private clouds and hybrid cloudsThe term public cloud arose to differentiate between the standard cloud computing model and private cloud, which is a proprietary cloud computing architecture dedicated to a single organization. A standard private cloud extends a company's existing data center resources, and is accessible only by that company. Public and private clouds offer similar services -- such as compute, storage and networking -- and capabilities such as scalability. However, the two models have significant differences in how they operate and provide those services. Public cloud resources run on multi-tenant, shared infrastructure and are available to users over the internet. Conversely, private cloud consists of single-tenant architecture that runs on privately owned infrastructure. Beyond architectural differences, public and private cloud models differ in price, performance, security, compliance and more. Private cloud requires large upfront investment for cloud infrastructure, as opposed to the public cloud's pay-as-you-go model. In terms of performance, public cloud can be subject to network bandwidth and connectivity issues since it largely relies on the public internet. Private cloud can offer more consistent performance and reliability since it is a localized site. Understand the similarities and differences between the four cloud models: public cloud, private cloud, hybrid cloud and multi-cloud.Both public and private cloud models provide extensive security offerings. However, the private cloud offers more fine-grained control over configurations and physical isolation. Private cloud also poses fewer compliance issues since data does not leave the on-premises facility. Organizations with strict compliance needs often choose private cloud. These differences apply to the standard on-premises private cloud. However, alternative private cloud models blur the lines between public and private computing. Cloud providers now offer on-premises versions of their public cloud services. Examples include AWS Outposts, Azure Stack and Google Anthos, which bring physical hardware or bundled software services into an enterprise's internal data center. These distributed deployments act as isolated private clouds, but they are tied to the provider's cloud. Hybrid and multi-cloudA third model, hybrid cloud, is a combination of public and private cloud services, maintained by both internal and external providers and with orchestration between the two. This model enables organizations to tap into the benefits of the public cloud for certain workloads, such as to accommodate demand spikes, but also maintain their own private cloud for sensitive, critical or highly regulated data and applications. There are a number of hybrid cloud benefits -- such as flexible deployment options, greater cost control and the ability to move between environments. A related option is a multi-cloud architecture, in which an enterprise uses more than one cloud. Most often it refers to the use of multiple public clouds. Depending on its needs, a business might choose to use both the hybrid and multi-cloud models. Public cloud pricingPublic cloud pricing is typically billed on a pay-per-use structure in which cloud users pay only for the resources they consume. In many cases, this helps reduce IT expenses, since an organization no longer needs to purchase and maintain physical infrastructure for those parts of its business it deploys to a public cloud IaaS. Also, a company can account for public cloud expenditures as operational or variable costs rather than capital or fixed costs. This can provide more flexibility to the business, as these operational spending decisions typically require less intensive reviews or budget planning. However, it's easy to overspend in the cloud and erase those benefits because it can be difficult to accurately track cloud service usage in the self-service model. Common public cloud cost pitfalls include over-provisioning resources, failure to decommission idle workloads and unnecessary data egress fees. In addition to these cost challenges, public cloud providers have complex pricing models with rates that vary by region and service. Failure to understand a provider's pricing model can cause hidden costs to drive up the bill. Organizations must factor in all the components that make up their cloud computing spend. This includes costs for application migration, data transfer, storage, and resource consumption, along with the products to manage and maintain the environment. Cost optimization strategiesTo rein in cloud costs, adopt tools and strategies that estimate costs and identify spending patterns. Cloud providers offer pricing calculators and cost monitoring tools, such as AWS Cost Explorer, Azure Pricing Calculator and Google Cost Management. Gain a solid understanding of your chosen cloud environment to help right-size resources, and pay only for what you need. Also, explore providers' discount programs, such as cheaper alternatives to on-demand resources. For example, AWS and Azure offer reserved instances at a lower price, in exchange for commitment to use a certain amount of capacity within a specified time period. Autoscaling is another way to keep costs down. Autoscaling features adjust application scale to meet demand, which avoids paying for unnecessary capacity. Proper visibility into the cloud environment also helps IT teams identify and shut down idle workloads to avoid paying for unused resources and prevent cloud sprawl. Enterprises should consistently monitor their cloud bill and reevaluate deployment models to ensure the most cost-efficient approach. For example, an organization with high data egress fees can work on limiting data transfers. Public cloud can help organizations reduce IT expenses -- or it can blow up budgets for those who lack a smart cloud cost strategy. Understand where the typical cloud cost challenges are and how to solve them.Public cloud securitySecurity is a concern for many enterprises because of the multi-tenant nature of public cloud. Organizations host sensitive data and critical workloads in the cloud, so protecting the environment is a top priority. Public cloud providers offer various security services and technologies, but security in the cloud requires diligence by both the provider and customers. Shared responsibilityPublic cloud security duties are split between the provider and cloud user, outlined in a shared responsibility model. This framework designates the particular aspects of security -- and accountability -- for the provider and the user. The specifics tasks in a security agreement differ depending on the chosen provider and public cloud model. For example, the AWS shared-responsibility model states that AWS is responsible for securing the infrastructure that supports the cloud environment, which includes hardware, software, network, storage and on-premises facilities used to run AWS cloud services. Meanwhile, the cloud user is responsible for securing anything that runs in the cloud, namely applications and customer data. Public cloud security challengesOrganizations must understand numerous challenges related to cloud security to protect cloud-hosted applications. Public cloud requires protection against external threats, such as malicious attacks and data breaches, as well as internal security risks, including misconfigured resources and access management policies. Hybrid cloud security presents an additional set of challenges. Complexities such as securing data in transit over the public internet and networking components for disparate environments require additional protections. Security tools and practicesCloud providers' security services and technologies include encryption and identity and access management (IAM) tools. A comprehensive security strategy relies on a combination of these. Cloud security monitoring is a crucial piece of the security strategy to provide threat detection. Security monitoring tools scan and observe the services and resources in your cloud environment and generate alerts when a potential security issue arises. Access control is also critical to public cloud security. Set up strong IAM policies that allot only the necessary level of permissions. Consistently update IAM policies and remove access for users that no longer require certain permissions. Use multifactor authentication to bolster user verification. In addition to security tools and policies, a well-trained IT staff is integral to ensure a safe cloud environment. Many vulnerabilities are the product of resource misconfigurations due to human error. Make sure your IT staff is up to date on security policies and proper configuration practices. Public cloud providers and adoptionEstimates of public cloud usage vary widely across different countries, but most market research and analyst firms expect continued growth in worldwide adoption and cloud revenues. Spending on IaaS, for example, reached an estimated $29 billion in the first quarter of 2020, up 37% from Q1 the previous year, according to Synergy Research. Today, there are three main public cloud providers: AWS, Microsoft and Google. These providers deliver their services over the internet or through dedicated connections, and they use a fundamental pay-per-use approach. Each provider offers a range of products oriented toward different workloads and enterprise needs.
Similar to the emergence of AWS from Amazon, Alibaba Cloud was created to support the Alibaba e-commerce parent company. Alibaba offers infrastructure, storage, networking and other application services. The company operates in international regions but is primarily focused on domestic Chinese and other Asian markets. IBM Cloud is another vendor option, with IaaS and PaaS offerings. IBM acquired open source software company Red Hat in 2019, to provide users more flexible service options and extended hybrid cloud capabilities. Oracle is primarily known for its database offerings, but it also provides public cloud services. The company's IaaS offering, Oracle Cloud Infrastructure, is a good fit for organizations that require custom, high-performance computing and specialization. Categories of available public cloud servicesEach cloud provider offers a suite of tools and services across many service categories. A few of the core categories are compute, storage, container management and serverless. They generally work the same, but users should be mindful of any unique requirements or dependencies. Below are some of the product options from AWS, Azure and GCP in each of these areas. Compute: Amazon Elastic Compute Cloud (EC2) is a cloud IaaS service that provides compute capacity for AWS deployments on virtual servers, known as EC2 instances. There are various EC2 instance types and sizes designed for different user needs, including memory, storage and compute-optimized instances. Microsoft's primary compute service is Azure Virtual Machines, which similarly varies for compute, memory and general use. GCP's IaaS compute service is called Google Compute Engine. Storage: Each provider offers various storage types, such as block, object and file. The Amazon S3 object storage service is available in six storage tiers -- S3 Standard, S3 Intelligent Tiering, S3 Standard-Infrequent Access, S3 One Zone-Infrequent Access, S3 Glacier and S3 Glacier Deep Archive -- that vary by access frequency. Other storage offerings on AWS include Amazon Elastic Block Store and Amazon Elastic File System. Microsoft storage offerings include Azure Blob for object storage, Azure Files for file storage and Azure Disk for block storage. GCP offers Cloud Storage for object storage, Filestore for file storage, and Persistent Disk and Local SSD for block storage. Serverless: The primary serverless products from the big three providers are AWS Lambda, Azure Functions and Google Cloud Functions. Containers: AWS offers four container management offerings: Amazon Elastic Container Service, Amazon Elastic Kubernetes Service, Amazon Elastic Container Registry and AWS Fargate. Users can also deploy containers manually on EC2 instances. Microsoft's container management services include Azure Kubernetes Service, Azure Container Registry and Azure Container Instances. GCP users can run containers on Google Kubernetes Engine, Google Cloud Run or Google Compute Engine. Public cloud providers also offer various tools and services for networking, monitoring, analytics, machine learning and more. Public cloud historyWhile the concept of cloud computing has been around since the 1960s, it didn't reach public popularity for enterprises until the 1990s. Salesforce, now a top SaaS provider, entered the market in 1999 by delivering applications through a website. It was soon followed by browser-based applications, such as G Suite, that could be accessed by numerous users. In 2006, the retail company Amazon launched EC2, its IaaS platform, for public use. Under its cloud division, AWS, enterprises could "rent" virtual computers but use their own systems and apps. Soon after, Google released Google App Engine, its PaaS service, for application development, and Microsoft came out with Azure, also a PaaS offering. Over time, all three built IaaS, PaaS and SaaS offerings. Legacy hardware vendors, such as IBM and Oracle, also entered the market. However, not all vendors that tried to compete succeeded. Verizon, Hewlett Packard Enterprise, Dell, VMware and others were forced to shut down their public clouds. Some have refocused on hybrid cloud and cloud management. Public cloud adoption continues to rise as providers expand their portfolios of services and support. Technology developments -- such as AI, machine learning, IoT and edge computing -- have all made their way into the public cloud. More diverse cloud application development approaches have also emerged as organizations embrace microservices, containers and serverless architectures. In general, cloud experts expect the next wave of public cloud computing will involve more automation and specialization. Providers will offer more granular and interconnected services to meet broader user needs. Emerging technologies and IT developments -- for example, quantum computing -- will shape the future of public cloud. This was last updated in August 2020 Continue Reading About What is public cloud? Everything you need to know
Which of the following gives access to a computer program or service that circumvents any normal security protections?Chapter 2 Malware and Social Engineering Attacks. Which of the following is true of a keylogger?A keylogger can exploit an infected system and is sometimes capable to download and install other malware into the system.
Which level of UAC provides the lowest level of security?If you went over our guide insisting not to turn off UAC and you're still determined to disable it, move the slider to the bottom Never notify option, the lowest level of security.
Which of these is a general term used for describing software that gathers information without the user's consent?Spyware (a portmanteau for spying software) is software with malicious behavior that aims to gather information about a person or organization and send it to another entity in a way that harms the user—for example, by violating their privacy or endangering their device's security.
|