Cloud Computing Flashcards
Define SaaS, XaaS, PaaS, IaaS
SaaS (Software as a Service):
SaaS is a software delivery model where software applications are hosted by a third-party provider and made available to customers over the internet. With SaaS, users access the software through a web browser or API without needing to install, maintain, or manage the underlying infrastructure or software. Examples of SaaS applications include email services like Gmail, customer relationship management (CRM) systems like Salesforce, and productivity suites like Google Workspace (formerly G Suite).
XaaS (Anything as a Service):
XaaS, or Anything as a Service, is a broad term that encompasses various cloud computing services delivered over the internet. It includes not only traditional service models like SaaS, Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) but also emerging service models such as Data as a Service (DaaS), Function as a Service (FaaS), and Security as a Service (SECaaS). XaaS reflects the trend of delivering a wide range of services as cloud-based offerings, providing scalability, flexibility, and cost-effectiveness to users.
PaaS (Platform as a Service):
PaaS is a cloud computing service model that provides a platform and environment for developers to build, deploy, and manage applications without the complexity of managing underlying infrastructure. PaaS offerings typically include development tools, runtime environments, database management systems, and other resources needed for application development and deployment. PaaS allows developers to focus on writing code and designing applications without worrying about provisioning servers, configuring networks, or managing software dependencies.
IaaS (Infrastructure as a Service):
IaaS is a cloud computing service model that provides virtualized computing resources over the internet. With IaaS, users rent virtualized infrastructure components such as virtual machines (VMs), storage, and networking resources from a cloud service provider on a pay-as-you-go basis. Users have full control over the operating systems, applications, and configurations running on the virtualized infrastructure, allowing them to deploy and manage their own IT environments without the need to invest in physical hardware or data center infrastructure. Examples of IaaS providers include Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
Define
Hybrid cloud
Private cloud
Community cloud
Public cloud
Public Cloud:
Cloud services and resources provided over the internet by a third-party provider, shared among multiple users on a pay-as-you-go basis.
Private Cloud:
Cloud services and resources dedicated exclusively to a single organization, hosted either on-premises or by a third-party provider.
Hybrid Cloud:
Combination of public and private clouds, allowing organizations to leverage the benefits of both while meeting specific workload requirements.
Community Cloud:
Cloud services and resources shared among multiple organizations with similar interests or requirements, hosted by a third-party provider to meet common needs.
Fog computing
Fog computing is a distributed computing paradigm that extends cloud computing capabilities to the edge of the network, closer to the data source or end-users. In fog computing, computing resources and services are deployed at the edge of the network, such as IoT devices, routers, switches, and edge servers, rather than solely relying on centralized cloud data centers.
Fog computing aims to address the limitations of traditional cloud computing, such as latency, bandwidth constraints, and privacy concerns, by bringing computation, storage, and networking closer to where data is generated and consumed. This enables real-time processing, analysis, and decision-making at the edge of the network, reducing latency and improving the responsiveness of applications and services.
IoT
IoT, or the Internet of Things, refers to the network of interconnected devices embedded with sensors, actuators, and software that enable them to collect and exchange data over the internet. These devices can range from everyday objects like smartphones, wearable devices, and home appliances to industrial machines, vehicles, and infrastructure components.
The concept behind IoT is to enable seamless communication and data exchange between physical objects and digital systems, leading to increased automation, efficiency, and insights across various domains. IoT devices collect data from their surroundings through sensors, process it locally or in the cloud, and act on it through actuators or by sending commands to other devices or systems.
Define
UTM
CASB
NGFW
DMVPN
UTM (Unified Threat Management):
A comprehensive security solution that integrates multiple security features into a single platform for simplified management and enhanced protection against cyber threats.
CASB (Cloud Access Security Broker):
A security tool or service that helps organizations secure and control access to cloud-based applications and data by providing visibility, enforcing policies, and protecting against data breaches and compliance violations.
NGFW (Next-Generation Firewall):
An advanced network security solution that combines traditional firewall functionality with additional features such as application awareness, intrusion prevention, and advanced threat detection for improved threat protection and visibility.
DMVPN (Dynamic Multipoint Virtual Private Network):
A network technology that enables the creation of secure and scalable VPN connections over existing WAN infrastructure by dynamically establishing VPN tunnels between remote sites, facilitating direct communication while ensuring data confidentiality and integrity.
Define
CSF
CIS
CSA
CCM
CSF (Cybersecurity Framework):
The Cybersecurity Framework (CSF) provides guidelines and best practices for organizations to manage and improve their cybersecurity posture through a structured approach encompassing five key functions: Identify, Protect, Detect, Respond, and Recover.
CIS (Center for Internet Security):
CIS, a nonprofit organization, offers cybersecurity resources and standards such as the CIS Controls and CIS Benchmarks, which provide prioritized actions and configuration guidelines to help organizations secure their IT systems and networks effectively.
CSA (Cloud Security Alliance):
As a nonprofit organization, CSA promotes best practices for securing cloud computing environments through guidance, research, and certification programs such as the CSA Security Guidance and the STAR program, enabling organizations to understand and address the unique security challenges of cloud adoption.
CCM (Cloud Controls Matrix):
Developed by the Cloud Security Alliance (CSA), the Cloud Controls Matrix (CCM) is a framework that provides a standardized set of security controls and guidelines across 17 domains to help organizations assess and manage security risks in cloud computing environments effectively.
Define
WAN
VPC
SAN
VLAN
WAN (Wide Area Network):
WAN is a telecommunications network that extends over a large geographic area, connecting multiple local area networks (LANs) or other WANs. It enables long-distance communication and data exchange between geographically dispersed locations, typically using leased lines, fiber optics, or satellite links.
VPC (Virtual Private Cloud):
VPC is a virtualized network environment within a public cloud infrastructure that allows users to create isolated and customizable network environments for their cloud resources. It provides control over network configurations, IP address ranges, subnets, routing tables, and security settings, enabling organizations to securely deploy and manage their applications and services in the cloud.
SAN (Storage Area Network):
SAN is a dedicated high-speed network that connects storage devices, such as disk arrays and tape libraries, to servers and computing resources, allowing them to access shared storage resources efficiently. SANs enable centralized storage management, data consolidation, and high-performance data access, making them ideal for demanding applications and data-intensive workloads.
VLAN (Virtual Local Area Network):
VLAN is a logical network segment within a physical network infrastructure that allows devices to communicate with each other as if they were on the same physical network, regardless of their physical location. VLANs enable network administrators to logically group devices based on factors such as department, function, or security requirements, providing flexibility, scalability, and segmentation within the network infrastructure.
Which of the following answers refers to a cybersecurity control framework for cloud computing?
CCM ( Missed)
CSA
CSF ( Your answer)
CIS
It’s a trick question. even though CSF is literally cybersecurity framework, CCM is a framework for cloud computing specifically.
