From the course: Certificate of Cloud Security Knowledge (CCSK) Cert Prep
Cloud deployment models
From the course: Certificate of Cloud Security Knowledge (CCSK) Cert Prep
Cloud deployment models
- [Instructor] Let's now discuss cloud deployment models. Four deployment models are included in this description of the cloud, and the cloud security alliance adds two more that we will discuss shortly. It is essential to note that a VPC, or virtual private cloud, differs from private cloud as defined by NIST. A VPC provides network-based controls that enable public cloud usage in a logically isolated environment separated from other public cloud users. So a VPC is really public cloud. A private cloud consists of physical infrastructure that is used exclusively by a single business or organization. So in a private cloud, services and infrastructure are always maintained on a private network with hardware and software dedicated solely to a single cloud service customer organization. It can be physically located in your organization's onsite data center, hosted by a third-party service provider, or both at the same time. These resources can be leased, owned, or a combination of both at the same time. This set allows for easier customization of resources to meet specific IT requirements, and government agencies, like financial institutions and other medium to large size organizations typically choose a private cloud for business critical operations, and they tend to have very low tolerance for organizational risk. This means that they're probably going to pay more as well. Public clouds are the most common method for deploying cloud computing. So think about Microsoft Azure, AWS, Google Cloud Box, and Salesforce. They are examples of a public cloud. Cloud resources, such as servers and storage, are owned and managed by a third-party cloud service provider located off premises and deliver over the internet or via direct fiber connection. Public clouds provide the best potential for return on investment. Multiple organizations with common concerns about governance, security, or mission will form a community cloud. The community cloud comes together based on shared concerns. This is particularly relevant in healthcare research and education sectors. Community clouds can be owned, leased, or both, and their locations can differ. These are slightly specialized communities that come together in order to carry out the mission of a shared concern. A hybrid cloud combines two or more clouds that function together. For example, one might use the public cloud for high volume, lower security needs such as web-based email while utilizing the private cloud or other on-premise infrastructure for sensitive business critical tasks like financial reporting. In a hybrid cloud, cloud burst is an option. This occurs when an application or resource operates in the private cloud until a sudden surge in demand arises, such as during a seasonal event, like online shopping or tax filing. Cloud Security Alliance adds multi-cloud defined as a cloud service customer that leverages multiple CSPs for failover and selects best of breed services along with hybrid multi-cloud, which facilitates a deployment model mashup with various providers. Now that you have the NIST five characteristics of cloud computing, the three service models, and the four deployment models, we will discuss cloud architecture.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.