Cloud Computing Fundamentals
Master cloud computing concepts, services, and deployment models. Learn about major cloud providers, security considerations, and best practices for cloud architecture.
Cloud Service Models
IaaS
Infrastructure as a ServiceYou Manage:
- Applications
- Data
- Runtime
- Middleware
- Operating System
Provider Manages:
- Virtualization
- Servers
- Storage
- Networking
Examples: AWS EC2, Azure VMs, Google Compute Engine
PaaS
Platform as a ServiceYou Manage:
- Applications
- Data
Provider Manages:
- Runtime
- Middleware
- Operating System
- Virtualization
- Servers
- Storage
- Networking
Examples: Heroku, Google App Engine, Azure App Service
SaaS
Software as a ServiceYou Manage:
- Your Data
- User Access
Provider Manages:
- Applications
- Runtime
- Middleware
- Operating System
- Virtualization
- Servers
- Storage
- Networking
Examples: Office 365, Salesforce, Dropbox, Gmail
Cloud Deployment Models
| Model | Description | Use Cases | Pros | Cons |
|---|---|---|---|---|
| Public Cloud | Services offered over public internet, shared infrastructure | Web apps, dev/test, storage | Cost-effective Scalable | Less control Security concerns |
| Private Cloud | Dedicated infrastructure for single organization | Sensitive data, compliance requirements | Full control Enhanced security | Higher cost Maintenance burden |
| Hybrid Cloud | Combination of public and private clouds | Mixed workloads, burst capacity | Flexibility Cost optimization | Complex management Integration challenges |
| Multi-Cloud | Multiple cloud providers for different services | Avoid vendor lock-in, best-of-breed | No vendor lock-in Best services | Very complex Cost management |
| Community Cloud | Shared by organizations with common concerns | Government, healthcare, education | Cost sharing Compliance | Limited control Slower adoption |
Major Cloud Providers Comparison
Amazon Web Services (AWS)
Key Services:
- EC2: Virtual servers
- S3: Object storage
- RDS: Managed databases
- Lambda: Serverless computing
- VPC: Virtual private cloud
- CloudFront: CDN service
Strengths:
- Market leader (32% market share)
- Most comprehensive service offering
- Mature ecosystem
- Global infrastructure
- Strong developer tools
Core Cloud Services
Virtual Machines
- Full OS control
- Custom configurations
- Persistent storage
- Various instance types
Containers
- Lightweight virtualization
- Docker/Kubernetes
- Microservices architecture
- Rapid deployment
Serverless
- No infrastructure management
- Auto-scaling
- Pay per execution
- Event-driven
Block Storage
Raw block-level storage for VMs. High IOPS for databases.
Object Storage
Store unstructured data. Ideal for backups, archives.
File Storage
Managed NFS/SMB shares. Shared across instances.
Archive Storage
Long-term, infrequent access. Lowest cost option.
Relational Databases
- MySQL, PostgreSQL, SQL Server
- ACID compliance
- Automated backups
- High availability options
NoSQL Databases
- Document, Key-Value, Graph
- Horizontal scaling
- Flexible schema
- Global distribution
Virtual Networks
Isolated network environments with subnets and routing.
Load Balancers
Distribute traffic across instances for high availability.
CDN
Content delivery networks for global distribution.
VPN/Direct Connect
Secure connections to on-premises infrastructure.
Cloud Security Best Practices
Identity & Access Management
- MFA: Enable multi-factor authentication
- Least Privilege: Grant minimum required permissions
- Role-Based Access: Use IAM roles, not keys
- Regular Audits: Review access logs and permissions
- Service Accounts: Separate accounts for applications
Data Protection
- Encryption at Rest: Encrypt stored data
- Encryption in Transit: Use TLS/SSL
- Key Management: Rotate keys regularly
- Data Classification: Tag sensitive data
- Backup Strategy: Regular automated backups
Network Security
- Firewalls: Configure security groups
- Network Segmentation: Use VPCs and subnets
- DDoS Protection: Enable cloud DDoS services
- Private Endpoints: Avoid public internet exposure
- Traffic Monitoring: Log and analyze network flows
Compliance & Governance
- Compliance Frameworks: GDPR, HIPAA, PCI-DSS
- Resource Tagging: Track ownership and costs
- Config Management: Infrastructure as Code
- Incident Response: Have a documented plan
- Regular Assessments: Security audits and pen testing
Shared Responsibility Model: Cloud providers secure the infrastructure, but you're responsible for securing your data and applications.
Simple Cloud Cost Estimator
Configure Your Resources
Estimated Monthly Cost
$8.47
Per Month (Estimated)
* This is a simplified estimate. Actual costs vary based on region, instance type, data transfer, and additional services.Cost Optimization Tips:
- Use reserved instances for predictable workloads
- Implement auto-scaling to match demand
- Delete unused resources regularly
- Use spot instances for non-critical workloads
- Monitor and set billing alerts
Cloud Migration Strategies (The 7 Rs)
| Strategy | Description | When to Use | Complexity |
|---|---|---|---|
| Retire | Decommission applications no longer needed | Obsolete or redundant systems | Low |
| Retain | Keep on-premises for now | Recently upgraded systems, compliance requirements | Low |
| Rehost | "Lift and shift" - move as-is to cloud | Quick migration needed, minimal changes | Medium |
| Relocate | Move to cloud without changes (VMware Cloud) | VMware workloads, minimal disruption | Medium |
| Repurchase | Move to different product (usually SaaS) | Standard applications (CRM, email) | Medium |
| Replatform | Make minimal changes to optimize for cloud | Some cloud benefits without major changes | High |
| Refactor | Re-architect for cloud-native features | Maximum cloud benefits, long-term strategy | Very High |
Cloud DevOps & Automation
Infrastructure as Code (IaC)
Popular Tools:
- Terraform: Multi-cloud provisioning
- CloudFormation: AWS native
- ARM Templates: Azure native
- Pulumi: Programming languages
Benefits: Version control, repeatability, automation
CI/CD Pipelines
Pipeline Stages:
- Source control trigger
- Build application
- Run automated tests
- Deploy to staging
- Deploy to production
Tools: Jenkins, GitLab CI, GitHub Actions
Monitoring & Logging
Key Metrics:
- Application performance
- Resource utilization
- Error rates
- User experience
- Cost tracking
Tools: CloudWatch, Azure Monitor, Stackdriver
Cloud Computing Quick Reference
Key Concepts
- • Elasticity & Scalability
- • Pay-as-you-go pricing
- • Global availability
- • Shared responsibility
- • Multi-tenancy
Benefits
- • Reduced capital expense
- • Increased agility
- • Global scale
- • Reliability & backup
- • Latest technology
Challenges
- • Security concerns
- • Vendor lock-in
- • Compliance issues
- • Network dependency
- • Cost management
Skills Needed
- • Linux/Windows admin
- • Networking (TCP/IP)
- • Security best practices
- • Automation/scripting
- • Container orchestration
Cloud Certifications Path
AWS Certifications
- Foundational: Cloud Practitioner
- Associate: Solutions Architect, Developer, SysOps
- Professional: Solutions Architect, DevOps
- Specialty: Security, Database, ML, Networking
Azure Certifications
- Fundamentals: AZ-900
- Associate: AZ-104 (Admin), AZ-204 (Developer)
- Expert: AZ-305 (Architect), AZ-400 (DevOps)
- Specialty: Security, Data, AI
Google Cloud Certifications
- Foundational: Cloud Digital Leader
- Associate: Cloud Engineer
- Professional: Architect, Data Engineer, DevOps
- Specialty: ML Engineer, Security