CTEC

Introduction to Cloud Computing

Topic 01
Overview

• Types of Cloud Computing Services

• Types of Cloud Deployment Model
• Setting up an AWS account
• AWS Identity and Access Management (IAM)

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 2

TYPES OF CLOUD COMPUTING SERVICES

3
Types of Cloud Computing Services

• Cloud-based Computing Services

• Infrastructure as a Service (IaaS)
• Platform as a Service (PaaS)
• Software as a Service (SaaS)

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 4

Infrastructure as a Service (IaaS)

• Offers essential compute, storage and networking resources on

demand
• Resources can be virtual or on dedicated hardware
• Contains the basic building blocks for IT in the cloud
• Provides the highest level of flexibility and management control over
your IT resources

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 5

Infrastructure as a Service (IaaS)

• Use case scenario:

• A company’s System Administrator can login to IaaS platform to
create virtual machines (VMs) where they can install different
operating systems and different enterprise software on each VM
• Companies can also use IaaS platform to deploy large-scale web
applications that require storage space, web server and
networking

• All these are possible without the need of maintaining physical

hardware!
// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 6
Platform as a Service (PaaS)

• A complete development and deployment environment in the cloud

• Provides computing platforms which typically includes operating
system, programming execution environment, database, etc
• Removes the need for organizations to manage the underlying
infrastructure (usually hardware and operating systems)
• More efficient as organizations can focus on the deployment and
management of applications

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 7

Platform as a Service (PaaS)

• Organisations typically use PaaS for these scenarios:

• Development framework
• Developers can build upon the framework to develop or
customize cloud-based applications
• Analytics or Business Intelligence
• Tools provided as a service with PaaS allow organizations to
analyze and mine their data
• Examples of PaaS:
• Heroku, Google Maps

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 8

Software as a Service (SaaS)

• Provides organisations with a completed product that is run and

managed by the service provider
• In most cases, people referring to Software as a Service are referring
to end-user applications
• Users only need to focus about how to use that particular piece of
software
• Some SaaS examples:
• Gmail, Outlook365, Netflix, Zoom

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 9

 IaaS < PaaS < SaaS

Source: https://azure.microsoft.com/en-us/overview/what-is-paas/

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 10

TYPES OF CLOUD DEPLOYMENT MODEL

11
Types of Cloud Deployment Model

• Types of Cloud Deployment Model

• Public Cloud
• Private Cloud
• Hybrid Cloud

• Defined according to where the infrastructure of the environment is

located

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 12

Public Cloud

• Anyone can access the systems and services (i.e. shared resources)
• Usually a pay-as-you-use service
• Infrastructure in this model is owned by the provider (e.g. Microsoft
Azure, Google Cloud) and not the consumer
• No maintenance of infrastructure required (done by the provider)
• Applications can be developed on basic model (lower pricing) and
scaled up upon production (higher tier) with no hassle of hardware
upgrading

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 13

Public Cloud - Advantages

• Minimal Investment: Because it is a pay-per-use service, there is no

substantial upfront fee, making it excellent for enterprises that require
immediate access to resources.
• No setup cost: The entire infrastructure is fully subsidized by the cloud
service providers, thus there is no need to set up any hardware.
• Infrastructure Management is not required: Using the public cloud does
not necessitate infrastructure management.
• No maintenance: The maintenance work is done by the service provider
(Not users).
• Dynamic Scalability: To fulfill your company’s needs, on-demand
resources are accessible.
// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 14
Private Cloud

• Sometimes also called “internal cloud” or “on-premise infrastructure”

• Dedicated resources for 1 user (consumer) or organization
• May be located in the organization’s data center or located off-site
managed by a third-party
• Allows organization more control over service integration, IT
policies / operations (more secure environment)
• Solutions on a private cloud can be customized to suit the
organization’s needs

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 15

Private Cloud - Advantages

• Better Control: You are the sole owner of the property. You gain
complete command over service integration, IT operations, policies,
and user behavior.
• Data Security and Privacy: It’s suitable for storing corporate
information to which only authorized staff have access. By segmenting
resources within the same infrastructure, improved access and security
can be achieved.
• Supports Legacy Systems: This approach is designed to work with
legacy systems that are unable to access the public cloud.
• Customization: Unlike a public cloud deployment, a private cloud
allows a company to tailor its solution to meet its specific needs.
// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 16
Hybrid Cloud

• A way to connect infrastructure and applications between cloud-

based resources and existing resources that are not located in the
cloud
• Best of both worlds – ability to host the application in a safe
environment (private environment) while taking advantage of the
public cloud’s cost savings
• Combines an on-premises datacenter (private cloud) with a public
cloud, allowing data and applications to be shared between them

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 17

Hybrid Cloud - Advantages

• Flexibility and control: Businesses with more flexibility can design

personalized solutions that meet their particular needs.
• Cost: Because public clouds provide for scalability, you’ll only be
responsible for paying for the extra capacity if you require it.
• Security: Because data is properly separated, the chances of data
theft by attackers are considerably reduced. 

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 18

LAB: SETTING UP AWS ACCOUNT

19
Lab : Setting up AWS

• Create an AWS Free Tier account

• Get ready your debit/credit card and here we go…

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 20

AWS IDENTITY AND ACCESS MANAGEMENT

21
AWS Identity and Access Management

• What is AWS Identity and Access Management (IAM)?

• A web service that allows us to control access to AWS resources
• Understanding how IAM works
• IAM provides the infrastructure necessary to control
authentication and authorization for your account.
• Visit the URL to understand more about the elements in IAM
infrastructure: https://
docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.htm
l

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 22

AWS Identity and Access Management

• While it is highly recommended to use IAM user with appropriate

permissions to perform tasks and access AWS resources, there are
tasks that can only be performed by the root user
• Refer to AWS website to remain updated on the list of tasks that
require root user credentials

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 23

IAM Best Practices

• DO NOT use the AWS account root user for any task where it's not
required.
• Create a new IAM user for each person that requires administrator
access.
• Make those users administrators by placing the users into an
"Administrators" group to which you attach the Administrator
Access managed policy.

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 24

IAM Best Practices

• Users in the administrators group should set up the groups, users,

and so on, for the AWS account. All future interaction should be
through the AWS account's users and their own keys instead of the
root user.
• However, to perform some account and service management tasks,
you must log in using the root user credentials. To view the tasks that
require you to sign in as the root user, see
AWS Tasks that Require Account Root User.

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 25

Overview of access management: Permissions and policies

• Federated users and roles

• Identity-based and resource-based policies

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 26

Lab: AWS Identity and Access Management (IAM)

• Creating an administrator IAM user and group (console)

• Create user
• Create group
• Add user to group
• Adminstrator Access policy
• Tags
• Review and Complete
• Creating an IAM user and group (AWS CLI)
• Optional
// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 27
Summary

• Types of Cloud Computing Services

• Infrastructure as a Service (IaaS)
• Plaform as a Service (PaaS)
• Software as a Service (SaaS)
• Types of Cloud Deployment Model
• Public Cloud
• Private Cloud
• Hybrid Cloud
• Setting up an AWS account
• AWS Identity and Access Management (IAM)
// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 28
E-learning references and credits

• Getting Started with AWS, https://aws.amazon.com/getting-started

• AWS Identity and Access Management User Guide,
https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.ht
ml

• Introduction to AWS Identity and Access Management (IAM)

// AAI • Cloud Technologies (CAI2C04) TEMASEK POLYTECHNIC I School of Informati cs & IT 29

 CTEC
Next week…