All right, Siberians, Welcome. I'm glad you've decided to attend these clouds. Certified security, professional force. I'm Kelly Hander Hand just like in the introduction, and we're gonna go ahead and get right on into the material. And, of course, we'll start with the main one.
So, domain one is architectural concepts and design requirements
in this particular chapter, what we're gonna look at, we're going to start off with the basics because we know sometimes folks are new to cloud computing, even though they may have an extensive security background,
concepts of the cloud or relatively new. So we want to make sure everybody understands where we are, sort of in the grand scheme of things. So we're gonna start with the basics. We'll talk about the deployment models will talk about the various services. So we say deployment. We're talking public versus Private cloud
with services, software service, platform as a service, infrastructures of service.
Ah, and then one of the ways that I think that I've found to describe it that I think helps to pull all that together is by looking at pizza as a service. I feel like if there's anything you can use pizza to explain. It always goes better. Big, beautiful.
All right. And then we're gonna look at the Cloud Computing Standards Road map,
which is defined by missed 500 dash to 91 which is one of their special publications. This is a document that you can download for free, and I would highly recommend that you do and that you go through it with the highlighter and marker just kind of underlined. There's key elements.
We'll be covering the main pieces, of course,
that are on that road map. But it's always good to get your information straight from the horse's mouth, so I would definitely, And I'm not gonna be one of those instructors that says, You know, if you'll download 1500 pages and read, those will be just fine. I would download the NIST Cloud Computing Standards Road map missed 500 dash to 91
all right, And then we'll talk about just some general security requirements in relation to cloud computing.
And for those of you that have taken C I S S P or even security, Plus, you'll find a lot of the same principles that exist on our internal network applied to the cloud as well. We may just be scaling up may have slightly different perspective, but,
you know, security, security. We keep going back to the C I. A. Triad confidentiality,
integrity and availability. All right, we will also talk just a little bit about identity and access management. That is always going to be the responsibility of the organization of the cloud customer. Right? And that's how you should perceive yourself on this. Examined in this course,
consider yourself as the cloud customer. Unless you're told differently,
they might have you answer a couple questions from Cloud Service providers perspective, but otherwise, just assume you're a customer. So when we talk about the customer I'm using, the resource is in the cloud, and I need to allow my internal users to access those cloud Resource is
so how I create the identities of those cloud users. How I require them to authenticate
all of those mechanisms are under the responsibility of me, the customer. So we're gonna look at those and then last but not least, we're gonna get just a little bit into virtual ization because when it comes right down to it, that's the only reason that the cloud has exploded the way that it has, right? It wasn't profitable. We've had cloud computing for
30 years. You no longer than that. We've had cloud computing since I've been around. And then so because
when we talk about the cloud, we're just storing information on someone else's computer, right? I mean, that is kind of the cloud. So, you know, if you've used email for the last 30 years or however many, that's cloud computing. But that wasn't really where
organizations made their money, right? Like Yahoo didn't make a ton of money by Kelly Hander Hand having an email account. They sold ads and they get other things. But, you know, on the whole, just making all the services available for free is a profitable.
But once virtual ization came around and they could have this massive computing system and deal out pieces or portions off that large and computing environment and sell their spaces. And those resource is, that's where the money came in.
So it really took virtualization to make that possible and most importantly, profitable