3.2 Physical Environment of the Cloud Infrastructure

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with

Already have an account? Sign In »

12 hours 48 minutes
Video Transcription
So the first piece we're gonna look at is the physical environment of the cloud infrastructure. So this is one of the benefits. One of the huge benefits of using cloud service is right. All this hardware that used to be in of course, I'm talking about infrastructure is a service. All this hardware that I used to have to buy. I used to have to upgrade. I used to have to heat and cool. That's all going to my cloud service provider.
I no longer have to maintain a data center.
C. S P's job done, done, done right. But
again, it's not my responsibility, but it's my problem if there's an issue. So we want to make sure that we understand that our cloud service provider has the capability to, you know, control the physical security on environmental controls. Now, one thing I wanna want toe push or what I want to stop in Paul's for is to say,
Remember, on this exam, they're not assuming you're going with Microsoft Cloud or Google Cloud or Amazon Cloud brother. What they're assuming again is that you're using 1/3 party that you're accessing across the web. So when we talk about things, you know, the
you're going to say. Well, of course, Amazon can handle the physical security requirements and blah blah, blah. But that's not a guarantee that that's who you're using.
And the second point of that is it's very dangerous saying, Of course they'll take care of it. That's their job.
We have to rely on our service level agreements and even more importantly, our tenant. I've said that a 1,000,000 times. I'm gonna keep saying it. All right, So expensive hardware,
Um, a lot of electricity needed to run a data center of that proportion. And if we have a physical security or a physical shut down of that data center, think of the span
that impact that that would hope not just on our organization, but organizations throughout the world. Right, Because I'm not the only one using this cloud service provider, they have to have redundancy in place across the board, right? Redundancy at every level.
Power redundancy server, Redundancy, Dad, A redundancy on on on on on on,
what is their responsibility in what is mine for redundancy again depends on what type of service I'm using. The data is always my ultimate responsibility. So it's up to me to make sure that my dad is backed up and is able to be recovered temperature,
you know, um, quickest way to kill a processor Processes will live forever
unless there's an issue with heating and cooling. So keeping the temperature at a specific degree. One of the things have been reading at is a lot of cloud. Service providers
are slowly increasing the temperatures at their data center, and the reason for it is is what they save by going up a couple of degrees and heating, cooling costs or cooling cost. Specifically
the tradeoff for Well, you know what if we burn up a processor will replace the processor. And having to replace the processors that are lost because of the increase in heat is cheaper than the cooling bills. So it's always a cost benefit analysis, right? You know the
old theory 1 68 degrees. Well, if it's 70 degrees, I can save more money, replaced the occasional processor. Maybe that does make sense
when we talk about physical, the physical infrastructure we think about power pipe ping
power, Pipin ping So the electricity, making sure that it's cooled, making sure there's physical connective ity throughout Major. There's sufficient band with access to Resource is that's what we need when we have infrastructures of service. So we talked a little bit about temperature, making sure
that, you know, in this instance, I would almost read this slide as if you're at the cloud service provider and these air your elements you have to be responsible for
humidity and moisture is always a concern. We want to keep that steady somewhere around 50% because too much humidity leads to rust and corrosion, not enough static electricity. So all of that under tight control
now, in addition to those elements, air flow
and again, if you've ever worked in the data center, the amount of heat put off by these systems can be very intense. When you're right in there, we want to make sure that there's good cooling that the servers are are stacked and arranged in such a way that
the hot air coming out the back isn't blowing into servers. On the other end, you know, may have heard talk about hot and cold isles, making sure that
the backs of servers face each other so they're blowing hot air in this area, and the intake comes from cool air
When there's an issue with voltage, that doesn't mean the component dies necessarily. So we've gotta be able to detect small changes in voltage because what will happens, it will wear devices down over time hard drives a lot of times that they're not getting the proper fault. Ege.
So what ultimately comes down to is all the physical elements
are the responsibility of the cloud service provider. So if that's me, I have to be very, very aware of all the different elements under my management. If I'm the cloud customer again, I have to be aware of how the Cloud service provider addresses thes elements.
Um so physical infrastructure, cloud infrastructure, always the responsibility of the cloud service provider, always a concern for me as part of a consumer
Up Next
Certified Cloud Security Professional (CCSP)

This Certified Cloud Security Professional (CCSP) certification course covers topics across six domains, to ensure the candidate has a wide range of competencies and is capable in the assessment and implementation of cloud service solutions.

Instructed By