Assignment # 1 (Cloud Computing Security)

Similar documents
Course 20533: Implementing Microsoft Azure Infrastructure Solutions

Implementing Microsoft Azure Infrastructure Solutions

Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

Microsoft Azure for IT Professionals 55065A; 3 days

Developing Microsoft Azure Solutions 20532B; 5 Days, Instructor-led

Big data variety, 179 velocity, 179 volume, 179 Blob storage containers

Developing Microsoft Azure Solutions

Developing Microsoft Azure Solutions 20532A; 5 days

WINDOWS AZURE DATA MANAGEMENT

Microsoft Research Microsoft Azure for Research Training

The last 18 months. AutoScale. IaaS. BizTalk Services Hyper-V Disaster Recovery Support. Multi-Factor Auth. Hyper-V Recovery.

Microsoft Research Windows Azure for Research Training

INTRODUCING WINDOWS AZURE

AUTOMATED DISASTER RECOVERY SOLUTION USING AZURE SITE RECOVERY FOR FILE SHARES HOSTED ON STORSIMPLE

Microsoft Azure Cloud oplossing als een extensie op mijn datacenter? Frederik Baert Solution Advisor

Implementing Microsoft Azure Infrastructure Solutions

Microsoft Implementing Microsoft Azure Infrastructure Solutions

Migrating SaaS Applications to Windows Azure

Course 20532B: Developing Microsoft Azure Solutions

Implementing Microsoft Azure Infrastructure Solutions

Hosting Models. Business Model Software (as a Service) Platform (as a Service) Infrastructure (as a Service) On Premises. Applications. Data.

Extending your datacenter to the cloud

MATLAB Distributed Computing Server with HPC Cluster in Microsoft Azure

Good Morning Wireless! SSID: MSFTOPEN No Username or Password Required

SQL Server on Azure An e2e Overview. Nosheen Syed Principal Group Program Manager Microsoft

SharePoint 2013 on Windows Azure Infrastructure David Aiken & Dan Wesley Version 1.0

Linux A first-class citizen in Windows Azure. Bruno Terkaly bterkaly@microsoft.com Principal Software Engineer Mobile/Cloud/Startup/Enterprise

WINDOWS AZURE EXECUTION MODELS

Deploying Migrated IBM Notes Applications to the Cloud

Cloud Computing. Adam Barker

Microsoft Big Data Solutions. Anar Taghiyev P-TSP

The Move to the Cloud

MS 10978A Introduction to Azure for Developers

Azure Powershell Command Line Reference

Microsoft Azure. The cloud platform built for business. Tarmo Tikerpäe DC SSP Microsoft

Cloud Computing Trends

WINDOWS AZURE DATA MANAGEMENT AND BUSINESS ANALYTICS

Implementing Microsoft Azure Infrastructure Solutions

Course 10978A Introduction to Azure for Developers

Course Description. Course Audience. Course Outline. Course Page - Page 1 of 5. Microsoft Azure Fundamentals M Length: 2 days Price: $ 1,295.

Realizing the Benefits of Hybrid Cloud. Anand MS Cloud Solutions Architect Microsoft Asia Pacific

Amazon EC2 Product Details Page 1 of 5

Using and Contributing Virtual Machines to VM Depot

MCSD Azure Solutions Architect [Ativar Portugal] Sobre o curso. Metodologia. Microsoft - Percursos. Com certificação. Nível: Avançado Duração: 78h

APP DEVELOPMENT ON THE CLOUD MADE EASY WITH PAAS

MS 20532B - Developing Microsoft Azure Solutions

A Comparison of Clouds: Amazon Web Services, Windows Azure, Google Cloud Platform, VMWare and Others (Fall 2012)

Course Outline. Microsoft Azure Fundamentals Course 10979A: 2 days Instructor Led. About this Course. Audience Profile. At Course Completion

SQL Server What s New? Christopher Speer. Technology Solution Specialist (SQL Server, BizTalk Server, Power BI, Azure) v-cspeer@microsoft.

Cloud Platforms in the Enterprise

Application Migration Best Practices. Gregory Shepard Senior Consultant InCycle Software

Service Level Agreement for Windows Azure operated by 21Vianet

Windows Azure Data Services (basics) 55093A; 3 Days

Hands on Lab: Building a Virtual Machine and Uploading VM Images to the Cloud using Windows Azure Infrastructure Services

Open Source Technologies on Microsoft Azure

10978A: Introduction to Azure for Developers

Windows Azure Pack Installation and Initial Configuration

Implementing Microsoft Azure Infrastructure Solutions

WHITE PAPER. Migrating an existing on-premise application to Windows Azure Cloud

Tips for getting started! with! Virtual Data Center!

Microsoft Azure Data Technologies: An Overview

Getting Started with Attunity CloudBeam for Azure SQL Data Warehouse BYOL

Building a BI Solution in the Cloud

2015 Techstravaganza The Microsoft Cloud

SHAREPOINT 2013 IN INFRASTRUCTURE AS A SERVICE

ADOPTING MICROSOFT AZURE

CUMULUX WHICH CLOUD PLATFORM IS RIGHT FOR YOU? COMPARING CLOUD PLATFORMS. Review Business and Technology Series

AZP: Microsoft Azure Infrastructure for IT Professional

Introduction to Azure for Developers

Biznet GIO Cloud Connecting VM via Windows Remote Desktop

Volume Licensing. Service Level Agreement for Microsoft Online Services August 5, 2015

Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid clouds.

Alfresco Enterprise on Azure: Reference Architecture. September 2014

Preinstallation Requirements Guide

Backup & Disaster Recovery Appliance User Guide

Microsoft SharePoint Architectural Models

App Orchestration Setup Checklist

Vistara Lifecycle Management

Outline SSS Microsoft Windows Server 2008 Hyper-V Virtualization

Quick Start Guide: Utilizing Nessus to Secure Microsoft Azure

Microsoft Azure. IaaS Networking Storage. Stefan Geiger Gerry

WHITE PAPER SETTING UP AND USING ESTATE MASTER ON THE CLOUD INTRODUCTION

Microsoft Introduction to Azure for Developers


Web Sites, Virtual Machines, Service Management Portal and Service Management API Beta Installation Guide

CloudCenter Full Lifecycle Management. An application-defined approach to deploying and managing applications in any datacenter or cloud environment

AppLoader 7.7. Load Testing On Windows Azure

How Serious is Game Development?

Getting Started with the Ed-Fi ODS and Ed-Fi ODS API

SINGLE & SAME SIGN-ON ASPECTS

DISTRIBUTED SYSTEMS [COMP9243] Lecture 9a: Cloud Computing WHAT IS CLOUD COMPUTING? 2

Lab 1: Windows Azure Virtual Machines

Implementing and Managing Windows Server 2008 Hyper-V

Transcription:

Assignment # 1 (Cloud Computing Security) Group Members: Abdullah Abid Zeeshan Qaiser M. Umar Hayat

Table of Contents Windows Azure Introduction... 4 Windows Azure Services... 4 1. Compute... 4 a) Virtual Machines... 4 b) Websites... 5 c) Cloud Services... 5 2. Data Management... 5 a) SQL Database... 5 b) Storage Blobs... 5 c) Storage Tables... 5 d) Import/Export... 5 e) File Service... 5 3. Networking... 5 a) Virtual Network... 5 b) Traffic Manager... 5 c) ExpressRoute... 6 4. Developer and IT Services... 6 a) Visual Studio Online... 6 b) Azure SDK... 6 c) Automation... 6 d) API Management... 6 5. Identity and Access... 6 a) Active Directory... 6 b) Multi-factor authentication... 6 6. Mobile... 7 a) Mobile Services... 7 b) Notification Hubs... 7 7. Backup... 7 a) Site Recovery... 7 b) Backup... 7 8. Messaging and Integration... 7 a) Storage Queues & Service Bus Queues... 7

b) Service Bus relay... 7 c) Service Bus... 7 d) Biz Talk Hybrid Connections &Biz Talk Services... 7 9. Compute Assistance... 7 a) Scheduler... 8 10. Performance... 8 a) Cache... 8 b) Content Delivery Network (CDN)... 8 11. Big Compute and Big Data... 8 a) HDInsight (Hadoop)... 8 b) High Performance Computing (Big Compute)... 8 12. Media... 8 a) Media Services... 9 13. Commerce... 9 a) Store and Marketplace... 9 Windows Azure Management Portal... 10 Overview... 10 Creating Virtual machine... 11 Accessing Virtual machine... 15 Using Remove Desktop Protocol (RDP)... 15 Using Secure Shell (SSH)... 17 References... 19

Windows Azure Introduction Windows Azure is a cloud computing platform developed by Microsoft. It enables the developers to develop their applications, deploy and then manage their hosted applications in a Microsoft datacenters. Azure provides Infrastructure as a Service (Iaas) and Platform as a Service (PaaS). It helps in managing high level components which includes Operating Systems, middleware s and runtimes. Azure uses the concept of virtualization. Applications which are deployed on Azure runs on a single or multiple virtual machines. The behavior of deployed applications is exactly the same as they are on some computer. These can share some physical resources which includes network I/O, disk space, CPU with some other virtual machines. Benefit of virtualization of physical hardware includes portability and scalability. Windows Azure Services There are multiple categories in which services that can be divided 1. Compute Cloud platform helps in executing applications. This includes a) Virtual Machines It allows controlling own virtual machine. It also allows running own operating system on this virtual machine. Azure provide a number for Operating system for new VM. New virtual machine for different Windows and Linux flavor can be created from Azure s management portal. It also allow to create VM with pre-installed software.

b) Websites It offers variety of frameworks and web applications templates helping in building huge scale web applications. It also offers the management of web application, application tests and application evaluation. c) Cloud Services It provides Platform as a Service (PAAS) which helps in creating scalable applications. It provides more flexibility than websites. 2. Data Management Different data types are required for different type of applications,and azure provides several ways to store and manage data and in every case 3 copies of data are saved in sync across all storages. a) SQL Database For relational storage, Azure provides the feature of SQL database but this SQL database differs from typical SQL database. It is not just a DBMS in the cloud it s a PaaS service. b) Storage Blobs These are storages for unstructured binary data, a single blob can be as large as 1TB it can be linked with virtual machines and other compute applications in Azure c) Storage Tables It s an example of NoSQL approach called a key value store. It let applications store properties by providing unique key for that group d) Import/Export In this case of large data movement a person can send a SATA hard drive to Microsoft and there Microsoft copy all data in blobs and send back the hard drive. e) File Service Azure is giving the service to save and share files using cloud facility like this facility is available in our organizations Network 3. Networking There are many datacenters on which azure is being running worldwide. We can select multiple datacenters to run applications or to store data. We can connect to data centers using the services listed below. a) Virtual Network To have a feeling of having remote VM on Azure cloud in your own data center is by having getting VPN services for communication between VM on cloud and organizations Data center b) Traffic Manager Using this service if any organization have a service running on azure cloud on different data centers or even organization own datacenter that have internet access users can be managed according to traffic on a particular data center

c) ExpressRoute In this case azure and organization data center have a dedicated connection that does not uses the public internet 4. Developer and IT Services It provides huge amount of tools which helps the developers in creating and maintaining the applications in cloud. These includes a) Visual Studio Online It offers number of services which helps developers to develop applications in Microsoft Azure. Working on cloud doesn t means that we don t need software at local machine but it requires visual studio to be installed at user machine. It provides additional tools which are helpful to the developer. b) Azure SDK Microsoft is provides SDK s including.net, Java, PHP, Node.js, Ruby and Python. Azure SDK provides basic support to any language like C++ to create Azure applications. c) Automation Azure Automation helps in creating, managing, monitoring and deploying resources in Azure environment. Azure automation runs Runbook. Runbook executes without the user interaction. PowerShell allows script s state to be saved at checkpoints and if failure occurs, it restart the last checkpoint automatically rather than restarting it from the beginning. This helps the scripts to handle every possible error. d) API Management Azure API management helps organizations in making and publishing API to third party developers, employees and partners. It provides services like caching, transformation, analytic aggregation and access control. 5. Identity and Access Azure provides identity services to check and track identity and also integrates with identity stores which may already being used. a) Active Directory As active directory stores information about the users so helps them to log- in and supplies a token which is presented to applications which helps them to prove their identity. Azure active directory do the same. It also allows provide synchronization functionality with windows Server Active Directory running in the local network but face a small constraint that the formats used by Azure Active Directory and Windows Server Active Directory are not identical. b) Multi-factor authentication Multifactor authentication helps to ensure that the user itself would be giving an access to accounts. For this a user is required to verify their identity using text message, phone call with a combination of password. Azure active directory only provides authentication method for user logins. One can use multifactor authentication with azure active directory with custom applications using multifactor authentication SDK.

6. Mobile Azure helps in mobile application development as it stores the data in cloud. It authenticates users and sends notification without writing a huge code. a) Mobile Services Azure Mobile service allows provisioning and data stored in databases. Developer can use additional data storage options like MongoDB and blob. Mobile services provide support for notifications. It also provide authentication services as it authenticate users through Microsoft and other identity providers like Google, Facebook. b) Notification Hubs Azure notification hubs are designed to work and compatible with any backend. It is optimized to broadcast huge amount of notifications consuming small time almost within minutes. It can target single or million users with one API call. 7. Backup Each organization need to back up their data for the usage in the worst scenarios when organization may have lost their data in any incident a) Site Recovery Azure also gives the service of making secondary site as a backup of any service or a website on the cloud so that there is no need to do expense and managing the secondary site b) Backup Microsoft azure provide the service of backing up data of Windows server running in any data center of an organization. It is kept encrypted for security purposes. 8. Messaging and Integration There is always a need when different apps need a communication or interaction. Azure provides a few different ways to solve the problem a) Storage Queues&Service Bus Queues In the azure provides the Queues for different apps to save data on the queue so that other app may use that data later b) Service Bus relay This service allows two applications on 2 different sides of the firewall to communicate through azure relay service c) Service Bus This azure service allows applications to post messages while other application are allowed to receive that messages after meeting a specific criteria d) Biz Talk Hybrid Connections &Biz Talk Services This service provides the ability to transforms XML messages formats 9. Compute Assistance Assistance for the programs that are running on the cloud

a) Scheduler Some applications that are deployed on cloud are not needed to run regularly 24/7 but only in specific time frames that can be scheduled using azure services 10. Performance For the services which need heavy computing on data, the access time of data is very important for them. The other scenario is that if an application is access a data from secondary storage, for example some mapping tables etc. For such scenario data should be closer to the computing application. Azure provide different services for these kind of scenario, which are following: a) Cache Along with the other data management services (SQL database, Tables, blobs etc.) Azure provide the caching services as well. Application can store the data in cache for fast retrieval instead of persisting the data in the storage. b) Content Delivery Network (CDN) If a data will be accessed around the world, then it s better to geo-replicate the data. CDN is different than the backup services which are managed by IaaS. CDN provide the functionality to store the mirrors for a blob (a stored data) in the multiple datacenters around the world so the on request, data can be transferred to user faster. 11. Big Compute and Big Data Due to the availability of a large computational resource on cloud,cloud infrastructure is used for the high performance computing. To facilitate such job, Azure provide following services: a) HDInsight (Hadoop) Hadoop is an open source project for distributed file system. For computation where you need a large size data (that might not be even handle properly by a relational data base), Distributed file system are used in such scenarios. Microsoft Azure provide Apache Hadoop with the name HDInsight. It store the data in form of clusters and distributes the data on multiple VMs that are being used for MapReduce job (MapReduce are specialized program for distributed computing on BigData). b) High Performance Computing (Big Compute) The purpose of the Big Compute is to execute a specific code on multiple machines at once. In cloud environment we run multiple VM machine, schedule the work on different machines and distribute the required resource among them. Azure provide the VM machine with wide variety of configurations (CPU cores, storage, and memory) to meet the requirements of Big Compute. It also provide the configurations to take advantage of low-latency network and remote direct memory access (RDMA) for parallel computing applications. 12. Media A large portion of the internet traffic are the Media contents (Audio/Video contents). Different business deliver such content to client around the word. To facilitate such customer Azure provide following service:

a) Media Services A number of functions are performed on media content which include creation for multi-resolution videos generation, encoding, ads embedding while streaming the videos to customer, and distribution of the media content around the world. Azure provide the service to avail all of the above functionalities. 13. Commerce a) Store and Marketplace Market is a place where you can buy different cloud based services. From Azure Marketplace you can buy two kind of service. Applications Data Application: These are the Software as a Service (SaaS) application developed on Windows Azure and available for ready to use. It is same as Google Play and IOS store, where they provided a single trusted source to buy and sell products. Data: Different companies provide dataset using Marketplace. Wide variety of datasets are available. Commercial dataset include statistical survey, financial data, demographics data and geographical datasets. User can search and use the dataset using this service.

Windows Azure Management Portal Overview Windows Azure is a Microsoft cloud operating system. Which provide different services. User can utilized and manage these services through a web portal (https://manage.windowsazure.com) Graphical division: Services Title Bar Task Bar

Creating Virtual machine From left of the task bar, click on New Button Figure 1 A new pane will be visible in the bottom of the page. There are two option to create a new VM o Quick Create o From Gallery In this session we will be creating VM with Quick Create option. Figure 2

Click on, following form will be visible Figure 3 Fill in the DNS Name field ( this will should be a unique name ), Image ( which is the operating system and version ), Size ( where you can choose computing power and memory ), User Name, Password and Region Figure 4 After filling all field click on

On click the create button, Creation status can be seen by click Notification button from the task bar. Figure 5 Wait until the status of the VM changes from Starting (Provisioning) to Running Figure 6 When the VM status will change to Running, New option will be visible in the task bar Figure 7 If you click name of the VM instance, Get started page will be visible

Figure 8

Accessing Virtual machine In the following section we will describe how the virtual machine running on the cloud can be access from a remote location. Mostly commonly used method is Remote Desktop on for Windows operation system and for Linux base operation system Secure Shell (SSH) is used. Although both can be use,only limitation is the operation system in the virtual machine support that protocol. For windows supports RDP by default while on Linux default protocol for remote access is SSH (although user can install the RDP services on Linux box and access through RDP client later). Azure portal provide this access as End Points. User can create any number of end points from the portal. Using Remove Desktop Protocol (RDP) Open windows Remote Desktop client Enter the host name and port Enter the user name Figure 9 Press connect button

Provide the credential and press ok On successful authentication and RDP session establishment, following screen will be visible in RDP client Figure 10

Using Secure Shell (SSH) Download any SSH client. We used PuTTy that can be download from the following link http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html Launch the PuTTY application 1 2 Figure 11 Get the End Point IP address of the VM Paste in it in the Host Name (or IP address) Press Ok Button Provide credential in the following screen Figure 12

Your SSH session will be started Figure 13 You can use terminal command in the SSH client Figure 14

References 1. Microsoft Azure, https://azure.microsoft.com/ 2. Azure Management portal, https://manage.windowsazure.com 3. Azure preview portal, https://portal.azure.com/ 4. Introducing Microsoft Azure, http://azure.microsoft.com/enus/documentation/articles/fundamentals-introduction-to-azure/

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information