COS20019

Cloud Computing Architecture

Lecture 01
Introduction to
Cloud Computing

1
 Content Today
◼ Introduction to Cloud Computing
 Virtualisation and Cloud Computing
 Cloud Service Models – IaaS, PaaS, SaaS
 Advantages of Cloud Computing
 Cloud Providers
◼ AWS Global Infrastructure
◼ Overview of AWS Services

COS80001 SDCC L01 Intro to Cloud 2

What is cloud computing?

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 3

What does cloud computing mean to you?

Take a moment to think of what cloud computing means to you and write a short
sentence.
Cloud computing defined
Cloud computing is the on-demand delivery of compute power, database,
storage, applications, and other IT resources via the internet with pay-as-you-
go pricing.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 4

Cloud computing is the on-demand delivery of compute power, database, storage,

applications, and other IT resources via the internet with pay-as-you-go pricing. These
resources run on server computers that are located in large data centers in different
locations around the world. When you use a cloud service provider like AWS, that
service provider owns the computers that you are using. These resources can be used
together like building blocks to build solutions that help meet business goals and satisfy
technology requirements.

To learn more about cloud computing and how it works, see

https://aws.amazon.com/what-is-cloud-computing/.
Infrastructure as software
Cloud computing enables you to stop thinking of your infrastructure as
hardware, and instead think of (and use) it as software.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 5

Cloud computing enables you to stop thinking of your infrastructure as hardware, and
instead think of (and use) it as software. But what does this mean?
Traditional computing model
• Infrastructure as hardware
• Hardware solutions:
• Require space, staff, physical security,
planning, capital expenditure
• Have a long hardware procurement
cycle
• Require you to provision capacity by
guessing theoretical maximum peaks

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 6

In the traditional computing model, infrastructure is thought of as hardware. Hardware

solutions are physical, which means they require space, staff, physical security, planning,
and capital expenditure.

In addition to significant upfront investment, another prohibitive aspect of traditional

computing is the long hardware procurement cycle that involves acquiring, provisioning,
and maintaining on-premises infrastructure.

With a hardware solution, you must ask if there is enough resource capacity or sufficient
storage to meet your needs, and you provision capacity by guessing theoretical
maximum peaks. If you don’t meet your projected maximum peak, then you pay for
expensive resources that stay idle. If you exceed your projected maximum peak, then
you don’t have sufficient capacity to meet your needs. And if your needs change, then
you must spend the time, effort, and money required to implement a new solution.

For example, if you wanted to provision a new website, you would need to buy the
hardware, rack and stack it, put it in a data center, and then manage it or have someone
else manage it. This approach is expensive and time-consuming.
Cloud computing model
• Infrastructure as software
• Software solutions:
• Are flexible
• Can change more quickly, easily, and
cost-effectively than hardware
solutions
• Eliminate the undifferentiated heavy-
lifting tasks

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 7

By contrast, cloud computing enables you to think of your infrastructure as software.

Software solutions are flexible. You can select the cloud services that best match your
needs, provision and terminate those resources on-demand, and pay for what you use.
You can elastically scale resources up and down in an automated fashion. With the cloud
computing model, you can treat resources as temporary and disposable. The flexibility
that cloud computing offers enables businesses to implement new solutions quickly and
with low upfront costs.

Compared to hardware solutions, software solutions can change much more quickly,
easily, and cost-effectively.

Cloud computing helps developers and IT departments avoid undifferentiated work like
procurement, maintenance, and capacity planning, thus enabling them to focus on what
matters most.

As cloud computing has grown in popularity, several different service models and
deployment strategies have emerged to help meet the specific needs of different users.
Each type of cloud service model and deployment strategy provides you with a different
level of control, flexibility, and management. Understanding the differences between
these cloud service models and deployment strategies can help you decide what set of
services is right for your needs.
 Virtualisation – is everywhere in computing
◼ Memory virtualisation
 Virtual memory

◼ Storage virtualisation
 Logical disks and file systems
 Networked attached storage → Cloud storage

◼ Network virtualisation
 VLANs (segmentation), VPNs (tunneling), VPCs

◼ Operating System virtualisation (virtual desktop)

 Multiple OS on the one computer (host-guest)

◼ Machine virtualisation
 Hyper-visors (e.g. Hyper-V, VMWare) allow multiple servers (virtual
machines) to be run on a single “metal” computer.

https://www.youtube.com/watch?v=KXkBZCe699A 8

COS80001 SDCC L01 Intro to Cloud 8

 Motivation to Virtualize
◼ Increased device utilization (particularly CPU utilization)
◼ Decreased device footprint
◼ Decreased power consumption
◼ Simplified operating system and application administration
◼ Ease of software provisioning and patch releases
◼ Device and storage scalability
◼ Increased user access to key resources
◼ Increased flexibility in supporting multiple operating system environments
◼ Improved use and management of software licenses
◼ Improved utilization reporting, which leads to improved capacity planning
◼ Improved disaster recovery and business continuity

COS80001 SDCC L01 Intro to Cloud 9

 Virtualisation and Automation
◼ Virtual environments are defined in software
◼ Software enables the creation and modification of virtual environments to
be automated
◼ Example: Extra web servers are automatically created when demand
increases

10

COS80001 SDCC L01 Intro to Cloud 10

 Not All Applications Suit Virtualization
◼ Applications with unique hardware requirements: If an application
requires a unique device or hardware device driver, the virtualization
software may be unable to support the device
◼ Graphics-intensive applications: If an application is graphics intensive,
such as a 3-D modeling program, the virtual device drivers may slow down
the I/O processing to an unacceptable level

11

COS80001 SDCC L01 Intro to Cloud 11

Cloud computing deployment models

Cloud Hybrid On-premises

(private cloud)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 12

There are three main cloud computing deployment models, which represent the cloud
environments that your applications can be deployed in:
• Cloud: A cloud-based application is fully deployed in the cloud, and all parts of the application
run in the cloud. Applications in the cloud have either been created in the cloud or have been
migrated from an existing infrastructure to take advantage of the benefits of cloud computing
(see https://aws.amazon.com/what-is-cloud-computing/). Cloud-based applications can be
built on low-level infrastructure pieces or they can use higher-level services that provide
abstraction from the management, architecting, and scaling requirements of core
infrastructure.
• Hybrid: A hybrid deployment is a way to connect infrastructure and applications between
cloud-based resources and existing resources that are not located in the cloud. The most
common method of hybrid deployment is between the cloud and existing on-premises
infrastructure. This model enables an organization to extend and grow their infrastructure into
the cloud while connecting cloud resources to internal systems.
• On-premises: Deploying resources on-premises, using virtualization and resource
management tools, is sometimes called private cloud. While on-premises deployment does
not provide many of the benefits of cloud computing, it is sometimes sought for its ability to
provide dedicated resources. In most cases, this deployment model is the same as legacy IT
infrastructure, but it might also use application management and virtualization technologies to
increase resource utilization.
Cloud service models

IaaS PaaS SaaS

(infrastructure as a (platform as a (software as a
service) service) service)

More control Less control

over IT resources over IT resources

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 13

There are three main cloud service models. Each model represents a different part of
the cloud computing stack and gives you a different level of control over your IT
resources:
• Infrastructure as a service (IaaS): Services in this category are the basic building
blocks for cloud IT and typically provide you with access to networking features,
computers (virtual or on dedicated hardware), and data storage space. IaaS provides
you with the highest level of flexibility and management control over your IT
resources. It is the most similar to existing IT resources that many IT departments and
developers are familiar with today.
• Platform as a service (PaaS): Services in this category reduce the need for you to
manage the underlying infrastructure (usually hardware and operating systems) and
enable you to focus on the deployment and management of your applications.
• Software as a service (SaaS): Services in this category provide you with a completed
product that the service provider runs and manages. In most cases, software as a
service refers to end-user applications. With a SaaS offering, you do not have to think
about how the service is maintained or how the underlying infrastructure is managed.
You need to think only about how you plan to use that particular piece of software. A
common example of a SaaS application is web-based email, where you can send and
receive email without managing feature additions to the email product or maintaining
the servers and operating systems that the email program runs on.
 Cloud service models

https://www.hostingadvice.com/how-to/iaas-vs-paas-vs-saas/ 14

COS80001 SDCC L01 Intro to Cloud 14

 Software as a Service (SaaS)

◼ SaaS provides a cloud-based foundation for software on

demand
◼ Web-delivered content that users access via a web browser
◼ The software can reside within any of the deployment-
model clouds

15

COS80001 SDCC L01 Intro to Cloud 15

 SaaS Defined
◼ A solution model in which users use a web browser to access
software that resides, along with the programs and user data, in
the cloud

16

COS80001 SDCC L01 Intro to Cloud 16

 SaaS Advantages

◼ Eliminate the need for an on-site data center

◼ Eliminate the need for application administration
◼ Allow customers to pay on demand for software use,
normally on a per-user basis
◼ Offer application, processor, and data storage scalability
◼ Offer device-independent access to applications
◼ Increase disaster recovery and business continuity

17

COS80001 SDCC L01 Intro to Cloud 17

 SaaS Disadvantages

◼ The biggest concern, or potential disadvantage, is that the data,

like the applications, reside in the cloud. Many companies are
concerned about letting go of their data
◼ Also, because the company does not own the solution, it can be
challenging or expensive to customize the application

◼ (government regulations)

18

COS80001 SDCC L01 Intro to Cloud 18

 Multitenant SaaS Solutions

SaaS applications are often

multitenant solutions; that
is, within the cloud, two or
more companies may share
the same server resources.

19

COS80001 SDCC L01 Intro to Cloud 19

 Platform as a Service (PaaS)

◼ PaaS provides the underlying hardware technology, such as

one or more servers (or virtual servers), operating systems,
database solutions, developer tools, and network support, for
developers to deploy their own solutions.
◼ The hardware and software within a PaaS solution is managed
by the platform provider.
◼ Developers need not worry about performing hardware or
operating system upgrades. Instead, developers can focus on
their own applications.
20

COS80001 SDCC L01 Intro to Cloud 20

 Platform as a Service (PaaS)
◼ Provide a collection of hardware and software resources that
developers can use to build and deploy applications within
the cloud.
◼ Depending on their needs, developers may use a Windows-
based PaaS solution or a Linux-based PaaS.

21

COS80001 SDCC L01 Intro to Cloud 21

 PaaS Advantages
◼ Developers eliminate the need to buy and maintain hardware,
and the need to install and manage operating system and
database software
◼ Because the computing resources no longer reside in the data
center, but rather in the cloud, the resources can scale on
demand and the company can pay for only resources it
consumes
◼ Further, because PaaS eliminates the developers’ need to
worry about servers, they can more quickly deploy their web-
based solutions
22

COS80001 SDCC L01 Intro to Cloud 22

 PaaS Disadvantages

◼ Some developers and administrators want finer control over the

underlying systems (versions, patch releases/applications, …)

23

COS80001 SDCC L01 Intro to Cloud 23

 Infrastructure as a Service (IaaS)

◼ IaaS provides a virtual data center within the cloud

◼ IaaS provides servers (physical and virtualized), cloud-based
data storage, and more
◼ Developers must install their own operating system, database
management software, and support software
◼ Then the developers (or the company’s system administrators)
must manage both the hardware and the software

24

COS80001 SDCC L01 Intro to Cloud 24

 IaaS Defined
An IaaS provider makes all of the computing hardware resources
available, and the customers, in turn, are responsible for installing
and managing the systems, which they can normally do, for the
most part, over the Internet.

25

COS80001 SDCC L01 Intro to Cloud 25

 What Data Centers Must Provide
◼ Access to high-speed and redundant Internet service
◼ Sufficient air conditioning to eliminate the heat generated by
servers and disk storage devices
◼ Conditioned power with the potential for uninterrupted power
supply in the short term and long term through the use of on-site
diesel powered generators
◼ Fire suppression systems
◼ Administrative staffing to support hardware, networks, and
operating systems
26

COS80001 SDCC L01 Intro to Cloud 26

 Cloud service models

https://www.plesk.com/blog/various/iaas-vs-paas-vs-saas-various-cloud-service-models-compared/ 27

COS80001 SDCC L01 Intro to Cloud 27

 Combining IaaS, PaaS, SaaS. Example AWS
Applications Virtual Desktops Collaboration and Sharing

Databases Analytics App Deployment and Mobile Services

Services Management
Cluster Queuing Containers
Relational Computing Identity
Orchestratio
Platform Real-time n
Dev/ops Tools
App Streaming Sync
Services
No SQL Data Resource Templates
Warehouse Transcoding Mobile Analytics
Usage Tracking
Data Email
Caching
Workflows Notifications
Search Monitoring and Logs

Foundation Compute Networking Storage

(Virtual, Auto-scaling (Object, Block and
Services and Load Balancing) Archive)

Infrastructure Regions Availability Zones Edge Locations

COS80001 SDCC L01 Intro to Cloud

 Section 1 key • Cloud computing is the on-demand delivery of IT
resources via the internet with pay-as-you-go pricing.
takeaways • Cloud computing enables you to think of (and use) your
infrastructure as software.
• There are three cloud service models: IaaS, PaaS, and
SaaS.
• There are three cloud deployment models: cloud,
hybrid, and on-premises or private cloud.
• Almost anything you can implement with traditional IT
can also be implemented as an AWS cloud computing
service.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 29

Some key takeaways from this section of the module include:

• Cloud computing is the on-demand delivery of IT resources via the internet with pay-
as-you-go pricing.
• Cloud computing enables you to think of (and use) your infrastructure as software.
• There are three cloud service models: IaaS, PaaS, and SaaS.
• There are three cloud deployment models: cloud, hybrid, and on-premises or private
cloud.
• There are many AWS service analogs for the traditional, on-premises IT space.
Section 2: Advantages of cloud
computing
Module 1: Cloud Concepts Overview

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.

Section 2: Advantages of cloud computing

Why are so many companies interested in moving to the cloud? This section presents six
advantages of cloud computing.
Trade capital expense for variable expense

Capital

Data center investment Pay only for the amount

based on forecast you consume

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 31

Advantage #1—Trade capital expense for variable expense: Capital expenses (capex)
are funds that a company uses to acquire, upgrade, and maintain physical assets such as
property, industrial buildings, or equipment. Do you remember the data center example
in the traditional computing model where you needed to rack and stack the hardware,
and then manage it all? You must pay for everything in the data center whether you use
it or not.

By contrast, a variable expense is an expense that the person who bears the cost can
easily alter or avoid. Instead of investing heavily in data centers and servers before you
know how you will use them, you can pay only when you consume resources and pay
only for the amount you consume. Thus, you save money on technology. It also enables
you to adapt to new applications with as much space as you need in minutes, instead of
weeks or days. Maintenance is reduced, so you can spend focus more on the core goals
of your business.
Massive economies of scale

Because of aggregate usage from all customers, AWS can achieve

higher economies of scale and pass savings on to customers.

AWS Cloud

Economies of scale Savings

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 32

Advantage #2—Benefit from massive economies of scale: By using cloud computing,

you can achieve a lower variable cost than you can get on your own. Because usage
from hundreds of thousands of customers is aggregated in the cloud, providers such as
AWS can achieve higher economies of scale, which translates into lower pay-as-you-go
prices.
Stop guessing capacity

Overestimated Underestimated Scaling on demand

server capacity server capacity

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 33

Advantage #3—Stop guessing capacity: Eliminate guessing about your infrastructure

capacity needs. When you make a capacity decision before you deploy an application,
you often either have expensive idle resources or deal with limited capacity. With cloud
computing, these problems go away. You can access as much or as little as you need,
and scale up and down as required with only a few minutes’ notice.
Increase speed and agility

Launch

Weeks between wanting resources Minutes between wanting

and having resources resources and having resources

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 34

Advantage #4—Increase speed and agility: In a cloud computing environment, new IT

resources are only a click away, which means that you reduce the time it takes to make
those resources available to your developers from weeks to just minutes. The result is a
dramatic increase in agility for the organization because the cost and time that it takes
to experiment and develop are significantly lower.
Stop spending money on
running and maintaining data centers

l
rol s
Pay ..ti…litie … ance g
… . … n..ten… . …apin
…. U…….. .a…. i… . . c
.
… …M . …
. … …..a…n..d…s..…….. … are
… … .…… . . L . ……...….a.…r…d.w. ….. …
…. …… .… .… … H. …… ……
. . … …..……...… .. .…
… . … . . Investment
…. …… .… …
. …. …..………..… …
…
. .. .… .…
… . … … . …
… .
. . … .
… … . ……….. …. …...…. . .…
… …. … … .. ……
… …. .
….
….

Running data centers Business and customers

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 35

Advantage #5—Stop spending money on running and maintaining data centers: Focus
on projects that differentiate your business instead of focusing on the infrastructure.
Cloud computing enables you to focus on your own customers instead of the heavy
lifting of racking, stacking, and powering servers.
Go global in minutes

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 36

Advantage #6—Go global in minutes: You can deploy your application in multiple AWS
Regions around the world with just a few clicks. As a result, you can provide a lower
latency and better experience for your customers simply and at minimal cost.
 Section 2 key • Trade capital expense for variable expense
takeaways • Benefit from massive economies of scale
• Stop guessing capacity
• Increase speed and agility
• Stop spending money on running and
maintaining data centers
• Go global in minutes

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 37

The key takeaways from this section of the module include the six advantages of cloud
computing:
• Trade capital expense for variable expense
• Massive economies of scale
• Stop guessing capacity
• Increase speed and agility
• Stop spending money on running and maintaining data centers
• Go global in minutes
 Features of Cloud-based Platforms
◼ Scalability. On demand resource scaling.
◼ Redundancy. Servers, storage, and networks.
◼ Cost benefits from resource pooling. Shares IT resources across a very
large number of companies, which provides cost savings to each.
◼ Outsourced server management. Provides an IT staff who maintain
operating systems and underlying support software.
◼ Low cost of entry. Companies do not need to invest in their own IT data
center.

COS80001 SDCC L01 Intro to Cloud 38

 Cloud Providers

https://www.statista.com/chart/18819/worldwide-market-share-of-leading-cloud-infrastructure-service-providers/ 39

COS80001 SDCC L01 Intro to Cloud 39

What is AWS?
• AWS is a secure cloud platform that offers a broad set of global cloud-based
products.
• AWS provides you with on-demand access to compute, storage, network,
database, and other IT resources and management tools.
• AWS offers flexibility.
• You pay only for the individual services you need, for as long as you use
them.
• AWS services work together like building blocks.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 40

Amazon Web Services (AWS) is a secure cloud platform that offers a broad set of global
cloud-based products. Because these products are delivered over the internet, you have
on-demand access to the compute, storage, network, database, and other IT resources
that you might need for your projects—and the tools to manage them. You can
immediately provision and launch AWS resources. The resources are ready for you to
use in minutes.

AWS offers flexibility. Your AWS environment can be reconfigured and updated on
demand, scaled up or down automatically to meet usage patterns and optimize
spending, or shut down temporarily or permanently. The billing for AWS services
becomes an operational expense instead of a capital expense.

AWS services are designed to work together to support virtually any type of application
or workload. Think of these services like building blocks, which you can assemble quickly
to build sophisticated, scalable solutions, and then adjust them as your needs change.
Similarities between AWS and traditional IT

Traditional, on-premises IT space AWS

Security
Security groups
Firewalls ACLs Administrators Network ACLs IAM

Networking
Router Network pipeline Switch Elastic Load Balancing Amazon VPC

On-premises Compute
servers Amazon EC2
AMI
instances

Storage and
DAS SAN NAS RDBMS
database Amazon EBS Amazon Amazon Amazon RDS
EFS S3

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 41

There are many similarities between AWS and the traditional, on-premises IT space:
• AWS security groups, network access control lists (network ACLs), and AWS Identity
and Access Management (IAM) are similar to firewalls, access control lists (ACLs), and
administrators.
• Elastic Load Balancing and Amazon Virtual Private Cloud (Amazon VPC) are similar to
routers, network pipelines, and switches.
• Amazon Machine Images (AMIs) and Amazon Elastic Compute Cloud (Amazon EC2)
instances are similar to on-premises servers.
• Amazon Elastic Block Store (Amazon EBS), Amazon Elastic File System (Amazon EFS),
Amazon Simple Storage Service (Amazon S3), and Amazon Relational Database
Service (Amazon RDS) are similar to direct attached storage (DAS), storage area
networks (SAN), network attached storage (NAS), and a relational database
management service (RDBMS).

With AWS services and features, you can do almost everything that you would want to
do with a traditional data center.
Section 1: AWS Global Infrastructure
Module 3: AWS Global Infrastructure Overview

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.

Introducing Section 1: AWS Global Infrastructure.

AWS Global Infrastructure
• The AWS Global Infrastructure is designed and built to deliver a flexible, reliable, scalable, and secure cloud computing
environment with high-quality global network performance.
• AWS continually updates its global infrastructure footprint. Visit one of the following web pages for current
infrastructure information:

• AWS Global Infrastructure Map:

https://aws.amazon.com/about-aws/global-
infrastructure/#AWS_Global_Infrastructure_Map
Choose a circle on the map to view summary
information about the Region represented by
the circle.
• Regions and Availability Zones:
https://aws.amazon.com/about-aws/global-
infrastructure/regions_az/
Choose a tab to view a map of the selected
geography and a list of Regions, Edge
locations, Local zones, and Regional Caches.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 43

To learn more about the AWS Regions that are currently available, use one of the
following links:
• https://aws.amazon.com/about-aws/global-
infrastructure/#AWS_Global_Infrastructure_Map
• https://aws.amazon.com/about-aws/global-infrastructure/regions_az/

These resources are updated frequently to show current and planned AWS
infrastructure.
AWS Regions
• An AWS Region is a geographical area.

• Data replication across Regions is controlled by

you.

• Communication between Regions uses AWS

backbone network infrastructure.

• Each Region provides full redundancy and

connectivity to the network.

• A Region typically consists of two or more

Availability Zones.
Example: London Region

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 44

The AWS Cloud infrastructure is built around Regions. AWS has 22 Regions worldwide. An AWS
Region is a physical geographical location with one or more Availability Zones. Availability Zones
in turn consist of one or more data centers.

To achieve fault tolerance and stability, Regions are isolated from one another. Resources in one
Region are not automatically replicated to other Regions. When you store data in a specific
Region, it is not replicated outside that Region.

It is your responsibility to replicate data across Regions, if your business needs require it.

AWS Regions that were introduced before March 20, 2019 are enabled by default. Regions that
were introduced after March 20, 2019—such as Asia Pacific (Hong Kong) and Middle East
(Bahrain)—are disabled by default. You must enable these Regions before you can use them. You
can use the AWS Management Console to enable or disable a Region.

Some Regions have restricted access. An Amazon AWS (China) account provides access to the
Beijing and Ningxia Regions only. To learn more about AWS in China, see:
https://www.amazonaws.cn/en/about-aws/china/. The isolated AWS GovCloud (US) Region is
designed to allow US government agencies and customers to move sensitive workloads into the
cloud by addressing their specific regulatory and compliance requirements.

For accessibility: Snapshot from the infrastructure.aws website that shows a picture of
downtown London including the Tower Bridge and the Shard. It notes that there are three
Availability Zones in the London region. End of accessibility description.
Selecting a Region

Data governance, legal

requirements

Proximity to customers
(latency)
Determine the right Region for
your services, applications, and Services available within
the Region
data based on these factors

Costs (vary by Region)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 45

There are a few factors that you should consider when you select the optimal Region or
Regions where you store data and use AWS services.

One essential consideration is data governance and legal requirements. Local laws
might require that certain information be kept within geographical boundaries. Such
laws might restrict the Regions where you can offer content or services. For example,
consider the European Union (EU) Data Protection Directive.

All else being equal, it is generally desirable to run your applications and store your data
in a Region that is as close as possible to the user and systems that will access them.
This will help you reduce latency. CloudPing is one website that you can use to test
latency between your location and all AWS Regions. To learn more about CloudPing, see:
http://www.cloudping.info/

Keep in mind that not all services are available in all Regions. To learn more, see:
https://aws.amazon.com/about-aws/global-infrastructure/regional-product-
services/?p=tgi&loc=4.

Finally, there is some variation in the cost of running services, which can depend on
which Region you choose. For example, as of this writing, running an On-Demand
t3.medium size Amazon Elastic Compute Cloud (Amazon EC2) Linux instance in the US
 East (Ohio) Region costs $0.0416 per hour, but running the same instance in the Asia
Pacific (Tokyo) Region costs $0.0544 per hour.

COS80001 SDCC L01 Intro to Cloud 45

Availability Zones
• Each Region has multiple Availability Zones.
AWS Cloud
• Each Availability Zone is a fully isolated partition of
Region eu-west-1
the AWS infrastructure.
Availability Zone eu-west-1a
• Availability Zones consist of discrete data centers
Data center
• They are designed for fault isolation
Data center
• They are interconnected with other Availability Zones by using
high-speed private networking Data center
• You choose your Availability Zones.
Availability Zone eu-west-1b
• AWS recommends replicating data and resources across
Availability Zones for resiliency.
Availability Zone eu-west-1c

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 46

Each AWS Region has multiple, isolated locations that are known as Availability Zones.

Each Availability Zone provides the ability to operate applications and databases that are
more highly available, fault-tolerant, and scalable than would be possible with a single
data center. Each Availability Zone can include multiple data centers (typically three),
and at full-scale, they can include hundreds of thousands of servers. They are fully
isolated partitions of the AWS Global Infrastructure. Availability Zones have their own
power infrastructure, and they are physically separated by many kilometers from other
Availability Zones—though all Availability Zones are within 100 km of each other.

All Availability Zones are interconnected with high-bandwidth, low-latency networking

over fully redundant, dedicated fiber that provides high-throughput between Availability
Zones. The network accomplishes synchronous replication between Availability Zones.

Availability Zones help build highly available applications. When an application is

partitioned across Availability Zones, companies are better isolated and protected from
issues such as lightning, tornadoes, earthquakes, and more.

You are responsible for selecting the Availability Zones where your systems will reside.
Systems can span multiple Availability Zones. AWS recommends replicating across
Availability Zones for resiliency. You should design your systems to survive the temporary
 or prolonged failure of an Availability Zone if a disaster occurs.

COS80001 SDCC L01 Intro to Cloud 46

AWS data centers
• AWS data centers are designed for
security.
• Data centers are where the data resides
and data processing occurs.
• Each data center has redundant power,
networking, and connectivity, and is
housed in a separate facility.
• A data center typically has 50,000 to
80,000 physical servers.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 47

The foundation for the AWS infrastructure is the data centers. Customers do not specify a data
center for the deployment of resources. Instead, an Availability Zone is the most granular level of
specification that a customer can make. However, a data center is the location where the actual
data resides. Amazon operates state-of-the-art, highly available data centers. Although rare,
failures can occur that affect the availability of instances in the same location. If you host all your
instances in a single location that is affected by such a failure, none of your instances will be
available.

Data centers are securely designed with several factors in mind:

Each location is carefully evaluated to mitigate environmental risk.

• Data centers have a redundant design that anticipates and tolerates failure while maintaining
service levels.
• To ensure availability, critical system components are backed up across multiple Availability
Zones.
• To ensure capacity, AWS continuously monitors service usage to deploy infrastructure to
support availability commitments and requirements.
• Data center locations are not disclosed and all access to them is restricted.
• In case of failure, automated processes move data traffic away from the affected area.

AWS uses custom network equipment sourced from multiple original device manufacturers
(ODMs). ODMs design and manufacture products based on specifications from a second
company. The second company then rebrands the products for sale.
Points of Presence
• AWS provides a global network of
Points of Presence locations
• Consists of edge locations and a
much smaller number of
Regional edge caches
• Used with Amazon CloudFront
• A global Content Delivery Network
(CDN), that delivers content to end
users with reduced latency

• Regional edge caches used for

content with infrequent access.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 48

Amazon CloudFront is a content delivery network (CDN) used to distribute content to

end users to reduce latency. Amazon Route 53 is a Domain Name System (DNS) service.
Requests going to either one of these services will be routed to the nearest edge
location automatically in order to lower latency.

AWS Points of Presence are located in most of the major cities around the world. By
continuously measuring internet connectivity, performance and computing to find the
best way to route requests, the Points of Presence deliver a better near real-time user
experience. They are used by many AWS services, including Amazon CloudFront,
Amazon Route 53, AWS Shield, and AWS Web Application Firewall (AWS WAF) services.

Regional edge caches are used by default with Amazon CloudFront. Regional edge
caches are used when you have content that is not accessed frequently enough to
remain in an edge location. Regional edge caches absorb this content and provide an
alternative to that content having to be fetched from the origin server.
AWS infrastructure features
• Elasticity and scalability
Physically distinct Backup
• Elastic infrastructure; dynamic adaption of capacity generators
• Scalable infrastructure; adapts to accommodate
growth Data center Data center Data center Data center

• Fault-tolerance Data center Data center Data center Data center

Availability Zone Availability Zone

• Continues operating properly in the presence of a
failure
• Built-in redundancy of components Data center Data center

Network
connectivity
• High availability Data center Data center

Availability Zone
• High level of operational performance
• Minimized downtime Uninterruptible Cooling
power supply AWS Region equipment
• No human intervention

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 49

Now that you have a good understanding of the major components that comprise the
AWS Global Infrastructure, let's consider the benefits provided by this infrastructure.

The AWS Global Infrastructure has several valuable features:

• First, it is elastic and scalable. This means resources can dynamically adjust to
increases or decreases in capacity requirements. It can also rapidly adjust to
accommodate growth.
• Second, this infrastructure is fault tolerant, which means it has built-in component
redundancy which enables it to continue operations despite a failed component.
• Finally, it requires minimal to no human intervention, while providing high availability
with minimal down time.
 Key takeaways • The AWS Global Infrastructure consists of Regions and
Availability Zones.

• Your choice of a Region is typically based on

compliance requirements or to reduce latency.
• Each Availability Zone is physically separate from other
Availability Zones and has redundant power,
networking, and connectivity.
• Edge locations, and Regional edge caches improve
performance by caching content closer to users.

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 50

Some key takeaways from this section of the module include:

• The AWS Global Infrastructure consists of Regions and Availability Zones.
• Your choice of a Region is typically based on compliance requirements or to reduce
latency.
• Each Availability Zone is physically separate from other Availability Zones and has
redundant power, networking, and connectivity.
• Edge locations, and Regional edge caches improve performance by caching content
closer to users.
Section 2: AWS services and service category
overview
Module 3: AWS Global Infrastructure Overview

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved.

Introducing Part 2: AWS Service and Service Category Overview.

AWS offers a broad set of global cloud-based products that can be used as building
blocks for common cloud architectures. Here is a look at how these cloud based
products are organized.
AWS foundational services

Applications Virtual desktops Collaboration and sharing

Databases Analytics Application Deployment and Mobile

Cluster services management Services
computing Queuing Containers Identity
Relational
Platform Real-time Orchestration DevOps tools Sync
Services App Streaming
NoSQL Data Resource templates Mobile
warehouse Transcoding
Usage tracking Analytics
Caching Data Email
Monitoring and logs Notifications
workflows Search

Compute (virtual,
Foundation Networking Storage (object,
automatic scaling, and
Services block, and archive)
load balancing)

Infrastructure Regions Availability Zones Edge locations

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 52

As discussed previously, the AWS Global Infrastructure can be broken down into three
elements: Regions, Availability Zones, and Points of Presence, which include edge
locations. This infrastructure provides the platform for a broad set of services, such as
networking, storage, compute services, and databases—and these services are delivered
as an on-demand utility that is available in seconds, with pay-as-you-go pricing.

For accessibility: Marketing diagram showing infrastructure at the bottom, consisting of

Regions, Availability Zones, and edge locations. The next level up is labeled Foundational
Services and includes graphics for compute, networking, and storage. That level is
highlighted. Next level up is platform services that includes databases, analytics, app
services, deployment and management, and mobile services. Top layer is labeled
applications and includes virtual desktops and collaboration and sharing. End of
accessibility description.
AWS categories of services

Analytics Application AR and VR Blockchain Business Compute

Integration Applications

Cost Customer Database Developer Tools End User Game Tech

Management Engagement Computing

Internet Machine Management and Media Services Migration and Mobile

of Things Learning Governance Transfer

Networking and Robotics Satellite Security, Identity, and Storage

Content Delivery Compliance

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 53

AWS offers a broad set of cloud-based services. There are 23 different product or service
categories, and each category consists of one or more services. This course will not attempt to
introduce you to each service. Rather, the focus of this course is on the services that are most
widely used and offer the best introduction to the AWS Cloud. This course also focuses on
services that are more likely to be covered in the AWS Certified Cloud Practitioner exam.

The categories that this course will discuss are highlighted on the slide: Compute, Cost
Management, Database, Management and Governance, Networking and Content Delivery,
Security, Identity, and Compliance, and Storage.

To learn more about AWS products, see Cloud Products at https://aws.amazon.com/products/.

All AWS products are organized into the service categories that are shown here. For example, if
you click Compute, you will see that Amazon Elastic Compute Cloud (Amazon EC2) is first on the
list. The compute category also lists many other products and services.

If you click Amazon EC2, it takes you to the Amazon EC2 page. Each product page provides a
detailed description of the product and lists some of its benefits.

Explore the different service groups to understand the categories and services within them. Now
that you know how to locate information about different services, this module will discuss the
highlighted service categories. The next seven slides list the individual services —within each of
the categories highlighted above—that this course will discuss.
Storage service category

AWS storage services

Amazon Simple Storage Amazon Elastic Block Amazon Elastic

Service (Amazon S3) Store (Amazon EBS) File System
Photo from https://www.pexels.com/photo/black-and-grey-device-159282/ (Amazon EFS)

Amazon Simple Storage

Service
Glacier
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 54

AWS storage services include the services listed here, and many others.

Amazon Simple Storage Service (Amazon S3) is an object storage service that offers scalability,
data availability, security, and performance. Use it to store and protect any amount of data for
websites, mobile apps, backup and restore, archive, enterprise applications, Internet of Things
(IoT) devices, and big data analytics.

Amazon Elastic Block Store (Amazon EBS) is high-performance block storage that is designed for
use with Amazon EC2 for both throughput and transaction intensive workloads. It is used for a
broad range of workloads, such as relational and non-relational databases, enterprise
applications, containerized applications, big data analytics engines, file systems, and media
workflows.

Amazon Elastic File System (Amazon EFS) provides a scalable, fully managed elastic Network File
System (NFS) file system for use with AWS Cloud services and on-premises resources. It is built to
scale on demand to petabytes, growing and shrinking automatically as you add and remove files.
It reduces the need to provision and manage capacity to accommodate growth.

Amazon Simple Storage Service Glacier is a secure, durable, and extremely low-cost Amazon S3
cloud storage class for data archiving and long-term backup. It is designed to deliver 11 9s of
durability, and to provide comprehensive security and compliance capabilities to meet stringent
regulatory requirements.
Compute service category

AWS Compute services

Amazon EC2 Amazon EC2 Amazon Elastic Amazon EC2

Auto Scaling Container Service Container Registry
Photo from https://www.pexels.com/photo/technology-computer-lines-board-50711/ (Amazon ECS)

AWS Elastic AWS Lambda Amazon Elastic AWS Fargate

Beanstalk Kubernetes Service
(Amazon EKS)
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 55

AWS compute services include the services listed here, and many others.

Amazon Elastic Compute Cloud (Amazon EC2) provides resizable compute capacity as virtual
machines in the cloud.

Amazon EC2 Auto Scaling enables you to automatically add or remove EC2 instances according
to conditions that you define.

Amazon Elastic Container Service (Amazon ECS) is a highly scalable, high-performance container
orchestration service that supports Docker containers.

Amazon Elastic Container Registry (Amazon ECR) is a fully-managed Docker container registry
that makes it easy for developers to store, manage, and deploy Docker container images.

AWS Elastic Beanstalk is a service for deploying and scaling web applications and services on
familiar servers such as Apache and Microsoft Internet Information Services (IIS).

AWS Lambda enables you to run code without provisioning or managing servers. You pay only for
the compute time that you consume. There is no charge when your code is not running.

Amazon Elastic Kubernetes Service (Amazon EKS) makes it easy to deploy, manage, and scale
containerized applications that use Kubernetes on AWS.

AWS Fargate is a compute engine for Amazon ECS that allows you to run containers without
having to manage servers or clusters.
Database service category

AWS Database services

Amazon Relational Amazon Aurora Amazon Redshift

Database Service

Amazon
DynamoDB
Photo from https://aws.amazon.com/compliance/data-center/data-centers/

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 56

AWS database services include the services listed here, and many others.

Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate,
and scale a relational database in the cloud. It provides resizable capacity while
automating time-consuming administration tasks such as hardware provisioning,
database setup, patching, and backups.

Amazon Aurora is a MySQL and PostgreSQL-compatible relational database. It is up to

five times faster than standard MySQL databases and three times faster than standard
PostgreSQL databases.

Amazon Redshift enables you to run analytic queries against petabytes of data that is
stored locally in Amazon Redshift, and directly against exabytes of data that are stored in
Amazon S3. It delivers fast performance at any scale.

Amazon DynamoDB is a key-value and document database that delivers single-digit

millisecond performance at any scale, with built-in security, backup and restore, and in-
memory caching.
Networking and content delivery service category

AWS networking
and content delivery services

Amazon VPC Elastic Load Amazon AWS Transit

Balancing CloudFront Gateway

Amazon AWS Direct AWS VPN

Route 53 Connect
Photo by Umberto on Unsplash

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 57

AWS networking and content delivery services include the services listed here, and many others.

Amazon Virtual Private Cloud (Amazon VPC) enables you to provision logically isolated sections
of the AWS Cloud.

Elastic Load Balancing automatically distributes incoming application traffic across multiple
targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions.

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data,
videos, applications, and application programming interfaces (APIs) to customers globally, with
low latency and high transfer speeds.

AWS Transit Gateway is a service that enables customers to connect their Amazon Virtual Private
Clouds (VPCs) and their on-premises networks to a single gateway.

Amazon Route 53 is a scalable cloud Domain Name System (DNS) web service designed to give
you a reliable way to route end users to internet applications. It translates names (like
www.example.com) into the numeric IP addresses (like 192.0.2.1) that computers use to connect
to each other.

AWS Direct Connect provides a way to establish a dedicated private network connection from
your data center or office to AWS, which can reduce network costs and increase bandwidth
throughput.

AWS VPN provides a secure private tunnel from your network or device to the AWS global
network.
Security, identity, and compliance service category

AWS security, identity,

and compliance services

AWS Identity and Access AWS Amazon Cognito

Management (IAM) Organizations
Photo by Paweł Czerwiński on Unsplash

AWS Artifact AWS Key AWS Shield

Management
Service
© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 58

AWS security, identity, and compliance services include the services listed here, and
many others.

AWS Identity and Access Management (IAM) enables you to manage access to AWS
services and resources securely. By using IAM, you can create and manage AWS users
and groups. You can use IAM permissions to allow and deny user and group access to
AWS resources.

AWS Organizations allows you to restrict what services and actions are allowed in your
accounts.

Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and
mobile apps.

AWS Artifact provides on-demand access to AWS security and compliance reports and
select online agreements.

AWS Key Management Service (AWS KMS) enables you to create and manage keys. You
can use AWS KMS to control the use of encryption across a wide range of AWS services
and in your applications.
 AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that
safeguards applications running on AWS.

COS80001 SDCC L01 Intro to Cloud 58

AWS cost management service category

AWS cost management

services

AWS Cost and AWS Budgets AWS Cost

Photo by Alexander Mils on Unsplash Usage Report Explorer

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 59

AWS cost management services include the services listed here, and others.

The AWS Cost and Usage Report contains the most comprehensive set of AWS cost and
usage data available, including additional metadata about AWS services, pricing, and
reservations.

AWS Budgets enables you to set custom budgets that alert you when your costs or
usage exceed (or are forecasted to exceed) your budgeted amount.

AWS Cost Explorer has an easy-to-use interface that enables you to visualize,
understand, and manage your AWS costs and usage over time.
Management and governance service category

AWS management and

governance services

AWS Management AWS Config Amazon AWS Auto

Console CloudWatch Scaling
Photo by Marta Branco from Pexels

AWS Command AWS Trusted AWS Well- AWS

Line Interface Advisor Architected Tool CloudTrail

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 60

AWS management and governance services include the services listed here, and others.

The AWS Management Console provides a web-based user interface for accessing your
AWS account.

AWS Config provides a service that helps you track resource inventory and changes.

Amazon CloudWatch allows you to monitor resources and applications.

AWS Auto Scaling provides features that allow you to scale multiple resources to meet
demand.

AWS Command Line Interface provides a unified tool to manage AWS services.

AWS Trusted Advisor helps you optimize performance and security.

AWS Well-Architected Tool provides help in reviewing and improving your workloads.

AWS CloudTrail tracks user activity and API usage.

Simple solution example

Networking Compute Database Storage

AWS Cloud

Virtual Private Cloud (VPC)

Amazon
DynamoDB
Users Amazon S3

Amazon EC2

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 61

For example, say you’re building a database application. Your customers might be
sending data to your Amazon Elastic Compute Cloud (Amazon EC2) instances, which is a
service in the compute category. These EC2 servers batch the data in one-minute
increments and add an object per customer to Amazon Simple Storage Service (Amazon
S3), the AWS storage service you’ve chosen to use. You can then use a nonrelational
database like Amazon DynamoDB to power your application, for example, to build an
index so that you can find all the objects for a given customer that were collected over a
certain period. You might decide to run these services inside an Amazon Virtual Private
Cloud (Amazon VPC), which is a service in the networking category.

The purpose of this simple example is to illustrate that you can select web services from
different categories and use them together to build a solution (in this case, a database
application). Of course, the solutions you build can be quite complex.
Three ways to interact with AWS

AWS Management Console

Easy-to-use graphical interface

Command Line Interface (AWS CLI)

Access to services by discrete commands or scripts

Software Development Kits (SDKs)

Access services directly from your code (such as Java, Python, and others)

© 2022, Amazon Web Services, Inc. or its affiliates. All rights reserved. 62

You might wonder how to access the broad array of services that are offered by AWS.
There are three ways to create and manage resources on the AWS Cloud:
• AWS Management Console: The console provides a rich graphical interface to a
majority of the features offered by AWS. (Note: From time to time, new features
might not have all of their capabilities included in the console when the feature
initially launches.)
• AWS Command Line Interface (AWS CLI): The AWS CLI provides a suite of utilities
that can be launched from a command script in Linux, macOS, or Microsoft Windows.
• Software development kits (SDKs): AWS provides packages that enable accessing
AWS in a variety of popular programming languages. This makes it easy to use AWS in
your existing applications and it also enables you to create applications that deploy
and monitor complex systems entirely through code.

All three options are built on a common REST-like API that serves as the foundation of
AWS.

To learn more about tools you can use to develop and manage applications on AWS, see
https://aws.amazon.com/tools/.
 END OF SLIDES

63

COS80001 SDCC L01 Intro to Cloud 63