# Cloud Computing
Cloud computing is a technology that enables users to access computing resources such as servers, storage, databases, networking, software, and analytics over the internet. Instead of maintaining physical hardware and infrastructure, businesses and individuals can use cloud providers like AWS, Microsoft Azure, or Google Cloud to deploy and manage applications on a pay-as-you-go basis.

### Why do we need cloud computing?
Cloud computing solves several challenges faced by traditional `on-premise` IT Infrastructure.<br>
`For example,` buyers purchase products on an e-commerce website, during special promotions or sales `traffic surges`. More visitors equals more demand on the website's infrastructure. If the e-commerce site can not handle the spike, the site slows down or even crashes. Frustrated users might purchase products from competitor websites, and that's a missed opportunity. To solve this problem company can upgrade their infrastructure. However, if traffic drops again, they are stuck paying for unused capacity.
1. Cost-Efficiency:
   - No Need for Expensive Hardware
   - Pay-as-You-Go
2. Scalability:
   - Handle Growth Easily: If your business grows or your app gets more users, you can quickly scale up your resources (like storage, processing power, or bandwidth) without buying new hardware.
   - Flexibility: You can also scale down when demand decreases, so you’re not wasting resources.
3. Accessibility:
   - Access data and applications from anywhere with an internet connection.
   - Supports remote work and global collaboration.
4. Reliability and Availability:
   - Always On: Cloud providers have multiple servers and data centers, so if one fails, your data and apps are still accessible from another location.
   - Backup and Recovery: Cloud services often include automatic backups, so you don’t lose your data even if something goes wrong.
5. Speed and Performance:
   - Fast Deployment: You can set up and deploy applications or services in minutes, rather than waiting weeks or months to set up physical infrastructure.
   - Global Reach: Cloud providers have data centers all over the world, so your apps and services can run faster for users no matter where they are and Reduces latency and improves user experience.
6. Security: Cloud platforms offer advanced security measures, including encryption and multi-factor authentication.
7. Disaster Recovery:
   - Data Protection: If there’s a natural disaster, hardware failure, or cyberattack, your data is safe in the cloud and can be quickly restored.

### Cloud Computing Architecture
Cloud computing architecture is the design and structure of how cloud services are built and delivered.

#### Key Components:
1. Frontend:
2. Backend: The backend provides computing resources and services to handle client requests. It includes:
   - Cloud Infrastructure: Physical and virtual resources such as servers, storage, and networking components.
   - Cloud Storage: Data storage systems like AWS S3, Google Cloud Storage, and Azure Blob Storage.
   - Virtualization & Hypervisors: Software like VMware, Hyper-V, and KVM that manage virtual machines.
   - Compute Resources: Virtual machines (VMs), containers (Docker, Kubernetes), and serverless computing (AWS Lambda, Azure Functions).
   - Databases & Big Data Services: Cloud-based databases (Amazon RDS, Google BigQuery, Azure SQL) for structured and unstructured data.
   - Security & Management Services: Identity management, encryption, and monitoring tools like AWS IAM, Azure Security Center, and Google Cloud IAM.
3. Networking:
   - Cloud networking connects users to cloud services securely and efficiently.
   - Internet Connectivity: Provides access to cloud services from any location.
   - Load Balancers: Distributes traffic across multiple servers to improve performance.
   - Firewalls & Security Groups: Protect cloud resources from unauthorized access.
   - CDN (Content Delivery Network): Improves content delivery speed by caching data at multiple locations.

### Cloud Service Model
1. IaaS
2. PaaS
3. SaaS


#### IaaS:
IaaS provides virtualized computing resources over the internet, such as `virtual machines, storage, and networking`. Users manage the operating systems, applications, and data, while the provider manages the hardware.

Trade-Offs:
1. Pros:
   - Full control over infrastructure.
   - Scalability – Pay for what you use and scale up/down as needed.
   - Flexibility: Choose your OS, storage, and configurations.
   - Cost-Effective: 
     - No upfront infrastructure investment.Highly scalable and flexible.
     - Pay-as-you-go pricing.
   - Useful for hosting web applications and disaster recovery solutions.
2. Cons:
   - Complexity: Requires expertise in managing servers, security, and configurations.
   - Security Responsibilities: You need to configure security settings correctly.
   - Operational Overhead – You are responsible for system maintenance, patching, and monitoring.
3. Providers: Amazon EC2 (AWS), Google Compute Engine (GCE), Microsoft Azure Virtual Machines.

#### PaaS:
PaaS provides a complete development and deployment environment, including operating systems, databases, runtime environments, and development tools.

Trade-Offs:
1. Pros:
   - Developer Productivity: No need to manage servers or infrastructure.
   - Built-in Scalability: Automatically adjusts to traffic demands.
   - Security & Compliance: Cloud providers handle patches and security updates.
   - Use-case: web applications, APIs, or microservices.
2. Cons:
   - Limited Control: Restricted customization of OS and networking.
   - Vendor Lock-in: Hard to migrate applications across providers.
   - Performance Limitations: Not suitable for applications requiring deep infrastructure-level optimization.
3. Providers: AWS Elastic Beanstalk Google App Engine Microsoft Azure App Services.

#### SaaS:
SaaS provides fully managed software applications delivered over the internet. Users do not manage infrastructure, OS, or runtime environments.

Trade-Offs:
1. Pros:
   - Ease of Use: No installation or maintenance required.
   - Cost Savings: No infrastructure or development costs.
   - Accessibility: Available from any device with an internet connection.
2. Cons:
   - Limited Customization: You cannot modify core software functionality.
   - Security Concerns: Sensitive data is stored on third-party servers.
   - Data Portability Issues – Exporting/migrating data can be challenging.
3. Providers: Google Workspace (Gmail, Docs, Drive) Microsoft 365 (Word, Excel, Teams) Salesforce (CRM software).

#### Summary
1. Comparison: IaaS vs. PaaS vs. SaaS

| Feature               | IaaS                    | PaaS                 | SaaS                   |
|-----------------------|-------------------------|----------------------|------------------------|
| **Control**           | High                    | Medium               | Low                    |
| **Customization**     | Full                    | Limited              | None                   |
| **Management Overhead** | High                    | Medium               | Low                    |
| **Scalability**       | High                    | High                 | Managed by provider    |
| **Best for**          | IT teams, DevOps, custom infrastructure | Developers, app deployment | End-users, business apps |

2. Choosing the Right Cloud Service Model

| **Use Case**                             | **Best Model**  |
|------------------------------------------|-----------------|
| Hosting virtual machines, databases, storage | IaaS            |
| Deploying applications without managing servers | PaaS            |
| Using ready-made software like email, CRM, ERP | SaaS            |
| Developing AI/ML applications            | PaaS            |
| Running legacy applications              | IaaS            |
| Managing business collaboration tools    | SaaS            |

### Cloud Deployment
Cloud deployment models define how cloud resources are hosted, who manages them, and their accessibility.
1. Public
2. Private
3. Hybrid
4. Multi-Cloud
5. Community Cloud

#### Public Cloud
Public cloud services are provided over the internet and shared by multiple users. They are scalable, cost-effective, and managed by third-party providers like Azure, AWS, or Google Cloud.

Trade-offs:
1. Use-Case:
   - Startups and SMBs using SaaS solutions (e.g., Microsoft 365, Google Workspace)
   - Businesses needing scalable infrastructure for web applications
   - DevOps teams using PaaS for development/testing environments
2. Pros:
   - Scalability: Resources can be scaled up or down quickly.
   - Cost-Efficiency: Pay-as-you-go pricing avoids upfront investment.
3. Cons:
   - Limited Control: Users rely on the provider for infrastructure and security.
   - Security Concerns: Shared resources introduce compliance risks.
4. Providers:
   - Azure: Azure Virtual Machines, Azure SQL Database, Azure App Service
   - AWS: Amazon EC2, AWS Lambda, Amazon S3
5. Service Model:
   - IaaS: Azure VMs, AWS EC2 provide virtualized computing power.
   - PaaS: Azure App Service, AWS Lambda allow code deployment without managing servers.
   - SaaS: Office 365, Dropbox, and Salesforce operate entirely in the cloud.


#### Private Cloud
A private cloud is a cloud computing environment dedicated to a single organization, either hosted on-premises or by a third-party provider.

Trade-offs:
1. Use-Case:
   - Enterprises with strict security & compliance requirements (e.g., banking, healthcare)
   - Large corporations needing customized infrastructure
   - Organizations running legacy applications requiring dedicated resources
2. Pros:
   - High Security: Full control over data, networking, and security policies.
   - Customizable: Can be tailored to meet specific business needs.
3. Cons:
   - Expensive: High upfront and maintenance costs.
   - Complex Management: Requires skilled IT staff to maintain.
4. Providers:
   - Azure: Azure Stack, Azure VMware Solution
   - AWS: AWS Outposts, VMware Cloud on AWS
5. Service Model:
   - IaaS: Azure Stack, AWS Outposts provide dedicated infrastructure.
   - PaaS: Private cloud environments can run PaaS solutions like Kubernetes.
   - SaaS: On-premises ERP and CRM applications hosted in private cloud.

#### Hybrid
Hybrid cloud combines public and private clouds, allowing data and applications to be shared between them. It offers flexibility and cost optimization.

Trade-offs:
1. Use-Case:
   - Enterprises with seasonal workloads needing on-demand scalability.
   - Organizations moving from on-prem to the cloud in stages.
   - Businesses using cloud backup for disaster recovery.
2. Pros:
   - Flexibility: Organizations can use both private and public clouds as needed.
   - Cost-Effective: Sensitive workloads stay on-prem, while public cloud handles demand spikes.
3. Cons:
   - Complex Integration: Managing hybrid environments requires strong governance.
   - Security Challenges: Need to ensure secure data transfer between environments.
4. Providers:
   - Azure: Azure Arc, Azure ExpressRoute
   - AWS: AWS Direct Connect, AWS Storage Gateway
5. Service Model:
   - IaaS: Hybrid cloud VMs connect on-premise servers with cloud instances.
   - PaaS: Hybrid Kubernetes (Azure Kubernetes Service, Amazon EKS).
   - SaaS: Hybrid Office 365 setup with on-premises AD


#### Multi-Cloud
Multi-cloud involves using services from multiple cloud providers (e.g., Azure, AWS, Google Cloud) to avoid vendor lock-in and leverage the best features of each.

Trade-offs:
1. Use-Case:
   - Avoid Vendor Lock-In – Prevent dependency on a single cloud provider.
   - Resilience & Disaster Recovery – Failover across clouds ensures uptime.
   - Best-of-Breed Solutions – Use specialized services from different clouds (e.g., Azure AI, AWS Lambda, Google Cloud BigQuery).
   - Compliance Flexibility – Store sensitive data in different regions to meet regulatory requirements.
2. Pros:
   - Avoid Vendor Lock-In – Prevent dependency on a single cloud provider.
   - Resilience & Disaster Recovery – Failover across clouds ensures uptime.
   - Best-of-Breed Solutions – Use specialized services from different clouds (e.g., Azure AI, AWS Lambda, Google Cloud BigQuery).
   - Compliance Flexibility – Store sensitive data in different regions to meet regulatory requirements.
3. Cons:
   - Complex Management – Requires tools like Kubernetes, Terraform, or multi-cloud management platforms (e.g., HashiCorp Consul).
   - Security Risks – Different security policies across clouds create vulnerabilities.
   - Cost Management – Need for FinOps tools (e.g., Azure Cost Management, AWS Cost Explorer).
   - Networking Challenges – High latency and interoperability issues.
4. Providers:
   -  Azure Arc – Manage on-premises and multi-cloud environments.
   -  Azure Traffic Manager – Load balancing across multi-cloud resources.
   -  Azure Security Center – Unified security monitoring for multiple clouds.
   -  AWS Outposts – Extend AWS services to on-prem or other cloud environments.
   -  AWS CloudFormation – Infrastructure as code for AWS and beyond.
   -  AWS Transit Gateway – Connect multiple cloud networks efficiently.
5. Service Model:
   - IaaS: Azure VMs + AWS EC2.
     - Multi-cloud IaaS ensures high availability and avoids dependency on a single provider.
     - Running workloads across multiple providers for redundancy.
   - PaaS: Azure App Service + Google App Engine.
     - Developing apps that leverage the strengths of multiple platforms
     - Multi-cloud PaaS allows businesses to use the best tools from different providers.
   - SaaS: Microsoft 365 + Google Workspace
     - Using different SaaS tools for collaboration and productivity.
     - Multi-cloud SaaS provides flexibility and avoids reliance on a single vendor.

#### Community Cloud
Community clouds are shared infrastructure among several organizations with common goals or compliance requirements, such as governmental or educational institutions.

Trade-offs:
1. Use-Case:
   - Government agencies sharing a secure cloud infrastructure.
   - Universities collaborating on research using cloud computing.
   - Healthcare providers maintaining HIPAA-compliant cloud services
2. Pros:
   - Cost Sharing: Multiple organizations share expenses.
   - Compliance Ready: Designed for specific regulatory needs.
3. Cons:
   - Limited Customization: Organizations must align with shared policies.
   - Not Always Scalable: May lack the elasticity of public clouds.
4. Providers:
   - Azure: Azure Government Cloud 
   - AWS: AWS GovCloud, AWS for Education
5. Service Model:
   - IaaS: Shared infrastructure with virtualized servers.
   - PaaS: Secure community platforms for industry-specific apps.
   - SaaS: Government and educational platforms (e.g., Azure Government, AWS GovCloud).

#### Summary
Comparison of Service Models and Deployment Models

| Service Model                    | Cloud Deployment Model   | Azure Services                                             | AWS Services                                      |
|----------------------------------|--------------------------|------------------------------------------------------------|---------------------------------------------------|
| **Infrastructure as a Service (IaaS)** | Public Cloud             | Azure Virtual Machines (VMs), Azure Blob Storage, Azure Load Balancer | Amazon EC2, Amazon S3, AWS Elastic Load Balancer (ELB) |
|                                  | Private Cloud            | Azure Stack Hub, Azure Virtual Network (VNet), Azure Dedicated Host | AWS Outposts, Amazon VPC, AWS Dedicated Hosts         |
|                                  | Hybrid Cloud             | Azure Arc, Azure ExpressRoute, Azure Backup                | AWS Direct Connect, AWS Storage Gateway, AWS Snowball |
|                                  | Community Cloud          | Azure Government Cloud (IaaS), Azure High-Performance Computing (HPC) | AWS GovCloud (IaaS), AWS ParallelCluster              |
| **Platform as a Service (PaaS)** | Public Cloud             | Azure App Service, Azure Kubernetes Service (AKS), Azure SQL Database | AWS Elastic Beanstalk, Amazon RDS, AWS Lambda           |
|                                  | Private Cloud            | Azure Stack PaaS, Azure Functions in Private Cloud         | AWS Outposts with RDS, AWS PrivateLink for PaaS         |
|                                  | Hybrid Cloud             | Azure Arc for Kubernetes, Azure Hybrid SQL                 | AWS Outposts with EKS, AWS Lambda in Hybrid Cloud       |
|                                  | Community Cloud          | Azure Government Cloud (PaaS), Azure Cognitive Services for Government | AWS GovCloud (PaaS), AWS Comprehend Medical              |
| **Software as a Service (SaaS)** | Public Cloud             | Microsoft 365, Azure DevOps, Power BI                      | Amazon WorkDocs, AWS Managed Workflows                   |
|                                  | Private Cloud            | Microsoft Dynamics 365 Private Deployment                  | AWS Managed Services for Enterprise SaaS                 |
|                                  | Hybrid Cloud             | Hybrid Office 365 with On-Premises AD                      | AWS WorkSpaces with Hybrid AD                            |
|                                  | Community Cloud          | Azure Government SaaS (Microsoft 365 Government)           | AWS GovCloud SaaS (WorkMail, WorkDocs for Government)    |

**Azure**
| Deployment Model | IaaS                        | PaaS                          | SaaS                       |
|------------------|-----------------------------|-------------------------------|----------------------------|
| **Public Cloud** | Azure Virtual Machines      | Azure App Service             | Microsoft 365              |
| **Private Cloud**| Azure Stack HCI             | Azure Arc-enabled Kubernetes  | Self-hosted ERP/CRM systems|
| **Hybrid Cloud** | Azure Arc-enabled servers   | Azure Arc-enabled Kubernetes  | Microsoft 365 + on-premises AD |
| **Multi-Cloud**  | Azure VMs + AWS EC2         | Azure App Service + Google App| Microsoft 365 + Google Workspace |



### Cloud Computing technologies
1. Virtualization – Enables multiple virtual machines (VMs) on a single physical server.
2. Containers & Kubernetes – Lightweight, scalable application deployment.
3. Serverless Computing – Runs functions on demand (AWS Lambda, Azure Functions).
4. Edge Computing – Processes data closer to users for low latency.

### Virtualization
Virtualization is the process of creating a virtual version of computing resources such as servers, storage, networks, or operating systems. It allows multiple virtual instances to run on a single physical machine, improving resource utilization, scalability, and cost efficiency.
1. Type 1 (Bare Metal): VMware ESXi, Microsoft Hyper-V, KVM
2. Type 2 (Hosted): Oracle VirtualBox, VMware Workstation


#### Types of Virtualization
1. **Server Virtualization:** Multiple virtual servers run on a single physical server using a hypervisor.
   - Running multiple applications on the same hardware.
   - Reducing server sprawl and improving utilization.
   - **Azure**: Azure Virtual Machines (VMs) running on Hyper-V-based virtualization.
   - **AWS**: Amazon EC2 instances running on Xen or Nitro hypervisor.
2. **Storage Virtualization:** Abstracting physical storage resources into a single logical pool for better management.
   - Centralized storage management.
   - High availability and scalability for large-scale applications.
   - Azure: Azure Storage Accounts, Azure Blob Storage.
   - AWS: Amazon S3, EBS (Elastic Block Store).
3. **Network Virtualization:** Virtualizing network components like routers, switches, and firewalls to create flexible and scalable networks.
   - Isolating environments for security (e.g., multi-tenant architecture).
   - Improving network flexibility and scalability.
   - Azure: Azure Virtual Network (VNet), Azure VPN Gateway.
   - AWS: AWS VPC (Virtual Private Cloud), AWS Transit Gateway.
4. **Desktop Virtualization:** Running desktop environments on virtual machines instead of physical computers.
   - Secure remote work environments.
   - Reducing hardware costs by using thin clients.
   - Azure: Azure Virtual Desktop (AVD).
   - AWS: Amazon WorkSpaces (DaaS - Desktop as a Service).
5. **Application Virtualization:** Running applications in isolated environments without requiring full OS installation.
   - Running applications on different OS platforms.
   - Deploying and managing software without compatibility issues.
   - Azure: Azure App Service (PaaS), Windows Virtual Desktop.
   - AWS: AWS AppStream 2.0.
6. **Data Virtualization:** Abstracting data storage across multiple sources to create a unified view.
   - Real-time data integration from multiple sources.
   - Simplifying data analytics and reporting.
   - Azure: Azure Synapse Analytics, Azure Data Factory.
   - AWS: AWS Glue, Amazon Redshift Spectrum.

#### Trade-offs of Virtualization

| **Factor**     | **Benefits**                            | **Challenges**                                      |
|----------------|-----------------------------------------|-----------------------------------------------------|
| **Cost**       | Reduced hardware costs, better resource utilization | High initial investment in setup                    |
| **Scalability**| Easily scale up/down resources          | Performance overhead due to hypervisor layer         |
| **Performance**| Efficient use of computing resources    | Slight performance loss compared to bare metal       |
| **Security**   | Better isolation of workloads           | Virtual machine escape attacks are a risk            |
| **Management** | Easier deployment and monitoring        | Complexity in managing multiple VMs and dependencies |


#### Hypervisior
A hypervisor is a software layer or hardware-based system that enables virtualization by allowing multiple virtual machines (VMs) to run on a single physical machine. It essentially creates and manages virtual environments where each virtual machine operates independently with its own `OS and resources`.
1. Type 1 Hypervisor (Bare Metal): A Type 1 hypervisor runs directly on the physical hardware and does not require a host operating system (OS). It is also known as a bare-metal hypervisor. The hypervisor itself interacts directly with the hardware, managing the VMs.
   - The hypervisor controls all hardware resources (CPU, RAM, storage) and allocates them to the VMs. It acts as the host OS and directly runs the guest VMs.
   - Examples: VMware, ESXi, Microsoft Hyper-V(Azure), Xen (used by AWS EC2), KVM (used by Linux distributions)
   - Performance: Since it runs directly on the hardware, it provides better performance and resource utilization.
   - Stability: Less overhead because it doesn't depend on an additional OS layer.
   - Security: More secure since it operates without a host OS.
   - Cloud:
     - Azure uses Hyper-V as a Type 1 hypervisor to run VMs in a hypervisor layer.
     - AWS uses Xen and Nitro hypervisors to manage EC2 instances.
2. Type 2 Hypervisor (Hosted): A Type 2 hypervisor runs on top of a host operating system, relying on the OS for resource management. It acts as an application within the host OS, and the OS itself manages the hardware.
   - The hypervisor runs as a program within the host OS, and the OS controls the hardware resources. The VMs are managed by the hypervisor, but the underlying OS still provides resource management.
   - Examples: Oracle VirtualBox, VMware Workstation, Parallels Desktop, VMware Fusion,
   - Ease of Use: Easy to install and configure since it runs on top of an existing OS.
   - Flexibility: Can be used on a variety of hardware setups with less setup.
   - Less secure because it relies on the host OS.
   - Performance is affected by the host OS overhead.


**Summary:**

| Feature              | Type 1 (Bare Metal)                                   | Type 2 (Hosted)                                |
|----------------------|--------------------------------------------------------|------------------------------------------------|
| **Installation**     | Installed directly on hardware (no OS required).       | Installed on top of an existing OS.            |
| **Performance**      | Better performance due to direct hardware access.      | Performance is affected by the host OS overhead.|
| **Use Case**         | Data centers, cloud environments, high-performance computing. | Desktop virtualization, development, testing.   |
| **Examples**         | VMware ESXi, Microsoft Hyper-V, Xen, KVM               | VMware Workstation, Oracle VirtualBox, Parallels|
| **Resource Management** | Hypervisor directly manages resources.                 | Host OS manages resources, hypervisor relies on it. |
| **Security**         | More secure due to isolation from the host OS.         | Less secure because it relies on the host OS.  |

