ebook img

Trustworthy cloud computing PDF

337 Pages·2017·11.033 MB·English
Save to my drive
Quick download
Download
Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.

Preview Trustworthy cloud computing

(cid:2) TRUSTWORTHY CLOUD COMPUTING (cid:2) (cid:2) (cid:2) (cid:2) TRUSTWORTHY CLOUD COMPUTING VLADIMIRO.SAFONOV St.PetersburgUniversity (cid:2) (cid:2) (cid:2) (cid:2) Copyright©2016byJohnWiley&Sons,Inc.Allrightsreserved PublishedbyJohnWiley&Sons,Inc.,Hoboken,NewJersey PublishedsimultaneouslyinCanada MicrosoftAzure™isatrademarkofMicrosoftCorporationintheUnitedStatesand/orothercountries.Allother trademarksarethepropertyoftheirrespectiveowners. Nopartofthispublicationmaybereproduced,storedinaretrievalsystem,ortransmittedinanyformorbyanymeans, electronic,mechanical,photocopying,recording,scanning,orotherwise,exceptaspermittedunderSection107or108 ofthe1976UnitedStatesCopyrightAct,withouteitherthepriorwrittenpermissionofthePublisher,orauthorization throughpaymentoftheappropriateper-copyfeetotheCopyrightClearanceCenter,Inc.,222RosewoodDrive, Danvers,MA01923,(978)750-8400,fax(978)750-4470,oronthewebatwww.copyright.com.Requeststothe PublisherforpermissionshouldbeaddressedtothePermissionsDepartment,JohnWiley&Sons,Inc.,111RiverStreet, Hoboken,NJ07030,(201)748-6011,fax(201)748-6008,oronlineathttp://www.wiley.com/go/permission. LimitofLiability/DisclaimerofWarranty:Whilethepublisherandauthorhaveusedtheirbesteffortsinpreparingthis (cid:2) (cid:2) book,theymakenorepresentationsorwarrantieswithrespecttotheaccuracyorcompletenessofthecontentsofthis bookandspecificallydisclaimanyimpliedwarrantiesofmerchantabilityorfitnessforaparticularpurpose.Nowarranty maybecreatedorextendedbysalesrepresentativesorwrittensalesmaterials.Theadviceandstrategiescontained hereinmaynotbesuitableforyoursituation.Youshouldconsultwithaprofessionalwhereappropriate.Neitherthe publishernorauthorshallbeliableforanylossofprofitoranyothercommercialdamages,includingbutnotlimitedto special,incidental,consequential,orotherdamages. Forgeneralinformationonourotherproductsandservicesorfortechnicalsupport,pleasecontactourCustomerCare DepartmentwithintheUnitedStatesat(800)762-2974,outsidetheUnitedStatesat(317)572-3993orfax(317) 572-4002. Wileyalsopublishesitsbooksinavarietyofelectronicformats.Somecontentthatappearsinprintmaynotbeavailable inelectronicformats.FormoreinformationaboutWileyproducts,visitourwebsiteatwww.wiley.com. LibraryofCongressCataloging-in-PublicationData: Names:Safonov,V.O.(VladimirOlegovich),author. Title:Trustworthycloudcomputing/VladimirO.Safonov. Description:Hoboken,NewJersey:JohnWiley&Sons,Inc.,[2016]|Includes bibliographicalreferencesandindex. Identifiers:LCCN2015036885|ISBN9781119113508(cloth) Subjects:LCSH:Cloudcomputing. Classification:LCCQA76.585.S342016|DDC004.67/82–dc23LCrecordavailableathttp://lccn.loc.gov/2015036885 Typesetin10/12ptTimesLTStdbySPiGlobal,Chennai,India PrintedintheUnitedStatesofAmerica 10987654321 1 2016 (cid:2) (cid:2) CONTENTS Preface ix Acknowledgments xiii (cid:2) Introduction xv (cid:2) 1 PrinciplesandConceptsofCloudComputing 1 1.1 KindsofModernSoftwareArchitectures, 1 1.2 CharacteristicFeaturesofModernSoftware, 3 1.3 BasicConceptsofModernSoftwareArchitecture, 4 1.4 Service-OrientedArchitecture(SOA), 6 1.5 SoftwareasAService(SaaS), 8 1.6 KeyIdeasandPrinciplesofCloudComputing, 8 1.7 ComponentsofCloudPlatformsandKindsofCloudServicing, 11 1.8 LayersoftheCloudArchitecture, 14 1.9 SchemeofArchitectureoftheCloud, 15 1.10 RolesofPeopleinCloudComputing, 16 1.11 StandardsofCloudComputing, 17 1.12 HowtheCloudsComeTrue:OrganizationofDatacentersand CloudHardware, 20 1.13 SpecificsandComponentsofSoftwareforCloudComputing, 22 1.14 CloudComputing-RelatedTrends,Activities,andResources, 25 ExercisestoChapter1, 29 2 PlatformsofCloudComputing 33 2.1 AVarietyofCloudPlatforms:TheFirstImpression, 33 (cid:2) (cid:2) vi CONTENTS 2.2 AmazonAWSCloudPlatform – APioneerofCloud Computing, 36 2.3 IBMCloud, 49 2.4 OracleCloud, 58 2.5 GoogleCloudPlatform, 64 2.6 HPHelionCloudPlatform, 70 2.7 SalesforceCloudPlatform, 79 ExercisestoChapter2, 88 3 PrinciplesandPillarsofTrustworthyComputing 91 3.1 VitalIssuesofTrustworthyComputing, 91 3.2 TheTrustworthyComputingInitiativebyMicrosoft, 93 3.3 TheSecurityPillar, 94 3.4 TheReliabilityPillar, 99 3.5 ThePrivacyPillar, 101 3.6 TheBusinessIntegrityPillar, 103 3.7 ToolsandSoftwareLifecycleModelstoSupportTrustworthy Computing, 106 ExercisestoChapter3, 110 4 MakingCloudComputingTrustworthy 113 (cid:2) (cid:2) 4.1 PsychologicalBarriersBetweentheCustomersandtheCloud, andtheWaystoOvercomeThem, 113 4.2 UserInterfaceforCloudComputing,ItsConvenience,Usability, andFunctionalityforTrustworthyCloudComputing, 116 4.3 ThreatsandAttackstoClouds, 120 4.4 TrustworthyCloudComputingfromHardwareSide:Datacenter Architecture,Servers,Clusters,Hypervisors, 124 4.5 TrustworthyCloudComputingfromOperatingSystemSide: DesirableOSFeaturestoImplementCloudsandDatacenters, 126 4.6 UsingAspect-OrientedProgrammingforRefactoringCloud ServicesandMakingThemTrustworthy:TheContribution ofSt.PetersburgUniversity, 129 ExercisestoChapter4, 142 5 ExampleofaTrustworthyCloudComputingPlatforminDetail: MicrosoftAzure 147 5.1 OverviewofMicrosoftAzureArchitectureanditsEvolution, 147 5.2 UserInterfaceandtheManagementPortalofMicrosoftAzure, 152 5.3 TheComputeComponent:ManagingandOperatingCloud Services, 161 5.4 TheStorageComponent:ManagingandOperatingCloud Storage, 178 (cid:2) (cid:2) CONTENTS vii 5.5 TheSQLAzureComponent:TheCloudDatabase, 187 5.6 NetworkingintheAzureCloud:Network-as-a-Service(NaaS), ContentDeliveryNetwork(CDN),VirtualNetwork,Traffic Manager, 196 5.7 ActiveDirectoryintheCloud:AWayofStructuringUser Accounts, 202 5.8 DevelopmentofMicrosoftAzureCloudServiceswithMicrosoft VisualStudio, 206 5.9 VisualStudioOnlineanditsRelationtoMicrosoftAzure, 215 5.10 DevelopingMobileServicesandConnectedMobileApplications forMicrosoftAzure, 220 5.11 MediaServices, 234 5.12 The.NETPlatform – TheBasisofAzureImplementation, 237 5.13 AzureTools, 252 5.14 MachineLearningintheCloud:AzureMachineLearning Studio, 257 5.15 ParallelProcessingofBigDataintheCloud:UsingApache HadoopinMicrosoftAzure, 261 5.16 PerspectivesofMicrosoftAzure, 265 ExercisestoChapter5, 266 6 Conclusions:PerspectivesofTrustworthyCloudComputing 271 (cid:2) (cid:2) 6.1 IntegrationofClouds.TheIntercloudIEEEStandard, 271 6.2 TheTCLOUDSProjectbytheEuropeanUnion, 280 6.3 FurtherDevelopmentsandTrendsofTrustworthyCloud Computing, 291 ExercisestoConclusions, 296 Appendix A ExampleofMicrosoftAzureCloudService: Filemanager 299 References 309 Index 317 (cid:2) (cid:2) PREFACE ThebookIampresentingtothereadersnowismythirdbookpublishedwithJohn Wiley&Sons.Duringallmyprofessionallifeandwork,thishasbeenthebestpub- (cid:2) (cid:2) lishingopportunity,andIgreatlyappreciateit.MyfirstWileybook[1]publishedin 2008isonaspect-orientedprogramminganditsuseintrustworthysoftwaredevelop- ment.MysecondWileybookpublishedin2010isoncompilersandonapplyingthe principlesoftrustworthinessforcompilers. With this new book, I continue my trustworthy computing series with a book on the novel area of cloud computing, which is very attractive for many computer users–bothendusersandsoftwaredevelopmentprofessionals. First,letmeexplainthemeaningofthepictureonthefrontcover.Itcorresponds toyetanothertraditionIfollowinmyWileybooks–theuseinthefrontcoversof mypersonallymadephotosofmynativecityofSt.Petersburganditssuburbs,such views that can be regarded as having some allegorical meaning related to the book content.ThisisdonetofamiliarizeforeignreaderswiththebeautiesofSt.Petersburg, inadditiontoteachingthemnovelapproachesinIT.PleaseseemytwopreviousWiley booksfortheotherexamplesofallegoricalSt.Petersburgviews–theAtlants[1]and theRostralColumns[2]. On the front cover of this book there is a picture of Urania, the Greek antique muse of astronomy, soaring in the clouds, that can be regarded as a classical style allegory of cloud computing. This beautiful sculpture stands in Pavlovsk, a suburb of St. Petersburg, in its world famous park. The sculpture, as many other beautiful statuesinthePavlovskpark,wascastbyFrenchsculptorE.Gasteclouxin1796from theantiqueGreekoriginal.Uraniaisthemuseofallprecisesciencesandtheirareas, including such a modern area as cloud computing, covered in my book. Urania, as (cid:2) (cid:2) x PREFACE wellasthewholePavlovskparkwhereshestands,hasgreatlyinspiredmeandmany otherscientiststoourcreativeworksformanyyears. This book is a synthesis of my ideas, experience, and results in two modern fields–trustworthy computing and cloud computing. Actually, the book, either directly or indirectly, summarizes my work in most areas of my competence since the mid-1970s when I started my professional activity as a computer scientist and software engineer: programming languages, compiler development, hard- ware architecture and operating systems, software architecture and programming technologies (including aspect-oriented programming), Java and .NET platforms, parallelprogramming,trustworthycomputing,andnowcloudcomputing. Inaddition,Iamoneoftheoriginatorsofactiveandbroaduniversityteachingof cloudcomputinginRussianuniversities,forthefirstturn,inmynativeSt.Petersburg StateUniversitywhereIhavebeenworkingsince1977.IamtheauthoroftwoRus- sianbooks[3,4]andthreeInternetcoursesinRussian[5–7]oncloudcomputingand MicrosoftAzurecloudplatform.AllofthemarequitepopularinRussia;myInternet courseshaveseveralhundredonlinestudents. Thebookcanbeusedasauniversitytextbookasabasisfortheone-semesteruni- versitycourseIrecommendforgraduateteachingprograms.Itcontainsmanyprac- ticalexamplesofcloudcomputingandanumberoftestingquestionsandexercises at the end of each chapter, which help acquire the material. In addition, the book companion Web site http://www.vladimirsafonov.org/cloud contains presentations, (cid:2) examplesofcloudprojects,andmanyotherteachingresourcesrelatedtothetopics (cid:2) ofthebook.Surelythebookcanbealsousedforself-educationincloudcomputing bysoftwarepractitioners. Thebookcoverssomeresultsofouradvancedresearchrelatedtocloudcomputing andapplicationofaspect-orientedprogrammingtorefactoringcloudapplications.In thisrespect,thebookcanbeconsideredasaresearchmonograph. Nowitistimeforwidelearning,using,andenhancingtheareaofcloudcomput- ingasoneofthemostprospectiveITapproaches–notonlytosoftwaredevelopment, but, in general, to a new kind of worldwide use of computing resources, both soft- ware and data, via a structured collection of Web interfaces, without the need for extra software installations on client computers. A Web browser and access to the Internetareenoughtousethecloud,asthisstructuredcollectionofWebinterfaces iscalled,whichprovidesaccesstoahugeamountofcomputingresources,software, and data running on powerful server computers of big data centers. Deep interest amongmanymillionpeople,includingme,incloudcomputingisoneofthereasons whyIwrotethisbook. Ascomparedtomanyothercloudcomputingbooksthatcovermostlythegeneral conceptsandthebusinessaspectsofcloudcomputing,mybookshouldbeconsidered as a thorough scientific analysis of cloud computing architectures and the ways to makethemtrustworthy. Hereisanoverviewofthebookcontent. A short introduction covers key ideas, motivations, and concepts of cloud com- putingandexplainsitsnoveltyandperspectivesofitsapplications. (cid:2) (cid:2) PREFACE xi Chapter 1 is a detailed description of the principles and concepts of cloud com- puting and the related concepts of software architecture, such as service-oriented architectures(SOA),multitenancy,andsoftwareasaservice(SaaS).Cloudcomput- ingarchitectureisverycomplicated,soitsinternallogicrequiresunderstandingmany modernsoftwarearchitecturalprinciples. Chapter2overviewsthemostwidelyknowncloudcomputingplatformsandgives the readers a feel and understanding of a variety of approaches to cloud by several majorcompanies–Amazon,IBM,Oracle,Google,HP,Salesforce.Fromthischapter the readers can extract not only ideas and principles but also practical methods of usingvariouscloudplatforms. Chapter3isanintroductiontotrustworthycomputing,aparadigmandinitiative proposedandimplementedbyMicrosoftsince2002.Nowtrustworthycomputingis oneofthefoundationsofdevelopingmodernsoftware,includingcloudplatformsand cloudapplications.Thefour“pillars”oftrustworthycomputingaresecurity,reliabil- ity,privacy,andbusinessintegrity[1]. Chapter 4 is a bridge between trustworthy computing and cloud computing. It explainswhyitissoimportanttomakecloudcomputingtrustworthy,anddescribes the principles of how to do it in different aspects: eliminate the psychological bar- rierbetweenthecloudandtheusers;developafriendlyuserinterfaceforthecloud; analyze and mitigate possible types of attacks on thecloud and cloud applications; developandusetheappropriatehardwaretoenablefast,scalable,andreliablecloud computing;usetheappropriatefeaturesofoperatingsystemstomakethecloudtrust- (cid:2) (cid:2) worthy;loadbalancingthecloudtoreasonablydistributeitsworkloadbetweendat- acenters; use the appropriate principles to develop fault-tolerant cloud services–in particular,useaspect-orientedprogrammingasoneofthesoftwareparadigmshelpful forrefactoringcloudapplications. As a major, practical part of the book, Chapter 5 considers in detail, just as an exampleofimplementationoftheabovecloudcomputingprinciples,thecloudcom- puting platform Microsoft Azure. It is not the first cloud platform in the history of IT (the first one was Amazon’s EC2, now referred to as Amazon AWS). But now Microsoft Azure is one of the most widely spread cloud computing platforms all overtheworld.ThechaptercoversboththeprinciplesoftheAzureplatformandthe detailsofitsvariousfeatures,sothechaptercanbeconsideredandstudiedseparately bythosereadersalreadyfamiliarwiththebasicconceptsofthecloudanddesiringto learnanduseMicrosoftAzure. The Conclusions summarizes the perspectives of cloud computing and covers some novel cloud computing projects, such as the InterCloud IEEE Standard and TCloudsprojectbytheEuropeanUnion. TheAppendixcontainsexamplesoftrustworthycloudcomputingservicesdevel- opedforMicrosoftAzure. VladimirO.Safonov St.Petersburg,Russia August2015 (cid:2) (cid:2) ACKNOWLEDGMENTS Thanksalottomanypeoplewhocontributedtothecreationofthebook. Forthefirstturn,IwouldliketothankJohnWiley&Sonsasthegreatestpublishing (cid:2) (cid:2) companyintheworldforthewonderfulopportunitiestopublishanddisseminatemy books.Inparticular,manythankstoBrettKurzmanandAlexCastroasmyimmediate Wileycontacts.Also,thanksalottomanyotherWileypeoplewhohelpedtocreate andpublishmyprevioustwoWileybooks.IconsiderWileyasatemplateofthebest publishingquality,workingwithpeople,understanding,help,andfriendship. IwouldliketothankmybelovedwifeanduniversitycolleagueAdelSafonovaa lotforthedeepunderstandingandgreatinteresttoallmyworks,lotsofadvice,care, help,andsupport,andinparticularformakingexcellentphotosofSt.Petersburgand suburbsIusedinallmyWileybooks. IwouldliketomemorializeoneofthegreatestITpersonsIhaveeverknown,Pro- fessorLawrenceBernsteinfromStevensUniversityofTechnologywhopassedaway in2012.Allmybookscanbeconsideredasdevotedtohisholymemory.Iconsider Larry to be one of my greatest teachers, tutors, supporters, and friends, the person whobelievedinmeandmyproposalswhenIfirstcametoWiley.Larrywastheedi- toroftheWileyQuantitativeComputingSeriesforyears.TwoofmypreviousWiley books were published as parts of his series. The role of Professor Larry Bernstein in their publication, his great help, attention, advice is invaluable. My book can be regardedascontinuationofhisWileybookseries. Thanks very much to Microsoft Research for their support to my works, in par- ticular,toMicrosoftWindowsAzureinEducationteamwhoprovidedtomeandmy studentsanumberofgrantssince2011toenableouraccesstotheMicrosoftAzure cloudcomputingplatform.WithouttheirhelpthisbookandmyRussianAzurebooks andcoursescouldnotbecreated. (cid:2)

See more

The list of books you might like

Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.