1. Define Utility Computing.

Ans: Utility computing is a model in which computing resources (CPU, memory, storage,
server) are provided to the customer based on specific demand. The service provider charges
exactly for the services provided, instead of a flat rate.

The foundational concept is that users or businesses pay the providers of utility computing
for the amenities used – such as computing capabilities, storage space and applications services.
The customer is thus, absolved from the responsibility of maintenance and management of the
hardware. Consequently, the financial layout is minimal for the organization.

Utility computing helps eliminate data redundancy, as huge volumes of data are distributed
across multiple servers or backend systems. The client however, can access the data anytime
and from anywhere.

2. State the definition of the cloud computing according to the NIST.

Ans: see the notes.

3. List the different components of cloud computing model as mentioned in

NIST.
Ans: see the notes

4. List the names of three cloud service providers with their service type.

Ans: see the notes

5. Describe the five actors of cloud computing model according to the NIST
Ans: see the notes

6. Examine the role of Web 2.0 technologies in cloud computing.

7. Define the rule of cloud auditor.

Ans:

 A cloud audit is a process that systematically reviews and assesses an organization’s

(cloud service provider or CSP) cloud infrastructure, security controls, and compliance
posture.
 It is a comprehensive evaluation that examines the cloud provider’s security practices,
data access controls, and overall risk management strategies.
 The primary purpose of a cloud audit is to ensure that an organization’s cloud
environment meets industry-specific regulatory requirements, adheres to established
security standards, and effectively mitigates potential risks.
  Cloud audits can be conducted by an independent third-party auditor or by an
organization’s internal audit team.
 Third-party audits provide an objective, unbiased assessment by external experts
specializing in cloud security and compliance.
 However, organizations may also choose to conduct internal audits, leveraging their
own security professionals to evaluate their specific security policies, procedures, and
controls within the cloud environment.

8. Illustrate the features of Platform as a Service.

Ans: Platform as a Service (PaaS) is a cloud computing model that provides a platform
allowing developers to build, deploy, and manage applications without the complexity of
managing the underlying infrastructure. PaaS offers a range of features that streamline the
development process and enhance productivity.

Here are some key features of PaaS:

1. Development Framework: Developers only focus on writing code rather than managing
hardware or software environments.

2. Managed Infrastructure: Reduced operational overhead, as developers do not need to deal

with the infrastructure maintenance, updates, or scaling.

3. Scalability: This includes scaling up during peak usage and scaling down during low usage
periods. It ensures optimal performance and resource utilization without manual intervention.

4. Integrated Development Tools: PaaS platforms often come with integrated development
tools such as version control, debugging tools, and testing frameworks.

5. Multi-tenant Architecture: PaaS allow multiple customers to share the same application
instance while maintaining data isolation. Efficient use of resources and cost-effectiveness, as
users benefit from shared infrastructure and services.

6. Database Management: Developers only focus on application logic rather than database
maintenance.

7. Security Feature: PaaS ensures that applications are developed and deployed in a secure
environment, protecting sensitive data and meeting regulatory requirements.
8. Cost-Effectiveness: PaaS operates on a pay-as-you-go pricing model, where users pay only
for the resources they consume. It reduces upfront capital expenditure and allows businesses
to manage costs more effectively as they scale

9. Illustrate the importance of cloud computing.

Ans: Cloud computing is important because it offers many benefits to businesses and individuals,
including:

 Cost savings: With a pay-as-you-go model, businesses only pay for the resources they use,
which can lead to significant cost savings.

 Flexibility: Cloud computing allows users to access data and applications from any device
and location. It removes the geographical barrier.

 Scalability: Cloud applications can be easily scaled up or down to meet changing needs.

 Security: Cloud computing can offer advanced security features.

 Disaster recovery: Cloud providers offers backup and disaster recovery features.

 Maintenance: Cloud applications are often maintenance-free, as they automatically update

and refresh themselves.

 No upfront costs: Cloud software can reduce or eliminate the need for capital expenditure
costs

10. Explain the on- demand resource provisioning with example.

Ans: On-Demand Resource Provisioning is a cloud computing approach that enables users
to dynamically allocate and manage computing resources according to their immediate
needs, without prior arrangements or commitments. This flexibility allows organizations to
efficiently respond to varying workloads, optimizing resource utilization and costs.

Key Characteristics of On-Demand Resource Provisioning:

 Dynamic Allocation: Resources can be added or removed as needed, allowing

organizations to scale their infrastructure up or down based on real-time demands.

 Self-Service: Users can manage and access resources through web interfaces
provided by cloud service providers, eliminating the need for IT personnel
intervention.

 Pay-as-You-Go Model: Users pay only for the resources they use. It eliminate the
upfront (initial installation cost) cost.
 Example of On-Demand Resource Provisioning:

Scenario: E-Commerce Website

Consider an e-commerce company that experiences variable traffic patterns. During a

holiday sale, they anticipate a substantial increase in user activity, while traffic typically
returns to normal levels afterward.

 Normal Operation:
During standard business hours, the company utilizes a limited number of
virtual machines (VMs) to host its website and process transactions, such as 2
VMs with 4 CPUs and 16 GB of RAM each.

 Holiday Sale Preparation:

As the holiday season approaches, the company prepares for an influx of visitors.
They can provision additional resources on demand to accommodate the expected
traffic surge.

By using their cloud provider's dashboard, they can easily launch 5 more VMs, each
with 4 CPUs and 16 GB of RAM, ensuring their website remains responsive during
peak times.

 Automatic Scaling:

The e-commerce platform can incorporate auto-scaling features, allowing the cloud
infrastructure to automatically adjust the number of VMs based on real-time traffic
metrics. If there’s an unexpected traffic spike, the system can provision additional
VMs automatically, maintaining optimal performance without manual intervention.

 Post-Sale Return to Normal:

Once the holiday sale concludes, traffic levels decrease. The company can de-
provision the extra VMs, scaling back to the original 2 VMs to minimize costs.

11. List the various types of virtualization.

Ans: list of the various types of virtualization:

1. Server Virtualization: It makes it possible the operation of numerous virtual machines

(VMs) on a single physical server.
Examples: VMware ESXi, Hyper-V, KVM.

2. Operating System Virtualization: enables the use of the same OS kernel by several
instances or containers.
Examples: Docker, LXC, OpenVZ.
 3. Network Virtualization: It can combine multiple physical networks to one virtual, software-
based network, or it can divide one physical network into separate, independent virtual
network.
Examples: VMware NSX, Cisco ACI.

4. Storage Virtualization: It is the process of pooling multiple physical storage devices into a
single logical unit.
Examples: VMware vSAN, Ceph.

5. Desktop Virtualization: Separates desktop environments from physical devices, allowing

remote access.
Examples: VMware Horizon, Citrix Virtual Apps.

6. Application Virtualization: It enables the application to run in a separate environment

without the need for installation.
Examples: VMware ThinApp, Microsoft App-V.

7. Memory Virtualization: It enables multiple virtual machines (VMs) to run concurrently on a

single physical machine, with each VM having its own virtual address space.
Examples: Virtual memory in Windows/Linux.

8. Database Virtualization: Makes a single logical database appear as multiple instances or

vice versa.
Examples: IBM DB2 Virtualization, Oracle Database Virtualization.

12. Discuss the advantages and disadvantages of OS extension in virtualization.

This approach integrates virtualization capabilities directly into the OS itself, allowing the OS
to act as both the host and the hypervisor for running multiple guest systems. It eliminates the
need for a separate hypervisor and makes use of the OS kernel for managing virtualized
environments

Advantages of Virtualization via OS Extension

1. Performance Efficiency: there is less overhead compared to type-2 hypervisor since

the OS itself manages the virtualization. Virtualization is more effective because the
OS can directly manage hardware resources.

2. Cost-Effective: OS extension does not require a separate hypervisor, it uses existing

OS infrastructure, therefore, it can be more economical.

3. Seamless Integration: The core OS now has virtualization capabilities built in, making
it easier to use the OS's built-in security frameworks (like SELinux) and system
management tools.
 4. Easy Management: As the virtualization functionality is built into the OS, system
administrators often find it simpler to manage VMs within familiar environments
without additional hypervisor layers.

Disadvantages of Virtualization via OS Extension

1. Limited Flexibility: Since the hypervisor is tied to a specific OS (e.g., KVM for Linux,
Hyper-V for Windows), flexibility in hosting different OS types may be limited. This
approach is best suited for homogeneous environments.

2. Less Isolation than Type 1 Hypervisors: OS extension virtualization provides less

isolation compared to the Type-1 hypervisor, where a dedicated hypervisor layer
provides stronger isolation.

3. Scalability Concerns: When compared to specialized Type 1 hypervisors made for

massive enterprise infrastructures, OS extension-based virtualization might not scale as
well in extremely large environments with high demands.

4. Potential Security Risks: Because the host operating system and virtual machines
(VMs) share same kernel, any security threat in the host OS could put the entire
virtualized environment at risk for security issues.

13. Examine the importance of memory virtualization.

Ans: one of the most significant advantages of memory virtualization is optimum usages of the
resource. By abstracting the physical memory, virtualization allows for better allocation and
management of memory resources, reducing waste and improving overall system efficiency

1. Improves Resource Utilization: By pooling physical memory across multiple systems,

memory virtualization ensures efficient use of available memory. This reduces the need for
additional hardware and optimizes existing resources, leading to cost savings.

2. Enhances Security: Memory virtualization isolates virtual machines (VMs), ensuring that
each VM’s memory is inaccessible to others. This protects data integrity and prevents
unauthorized access.

3. Improves Scalability: In cloud computing, memory virtualization allows dynamic allocation

of memory resources. This flexibility is essential to scale up or down based on workload
demands, making it highly suitable for fluctuating usage patterns.

4. Improves Performance: Efficient memory allocation ensures that resources are used
optimally, preventing wastage and enhancing overall system performance by reducing
bottlenecks.
 14. Define Hypervisor and discuss types of Hypervisor.
Ans: A hypervisor is software or firmware that creates and runs virtual machines (VMs). A computer
on which a hypervisor runs one or more virtual machines is known as a host machine, and each VM is
called a guest machine. The primary role of a hypervisor is to allocate resources from the host system
to the VMs and manage their execution in a way that isolates each VM from others.

The hypervisor is a hardware virtualization technique that allows multiple guest operating systems
(OS) to run on a single host system at the same time. A hypervisor is sometimes also called a virtual
machine manager (VMM).

Types of Hypervisor:

i.Type-1 Hypervisor: Type-1 hypervisors run directly on the host machine's hardware, without the
intervention of Host machine operation system for resources allocation and management. Since, Type-
1 hypervisor directly interact with the computer hardware, they are called “Bare-metal” hypervisor.

 Advantages:

 High performance due to direct hardware access.

 Better security and isolation since there’s no underlying operating system.

 Use Case: Mainly used in data centres for server virtualization.

 Examples of Type 1 hypervisors: VMware ESXi, Citrix XenServer, and Microsoft Hyper-V
hypervisor.

ii. Type-2 Hypervisor: Type-2 hypervisor runs on top of the host machine operating system. It runs as
an application VMs run as inside that Host OS. It is called “Hosted Hypervisor”. It cannot access
physical resource directly.

 Advantages:

 Easier to set up on existing operating systems.

 Suitable for desktop virtualization and development environments.

 Disadvantages:

 Less efficient than Type 1 hypervisors due to an additional layer of the host OS.

 Use Case: Ideal for development, testing, and smaller-scale environments.

 Examples: VMware Workstation/Fusion, Oracle VirtualBox, Parallels Desktop

15. Define Load balancing.

Ans: Cloud Load balancing is the process of distributing workloads and computing resources
across one or more servers. This kind of distribution ensures maximum throughput in minimum
response time. The workload is divided into among two or more servers, hard drives, network
interfaces or other computing resources, enabling better resource utilization and system
response time. Thus, for a high traffic website, effective use of cloud load balancing can ensure
business continuity. The common objectives of using load balancers are:

 To maintain system firmness.

 To improve system performance.

 To protect against system failures

Example: A website or a web-application can be accessed by a plenty of users at any point of

time. It becomes difficult for a web application to manage all these user requests at one time.
It may even result in system breakdowns. For a website owner, whose entire work is dependent
on his portal, the sinking feeling of website being down or not accessible also brings lost
potential customers. Here, the load balancer plays an important role.

16. Define Virtualization in cloud computing.

Ans: Virtualization is the creation of a virtual (rather than actual) version of physical resources
such as a server, a desktop, a storage device, an operating system or network resources.
In other words, Virtualization is a technique, which allows to share a single physical instance
of a resource or an application among multiple customers and organizations. It does by
assigning a logical name to a physical storage and providing a pointer to that physical resource
when demanded. The term virtualization is often synonymous with hardware virtualization,
which plays a fundamental role in efficiently delivering Infrastructure-as-a-Service (IaaS)
solutions for cloud computing.
For example, we can run Windows OS on top of a virtual machine, which itself is running on
Linux OS.

The machine on which the virtual machine is going to create is known as Host Machine and
that virtual machine is referred as a Guest Machine.

17. Define Abstraction in cloud computing.

Ans: Abstraction in cloud computing simplifies access to cloud services by hiding the complexities
of the underlying infrastructure, allowing users to utilize resources like storage, computing power,
and networking without managing the hardware or software details.

Key Aspects:

 Resource Abstraction: Physical resources (e.g., servers, storage) are virtualized, enabling
users to scale and deploy resources without handling hardware configuration.

 Service Abstraction: Cloud services (IaaS, PaaS, and SaaS) provide different levels of
resource abstraction, from full application management (SaaS) to virtualized infrastructure
(IaaS).

 Simplified Management: Users can manage resources via web interfaces, like dashboards or
APIs.

 Increased Flexibility: Resources are scalable and flexible, users to focus on usage rather than
infrastructure management.

18. Discuss the advantages of Abstraction in cloud computing.

Ans: Abstraction in cloud computing offers several advantages that enhance usability, flexibility, and
efficiency for users and organizations. Here are the key benefits:

1. Simplified Resource Management:

 Abstraction hides the complexity of the underlying infrastructure, allowing users to manage
resources through user-friendly interfaces (like dashboards and APIs) without needing deep
technical knowledge of the hardware or software layers.

2. Increased Efficiency:
  Users can quickly provision, deploy, and scale resources according to their needs without
worrying about the underlying configurations, leading to faster development and operational
processes.

3. Enhanced Focus on Core Business Functions:

 By abstracting away the complexities of infrastructure management, organizations can

concentrate on their core business functions and applications rather than the technical details of
resource allocation and management.

4. Scalability and Flexibility:

 Abstraction allows users to dynamically scale resources (up or down) in response to changing
demand without manual intervention. This flexibility helps organizations to efficiently handle
varying workloads and optimize costs.

5. Cost-Effectiveness:

 Users can access a pool of virtualized resources and only pay for what they use. Abstraction
eliminates the need for heavy investments in physical infrastructure, leading to cost savings.

6. Rapid Deployment:

 Applications can be quickly deployed and updated as users interact with abstracted resources,
significantly reducing the time to market for new applications and features.

7. Enhanced Security:

 Abstraction can provide an additional layer of security by limiting direct access to the
underlying infrastructure, allowing for controlled and monitored interactions with cloud
resources.

19. Outlines the benefits of virtualization in the context of cloud

computing?
Ans: Benefits of virtualization in cloud computing

The Benefits of virtualization in cloud computing are numerous, including cost savings, higher
resource utilization, scalability, improved administration, security isolation, and quicker disaster
recovery, making it a potent solution for optimizing cloud settings. They are as follows:

i. Cost Savings

The most significant advantage of virtualization in cloud computing is cost savings. By consolidating/
combining multiple VMs on a single physical server, organizations reduce hardware costs, power
consumption, and data center space requirements. This consolidation optimizes resource usage,
leading to substantial financial benefits.

ii. Resource Utilization

 Virtualization enhances resource utilization by enabling multiple VMs to share the available
computing resources of a physical server efficiently. By deleting the underutilized resources,
virtualization reduces wastage, increasing the return on investment for the hardware.

iii. Scalability

Virtualization facilitates rapid scalability, an important advantage in the dynamic cloud computing
environment. Businesses will quickly provision and deploy new VMs to meet fluctuating workloads
and varying demands, ensuring optimal performance and user satisfaction.

iv. Isolation

The isolation provided by virtualization is paramount in ensuring a secure and stable cloud
environment. Each VM operates independently, isolating it from other VMs and the underlying
hardware. Thus, if one VM experiences an issue or failure, it does not impact the other VMs or the
overall system.

v. Improved Management

Virtualization simplifies management tasks, contributing to efficient cloud operations. Activities like
backup, migration, and recovery become easier to execute as virtualization abstracts the complexities
of the underlying physical hardware.

vi. Flexibility

VMs can run different operating systems and software on the same physical server, providing
unparalleled flexibility in software development, testing, and deployment scenarios. This allows
organizations to cater to diverse application needs.

Vii. Disaster Recovery

Virtualization is essential in disaster recovery and business continuity strategies. Organizations can
swiftly recover from failures or disasters by enabling easy backup, replication, and restoration of VMs,
ensuring continuous operations and data integrity.

20. How does the virtualization Support the Linux platform?

Ans: Virtualization supports the Linux platform in various ways, enabling Linux to function as
both a host for virtual machines (VMs) and a guest in virtualized environments.

 KVM (Kernel-based Virtual Machine): KVM is a native Linux hypervisor integrated into
the Linux kernel, allowing Linux to act as a full-fledged virtualization platform for hosting
multiple virtual machines.
 Xen Hypervisor: Xen is an open-source Type 1 hypervisor supported on Linux. It enables
efficient server virtualization, making Linux a powerful host platform for cloud and enterprise
infrastructures
 VirtualBox: For desktop users, a cross-platform Type 2 hypervisor that supports Linux as
a host and guest system makes it easy to run multiple virtual machines.
  VMware (Workstation, ESXi): VMware’s products support Linux as a host OS
(Workstation) or as a guest in server (ESXi) environments, providing enterprise-grade
virtualization solutions for Linux.
 Microsoft Hyper-V Support: Linux is supported as a guest OS on Hyper-V through
enhanced Linux Integration Services, ensuring smooth operation and performance optimization
in Windows-based virtualization.
 OpenStack Cloud Platform: OpenStack, a popular cloud platform, runs on Linux and uses
virtualization technologies like KVM and Xen to create scalable cloud environments for
hosting VMs.
 Cloud Integration: Major cloud providers like AWS, Google Cloud, and Microsoft Azure
support Linux-based virtualization, allowing Linux VMs to be easily deployed and managed
in cloud environment

Virtualization enhances Linux’s role in both traditional and cloud-based infrastructures,

offering flexibility, efficiency, and scalability in a variety of virtualized environments.

21. Discuss the features of software as a Service

Ans: Software as a Service (SaaS) is a cloud computing model that delivers software
applications over the internet, allowing users to access and use applications without the need
for local installation or maintenance. Here are the key features of SaaS

 Cost-effective

SaaS provides cost-effective solution because you only pay for what you use. SaaS applications
are typically subscription-based, and you can scale up or down based on your requirement.

 Accessible from anywhere

SaaS applications are accessible from any internet-connected device, such as a computer,
tablet, or mobile phone.

 Automatic updates

SaaS providers offer frequent updates to improve the service.

 High security

SaaS applications are secure because the service provider sets the security level for all users.

 Low setup costs

You don't need to purchase, install, or maintain any hardware, middleware, or software.

 Scalability
 You can adapt the service to the number of users, volume of data, and functionality required.

 Free client software

Most SaaS applications can be run directly from a web browser without downloading or
installing software.

 Low-code and no-code integration

SaaS tools allow non-technical users to create applications and automate workflows.

Examples: Gmail, social media websites, Dropbox, Skype, Netflix, and Spotify

22. Examine the role of web services in cloud computing.

Ans: Web services are crucial to cloud computing because they allow various applications to
communicate, integrate, and interact with one another via the internet, which is necessary to
build scalable, interoperable, and adaptable cloud environments.

Features of Web Services

1. Interoperability

Web services use standardized protocols like HTTP, XML, SOAP, and REST to allow different
applications, written in various programming languages, to communicate with each other.

2. Extensibility

One major advantage of web services is that they are highly interoperable and portable hence
they can easily be incorporated into new applications in an organization without much
alteration to existing systems and procedures.

3. Distributed Computing

Because web services can be deployed on multiple server instances and are readily portable
across platforms, load balancing and failover problems can be resolved with ease.

4. Service Reusability

Large and medium-sized businesses can use web services to modularize their business
processes and apply them (web services) to various applications with comparable features.

5. Component Reuse
Software can be efficiently reused in the form of available services by building on existing
services.

6. Security

Web Services use SSL/TLS to ensure secure communication over the World Wide Web. WS-
Security (Web Service-security) standards such as message integrity, confidentiality and
authentication can be achieved with the use of SOAP (Simple Object Access Protocol)-based
services.

7. Platform Independence

Web services support Web standard, so developer does not require to use any specific
language. Web services can use different transport protocol but mainly used transport protocol
is HTTP

23. Define SLA in cloud computing.

Ans: An SLA in cloud computing is an agreement between the cloud provider and client. It
sets expectations for both sides. It establishes who is responsible for what, and details what
their responsibilities are. These cloud service agreements are usually set up by the cloud
provider.

A cloud SLA pays specific attention to the services a cloud provider manages. It’ll also explain
the procedures on how the services that the provider offers are monitored.

Service Level Agreement Purpose

An SLA establishes what a cloud service can offer and also acts as a form of warranty. With
any service, clients need to know what to expect as a standard rate of operation. Think of these
as ground rules. These particularly come in handy in case anything goes wrong. If you don’t
know what is going on, how will you understand what the problem is?

An SLA will also help clarify what is routine maintenance and what is an unexpected challenge.

24. Examine the importance of SLA in cloud computing.

Ans: We may joke about not reading terms and conditions, but getting to grips with an SLA is
really important. Especially for something as vital as the cloud. Your whole operation could
go belly up, and you just won’t know what to do.

SLAs protect clients, their data, and they establish a standard quality of service (QOS). It’s a
bit like insurance. The clauses in an SLA establish:

 The minimum level of performance and the consequences if these aren’t met
  The ownership and rights to your data

 How the service and its infrastructure actually works

 Your right to audit the provider’s security compliances

 Your right to leave or terminate the service

 Details of penalties. Think service credits if certain levels of service aren’t met.

If you’re unsure of anything detailed in an SLA, it’s worth getting a developer to look through
it. Ask them whether it covers common performance and availability scenarios.

The Benefits of Service Level Agreements

An SLA is beneficial for everyone involved, as it:

 Provides support for both the user and provider

 Sets expectations on both sides

 Helps with benchmarking metrics

 Helps clients understand how the provider’s services work

 Conveys company specific uptime and/or response time requirements

25. Examine whether the virtualization enhances cloud security or not.

Ans: Cloud virtualization enhances security by providing several key benefits, including isolation,
encryption, backup and recovery, security monitoring, and simplified patching. These features
collectively reduce the attack surface, protect sensitive information, and minimize exposure to
vulnerabilities.

Key Benefits:

1. Isolation and Segmentation: Virtual machines (VMs) or containers separate workloads,

ensuring that resources and data from different tenants remain secure and isolated, reducing
risks of cross-tenant attacks.

2. Encryption of Data: Data is encrypted both at rest/storage and in transit, safeguarding it from
unauthorized access and breaches.

3. Backup and Recovery: Virtualized environments support easy backups and snapshots,
allowing quick recovery from disasters or attacks, ensuring minimal disruption.

4. Security Monitoring and Auditing: Real-time monitoring tools collect and analyze logs and
metrics, enabling early detection of potential security incidents.

5. Simplified Patching: Virtualized systems enable easier, automated patching, reducing

exposure to known vulnerabilities and maintaining system security.
26. Describe the security challenges in cloud computing?

Ans: Virtualization poses several security challenges and risks that must be addressed. These
include an increase in complexity and heterogeneity of the cloud environment, which requires
more skills and tools to manage and secure it effectively. There are also new attack vectors
and vulnerabilities, such as hypervisor breaches, VM escapes, container escapes, resource
exhaustion, or misconfiguration. Additionally, virtualization creates dependencies and
interdependencies among the virtual machines or containers, the host, and the network,
potentially amplifying the impact of a single compromise or failure. Moreover, cloud users
have reduced visibility and control over their virtual machines or containers in public or
hybrid clouds, where the cloud provider is responsible for the security of the underlying
infrastructure.

27. Define security governance in Cloud Computing.

Ans: In cloud computing, security governance is the framework and collection of rules, procedures, and
controls that guarantee an organization's security plans are in accordance with its legal responsibilities,
business goals, and risk management techniques when utilizing cloud services. It entails monitoring the
implementation of security measures to safeguard cloud infrastructure, data, and apps while
guaranteeing accountability, compliance, and a uniform strategy for reducing security threats.

28. Describe three basic cloud security enforcements are expected?

29. “Virtual machine is secured”. Is it true? Justify your answer.

30. List the different Security Standards.

Ans: It was essential to establish guidelines for how work is done in the cloud due to the different
security dangers facing the cloud. They offer a thorough framework for how cloud security is upheld
with regard to both the user and the service provider. Some are mentioned below.

 ISO/IEC 27001: it is a widely recognized international standard for information security

management. It focuses on establishing, implementing, maintaining, and continuous
improvement of the information security management system (ISMS).

 ISO/IEC 27017: A standard providing specific guidelines for information security controls
applicable to cloud services.

 ISO/IEC 27018: It ensures that Cloud providers handles Personally Identifiable Information (PII)
securely.

 NIST Cybersecurity Framework (CSF): this security framework is developed by the U.S.
National Institute of Standards and Technology. Identify, Protect, Detect, Respond, and Recover
are the framework's primary functions that assist organizations in managing and lowering
cybersecurity risks.
  PCI DSS (Payment Card Industry Data Security Standard): this standard is framed to
guarantee a secure environment for all businesses that handle, store, or send credit card
information.

 HIPAA (Health Insurance Portability and Accountability Act): a U.S. standard that focuses
on electronic protected health information (ePHI) in particular and protects sensitive patient
health information.

 CSA STAR (Cloud Security Alliance Security, Trust, and Assurance Registry): a
certification program that evaluates the cloud security posture of cloud service providers

31. Describe data security mitigation.

Ans: The process of finding and fixing vulnerabilities to stop illegal access to sensitive information is
known as data security mitigation. The objective is to reduce the impact and harm caused by a data
breach.

Some security threat Mitigation techniques are given below:

 Multi-Factor Authentication (MFA): Develop Multi-Factor Authentication System (e.g.

password and Fingerprint) to enhance user authentication mechanism.

 Use Firewalls to monitor incoming and outgoing traffics in order to prevent unauthorised access
to the data.

 Deploy Intrusion Detection and Prevention Systems (IDS/IPS) to monitor network traffic
for malicious activity and prevent threats like DDoS attacks, SQL injection, and malware.

 Encrypt the data during transmission as well as in storage.

32. List the name of services provided by Microsoft Azure.

Ans: Do Yourself

33. For what purposes is Microsoft Azure utilized?

Ans: Do Yourself.

34. Outline the differences between Microsoft Azure and Amazon EC2.

Ans: Do yourself.

35. Discuss about the key component of cloud service management.

36. Outlines the similarities and differences between Distributed Computing, Grid computing, Cluster
Computing and Cloud computing.

Ans: see the notes

37. Discuss the evolution of Cloud computing in detail.

Ans: see the notes

 38. Summarize the advantages and disadvantages of the Cloud Computing.

Ans: see the notes

39. Summarize about the NIST Cloud Computing Reference Architecture with a neat diagram.

Ans: see the notes

40. Discuss the Infrastructure-as-a-Service, Platform as a service and Software as a service.

Ans: see the notes

41. Examine the merits and demerits of Cloud deployment models: Public, Private, Hybrid, and
Community.

Ans: see the notes

42. Elaborate the different types of services offered by the cloud computing.

Ans: see the notes

43. Illustrate in detail about Cloud Storage and -as-a-Service – with advantages of Cloud Storage.

Ans: prepare yourself.

44. Analyze the need of multi-core processor for virtualization.

Ans: The increasing demand for virtualization in modern computing environments has made multi-
core processors essential for efficiently managing and running virtual machines (VMs). Here’s an
analysis of the need for multi-core processors in virtualization:

1. Enhanced Performance:

 Concurrent Processing: Multi-core processors enable multiple threads to run concurrently,

which is crucial for virtualization. Each VM can be allocated to a different core, enhancing
overall performance and responsiveness.

 Improved Throughput: With multiple cores, the processor can handle more tasks
simultaneously, increasing the throughput of applications running in VMs.

2. Resource Allocation:

 Dedicated Cores for VMs: Multi-core processors enable the allocation of dedicated cores to
specific VMs, ensuring that they have the necessary CPU resources for optimal performance,
especially for resource-intensive applications.

 Dynamic Resource Management: Virtualization software can dynamically allocate CPU

resources to VMs based on demand, and multi-core processors provide the flexibility needed
for such adjustments.

3. Improved Scalability:
  Support for More VMs: Multi-core processors allow for running a higher number of VMs
on a single physical machine, enabling organizations to scale their infrastructure without
requiring additional hardware.

 Easier Workload Management: As workloads increase, multi-core processors can

efficiently distribute tasks among cores, ensuring that performance remains consistent even
with multiple active VMs.

4. Energy Efficiency:

 Reduced Power Consumption: Multi-core processors can provide better performance per
watt compared to single-core processors. This is particularly important in virtualized
environments where multiple VMs share resources, leading to lower overall energy
consumption.

 Consolidation Benefits: By maximizing the utilization of CPU resources, multi-core

processors contribute to server consolidation, reducing the number of physical servers needed
and minimizing power and cooling costs.

5. Support for Virtualization Technologies:

 Hardware-Assisted Virtualization: Many modern multi-core processors support

virtualization technologies (e.g., Intel VT-x, AMD-V) that enhance the performance of VMs
by allowing them to run more efficiently and with less overhead.

 Optimized Virtual Machine Management: Multi-core processors improve the performance

of hypervisors (virtual machine monitors) by allowing them to manage multiple VMs
effectively without becoming a bottleneck.

6. Improved User Experience:

 Reduced Latency: Multi-core processors help minimize latency when running applications
within VMs, providing users with a smoother and more responsive experience.

 Better Handling of Concurrent Users: In environments where multiple users access

applications hosted on VMs, multi-core processors can efficiently handle multiple
simultaneous requests.

7. Enhanced Security Features:

 Isolation of VMs: Multi-core processors can better isolate VMs by assigning different cores
to different VMs, which helps in maintaining security boundaries and reducing the risk of
cross-VM attacks.

45. Explain in detail about the implementation level of virtualization.

There are five levels of virtualizations available that are most commonly used in the industry. These are
as follows:
Instruction Set Architecture Level (ISA)

 In ISA, virtualization works through an ISA emulation. This is helpful to run heaps of legacy
code which was originally written for different hardware configurations.

 These codes can be run on the virtual machine through an ISA.

 A binary code that might need additional layers to run can now run on an x86 machine or with
some tweaking, even on x64 machines. ISA helps make this a hardware-agnostic virtual
machine.

Hardware Abstraction Level (HAL)

 As the name suggests, this level helps perform virtualization at the hardware level. It uses a
bare hypervisor for its functioning.

 This level helps form the virtual machine and manages the hardware through virtualization.

 It enables virtualization of each hardware component such as I/O devices, processors, memory,
etc.

 This way multiple users can use the same hardware with numerous instances of virtualization
at the same time.

 IBM had first implemented this on the IBM VM/370 back in 1960. It is more usable for cloud-
based infrastructure.

 Thus, it is no surprise that currently, Xen hypervisors are using HAL to run Linux and other
OS on x86 based machines.

Operating System Level

 At the operating system level, the virtualization model creates an abstract layer between the
applications and the OS.

 It is like an isolated container on the physical server and operating system that utilizes hardware
and software. Each of these containers functions like servers.

 When the number of users is high, and no one is willing to share hardware, this level of
virtualization comes in handy.

 Here, every user gets their own virtual environment with dedicated virtual hardware resources.
This way, no conflicts arise.
Library Level

OS system calls are lengthy and cumbersome. Which is why applications opt for APIs from user-level
libraries.

Most of the APIs provided by systems are rather well documented. Hence, library level virtualization
is preferred in such scenarios.

Library interfacing virtualization is made possible by API hooks. These API hooks control the
communication link from the system to the applications.

Some tools available today, such as vCUDA and WINE, have successfully demonstrated this technique

Application Level

 Application-level virtualization comes handy when you wish to virtualize only an application.
It does not virtualize an entire platform or environment.

 On an operating system, applications work as one process. Hence it is also known as process-
level virtualization.

46. State the different resources provisioning methods.

Ans: Cloud computing encompasses diverse provisioning types, each offering distinct levels
of flexibility, control, and pricing structures.
 1. Manual/static Provisioning: This conventional provisioning method involves hands-on
allocation and configuration resources by IT administrators. Although it provides a high
level of control, it can be time-intensive and less adaptable to dynamic workload
changes.

Use Cases: Well-suited for static workloads with predictable resource demands.

2. Automated Provisioning: automated provisioning minimizes human intervention,

expediting the deployment process and enhancing responsiveness to evolving demands.

Use Cases: Ideal for environments characterized by varying workloads, necessitating swift and
efficient resource allocation.

3. Dynamic Provisioning: Dynamic provisioning, also known as elastic provisioning,

involves allocating resources to VMs, containers, or applications on-demand, based on
real-time requirements. Resources can be adjusted automatically according to workload
fluctuations

Use Cases: Optimal for applications with unpredictable or fluctuating workloads, delivering
scalability and resource optimization.

4. User Self-Provisioning: Termed as cloud self-service, user self-provisioning allows

customers to directly subscribe to required resources from the cloud provider via a
website. Users create an account and pay for the needed resources.
 Use Cases: Ideal for organizations emphasizing autonomy and agility, offering a
straightforward subscription process without complex procurement or on boarding procedures
with the cloud vendor.

47. Illustrate how the virtualization technology supports the cloud

computing.

Ans: Virtualization technology supports cloud computing by allowing a single physical

resource to be divided into multiple virtual resources, which can be used for different

purposes. This allows cloud providers to offer a variety of services, such as infrastructure

(IaaS), software (SaaS), and platforms (PaaS).

Here are some ways virtualization technology supports cloud computing:

 Resource Utilization

It allows multiple VMs to run on single physical resource. So, it increases resources

utilization.

 Automated IT management

Software tools can be used to manage virtual computers, which can help avoid error-prone

manual configurations.

 Faster disaster recovery

Virtualization provide quick recovery of data from disaster including natural or cyberattack.

 Improved security

Virtualization isolates applications and services on different virtual machines, which can help

prevent security breaches from affecting other applications or services.

 Scalability

Virtualization allows users to scale up or down the resources as per requirement

automatically.
 On-demand resources

Virtualization supports on demand resources provisioning.

48. Explain the layered architecture of SOA for web services.

Ans: The layered architecture of Service-Oriented Architecture (SOA) for web services
structures the system into layers, each performing specific functions and ensuring loose
coupling between services. This modular design allows flexibility, scalability, and reuse of
services. Here's an explanation of the different layers in SOA for web services:
1. Consumer Interface Layer (Presentation Layer)
Manages the interaction between users or applications and the services, handling requests and
displaying responses.
2. Business Process Layer (Orchestration Layer)
Combines multiple services to form higher-level processes or workflows. It ensures that the
right services are called in the correct order to fulfil a business function, such as processing an
order or managing customer data.
3. Service Layer
This layer hosts the services that can be discovered, accessed, and executed by the consumers.
Services are designed to be independent, reusable, and loosely coupled, so they can be
combined in various ways to fulfill different requirment.
4. Service Component Layer (Application Layer)
Provides the implementation of the service operations. This layer contains the software
components that are responsible for handling requests, processing data, and returning results
as services.
5. Service Infrastructure Layer (Integration Layer)
The infrastructure layer supports service communication by managing service connections,
message routing, protocol translations, and transaction management. It ensures that services
can interoperate, even when they are built using different technologies.
6. Operational Systems Layer (Data Layer)
The lowest layer in the SOA architecture, responsible for the actual data and backend systems
that services depend on. This layer stores and manages the data that the services interact with.
It acts as the source of truth for the services and business processes.
49. Examine the support of middleware for virtualization.
 Ans: Middleware are software tools that act as intermediaries between different
applications, systems, or services, facilitating their communication and interaction.

 Middleware handle various tasks such as data translation, message queuing,

authentication, and connectivity, making it easier to integrate and manage complex
software environments.

 Examples include database middleware, web server middleware, and message-oriented

middleware, Cloud Services of all kinds, enterprise application integration, and application
runtimes.

 Middleware typically handles authentication, communications, data management, application

services, and application programming interface (API) management.

Key Purpose of Middleware in Cloud Computing

i. Resource Access Management

 Connection Pooling: The overhead of repeatedly establishing and terminating

connections can be reduced by using middleware to create a connection pool for effective
access to resources like databases.

 Message Queues and Topics: It is also capable of establishing links to topics and
message queues. Moreover, middleware software may control access to cloud-based
services such as Amazon Simple Storage Service (S3).

ii. Integration with Cloud Services

 Cloud Access: Middleware can manage access to cloud services like Amazon S3 or other cloud
storage solutions, making it easier to integrate cloud-based resources into existing applications.

iii. Request Processing and Logic Execution

 Client-Specific Logic: It can process or modify requests and responses based on client needs,
such as applying business rules, data validation, or security checks.

iv. Load Balancing and Scalability

 Load Balancing: Middleware plays a crucial role in distributing incoming requests across
multiple servers, VMs, or cloud availability zones to avoid overloading a single server.

 Scalability: Middleware can scale both vertically (adding more resources to a server) and
horizontally (adding more servers or VMs), ensuring the system can handle growing demands.

v. Concurrency and Transaction Management

  Concurrency Control: Middleware ensures that multiple client requests can be handled
simultaneously without conflicts, providing mechanisms like thread management or task
scheduling.

 Transaction Management: It coordinates transactions across different systems, ensuring data

consistency and rollback mechanisms in case of failure.

vi. Security

 Secure Connections: To ensure that data is transferred between clients and servers,
middleware establish secure connection using SSL/TLS.

 Authentication and Authorization: Before permitting access to protected resources,

middleware wants clients for credentials, like a username and password or digital certificates.

vii. Centralized Control and Management

 Centralized Configuration: Middleware allows for centralized management of

configurations, making it easier to update and maintain distributed systems.

 Monitoring and Diagnostics: Middleware tools often include capabilities for monitoring
system health, performance metrics, and diagnosing issues in real-time.

50. Explain various types of virtualization technology.

51. Discuss different kind of virtualization.

Ans:

 Desktop Virtualization

 Network Virtualization

 Storage Virtualization

 Server Virtualization

 Hardware Virtualization

Hardware Virtualization offers the creation of virtual instances of computer hardwares such as
processor and memory etc. After virtualization of hardware system we can install different operating
system on it and run different applications on those OS.

 Storage Virtualization

Storage virtualization abstracts physical storage resources, such as hard drives and SSDs, to create a
unified, centralized pool of storage. This virtualized storage appears as a single device to users and
applications, even though it consists of multiple devices across various locations. It improves storage
utilization, simplifies management, enhances scalability, and boosts data availability and disaster
recovery.

 Server Virtualization
 Server virtualization is a technology that allows multiple virtual servers to run on a single physical
server. Each virtual server, or virtual machine (VM), operates independently with its own operating
system and applications, sharing the underlying physical resources (CPU, memory, storage, etc.)
managed by a hypervisor. This technology improves resource utilization, reduces hardware costs,
simplifies server management, and enhances scalability and flexibility in IT environments. Server
virtualization is widely used for server consolidation, testing and development, disaster recovery, and
cloud computing.

 Network virtualization

Network virtualization abstracts physical network resources, such as switches, routers, and network
interfaces, to create multiple virtual networks over the same physical network infrastructure.

52. Discuss about the different Hardware virtualization Technologies.

Ans: Full virtualization: It uses a hypervisor, also called a Virtual Machine Monitor (VMM),
to simulate the underlying hardware environment for virtual machines (VMs). This allows
multiple VMs to run on the same physical hardware independently, as if they were running on
separate machines.

Key Example: VMware ESXi, Microsoft Hyper-V, Xen

Benefits:
 High performance and isolation between VMs
 Direct access to hardware for critical tasks
 Commonly used in data centres and enterprise environ
Para virtualization: It is the category of CPU virtualization which uses hypercalls for
operations to handle instructions at compile time. In paravirtualization, guest OS is not
completely isolated but it is partially isolated by the virtual machine from the virtualization
layer and hardware. VMware and Xen are some examples of para virtualization.

Benefits:

 Less overhead compared to full virtualization, resulting in better performance.

 Greater efficiency in resource utilization.
Hardware-Assisted Virtualization: This term refers to a scenario in which the hardware
provides architectural support for building a virtual machine manager able to run a guest
operating system in complete isolation. This technique was originally introduced in the IBM
System/370. At present, examples of hardware-assisted virtualization are the extensions to the
x86-64 bit architecture introduced with Intel VT (formerly known as Vanderpool) and AMD
V (formerly known as Pacifica).
 Benefits:

 improves performance by offloading certain tasks to the hardware.

 Reduces the complexity of the hypervisor.

53. Explain in detail about SaaS with example.

Ans: Do it Yourself

54. Differentiate between the Dynamic vs traditional scaling.

Ans:

Dynamic Scaling Traditional Scaling

1.Dynamic scaling is a cloud computing 1. Resources are added or removed based on

technique that automatically adjusts resources to anticipated demand, typically requiring manual
meet real-time demands intervention.

2. the dynamic scaling of resources enables 2. higher operational costs due to maintaining
organizations to prevent additional costs and excess capacity.
only pay for the resources they use.

3. Highly flexible, allowing organizations to 3. Less flexible as it relies on estimates of future

quickly adapt to sudden spikes in traffic or usage demand. Organizations must forecast their needs,
without pre-planning. This is particularly which can be challenging and lead to over or
beneficial for applications with unpredictable under-provisioning.
traffic or real time streaming.

4. Requires sophisticated monitoring, 4. Generally simpler to understand and

management, and automation tools to implement implement, as it follows a straightforward model
effectively. of adding or removing resources based on
manual decisions.
5. Ideal for cloud environments, e-commerce 5 .More common in legacy systems or on-
platforms, mobile applications, and services with premises environments where workloads are
variable workloads, such as streaming services stable and predictable, such as dedicated servers
that experience peak usage during specific times. hosting fixed applications with known resource
requirements.

6. Response time is less due to resources are 6. Response time is higher due to manual process.
allocated automatically when needed. It allows Adding resources may take hours.
system to scale up or down in a few seconds.

7. It uses automated tools and algorithms to 7. administrators himself monitor system

monitor system performance and workloads. performance and make decisions to scale
Resources are allocated and deallocated as per resources up or down.
real time demand.
55. Describe the different security threats in implementing SAAS.
Ans: Organizations must recognize and address the different security risks associated with Software as
a Service (SaaS) implementation. SaaS apps present special risks that could jeopardize data availability,
confidentiality, and integrity because they are hosted in the cloud and accessed online. Here, some
common security threats faced by SaaS application are mentioned below:

1. Data Breaches: Unauthorized access to sensitive data stored in a SaaS application can lead to data
breaches, exposing personal, financial, or proprietary information.

2. Denial of Service (DoS) Attacks: DoS attacks can cause service interruptions or outages by flooding
SaaS apps with traffic.

3. Insider Threats: A member of the company who has authorized access to the SaaS application may
abuse their rights in order to steal or alter data.

4. Weak Authentication Mechanisms: SaaS applications may be vulnerable to hackers due to

inadequate authentication procedures, such as weak passwords or a lack of multi-factor authentication
(MFA).

5. Data Loss: Data loss can occur due to accidental deletion, corruption, or system failures.

6. Malware and Ransomware Attacks: Through malicious links or compromised endpoints, malware
or ransomware can enter SaaS applications and encrypt or erase data.

7. Inadequate Data Encryption: Malicious actors could access data if it is not adequately encrypted
while it is in transit and at rest.

8. Phishing Attacks: Users may be targeted by phishing attacks aimed at obtaining their login
credentials or other sensitive information.

9. Compliance and Regulatory Risks: Organizations must ensure that SaaS providers comply with
relevant regulations (e.g., GDPR, HIPAA). Non-compliance can result from inadequate data protection
measures.

10. Third-Party Risks: Organizations often integrate third-party services to their SaaS application that
may introduces additional vulnerabilities.

56. Explain in detail about the Inter-cloud resource management.

Ans: Inter-cloud resource management refers to the strategies and technologies used to manage and
orchestrate resources across multiple cloud platforms. It involves the integration and coordination of
various cloud services, such as those offered by different public cloud providers, private clouds, or
hybrid clouds.

Key Concepts of Inter-Cloud Resource Management

1. Multi-Cloud and Hybrid Cloud Environments

  Multi-Cloud: Using multiple cloud services from different providers to meet various needs.
For example, a company might use Amazon Web Services (AWS) for computing power and
Google Cloud Platform (GCP) for machine learning services.

 Hybrid Cloud: Combining private cloud (on-premises) and public cloud services to enable
data and application portability.

2. Resource Allocation and Optimization

Efficiently distributing workloads and resources across multiple cloud environments to optimize
performance and cost. This involves dynamic allocation based on demand, availability, and cost
factors.

3. Interoperability and Portability

Ensuring that applications and data can move seamlessly between different cloud environments. This
requires standardized APIs, protocols, and data formats.

4. Compliance and Security

Maintaining security and compliance across different cloud platforms. This includes ensuring data
privacy, adhering to regulatory requirements, and implementing consistent security policies.

Benefits of Inter-Cloud Resource Management

 Cost Efficiency: By leveraging the most cost-effective services from different cloud service
providers (CSP), organizations can reduce overall cloud spending.

 Flexibility and Scalability: The ability to scale resources across multiple clouds based on
demand, ensuring better performance and availability.

 Risk Mitigation: Distributing workloads across multiple clouds can reduce the risk of
downtime and improve disaster recovery capabilities.

 Optimized Performance: Choosing the best-performing cloud services for specific tasks can
enhance application performance.

Challenges of Inter-Cloud Resource Management

 Complexity: Managing resources across multiple clouds can be complex and requires
specialized tools and expertise.

 Integration Issues: Ensuring seamless integration between different cloud services and
platforms.

 Data Transfer and Latency: Moving data between clouds can incur latency and additional
costs.

 Security and Compliance: Maintaining consistent security policies and compliance across
multiple cloud environments.

Strategies for Effective Inter-Cloud Resource Management

1. Unified Management Platforms

Using platforms that provide a single interface to manage multiple cloud environments. These
platforms can offer monitoring, automation, and orchestration capabilities.

2. Automated Workload Management

Implementing automation tools to manage workloads dynamically based on predefined policies. This
includes auto-scaling, load balancing, and failover mechanisms.

3. Inter-Cloud Networking

Establishing secure and efficient networking between different cloud environments. This may involve
virtual private networks (VPNs), dedicated interconnects, and software-defined networking (SDN)
solutions.

4. Compliance Management

Using compliance management tools to ensure that all cloud environments adhere to regulatory and
security standards. This includes continuous monitoring and auditing capabilities.

57. Describe in detail about the aspects of data security.

Ans:

1. Encryption of Data

 Encryption is one of the fundamental techniques used to secure data in the cloud. It ensures that
data is unreadable to unauthorized users, both in transit and at rest. Protocols like SSL/TLS are
commonly used for securing data during transmission.

 AWS Key Management Service (KMS) or Azure Key Vault for secure key generation,
storage, and access control.

2. Access Control and Identity Management

Access control mechanisms ensure that only authorized users or applications can access sensitive data.
Example: AWS Identity and Access Management or Azure Active Directory, to control access to
resources and services.

3. Role-Based Access Control (RBAC): RBAC restricts access to cloud resources based on the user’s
role within an organization, ensuring that employees only have access to the data and applications
relevant to their job.

3. Data Privacy and Compliance

Ensuring that cloud data handling complies with legal and regulatory requirements is essential,
especially for organizations operating in industries with strict privacy rules.

4. Data Backup and Recovery

In the event of an incident, such as a hardware malfunction or cyberattack, data backup and disaster
recovery are crucial mechanisms to ensure that data is not lost. Example AWS Backup and Azure
Backup.

5. Data Loss Prevention (DLP)

Data Loss Prevention (DLP) tools monitor and control the movement of data in the cloud to prevent
sensitive information from being leaked, accessed, or misused. Cloud providers like Microsoft Azure
and Google Cloud offer integrated DLP solutions that scan for sensitive data (e.g., credit card numbers,
social security numbers) and prevent it from being improperly transmitted or shared.

6. Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS): These systems
monitor cloud traffic for suspicious activity, automatically blocking or alerting administrators to
potential threats.

7. Information and Event Management (SIEM): SIEM tools collect and analyze security logs from
across the cloud environment to identify potential security incidents, providing real-time alerts and
forensic analysis.

8. Automated Response: Cloud providers offer automation tools for incident response, enabling swift
actions such as isolating affected resources or triggering backups to reduce damage during an attack.

9. Data Isolation and Multi-Tenancy

In cloud environments, especially public clouds, multiple tenants may share the same physical
infrastructure. Ensuring data isolation is critical to preventing unauthorized access to data between
tenants.

58. Summarize the benefit of using the Eucalyptus Cloud.

Ans : Do it Yourself

59. Describe the Eucalyptus architecture with diagram.

Ans: See at CA3