Reference no: EM132717830

MOD005714 Data Centre and Cloud Infrastructures - Anglia Ruskin University

Data Centre and Cloud Infrastructures

Service Management & Security Concerns

A cloud service provider for DoDo.Com uses 50 percent of its data centre equipment to setup a cloud infrastructure. The remaining equipment is used for internal operations and for testing. The cloud infrastructure consists of a hypervisor cluster. A resource pool is created by aggregating the available resources of the hypervisor cluster. The cloud infrastructure is used to provide compute services. The services are allocated necessary processing power and memory resources from the resource pool.

The hypervisor cluster is composed of 10 identical physical compute systems containing 2 redundant (passive) compute systems. This means that the cluster can absorb up to two compute system failures and continue to support all services at the same level of performance. The available processing power and memory per physical compute system in the cluster is equal to 20.8 GHz and 96 GB respectively. The existing resources in the data centre can meet capacity requirement of services in short-term. However, the provider should procure and provision additional resources as required to avoid the capacity issues in future. Further, the provider is concerned about security attacks that may compromise the hypervisors running on the physical compute systems. The provider should take control measures to protect against such attacks.

The capacity management process in a service provider's organization is shown in the ?gure. The process comprises several activities, shown in rectangular boxes. The process also consists of conditions. They allow the process to branch into different directions, depending on whether the conditions are met or not.

Given: The thresholds for over utilization and underutilization of resources are 70 percent and 40 percent utilization of total resource capacity respectively. These are used to determine whether the resource pool is over utilised or underutilised.

Part (a) (500 words maximum)

DoDo.Com is asking you as its cloud provider to establish the required capacity management activities marked by ‘X1' and ‘X2' in the previous ?gure for below cases:

· Case 1: Processing power already allocated to services from the resource pool is equal to 48GHz and memory capacity already allocated to services from the resource pool is equal to 122 GB

· Case 2: Processing power already allocated to services from the resource pool is equal to 112GHz and memory capacity already allocated to services from the resource pool is equal to 340 GB
Document your calculations and recommend what actions the server provider should take in each scenario with appropriate justi?cations.

Part (b) (2500 words maximum)
In a formal report, justify to the client what security control measures should be undertaken to address their security concerns especially with regard to cloud compute functions and in particular hypervisor vulnerabilities especially with regard to cloud service providers.
The service provider needs to know what current vulnerabilities exist "out in the wild" with respect to hypervisors affecting service providers and what you predict may become a problem in the future, justi?ed by the use of literature.
Evidence of respected research in to both the theory of hypervisor attacks and documented vulnerabilities is expected. Hint: use of CVE/NVD documented vulnerabilities.

You are expected to minimise any desire you may have to explain basic cloud c oncepts as this already well known and ignorance will be frowned upon.

You are expected to provide examples of how both current and future vulnerabilities can be mitigated against.
DO NOT JUST MAKE BULLET LISTS OF POINTS COPIED FORM REFERENCE
MATERIAL OR THE MODULE NOTES AS WILL ATTRACT MINIMAL MARKS.

Recommendations should be backed with appropriate authoritative accredited references and case study material. Students are expected to compare and contrast between reference material to be able to demonstrate critical analysis.

Part (1000 words) Lab Portfolio
Re?ect on what you've learnt from each lab exercise and provide evidence of successful lab completion (screenshots), 1% for each lab exercise that you have successfully completed and provided a re?ective summary of (up to a maximum of 10 lab exercises).
Students are required to complete a minimum of 10 self- study weekly exercises (consisting of Cisco CCNA Introduction to Network v7 exams, NDG on line "Cloud and Virtualisation Concepts" Labs and Netlab VMware VCA DCV 6 Labs )as scheduled in the Syllabus
For each lab exercise students should write a Word document which contains:

• 3-4 screenshots of undertaking the lab exercise (NOT stolen from the worksheet) ideally showing your URL.
• a 100-word re?ection of the lab exercise containing

o What you learnt from the exercise?

o What further follow-up research you've done following the exercise and evidence in terms of references given (this is crucial otherwise you could fail the component) including at least two URL's and explain how the research is relevant.
o What problems you might have encountered?

Attachment:- Data Centre and Cloud Infrastructures.rar