UNIT- 4 Cloud Computing

Storage Systems

Here’s a look at the evolution of storage devices:

1. Floppy disks: 1967
Designed to store text and image documents, the storage capacity of a floppy is just
1.4 MB. While that may seem to be a minuscule storage space, compared to the
devices we use today; it was sufficient for the period since the information stored on
the drive was limited. Computers, laptops and even game consoles from olden times,
consist of a floppy disk drive. But today, FDDs (Floppy disk drives) are rarely used
or seen.
Compact disks: 1982
As time went on, people had more data that needed to be stored, and CD-ROMs
helped serve this need. The acronym ROM – Read-Only Memory, means that the
data can be read but not written or erased. This was revolutionary, because other
than computer data, audio files could be stored and played using a CD player. CDs
contain up to 680 MB of storage space and can store software and game consoles.
USB flash drive:
Unlike floppies and CDs, USB drives can store, erase and reprogram data. USBs
a.k.a thumb drives or pen drives are exactly the size of a human thumb. USBs simply
need to be connected to a USB port in a desktop or a laptop. Similar to USBs are
External portable hard drives that hold up to 1 Terabyte of information and work
similar to a USB.
Cloud Computing:
Cloud Computing was a ground-breaking discovery in the information age. The
entire concept of storage was repurposed by removing the need for active
management by the user. The user can remotely access data that is present on
“clouds” that belong to either the same organization or multiple organizations. The
need for finding a storage space that is virtual and accessible from anywhere led to
the development of cloud storage.
CLOUD STORAGE

• Now there is an opportunity to store all our data in the internet. Those off-
site storages are provided and maintained by the third parties through the
Internet Cloud storage offers a large pool of storage was available for use with
immediate availability of very large quantities of storage.
• The evolution of Cloud Storage based on traditional network storage and
hosted storage. Benefit of cloud storage is the access of your data from
anywhere.
• Cloud storage providers provide storage varying from small amount of data
to even the entire warehouse of an organization.
• Subscriber can pay to the cloud storage provider for what they are using and
how much they are transferring to the cloud storage.
 • Basically the cloud storage subscriber copies the data into any one of the
data server of the cloud storage provider. That copy of data will be made
available to all the other data servers of the cloud storage provider.

BENEFITS OF CLOUD STORAGE:

• No need to invest any capital on storage devices.

• No need for technical expert to maintain the storage, backup, replication
and importantly disaster management.
• Allowing others to access our data for collaborative working style instead
of individual work.

Storage models, file systems, and databases

A storage model describes the layout of a data structure in physical storage; a

data model captures the most important logical aspects of a data structure in a
database. The physical storage can be a local disk, a removable media, or storage
accessible via a network.

Two abstract models of storage are commonly used: They are

I. Cell storage
II. Journal storage.

Cell storage

• Cell storage assumes that the storage consists of cells of the same size and that
each object fits exactly in one cell.
• This model reflects the physical organization of several storage media; The
primary memory of a computer is organized as an array of memory cells.

Journal storage.
 • Journal storage is an elaborate organization for storing composite objects
such as records consisting of multiple fields.
• Journal storage consists of a manager and cell storage, where the entire
history of a variable is maintained, rather than just the current value.
• The user does not have direct access to the cell storage; instead the user can
request the journal manager to
(i) start a new action;
(ii) read the value of a cell;
(iii) write the value of a cell;
(iv) commit an action;
(v) abort an action.

The journal manager translates user requests to commands sent to the cell storage:

(i) read a cell;

(ii) write a cell;
(iii) Allocate a cell;
(iv) Deallocate a cell.

• In the context of storage systems, a log contains a history of all variables in

cell storage. The information about the updates of each data item forms a
record at the end of the log.
• A log provides authoritative information about the outcome of an action
involving cell storage; the cell storage can be reconstructed using the log,
which can be easily accessed – we only need a pointer to the last record.
• The log is always kept on nonvolatile storage (e.g., disk) and the considerably
larger cell storage resides typically on nonvolatile memory, but can be held
in memory for real-time access or using a write-through cache.

• Many cloud applications must support online transaction processing and have
to guarantee the correctness of the transactions.
• Transactions consist of multiple actions; for example, the transfer of funds
from one account to another requires withdrawing funds from one account
and crediting it to another. The system may fail during or after each one of the
actions, and steps to ensure correctness must be taken. Correctness of a
transaction means that the result should be guaranteed to be the same as
though the actions were applied one after another, regardless of the order.
More stringent conditions must be taken.
A file system consists of a collection of directories. Each directory provides
information about a set of files.
 • Today high-performance systems can choose among three classes of file
system: network file systems (NFSs), storage area networks (SANs),
and parallel file systems (PFSs).
Network file systems (NFSs)
• The NFS is very popular and has been used for some time, but it does not
scale well and has reliability problems; an NFS server could be a single
point of failure.
Storage area networks (SANs):
• Advances in networking technology allow the separation of storage
systems from computational servers; The two can be connected by a SAN.
• SANs offer additional flexibility and allow cloud servers to deal with non
disruptive changes in the storage configuration. Moreover, the storage in a
SAN can be pooled and then allocated based on the needs of the servers;
pooling requires additional software and hardware support and represents
another advantage of a centralized storage system.
• A SAN-based implementation of a file system can be expensive, since each
node must have a Fibre Channel adapter to connect to the network.
Pparallel file systems (PFSs)
• Parallel file systems are scalable and are capable of distributing files across
a large number of nodes, and provide a global naming space.
• In a parallel data system, several I/O nodes serve data to all computational
nodes and include a metadata server that contains information about the
data stored in the I/O nodes. The interconnection network of a parallel file
system could be a SAN.
Data Bases:
• A database is a collection of logically related records. The software that
controls the access to the database is called a database management system
(DBMS).
• The main functions of a DBMS are to enforce data integrity, manage data
access and concurrency control, and support recovery after a failure.
• A DBMS supports a query language, a dedicated programming
language used to develop database applications. Several database models,
including the navigational model of the 1960s, the relational model of
the 1970s, the object-oriented model of the 1980s, and
the NoSQL model of the first decade of the 2000s, reflect the limitations
of the hardware available at the time and the requirements of the most
popular applications of each period.
• Most cloud applications are data intensive and test the limitations of the
existing infrastructure.. At the same time, cloud applications require low
latency, scalability, and high availability and demand a consistent view of
the data.
• These requirements cannot be satisfied simultaneously by existing
database models; for example, relational databases are easy to use for
application development but do not scale well.
• As its name implies, the NoSQL model does not support SQL as a query
language and may not guarantee the atomicity, consistency, isolation,
durability (ACID) properties of traditional databases.
• NoSQL usually guarantees the eventual consistency for transactions
limited to a single data item. The NoSQL model is useful when the
structure of the data does not require a relational model and the amount of
data is very large.
• Several types of NoSQL database have emerged in the last few years.
Based on the way the NoSQL databases store data, we recognize several
types, such as key-value stores, BigTable implementations, document
store databases, and graph databases.
• Replication, used to ensure fault tolerance of large-scale systems built with
commodity components, requires mechanisms to guarantee that all
replicas are consistent with one another. This is another example of
increased complexity of modern computing and communication systems
due to physical characteristics of components.
Distributed file systems:

• A Distributed File System (DFS) is a file system that is distributed on

multiple file servers or multiple locations. It makes the programs to access
or to store isolated files with the local ones, allowing programmers to
access files from any network or computer. It manages files and folders on
different computers.
• A DFS is a client-server architecture based application, which allows the
user or clients to access the data from the server as it is stored in their own
computer. It provides location transparency and redundancy help to
improve the data availability. And also use data replication strategy on
multiple servers to prevent data access failure.
Working of DFS :
There are two ways in which DFS can be implemented:
• Standalone DFS namespace –
It allows only for those DFS roots that exist on the local computer and are not
using Active Directory. It does not provide any fault liberation and cannot be
 linked to any other DFS. Standalone DFS roots are rarely come across because
of their limited advantage.
• Domain-based DFS namespace –
It stores the configuration of DFS in Active Directory, creating the DFS
namespace root accessible
at \\<domainname>\<dfsroot> or \\<FQDN>\<dfsroot>

There are various advantages of the distributed file system. Some of the advantages
are as follows:

1. It allows the users to access and store the data.

2. It helps to improve the access time, network efficiency, and availability of files.
3. It provides the transparency of data even if the server of disk files.
4. It permits the data to be shared remotely.
5. It helps to enhance the ability to change the amount of data and exchange data.
NFS Network File System
• Network File System is a type of distributed file system protocol where
storage resources connect to a computer by network resources, such as a LAN
or SAN. Hosts can access data using NFS. A DFS should create backup copies
to prevent data loss if there are drive failures.
• NFS is derived from the distributed file system mechanism. It is generally
implemented in computing environments where the centralized management
of data and resources is critical. Network file system works on all IP-based
networks. It uses TCP and UDP for data access and delivery, depending on
the version in use.
• Network file system is implemented in a client/server computing model,
where an NFS sever manages the authentication, authorization and
management of clients, as well as all the data shared within a specific file
system. Once authorized, clients can view and access the data through their
local systems much like they'd access it from an internal disk drive.

• It uses the Transmission Control Protocol (TCP) and User Datagram Protocol
(UDP) for accessing and delivering the data and files.
Andrew File System (AFS)
• Andrew File System (AFS) is a global file system that allows access to files
from Mac, Windows or Linux computers.
• It is similar to cloud-based storage, however, data is stored locally at Carnegie
Mellon University. AFS also allows file sharing with other members of the
 Carnegie Mellon University community. Network Drive storage on Mac lab
computers uses AFS space.
• An AFS presents a homogeneous, location-independent file namespace to all
client workstations via a group of trustworthy servers.
• After login onto workstations the users exchange data and programs (DCI).
The goal is to facilitate large-scale information exchange by reducing client-
server communication.
• This is accomplished by moving whole files between server and client
computers and caching them until the servers get a more recent version.
• An AFS uses a local cache to improve speed and minimize effort in dispersed
networks. A server, for example, replies to a workstation request by storing
data in the workstation’s local cache.
Andrew File System Architecture:
Vice: The Andrew File System provides a homogeneous, location-transparent
file namespace to all client workstations by utilizing a group of trustworthy
servers known as Vice.
Venus: The mechanism, known as Venus, caches files from Vice and returns
updated versions of those files to the servers from which they originated. Only
when a file is opened or closed does Venus communicate with Vice.
Venus performs as much work as possible rather than Vice. Vice only keeps the
functionalities that are necessary for the file system’s integrity, availability, and
security. The servers are set up as a loose confederacy with little connectivity
between them.
The following are the server and client components used in AFS networks:
• Any computer that creates requests for AFS server files hosted on a network
qualifies as a client.
• The file is saved in the client machine’s local cache and shown to the user once
a server responds and transmits a requested file.
• When a user visits the AFS, the client sends all modifications to the server via
a callback mechanism. The client machine’s local cache stores frequently used
files for rapid access.
Advantages:
1. Shared files that aren’t updated very often and local user files that aren’t
updated too often will last a long time.
2. It sets up a lot of storage space for caching.
3. It offers a big enough working set for all of a user’s files.

Sprite File System: SFS

The SFS is functionally similar to Unix File System
SFS is a component of the Sprite network operating system. SFS uses caching on
the server side and on the client side also.
General Parallel File System
• The General Parallel File System (GPFS) was developed at IBM as a hgh
performance Cluster System in the early 2000s as a successor to the Tiger
Shark multimedia file system.
• GPFS is a parallel file system that emulates closely the behavior of a general-
purpose POSIX system running on a single system.
• GPFS can support a file system of up to 4 PB consisting of up to 4,096 disks
of 1 TB each.
• It is used by many of the World’s Largest Commercial Companies.
• GPFS implies execution of multiple input/output operations concurrently.
• Parallel file systems allow multiple clients to read and write concurrently from
the same file. Concurrency control is a critical issue for parallel file systems.
 • Early supercomputers such as the Intel Paragon4 took advantage of parallel
file systems to support applications based on the same program, multiple data
(SPMD) paradigm.
• The maximum file size is (263−1) bytes. A file consists of blocks of equal
size, ranging from 16 KB to 1MB striped across several disks.
• The system could support not only very large files but also a very large
number of files.
• The directories use extensible hashing techniques to access
• Reliability is a major concern in a system with many physical components. To
recover from system failures, GPFS records all metadata updates in a write-
ahead log file. Which is used to recover data from failures?
• The system maintains user data, file metadata along with allocation maps.
• Parallel File system is used to access data from multiple File Servers.
• GPFS uses disk maps to manage the disk space. The GPFS block size can be as
large as 1 MB and a typical block size is 256 KB. A block is divided into 32 sub
blocks to reduce disk fragmentation for small files.
• The system disk map is partitioned into n regions, and each disk map region is
stored on a different I/O node. This strategy reduces conflicts and allows multiple
nodes to allocate disk space at the same time.
• An allocation manager running on one of the I/O nodes is responsible for actions
involving multiple disk map regions.

A GPFS configuration. The disks are interconnected by a SAN and

compute servers are distributed in four LANs, LAN1–LAN4.
Google File System
• The Google File System (GFS) was developed in the late 1990s. It uses
thousands of storage systems.
• Google File System (GFS) is a scalable distributed file system (DFS) created
by Google Inc. and developed to accommodate Google’s expanding data
processing requirements.
• GFS provides fault tolerance, reliability, scalability, availability and
performance to large networks and connected nodes.
 • GFS is made up of several storage systems built from low-cost commodity
hardware components.
• It is optimized to accommodate Google's different data use and storage needs,
such as its search engine, which generates huge amounts of data that must be
stored.

GFS features include:

• Fault tolerance
• Critical data replication
• Automatic and efficient data recovery
• High aggregate throughput
• Reduced client and master interaction because of large chunk server
size
• Namespace management and locking
• High availability
GFS files are collections of fixed-size segments called chunks; at the time of file
creation each chunk is assigned a unique chunk handle. A chunk consists of 64 KB
blocks and each block has a 32 bit checksum.
Chunks are stored on Linux files systems and are replicated on multiple sites. The
chunk size is 64 MB.
A large chunk size increases the likelihood that multiple operations will be directed
to the same chunk thus, it reduces the number of requests to locate the chunk and, at
the same time, it allows an application to maintain a persistent network connection
with the server where the chunk is located. Space fragmentation occurs infrequently
as the chunk of a small file and the last chunk of a large file are only partially filled.
The Architecture of GFS is as follows

Chunk Server

1. Each chunk server is a commodity Linux system.

2. A chunk server receives instructions from the master and responds with status
information.

The GFS Master

1. The GFS Master controls a large number of chunk servers.
2. It maintains metadata such as the file names, access control information, the
location of all the replicas for every chunk of each file, and the state of
individual chunk servers.
3. Read or write operations an application sends to the master along with the file
name, the chunk index, and the offset in the file.
4. The master responds with the chunk handle and the location of the chunk. Then
the application communicates directly with the chunk server to carry out the
desired file operation.

Chunks:

1. GFS files are collections of fixed-size segments called chunks; at the time of
file creation each chunk is assigned a unique chunk handle. A chunk consists
of 64 KB blocks and each block has a 32 bit checksum.
2. Chunks are stored on Linux files systems and are replicated on multiple sites.
The chunk size is 64 MB.
3. Some of the metadata is stored in persistent storage.
4. The locations of the chunks are stored only in the control structure of the
master's memory and are updated at the system start up, or when a new chunk
server joins the cluster. This strategy allows the master to have up-to-date
information about the location of the chunks.
This GFS consistency model is very effective and scalable.
• Operations, such as file creation, are atomic and are handled by the master.
• To ensure scalability, the master has a minimal involvement in file mutations,
operations such as write or appends which occur frequently.
• In such cases the master grants a lease for a particular chunk to one of the
chunk servers called the primary; then, the primary creates a serial order for
the updates of that chunk.
Flow of Data and Read and Write operations is as follows
1. The client contacts the master which assigns a lease to one of the chunk
servers for the particular chunk, if no lease for that chunk exists; then, the
master replies with the Ids of the primary and the secondary chunk servers
holding replicas of the chunk. The client caches this information.
2. The client sends the data to all chunk servers holding replicas of the chunk;
each one of the chunk servers stores the data in an internal LRU buffer and
then sends an acknowledgment to the client.
3. The client sends the write request to the primary chunk server once it has
received the acknowledgments from all chunk servers holding replicas of the
chunk.
4. The primary chunk server identifies mutations by consecutive sequence
numbers.
5. The primary chunk server sends the write requests to all secondaries.
6. Each secondary chunk server applies the mutations in the order of the
sequence number and then sends an acknowledgment to the primary chunk
server.
7. Finally, after receiving the acknowledgments from all secondaries, the
primary informs the client.
• The system supports an efficient check pointing procedure based on copy-on-
write to construct system snapshots. A lazy garbage collection strategy is used to
reclaim the space after a file deletion. The master periodically scans the
namespace, removes the metadata for the files with a hidden name older than a
few days. This mechanism gives a window of opportunity to a user who deleted
files by mistake to recover the files with little effort.
• Periodically, chunk servers exchange with the master the list of chunks stored on
each one of them; the master supplies them with the identity of orphaned chunks,
whose metadata has been deleted and such chunks are then deleted. Even when
control messages are lost, a chunk server will carry out the house cleaning at the
next heartbeat exchange with the master. Each chunk server maintains in core the
checksums for the locally stored chunks to guarantee data integrity.

The system was designed after a careful analysis of the file characteristics and
the access models. This analysis reflected in the GFS design are
• Scalability and reliability are critical features of the system;
• The majority of files range in size from a few GB to hundreds of TB.
• The most common operation is to append to an existing file; random write
operations to a file are extremely infrequent.
• Sequential read operations are the norm.
• Users process the data in bulk and are less concerned with the response time.
• To simplify the system implementation the consistency model should be
relaxed without placing an additional burden on the application developers.
As a result of this analysis several design decisions were made:
1. Segment a file in large chunks.
2. Implement an atomic file append operation
3. Allowing multiple applications operating concurrently to append to the same
file.
 4. Build the cluster around a high-bandwidth rather than low-latency
interconnection network.
5. Separate the flow of control from the data flow;
6. Schedule the high-bandwidth data flow by pipelining the data transfer over
TCP connections to reduce the response time.
7. Exploit network topology by sending data to the closest node in the network.
8. Eliminate caching at the client site;
9. Ensure consistency by channeling critical file operations through a master
controlling the entire system.
10. Minimize master's involvement in file access operations to avoid hot-spot on
tension and to ensure scalability.
11. Support efficient check pointing and fast recovery mechanisms.
12. Support efficient garbage collection mechanisms.

Apache Hadoop
• Apache Hadoop is an open source framework that is used to efficiently store
and process large datasets ranging in size from gigabytes to petabytes of data.
• Instead of using one large computer to store and process the data, Hadoop
allows clustering multiple computers to analyze massive datasets in parallel
more quickly.
• It provides a software framework for distributed storage and processing of big
data using the MapReduce programming model.
• Hadoop was originally designed for computer clusters built from commodity
hardware, which is still the common use.
• All the modules in Hadoop are designed with a fundamental assumption that
hardware failures are common occurrences and should be automatically
handled by the framework.
 • The core of Apache Hadoop consists of a storage part, known as Hadoop
Distributed File System (HDFS), and a processing part which is a MapReduce
programming model.
• Hadoop splits files into large blocks and distributes them across nodes in a
cluster. It then transfers packaged code into nodes to process the data in
parallel. This approach takes advantage of data locality, where nodes
manipulate the data they have access to.
• This allows the dataset to be processed faster and more efficiently than it
would be in a more conventional supercomputer architecture that relies on a
parallel file system where computation and data are distributed via high-speed
networking.

The base Apache Hadoop framework is composed of the following modules:

• Hadoop Common – contains libraries and utilities needed by other Hadoop

modules;
• Hadoop Distributed File System (HDFS) – a distributed file-system that stores
data on commodity machines, providing very high aggregate bandwidth across
the cluster;
• Hadoop YARN – (introduced in 2012) a platform responsible for managing
computing resources in clusters and using them for scheduling users'
applications.
• Hadoop MapReduce – an implementation of the MapReduce programming
model for large-scale data processing.
• Hadoop Ozone – (introduced in 2020) An object store for Hadoop
A Hadoop cluster using HDFS. The cluster includes a master and four slave nodes

A multi-node Hadoop cluster

 Architecture
• Hadoop consists of the Hadoop Common package, which provides file system and
operating system level abstractions, A MapReduce engine (either
MapReduce/MR1 or YARN/MR2 and the Hadoop Distributed File System
(HDFS). The Hadoop Common package contains the Java Archive (JAR) files and
scripts needed to start Hadoop.
• For effective scheduling of work, every Hadoop-compatible file system should
provide location awareness, which is the name of the rack, specifically the network
switch where a worker node is.
• Hadoop applications can use this information to execute code on the node where
the data is, and, failing that, on the same rack/switch to reduce backbone traffic.
HDFS uses this method when replicating data for data redundancy across multiple
racks. This approach reduces the impact of a rack power outage or switch failure;
if any of these hardware failures occurs, the data will remain available.
• A small Hadoop cluster includes a single master and multiple worker nodes. The
master node consists of a Job Tracker, Task Tracker, NameNode, and DataNode.
A slave or worker node acts as both a DataNode and TaskTracker, though it is
possible to have data-only and compute-only worker nodes. These are normally
used only in nonstandard applications.
• Hadoop requires Java Runtime Environment (JRE) 1.6 or higher. The standard
startup and shutdown scripts require that Secure Shell (SSH) be set up between
nodes in the cluster.
• In a larger cluster, HDFS nodes are managed through a dedicated NameNode
server to host the file system index, and a secondary NameNode that can generate
snapshots of the namenode's memory structures, thereby preventing file-system
corruption and loss of data. Similarly, a standalone JobTracker server can manage
job scheduling across nodes. When Hadoop MapReduce is used with an alternate
 file system, the NameNode, secondary NameNode, and DataNode architecture of
HDFS are replaced by the file-system-specific equivalents.
Hadoop distributed file system

The Hadoop distributed file system (HDFS) is a distributed, scalable, and

portable file system written in Java for the Hadoop framework.
HDFS has five services as follows:

1. Name Node
2. Secondary Name Node
3. Job tracker
4. Data Node
5. Task Tracker

• Top three are Master Services/Daemons/Nodes and

• Bottom two is Slave Services.
Master Services can communicate with each other and in the same way Slave
services can communicate with each other.
Name Node:
• HDFS consists of only one Name Node that is called the Master Node. The
master node can track files, manage the file system and has the metadata of
all of the stored data within it.
• In particular, the name node contains the details of the number of blocks,
locations of the data node that the data is stored in, where the replications are
stored, and other details. The name node has direct contact with the client.
Data Node:
• A Data Node stores data in it as blocks.
• This is also known as the slave node and it stores the actual data into HDFS
which is responsible for the client to read and write.
• These are slave daemons.
 Secondary Name Node:
• This is only to take care of the checkpoints of the file system metadata which
is in the Name Node.
• This is also known as the checkpoint Node. It is the helper Node for the Name
Node.
Job Tracker:
• Job Tracker receives the requests for Map Reduce execution from the client.
• Job tracker talks to the Name Node to know about the location of the data that
will be used in processing.
Task Tracker:
• It is the Slave Node for the Job Tracker and it will take the task from the Job
Tracker. It also receives code from the Job Tracker.
• Task Tracker will take the code and apply on the file. The process of applying
that code on the file is known as Mapper.

By default Hadoop uses FIFO scheduling, and optionally 5 scheduling priorities to

schedule jobs from a work queue.
BigTable
• Bigtable is a fully managed wide-column and key-value NoSQL database service for
large analytical and operational workloads as part of the Google Cloud portfolio

• Bigtable is a sparsely populated table that can scale to billions of rows and thousands
of columns, enabling us to store terabytes or even petabytes of data.
• Bigtable development began in 2004. It is now used by a number of Google
applications, such as Google Analytics, web indexing, MapReduce, which is often
used for generating and modifying data stored in Bigtable, Google Maps, Google
Books search, "My Search History", Google Earth, Blogger.com, Google Code
hosting, YouTube,and Gmail.
• Google's reasons for developing its own database include scalability and better
control of performance characteristics

• A bigtable is somewhat like a mapreduce worker pool in that thousands to hundreds

of thousands of tablet shards may be served by hundreds to thousands of BigTable
servers.

Bigtable storage model

• Bigtable stores data in massively scalable tables.

• The table is composed of rows, and columns, which contain individual values
for each row.
• Each row is indexed by a single row key, and columns that are related to one
another are typically grouped into a column family.
• Each column is identified by a combination of the column family and
a column qualifier, which is a unique name within the column family.
• Each row/column intersection can contain multiple cells.
• Each cell contains a unique timestamped version of the data for that row and
column. Storing multiple cells in a column provides a record of how the stored
data for that row and column has changed over time.
• Bigtable tables are sparse; if a column is not used in a particular row, it does
not take up any space.
Bigtable architecture

• All client requests go through a frontend server before they are sent to a
Bigtable node.
• The nodes are organized into a Bigtable cluster, which belongs to a Bigtable
instance, a container for the cluster.
• Each node in the cluster handles a subset of the requests to the cluster.
• By adding nodes to a cluster, you can increase the number of simultaneous
requests that the cluster can handle. Adding nodes also increases the
maximum throughput for the cluster.
• A Bigtable table is sharded into blocks of contiguous rows, called tablets, to
help balance the workload of queries.
• Tablets are stored on Colossus, Google's file system, in SSTable format.
 • An SSTable provides a persistent, ordered immutable map from keys to
values, where both keys and values are arbitrary byte strings.
• Each tablet is associated with a specific Bigtable node. In addition to the
SSTable files, all writes are stored in Colossus's shared log as soon as they are
acknowledged by Bigtable, providing increased durability.
Importantly, data is never stored in Bigtable nodes themselves; each node has
pointers to a set of tablets that are stored on Colossus.
As a result:
• Rebalancing tablets from one node to another happens quickly, because the
actual data is not copied. Bigtable simply updates the pointers for each node.
• Recovery from the failure of a Bigtable node is fast, because only metadata
must be migrated to the replacement node.
• When a Bigtable node fails, no data is lost.

BigTable is used by a variety of applications, including Google Earth, Google

Analytics, Google Finance, andWeb crawlers.

Mega Store
• Megastore is a storage system developed to meet the requirements of today's
interactive online services.
• Megastore is Providing scalable, highly available storage for interactive
services
• Megastore blends the scalability of a NoSQL datastore with the convenience
of a traditional RDBMS in a novel way, and provides both strong consistency
guarantees and high availability.
• Google's Megastore is the structured data store supporting the Google
Application Engine.
• Megastore handles more than 3 billion write and 20 billion read transactions
daily and stores a petabyte of primary data across many global datacenters.

• The basic design philosophy of the system is to partition the data into entity
groups and replicate each partition independently in data centers located in
different geographic areas.
• Megastore tries to provide the convenience of using traditional RDBMS with
the scalability of NOSQL: It is a scalable transactional indexed record
manager (built on top of BigTable), providing full ACID semantics within
partitions but lower consistency guarantees across partitions . To achieve
these strict consistency requirements, Megastore employs a Paxos-based
algorithm for synchronous replication across geographically distributed
datacenters.
• Another distinctive feature of the system is the use of the Paxos consensus
algorithm, to replicate primary user data, metadata, and system configuration
information across data centers and for locking.
• The version of the Paxos algorithm used by Megastore does not require a
master. Instead, any node can initiate read and write operations to a write-
ahead log replicated to a group of symmetric peers.
• The data model is declared in a schema consisting of a set of tables
composed of entries, each entry being a collection of named and typed
properties. The unique primary key of an entity in a table is created as a
composition of entry properties.
• A Megastore table can be a root or a child table. Each child entity must
reference a special entity, called a root entity in its root table. An entity group
consists of the primary entity and all entities that reference it.
• The system makes extensive use of BigTable. Entities from different
Megastore tables can be mapped like as BigTable row without collisions.
This is possible because the BigTable column name is a concatenation of the
Megastore table name and the name of a property.
• A BigTable row for the root entity stores the transaction and all metadata for
the entity group. multiple versions of the data with different time stamps can
be stored in a cell. Megastore takes advantage of this feature to implement
multi-version concurrency control (MVCC).
• A write transaction involves the following steps: (1) Get the timestamp and
the log position of the last committed transaction. (2) Gather the write
operations in a log entry. (3) Use the consensus algorithm to append the log
entry and then commit. (4) Update the BigTable entries. (5) Clean up.
Cloud Security
• Cloud security, also known as cloud computing security, is a collection of security
measures designed to protect cloud-based infrastructure, applications, and data.
• These measures ensure user and device authentication, data and resource access
control, and data privacy protection.
• They also support regulatory data compliance. Cloud security is employed in
cloud environments to protect a company's data from distributed denial of service
(DDoS) attacks, malware, hackers, and unauthorized user access or use.
• Cloud computing is continually transforming the way companies store, use,
and share data, workloads, and software.
• The volume of cloud utilization around the globe is increasing, leading to a
greater mass of sensitive material that is potentially at risk.
The market for worldwide cloud computing is projected to grow to $191
billion in two years.
• There are many pros of cloud computing, which are driving more firms and
individuals to the cloud. The benefits include low costs, improved employee
productivity, and faster to market, among many more.
• Regardless of the great advantages, saving a firm’s workloads to a cloud
service that is publicly hosted exposes the organization to new data security
risks which cause unease for some firms’ IT departments and clients.
• With more and more data and software moving to the cloud, unique info-
security challenges crop up. Here are the top cloud computing security risks
that every firm faces.
Cloud security risks
Following are the important Cloud security risks

1. Theft or loss of intellectual property

Weak cloud security measures within an organization include storing data without
encryption or failing to install multi-factor authentication to gain access to the
service.
2. Compliance violations
Organizations can quickly go into a state of non-compliance, which puts them in
the risk of serious repercussions.
Even tech giants like Facebook have been victims of resource exploitation due to
user error or misconfigurations. Keeping employees informed about the dangers
and risks of data sharing is of at most importance.
3. Malware attacks
Cloud services can be a vector for data exfiltration. As technology improves, and
protection systems evolve, cyber-criminals have also come up with new techniques
to deliver malware targets. Attackers encode sensitive data onto video files and
upload them to YouTube.
4. End-user control
When a firm is unaware of the risk posed by workers using cloud services, the
employees could be sharing just about anything without raising eyebrows. Insider
threats have become common in the modern market
5. Contract breaches with clients and/or business partners
. Employees put both the firm and themselves at risk of legal action when they
move restricted data into their cloud accounts without permission from the relevant
authorities. Violation of business contracts through breaching confidentiality
agreements is common. This is especially when the cloud service maintains the
right to share all data uploaded with third parties.
6. Shared vulnerabilities
Cloud security is the responsibility of all concerned parties in a business
agreement. From the service provider to the client and business partners, every
stakeholder shares responsibility in securing data. Every client should be inclined
to take precautionary measures to protect their sensitive data.
7. Attacks to deny service to legitimate users
Denial of service attacks, unlike cyber-attacks, do not attempt to bypass your
security protocol. Instead, they make your servers unavailable to illegitimate users.
However, in some cases, DoS is used as a smokescreen for a variety of other
malicious activities. They can also be used to take down some security appliances
like web application firewalls.
8. Insecure APIs
API or Application Programming Interfaces offer users the opportunity to
customize their cloud service experience. APIs can, however, be a threat to cloud
security due to their very nature. As APIs evolve to provide better service to users,
they also increase their security risk on the data client’s store. APIs provide
programmers with the tools to integrate their programs with job-critical
applications.
9. Loss of data
Data stored on cloud servers can be lost through a natural disaster, malicious
attacks, or a data wipe by the service provider. Losing sensitive data is devastating
to firms, especially if they have no recovery plan. Google is an example of the big
tech firms that have suffered permanent data loss after being struck by lightning
four times in its power supply lines.
Amazon was another firm that lost its essential customer data back in 2011.
An essential step in securing data is carefully reviewing the terms of service of your
provider and their back up procedures. The backup protocol could relate to physical
access, storage locations, and natural disasters.
10. Diminished customer trust
It is inevitable for customers to feel unsafe after data breach concerns at your firm.
There have been massive security breaches that resulted in the theft of millions of
customer credit and debit card numbers from data storage facilities.
The breaches reduce customer trust in the security of their data. A breach in an
organization’s data will inevitably lead to a loss of customers, which ultimately
impacts the firm’s revenue.
11. Increased customer agitation
A growing number of cloud service critics are keen to see which service providers
have weak security protocols and encourage customers to avoid them. Most of
these critics are popular around the internet and could lead to a poor impression of
your firm in a few posts.
12. Revenue losses
Customers of a store will avoid buying from the store in the wake of news of data
breach in the organization. A well known company as Target estimated a data
breach in its platform to cost around $128 million. The CEO of the company
resigned, and the company’s directors remain under oversight by cyber security
companies.
MANAGING CLOUD SECURITY
The following steps will aid business decision-makers and enterprise IT managers
to analyze cloud security of company data;
1. Ensure governance and compliance is effective
A well-defined set of policies clearly describes the responsibilities and roles of
each employee. It should also define how they interact and pass information.
2. Auditing and business procedures
Every system in an organization requires a regular audit. In fact, it is of utmost
importance that firms keep their IT systems in check in case of malware and
phishing attacks.
These are the three crucial areas that need to be frequently audited by cloud service
customers:
i. Security in the cloud service facility,
ii. Access to the audit trail, and
iii. the internal control environment of the cloud service provider.
3. Manage identities, people and roles
A firm must ensure that the cloud service provider has sufficient policies to govern
who has access to sensitive data and software. The cloud service provider must
give the customer the privilege to manage and assign authorization for the users.
They must also ensure their system is secure enough to handle different types of
attacks on client data.

4. Enforcing privacy policies

Privacy and protection of personal and sensitive information are crucial to any
organization’s success. Personal data held by an organization could face bugs or
security negligence. If a provider is not offering adequate security measures, the
firm should consider seeking a different cloud service provider or not uploading
sensitive information on the cloud.
5. Assess security vulnerabilities for cloud applications
Organizations have different types of data that they store in the cloud. Different
considerations should be made according to the kind of data the firm intends to
secure.
6. Cloud networks security
Audits of the cloud networks should be able to establish malicious traffic that can
be detected and blocked. However, the cloud service providers have no way of
knowing which network traffic its users plan to send or receive.
7. Evaluating physical infrastructure and security controls
Facilities and infrastructure should be stored in secure locations and backed up to
protect against external threats.It is becoming more critical to maintain privacy and
security with more data and software being migrated to the cloud. The IT groups
must consider the cloud security risks and implement solutions to ensure the
security of client data stored and processed in the cloud.