☁️ Visual Learning Guide

What is Cloud
Computing?

Instead of running software on your own computer, you rent computing power, storage, and services from massive data centers around the world — paying only for what you use.

💻 Your Device 📱 ☁️ The Cloud AWS · Azure · GCP 🖥️ Compute 🗄️ Storage 🗃️ Database ⚡ Internet
$800B+
Market Size 2025
94%
Enterprises use cloud
3
Hyperscale Providers
Scalability
Core Concepts

6 Ideas That Unlock Everything

Master these fundamentals and you'll understand how every cloud service, architecture, and product fits together.

🍕
IaaS · PaaS · SaaS
🍕 The Pizza Analogy
How much do you want to manage yourself? IaaS gives you raw ingredients (servers). PaaS gives you a kitchen (platform). SaaS delivers a finished pizza to your door (app). More abstraction = less control, less work.
IaaS App (you) Runtime (you) OS ✓ cloud Hardware ✓ You manage top 2 PaaS App (you) Runtime ✓ OS ✓ Hardware ✓ Cloud manages ✓ rest SaaS Just use it! Gmail · Slack Notion · Figma Zero to manage
🏢
Public · Private · Hybrid Cloud
🏠 Apartment vs. House vs. Both
Public cloud is shared infrastructure you rent (AWS, GCP). Private cloud is dedicated hardware you own or lease. Hybrid blends both — sensitive data stays on-prem, scalable workloads go to the public cloud.
PUBLIC 🌐 Shared infra Pay-as-you-go PRIVATE 🔒 Your own infra Full control HYBRID Best of both Flexible + secure
📦
Virtualization & Containers
🏠 House vs. Shipping Container
VMs are full virtual computers — each has its own OS, taking minutes to start and gigabytes of RAM. Containers share the host OS kernel, start in milliseconds, and use vastly less memory. Docker packages containers; Kubernetes orchestrates them at scale.
VIRTUAL MACHINE App A Full OS ~2-3 min boot App B Full OS ~2-3 min boot Hypervisor Physical Hardware CONTAINERS (Docker) App Libs only App Libs only App Libs only Shared Host OS Kernel Physical Hardware ⚡ Millisecond start
📈
Scalability & Elasticity
🚗 Adding lanes to a highway on demand
Scale UP = bigger servers (vertical). Scale OUT = more servers (horizontal). Elasticity means the cloud automatically adds capacity when traffic spikes (Black Friday!) and shrinks back when demand drops — you only pay for what you use.
Traffic 🔥 Spike! ⬆ Auto-scale up ⬇ Scale in Morning Black Friday Night
🌐
CDN & Edge Computing
📦 Warehouses near every customer
Instead of all data traveling from one central server, CDNs cache content at dozens of "edge" locations worldwide. Your Netflix video loads from a server nearby — not California. Edge computing goes further: process data where it's generated (IoT, AR/VR).
🖥 📡 📡 📡 📡 📡 Edge Nodes = ⚡ Fast Everywhere
Serverless Architecture
💡 Electricity: pay when you flip the switch
There ARE servers — you just never see or manage them. Write a function, deploy it, and it runs only when triggered. AWS Lambda, Google Cloud Functions, Azure Functions. No idle costs. Scales to zero. You pay per invocation.
👤 API Call λ Function runs & dies ⚡ Spins up instantly Response $0.0000002 per call active (ms) — only this is billed
Interactive

Build Your Cloud Architecture

Toggle components to assemble a cloud stack. Watch the architecture update live and see estimated monthly costs.

Add Components

🌍 Internet
💰 Estimated Monthly Cost (AWS us-east-1)
Total / month $0.00
Cloud Providers

The Big Three

AWS, Microsoft Azure, and Google Cloud Platform dominate 70%+ of the global cloud market. Here's how they compare.

Amazon Web Services
~33% market share · 200+ services · 33 regions
  • Largest service catalog — any use case covered
  • Most mature ecosystem, community & tooling
  • Best for startups AND Fortune 500 enterprises
  • Icons: S3, EC2, Lambda, DynamoDB, EKS, SageMaker
  • Highest demand for certifications in job market
Certification Path
Cloud Practitioner Solutions Architect Developer SA Professional DevOps Pro
Microsoft Azure
~23% market share · 200+ services · 60+ regions
  • Best for Microsoft-heavy enterprise environments
  • Deep Active Directory & Microsoft 365 integration
  • Strongest hybrid cloud story (Azure Arc)
  • Icons: Azure AD, DevOps, AKS, CosmosDB, Azure OpenAI
  • Preferred if your org runs Windows Server or .NET
Certification Path
AZ-900 Fundamentals AZ-104 Admin AZ-204 Developer AZ-305 Architect
Google Cloud Platform
~12% market share · 150+ services · 40+ regions
  • Best for data analytics, ML & AI workloads
  • Google invented Kubernetes and open-sourced it
  • BigQuery is unmatched for massive-scale analytics
  • Icons: BigQuery, GKE, Vertex AI, Cloud Run, Spanner
  • Best sustained-use pricing model for consistent loads
Certification Path
Cloud Digital Leader Associate CE Pro Architect Pro Data Engineer
Global Cloud Market Share 2025
AWS~33%
Microsoft Azure~23%
Google Cloud~12%
Others (Alibaba, Oracle, IBM…)~32%
Learning Resources

The Best Resources, by Modality

Curated from the cloud community — only genuinely great material, no filler.

Fireship
Jeff's "X in 100 seconds" series makes cloud services instantly clear. Dense, visually beautiful, surprisingly fun. One of the most efficient tech channels on YouTube.
Free
TechWorld with Nana
The best DevOps + cloud channel for visual learners. Her Docker, Kubernetes, and AWS full-course videos are legendary for making hard concepts click.
Free
NetworkChuck
High-energy, hands-on cloud tutorials. His "I got an AWS cert in 7 days" video is the perfect motivational starting point for absolute beginners.
Free
AWS Official Channel
Re:Invent talks, service deep-dives, and architecture explainers straight from the source. The "AWS Fundamentals" series is a solid structured introduction.
Free
A Cloud Guru (YouTube)
Short explainer clips and cert tips. Their "Cloud Concepts" playlist breaks down IaaS/PaaS/SaaS and cloud fundamentals in an engaging, digestible way.
Free
freeCodeCamp Cloud Courses
Full AWS, Azure, and GCP certification prep courses — completely free, often 5–12 hours long, and consistently high quality. Best for structured study sessions.
Free
Simplilearn Cloud Tutorials
Structured videos on AWS, Azure, and GCP for beginners. Their "Cloud Computing Full Course" is 10+ hours of well-organized, free content with visual slides.
Free
AWS Free Tier
750 hrs/mo EC2, 5GB S3, 1M Lambda invocations — free for 12 months. The best way to learn is building real things on real infrastructure.
Free (12 months)
Google Cloud Skills Boost
Official Google platform with hands-on labs in real GCP environments. Earn digital badges. The "Cloud Digital Leader" path is a great starting point.
Freemium
Microsoft Learn (Azure)
Interactive sandbox modules — no credit card needed. Learn by doing in a real Azure environment. Structured paths lead directly to AZ-900 exam prep.
Free
Pluralsight Cloud Adventures
Gamified, learn-by-doing cloud courses. Each lesson is paired with a hands-on lab. "Guided" and "Challenge" modes cement knowledge progressively.
Paid
AWS Educate
Free cloud learning for students and career starters. Includes labs, badges, and a jobs board. No credit card — ideal for absolute beginners.
Free
Codecademy Cloud Track
Browser-based, interactive cloud courses covering AWS, Azure, GCP. Guided projects make abstract concepts tangible. Great for learning by small, scaffolded steps.
Freemium
Cloud Academy
Hands-on labs in real AWS/Azure/GCP sandboxes. Structured learning paths and skill assessments — excellent for teams building cloud skills systematically.
Paid
AWS Overview Whitepaper
The authoritative introduction to AWS. Covers all service categories with clear explanations and diagrams. Essential reading for any AWS certification path.
Free
Google Cloud Docs Overview
Google's structured introduction with excellent diagrams, clear architecture explanations, and real-world use cases — one of the better-written cloud docs online.
Free
Azure Architecture Center
Beautiful architecture reference diagrams and best-practice guides. Visual learners will love the detailed system diagrams showing how Azure services connect.
Free
freeCodeCamp Cloud Articles
High-quality, visual blog posts on cloud concepts, architectures, and tutorials. Written by practitioners, edited for clarity — great for topic deep-dives.
Free
Cloudonaut Blog
Practical AWS tutorials by the authors of "Amazon Web Services in Action." Rich architecture diagrams and real infrastructure patterns. No fluff.
Free
"AWS in Action" — Wittig & Wittig
The most practical book for learning AWS. Full of architecture diagrams, real examples, and hands-on projects. Frequently recommended in the AWS community.
Book
The Cloudcast
Hosted by Aaron Delp & Brian Gracely — the gold standard cloud podcast. 600+ episodes on cloud strategy, trends, and technology with industry leaders.
Free
AWS Podcast
Official Amazon podcast with service updates, customer stories, and deep dives. Hosted by Simon Elisha — the best way to stay current with the AWS ecosystem.
Free
Google Cloud Podcast
Weekly interviews with Google Cloud engineers and customers. Covers GCP services, ML/AI updates, and real-world architectures. Also on YouTube for visual learners.
Free
Deloitte On Cloud
Hosted by Gary Arora & Mike Kavis. Practical cloud strategy — no hype, real lessons from industry leaders on what actually works at enterprise scale.
Free
AWS Morning Brief
Short, punchy podcast keeping you up to date on AWS news and releases with sharp commentary. Great for staying current in just 5 minutes a day.
Free
Ship It! (Changelog)
Production engineering, DevOps, and cloud stories from real practitioners. Covers how teams deploy, scale, and run cloud systems at all company sizes.
Free
Learning Path

From Zero to Cloud Professional

A realistic, concrete roadmap. Most people reach Associate certification in 3–6 months with consistent daily effort.

☁️
Stage 1 · Beginner
Cloud Fundamentals
⏱ 2–4 weeks

Learn what cloud computing is, the major service categories (IaaS/PaaS/SaaS), and the big three providers. No hands-on required yet — just build your mental model.

This visual guide 🙂 Fireship Cloud videos freeCodeCamp Cloud intro AWS Overview Whitepaper
🎯
Stage 2 · First Certification
AWS Cloud Practitioner (CCP) or AZ-900
⏱ 4–6 weeks

Get your first cloud certification. These entry-level exams validate your fundamentals. AWS Cloud Practitioner is the most marketable entry-level cert. Start using the free tier alongside studying.

A Cloud Guru Practitioner course AWS Free Tier labs MS Learn AZ-900 path NetworkChuck prep video Practice exams ×3
🚀
Stage 3 · Associate Level
AWS Solutions Architect Associate (SAA-C03)
⏱ 2–4 months

The sweet spot: most cloud jobs want this cert. Dive deep into VPCs, IAM, S3, EC2, RDS, and auto-scaling. Build 3 real projects to cement your knowledge.

Stephane Maarek (Udemy) TechWorld with Nana DevOps Build 3 real projects Pluralsight Labs AWS SAA-C03 exam
Stage 4 · Professional / Specialization
Choose Your Path
⏱ 3–6 months each

Pick a specialization: Solutions Architect Pro, DevOps Engineer, Data Engineer, ML Specialist, or Security. These open senior-level roles ($120K+).

AWS SA Professional GCP Pro Data Engineer Azure AZ-305 Architect Kubernetes CKA Terraform Associate
Foundational Standards

Foundational Standards & Architecture

The canonical definitions and frameworks that every cloud professional references — straight from NIST, AWS, and industry standard bodies.

NIST
SP 800-145
Sept 2011
The Official Definition of Cloud Computing
"Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction."
— Peter Mell & Timothy Grance, NIST Special Publication 800-145 (September 2011). This cloud model is composed of five essential characteristics, three service models, and four deployment models.
NIST — Five Essential Characteristics
On-Demand Self-Service
A consumer can unilaterally provision computing capabilities — such as server time and network storage — as needed automatically, without requiring human interaction with each service provider.
→ Spin up an EC2 instance in 60 seconds, no ticket required
Broad Network Access
Capabilities are available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms (mobile phones, tablets, laptops, workstations).
→ Same API from any device, anywhere on the internet
Resource Pooling
The provider's computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned and reassigned according to consumer demand.
→ You share hardware with thousands of tenants, invisibly
Rapid Elasticity
Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand. To the consumer, the capabilities available often appear to be unlimited.
→ Auto Scaling: 2 servers at 2 AM, 200 servers at 2 PM
Measured Service
Cloud systems automatically control and optimize resource use by leveraging a metering capability at some level of abstraction. Resource usage can be monitored, controlled, and reported, providing transparency for both provider and consumer.
→ Pay-per-GB, per-request, per-hour — down to the millisecond
NIST — Three Service Models
IaaS
Infrastructure as a Service
The consumer provisions processing, storage, networks, and other fundamental computing resources. The consumer does not manage the underlying cloud infrastructure but has control over operating systems, storage, and deployed applications. Examples: EC2, Azure VMs, Google Compute Engine.
PaaS
Platform as a Service
The consumer deploys consumer-created or acquired applications using programming languages, libraries, services, and tools supported by the provider. The consumer does not manage underlying infrastructure but controls deployed applications. Examples: Heroku, Azure App Service, Google App Engine.
SaaS
Software as a Service
The consumer uses the provider's applications running on a cloud infrastructure, accessible through a thin client interface such as a web browser. The consumer does not manage or control any underlying cloud infrastructure. Examples: Gmail, Salesforce, Microsoft 365, Slack.
NIST — Four Deployment Models
Private
Private Cloud
Infrastructure provisioned for exclusive use by a single organization. May be owned, managed, and operated by the organization, a third party, or some combination, and may exist on or off premises.
Community
Community Cloud
Infrastructure provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns (mission, security requirements, policy, compliance). May be managed by one or more organizations or a third party.
Public
Public Cloud
Infrastructure provisioned for open use by the general public. May be owned and operated by a business, academic, or government organization, or a combination. It exists on the premises of the cloud provider.
Hybrid
Hybrid Cloud
A composition of two or more distinct cloud infrastructures (private, community, or public) that remain unique entities, but are bound together by standardized or proprietary technology that enables data and application portability.
AWS Well-Architected Framework — Six Pillars
⚙️
Operational Excellence
Run, monitor, and gain insights into workloads to deliver business value and continually improve supporting processes and procedures. Focus areas: organization, prepare, operate, evolve.
Pillar 1
🔒
Security
Protect data, systems, and assets using cloud technologies to improve your security posture. Includes identity & access management, threat detection, data protection, and incident response.
Pillar 2
🏗️
Reliability
Ensure a workload performs its intended function correctly and consistently, recovering quickly from failures. Targets 99.9%+ availability through redundancy, auto-recovery, and tested failover paths.
Pillar 3
Performance Efficiency
Use computing resources efficiently to meet system requirements, and maintain efficiency as demand changes and technologies evolve. Right-size instances; use managed services; benchmark continuously.
Pillar 4
💰
Cost Optimization
Run systems to deliver business value at the lowest price point. Eliminate unneeded resources, use reserved capacity for steady workloads, and measure cost attribution continuously.
Pillar 5
🌱
Sustainability
Minimize the environmental impacts of running cloud workloads. Focus on energy consumption, efficiency, and reducing the total resources required to provide the desired level of output.
Pillar 6 · Added 2021
AWS Shared Responsibility Model
🔐 Who secures what? — Security "of" the cloud vs. security "in" the cloud
☁️ AWS Secures — "of" the Cloud
Physical Data Centers & Hardware
Host Operating System & Virtualization Layer
Networking Infrastructure (fabric)
Global Edge Locations & CDN
Managed Service Patching (RDS, Lambda…)
👤 You Secure — "in" the Cloud
Guest OS Patches & Updates (EC2)
Application Code & Configuration
IAM Roles, Policies & MFA
Data Encryption (at rest & in transit)
Security Groups & Network ACLs
Source: AWS Shared Responsibility Model (aws.amazon.com/compliance/shared-responsibility-model) · Division shifts by service type: IaaS → more customer responsibility; SaaS → more AWS responsibility
Standards-Based Vocabulary

Key Terms — Standards-Based Definitions

Precise language drawn from NIST SP 800-145, AWS documentation, Azure cloud dictionary, and Google Cloud glossary — the definitions that appear in certification exams and technical documentation.

📚 These definitions use exact or closely paraphrased language from authoritative sources. Source tags indicate the primary reference. Terms marked NIST appear verbatim in SP 800-145.
On-Demand Self-Service
A consumer can unilaterally provision computing capabilities as needed automatically without requiring human interaction with each service provider. The defining characteristic separating cloud from traditional hosting.
Source: NIST SP 800-145, Essential Characteristic #1 (Mell & Grance, 2011)
Broad Network Access
Capabilities available over the network and accessed through standard mechanisms that promote use by heterogeneous thin or thick client platforms — mobile phones, tablets, laptops, workstations.
Source: NIST SP 800-145, Essential Characteristic #2
Resource Pooling
The provider's computing resources are pooled to serve multiple consumers using a multi-tenant model, with different physical and virtual resources dynamically assigned according to demand. Customers generally have no control or knowledge of the exact location of the provided resources.
Source: NIST SP 800-145, Essential Characteristic #3
Rapid Elasticity
Capabilities can be elastically provisioned and released, in some cases automatically, to scale rapidly outward and inward commensurate with demand. To the consumer, the capabilities available for provisioning often appear to be unlimited.
Source: NIST SP 800-145, Essential Characteristic #4
Measured Service
Cloud systems automatically control and optimize resource use by leveraging a metering capability. Resource usage can be monitored, controlled, and reported — providing transparency for both the provider and consumer. Typically implemented as pay-per-use.
Source: NIST SP 800-145, Essential Characteristic #5
SLA (Service Level Agreement)
A formal contract defining the expected level of service between provider and customer, typically specifying uptime guarantees (e.g., 99.9% = 8.7 hrs/year downtime), response times, support tiers, and remedies (credits) if the provider fails to meet targets.
Source: AWS, Azure, GCP all publish per-service SLAs at their documentation portals
Multi-Tenancy
A software architecture where a single instance of an application serves multiple customers (tenants), with each tenant's data logically isolated. Enables the economies of scale that make cloud economics possible — fundamental to resource pooling.
Source: NIST SP 800-145 (Resource Pooling); AWS Well-Architected Framework
Hypervisor
Software (or firmware) that creates and runs virtual machines by abstracting physical hardware. Type 1 (bare-metal) hypervisors run directly on hardware (AWS Nitro, VMware ESXi). Type 2 run on a host OS. The foundational technology enabling IaaS cloud computing.
Source: NIST, AWS Nitro System documentation; Azure Hyper-V
Container Orchestration
Automated management of containerized workloads across a cluster — handling scheduling, scaling, networking, storage, and self-healing. Kubernetes (K8s) is the dominant standard; AWS EKS, Azure AKS, and Google GKE are managed Kubernetes services.
Source: CNCF (Cloud Native Computing Foundation); AWS EKS docs
Serverless Computing
A cloud execution model where the provider dynamically manages allocation of server resources. Code runs in stateless, ephemeral containers triggered by events. Developers pay per invocation and execution duration, not for idle servers. Also called Function-as-a-Service (FaaS).
Source: AWS Lambda docs; Azure Functions; Google Cloud Functions
Edge Computing
A distributed computing paradigm that brings computation and data storage closer to the sources of data (edge nodes, IoT devices, regional PoPs) rather than relying on a centralized data center. Reduces latency for time-sensitive applications. Examples: AWS Outposts, Azure Edge Zones, Cloudflare Workers.
Source: NIST SP 800-183; AWS Edge Computing whitepaper
Cloud Bursting
A hybrid cloud configuration where an application runs in a private cloud or on-premises data center and "bursts" into a public cloud when demand for computing capacity spikes beyond what the private environment can handle. Cited explicitly in NIST's hybrid cloud deployment model definition.
Source: NIST SP 800-145 (Hybrid Cloud deployment model definition)
Lift-and-Shift
A migration strategy (also called "rehosting") that moves an application from on-premises to cloud with minimal or no changes to its architecture. Fast to execute but leaves most cloud optimization benefits unrealized. AWS, Azure, and Google all document this as a Tier 1 migration strategy.
Source: AWS Migration Acceleration Program; Azure Cloud Adoption Framework
Cloud-Native
An approach to building and running applications that fully exploits the advantages of the cloud computing delivery model. Cloud-native apps use microservices, containers, declarative APIs, and continuous delivery. The CNCF (Cloud Native Computing Foundation) governs key open-source cloud-native projects including Kubernetes, Prometheus, and Envoy.
Source: CNCF Cloud Native Definition v1.0; Google Cloud Architecture Center
FinOps (Cloud Financial Management)
An operational framework and cultural practice that brings financial accountability to cloud spending by enabling distributed teams to make cost-effective decisions. Combines Engineering, Finance, and Business practices to maximize business value. Governed by the FinOps Foundation (finops.org).
Source: FinOps Foundation; AWS Cost Management; Azure Cost Management
Shared Responsibility Model
AWS's framework defining the division of security and compliance responsibilities between AWS and the customer. AWS is responsible for security "of" the cloud (hardware, global infrastructure, managed services). Customers are responsible for security "in" the cloud (data, IAM, OS configuration, application code). Responsibilities shift by service type (IaaS → PaaS → SaaS).
Source: AWS Shared Responsibility Model (aws.amazon.com/compliance/shared-responsibility-model)
Zero Trust
A security model based on the principle "never trust, always verify" — no user, device, or network segment is trusted by default, even inside the perimeter. Every access request is authenticated, authorized, and continuously validated. NIST SP 800-207 defines the Zero Trust Architecture standard.
Source: NIST SP 800-207 (Zero Trust Architecture, 2020); AWS Zero Trust whitepaper
Cloud Governance
The set of policies, processes, and controls that define how an organization uses cloud services — covering cost management, security, compliance, access control, and performance. AWS Control Tower, Azure Policy, and Google Cloud Organization Policy are the primary governance tooling on each major platform.
Source: AWS Well-Architected Framework; Azure Cloud Adoption Framework; Google Cloud Architecture Framework
Knowledge Check

Knowledge Check

8 questions covering NIST definitions, cloud architecture, and service models. Click an answer to see the explanation and source.

Score 0 / 0
Quick Reference

Cloud Computing Cheat Sheet

Key terms, acronyms, and concepts — the vocabulary you need to speak fluent cloud.

IaaS
Infrastructure as a Service — rent raw compute, storage, and networking. You manage OS upward. (EC2, Azure VMs, GCE)
PaaS
Platform as a Service — deploy code without managing servers. Cloud handles runtime, OS, scaling. (Heroku, App Engine, Azure App Service)
SaaS
Software as a Service — fully managed app you just use. Nothing to install or maintain. (Gmail, Slack, Salesforce, Dropbox)
VM
Virtual Machine — a full computer running inside a physical server. Has its own OS, CPU, and RAM allocation. Boots in minutes.
Container
Lightweight, portable app package that shares the host OS kernel. Faster to start than VMs, uses far less memory. Packaged with Docker.
Kubernetes (K8s)
Open-source system for automating deployment, scaling, and management of containerized apps across clusters of machines.
Serverless / FaaS
Run code without provisioning servers. Functions execute on-demand, scale to zero when idle. You pay per invocation. (Lambda, Cloud Functions)
CDN
Content Delivery Network — geographically distributed servers that cache content near users to reduce latency. (CloudFront, Akamai, Fastly)
Load Balancer
Distributes incoming traffic across multiple servers to prevent any single server from being overwhelmed and ensure high availability.
Auto Scaling
Automatically adds or removes compute resources based on demand. Scale out during peaks, scale in during quiet periods — pay only for active resources.
VPC
Virtual Private Cloud — an isolated network within the public cloud. Define your own IP ranges, subnets, routing rules, and security groups.
IAM
Identity & Access Management — controls who can do what to which cloud resources. The security backbone of any cloud setup. Principle of least privilege.
S3 / Object Storage
Store any file — images, videos, backups, datasets — at infinite scale. Pay per GB stored. AWS S3, Azure Blob, Google Cloud Storage.
Region & AZ
Regions are geographic areas (us-east-1). Availability Zones are isolated data centers within a region. Use multiple AZs for high availability.
RDS
Managed relational database — AWS handles backups, patching, scaling, and failover. Supports PostgreSQL, MySQL, Aurora, SQL Server.
CapEx vs OpEx
CapEx = upfront hardware investment (on-prem). OpEx = ongoing subscription payments (cloud). Cloud converts big capital costs to predictable operating expenses.
HA / Fault Tolerance
High Availability targets 99.9%+ uptime. Fault Tolerance means the system keeps running even when components fail — through redundancy and failover.
IaC / Terraform
Infrastructure as Code — define your cloud architecture in code files. Version, review, and deploy infra like software. (Terraform, CloudFormation, Pulumi)
DevOps / CI/CD
Culture + practices combining development and operations. CI/CD pipelines automate testing and deployment. Enables rapid, reliable cloud releases.
Egress
Data transferred OUT of the cloud provider's network to the internet or another provider. Cloud providers charge for egress but not ingress. A major cost factor in multi-cloud and hybrid architectures.
NIST SP 800-145
The official US government definition of cloud computing, authored by Peter Mell & Timothy Grance (Sept 2011). Defines 5 essential characteristics, 3 service models, and 4 deployment models. The universal reference for cloud definitions worldwide.
Zero Trust
Security model: "never trust, always verify." Every access request is authenticated and authorized regardless of network location. Defined in NIST SP 800-207 (2020). Replaces perimeter-based "castle and moat" security.
FinOps
Cloud financial operations — the practice of bringing financial accountability to variable cloud spend. Combines engineering, finance, and business. Governed by the FinOps Foundation. Core principle: everyone is responsible for their cloud usage.