GCP Cloud Fundamentals : Core Infrastructure

By Bhushan Nikhar

Here's guide to learning fundamental concepts of core infra related to GCP.
I am writing this guide for someone who is new to GCP ecosystem. This is good first starting point for GCP.

Core Infra concepts

What is cloud computing?
What is IaaS, PaaS, SaaS?
Google Cloud Network and talk about regions, zones and edge locations
Security layers in GCP

What is cloud computing?

Any one can demand resources without any manual interaction.
Resources can be pooled and savings can be passed on.
Resources can be increased or reduced based on demand.
Resource allocation can be done without concern for resource location.
Resources are paid based on usage or allocation of them.

What is IaaS, PaaS and SaaS?

Google cloud network and talk about regions, zones, edge locations.

Security layers in GCP

Security : 6 layers

1. Hardware and peripheral level
1. Hardware design is custom
2. Secure boot stack
3. Premises security
2. Service deployment layer
1. Encrypted RPC calls in interservice communication. (Will also be inter data center calls soon. Currently only intra data center calls)
3. User identity layer (also enables 2nd factor authentication)
4. Storage level (data in rest and transit encryption)
5. Internet communication layer
1. Support Google Front end services with public-private key pair and an X.509 certificate from certified authority(CA). It also applies against DoS attacks.
2. DoS protection enabled for multi-tiered multi-layer DoS protection.
6. Operational security layer
1. Intrusion detection
2. Reducing insider risk
3. Employee Universal second factor (U2F) use
4. Software development practices