[Link]

com/in/kunalkr19

Cloud Computing
50 interview questions/answers

• Basic Cloud Computing Questions

• Cloud Architecture and Design
• Cloud Security and Compliance
• Cloud Services and Solutions
• Advanced Cloud Concepts

Basic Cloud Computing Questions

1. What is cloud computing?
o Answer: Cloud computing is the delivery of computing services
such as servers, storage, databases, networking, software,
analytics, and intelligence over the Internet ("the cloud") to offer
faster innovation, flexible resources, and economies of scale. Users
typically pay only for cloud services they use, helping lower
operating costs, run infrastructure more efficiently, and scale as
business needs change.
o Example: Google Drive allows users to store and share documents
online, making them accessible from any device with an internet
connection. This eliminates the need for physical storage devices
and provides the flexibility to access documents from anywhere.
2. What are the different types of cloud computing?
o Answer: There are three main types of cloud computing:
 ▪ Public Cloud: Services are delivered over the public internet
and shared across multiple organizations. Providers like
AWS, Azure, and Google Cloud offer public cloud services.
▪ Private Cloud: Services are maintained on a private network
and used exclusively by a single organization. This setup
provides greater control over data and security.
▪ Hybrid Cloud: A combination of public and private clouds,
allowing data and applications to be shared between them.
This model offers greater flexibility and more deployment
options.
o Example: A company might use a public cloud like AWS for its web
hosting needs while maintaining sensitive financial data on a
private cloud. During peak times, it can use a hybrid cloud
approach to scale its web hosting capacity using public cloud
resources.
3. What are the different cloud deployment models?
o Answer: The primary cloud deployment models are:
▪ Infrastructure as a Service (IaaS): Provides virtualized
computing resources over the internet. Users can rent
virtual machines, storage, and networks.
▪ Platform as a Service (PaaS): Provides a platform allowing
customers to develop, run, and manage applications
without dealing with the underlying infrastructure.
▪ Software as a Service (SaaS): Delivers software applications
over the internet, typically on a subscription basis.
o Example: AWS EC2 is an IaaS offering that allows users to rent
virtual servers. Google App Engine is a PaaS offering that provides
a platform for building and deploying applications. Salesforce is a
SaaS offering that delivers customer relationship management
(CRM) software.
4. What are the key benefits of cloud computing?
o Answer: Key benefits of cloud computing include:
 ▪ Cost Savings: Reduces capital expenditures as there is no
need to invest in physical hardware.
▪ Scalability: Easily scale resources up or down based on
demand.
▪ Performance: Provides high-performance resources that can
be accessed globally.
▪ Speed and Agility: Quickly deploy new applications and
services.
▪ Security: Offers advanced security features and compliance
certifications.
▪ Reliability: Ensures data backup, disaster recovery, and
business continuity.
o Example: A startup can use AWS to launch its application without
investing in hardware. As the business grows, AWS allows them to
scale resources according to demand, ensuring they only pay for
what they use.
5. What is the difference between IaaS, PaaS, and SaaS?
o Answer:
▪ Infrastructure as a Service (IaaS): Provides virtualized
computing resources over the internet. Users have control
over operating systems, storage, and applications.
▪ Platform as a Service (PaaS): Provides a platform that
includes infrastructure and middleware, allowing users to
develop, run, and manage applications.
▪ Software as a Service (SaaS): Delivers software applications
over the internet, managed by the provider.
o Example: Using AWS EC2 (IaaS), a company can rent virtual
machines and configure their environment. With Google App
Engine (PaaS), developers can deploy applications without
managing the underlying infrastructure. Using Microsoft Office
365 (SaaS), users can access office applications through the cloud
without installing them on local devices.
6. What is serverless computing?
o Answer: Serverless computing allows developers to build and run
applications without managing server infrastructure. The cloud
provider dynamically manages the allocation of machine
resources. Developers write functions that are executed in
response to events and are charged only for the compute time
they consume.
o Example: AWS Lambda allows developers to run code in response
to events such as HTTP requests or file uploads to S3 without
provisioning or managing servers. This enables a pay-per-
execution model, which can reduce costs and simplify
development.
7. What are some common cloud service providers?
o Answer: Major cloud service providers include:
▪ Amazon Web Services (AWS): Offers a broad range of
services including computing, storage, databases, and
machine learning.
▪ Microsoft Azure: Provides services such as virtual machines,
databases, and AI tools.
▪ Google Cloud Platform (GCP): Offers services including
computing, storage, and data analytics.
▪ IBM Cloud: Provides services like IBM Watson for AI and
machine learning, and blockchain.
▪ Oracle Cloud: Specializes in database and enterprise
applications.
o Example: A company might use AWS for its extensive range of
services and global reach, while another might prefer Google
Cloud Platform for its data analytics and machine learning
capabilities.
8. What is elasticity in cloud computing?
o Answer: Elasticity is the ability of a cloud system to automatically
adjust resources based on current demand. It ensures that
 applications have the right amount of resources at any time,
scaling up during high demand and scaling down during low
demand.
o Example: AWS Auto Scaling can increase the number of EC2
instances during peak traffic periods (such as Black Friday for an e-
commerce site) and decrease them during off-peak hours,
optimizing resource usage and costs.
9. What is scalability in cloud computing?
o Answer: Scalability is the capability of a system to handle an
increasing amount of work or its potential to be enlarged to
accommodate that growth. It involves both vertical scaling (adding
more resources to a single server) and horizontal scaling (adding
more servers to handle the load).
o Example: A web application hosted on Azure can be scaled
horizontally by adding more virtual machines to handle increased
traffic or vertically by increasing the CPU and RAM of the existing
virtual machines.
[Link] is a cloud-native application?
o Answer: Cloud-native applications are designed specifically to run
in cloud environments. They leverage the cloud's flexibility,
scalability, and resilience. These applications are often built using
microservices architecture, containerization, and continuous
delivery processes.
o Example: An e-commerce application developed with
microservices architecture, where each service (such as user
management, product catalog, and order processing) runs in its
own container on a Kubernetes cluster. This allows for
independent scaling and deployment of services.

Cloud Architecture and Design

[Link] is multi-tenancy in cloud computing?
o Answer: Multi-tenancy is an architecture where a single instance
of a software application serves multiple customers (tenants).
 Each tenant's data is isolated and remains invisible to other
tenants. This allows for efficient resource usage and cost savings.
o Example: Salesforce's CRM platform serves multiple businesses,
each with its own isolated data and configurations, while sharing
the same underlying infrastructure and application code.
[Link] is the difference between vertical and horizontal scaling?
o Answer:
▪ Vertical Scaling (Scaling Up): Adding more power (CPU,
RAM) to an existing server to handle increased load. This
has a limit based on the physical capacity of the server.
▪ Horizontal Scaling (Scaling Out): Adding more servers to
distribute the load. This approach can handle a much larger
increase in load and offers higher availability.
o Example: Vertical scaling might involve upgrading a database
server's hardware to increase performance. Horizontal scaling
might involve adding additional servers to a web farm to balance
the load across multiple servers.
[Link] is a virtual machine?
o Answer: A virtual machine (VM) is a software emulation of a
physical computer. VMs run on a hypervisor and can be used to
run multiple OS instances on a single physical machine, providing
isolation between different applications.
o Example: Running a Windows VM on a Mac using VMware Fusion
allows users to use Windows applications on their Mac. In the
cloud, AWS EC2 instances are examples of VMs that can be used to
run applications in a scalable manner.
[Link] is a container?
o Answer: Containers are lightweight, standalone executable
packages of software that include everything needed to run: code,
runtime, system tools, libraries, and settings. Containers isolate
software from its environment and ensure it works uniformly
despite differences between development and staging.
 o Example: Docker containers can run a web server and its
dependencies in an isolated environment, making it easy to move
the application from development to production without worrying
about environmental differences.
[Link] is microservices architecture?
o Answer: Microservices architecture is a design approach where an
application is composed of small, loosely coupled, independently
deployable services. Each service performs a specific business
function and communicates with other services through APIs.

o Example: An e-commerce application might have separate services

for user management, inventory, order processing, and payment.
Each service can be developed, deployed, and scaled
independently, improving flexibility and resilience.
[Link] is a hybrid cloud?
o Answer: A hybrid cloud combines private and public clouds to
allow data and applications to be shared between them. This
approach offers greater flexibility and more deployment options,
enabling organizations to optimize their infrastructure.
 o Example: A company might use a private cloud to store sensitive
data and use a public cloud for running its web servers. During
peak traffic, the company can use the public cloud to scale out its
web servers.
[Link] is cloud bursting?
o Answer: Cloud bursting is a configuration where an application
runs in a private cloud or data center and "bursts" into a public
cloud when the demand for computing capacity spikes. This allows
organizations to handle unexpected demand without over-
provisioning resources.
o Example: An online retailer might run its e-commerce platform on-
premises but use cloud bursting to handle increased traffic during
sales events like Black Friday, ensuring performance without
permanent over-provisioning.
[Link] is a hypervisor?
o Answer: A hypervisor, or virtual machine monitor (VMM), is
software that creates and manages virtual machines (VMs) by
allowing multiple VMs to run on a single physical host. It abstracts
the underlying hardware and provides isolated environments for
each VM.
o Example: VMware ESXi and Microsoft Hyper-V are hypervisors that
enable multiple operating systems to run concurrently on a single
server, maximizing resource utilization and flexibility.
[Link] is a cloud migration?
o Answer: Cloud migration is the process of moving data,
applications, or other business elements from an on-premises data
center to a cloud environment. It can also involve moving from
one cloud provider to another or from a cloud environment back
to an on-premises data center.
o Example: A company might migrate its customer relationship
management (CRM) system from an on-premises server to
Salesforce (a SaaS cloud provider) to reduce maintenance costs
and improve accessibility.
 [Link] is a Virtual Private Cloud (VPC)?
o Answer: A VPC is a private network within a public cloud,
providing isolation and security for resources. It enables users to
define their own virtual network, including subnets, IP address
ranges, and security settings.
o Example: AWS VPC allows users to create a virtual network in
AWS, isolate their resources, and control network settings such as
IP addresses, subnets, route tables, and gateways, ensuring a
secure environment for running applications.
Cloud Security and Compliance
[Link] is data encryption?
o Answer: Data encryption is the process of converting plaintext
data into a coded form (ciphertext) to prevent unauthorized
access. It ensures that data is secure both in transit and at rest,
protecting sensitive information from breaches.
o Example: HTTPS uses SSL/TLS to encrypt data transmitted
between a user's browser and a web server, protecting
information such as login credentials and credit card numbers.
[Link] is identity and access management (IAM)?
o Answer: IAM is a framework of policies and technologies to
ensure that the right users have the appropriate access to
technology resources. It involves managing user identities,
authentication, and authorization.
o Example: AWS IAM allows administrators to create and manage
users and groups, define permissions, and control access to AWS
services and resources, ensuring that only authorized users can
perform specific actions.
[Link] is a firewall in cloud computing?
o Answer: A firewall in cloud computing is a security device that
monitors and controls incoming and outgoing network traffic
based on predetermined security rules. It acts as a barrier
between a trusted internal network and untrusted external
networks.
 o Example: AWS WAF (Web Application Firewall) protects web
applications from common web exploits by allowing users to set
rules that block or allow specific types of traffic, enhancing
security for applications hosted on AWS.
[Link] is multi-factor authentication (MFA)?
o Answer: MFA is a security process that requires users to provide
two or more verification factors to gain access to a resource. This
adds an extra layer of security beyond just usernames and
passwords.
o Example: A user logging into an online banking account might be
required to enter a password (something they know) and a code
sent to their mobile phone (something they have), ensuring that
both factors are verified before granting access.
[Link] are compliance certifications in cloud computing?
o Answer: Compliance certifications are formal recognitions that a
cloud service provider meets specific security, privacy, and
regulatory standards. These certifications demonstrate the
provider's commitment to maintaining high levels of security and
compliance.
o Example: AWS is certified under various compliance standards
such as ISO 27001, SOC 1/2/3, and GDPR. These certifications
assure customers that AWS meets rigorous security and privacy
standards.
[Link] is a DDoS attack and how can it be mitigated?
o Answer: A DDoS (Distributed Denial of Service) attack aims to
disrupt normal traffic of a targeted server, service, or network by
overwhelming the target with a flood of internet traffic. It can be
mitigated by using DDoS protection services, rate limiting, and
deploying network security measures.
o Example: AWS Shield provides managed DDoS protection for
applications running on AWS. It detects and mitigates DDoS
attacks, ensuring application availability and performance.
[Link] is a Security Group in cloud computing?
 o Answer: A security group acts as a virtual firewall for cloud
resources, controlling inbound and outbound traffic. It defines
rules that allow or deny traffic to and from resources such as EC2
instances.
o Example: In AWS, security groups can be configured to allow HTTP
and HTTPS traffic to a web server instance, while blocking all other
traffic, ensuring only authorized traffic reaches the server.
[Link] is data residency?
o Answer: Data residency refers to the physical or geographic
location where data is stored and processed. Organizations may
have requirements to store data in specific locations due to legal,
regulatory, or compliance reasons.
o Example: A healthcare organization might be required to store
patient data within the same country to comply with local
regulations, such as HIPAA in the United States.
[Link] is data sovereignty?
o Answer: Data sovereignty refers to the concept that data is subject
to the laws and regulations of the country in which it is located. It
emphasizes the importance of understanding and complying with
local data protection laws.
o Example: A company storing EU customer data in a European data
center to comply with GDPR regulations, ensuring that the data
remains within the jurisdiction of EU data protection laws.
[Link] is the shared responsibility model?
o Answer: In cloud computing, the shared responsibility model
delineates security responsibilities between the cloud provider
and the customer. The cloud provider is responsible for the
security of the cloud infrastructure, while the customer is
responsible for securing their data, applications, and
configurations within the cloud.
o Example: In AWS, AWS manages the security of the cloud (such as
physical infrastructure and underlying hardware), while customers
 are responsible for securing their data (encryption, access control)
and configurations (IAM policies, security groups).
Cloud Services and Solutions
[Link] is Amazon Web Services (AWS)?
o Answer: AWS is a comprehensive, evolving cloud computing
platform provided by Amazon. It offers a broad set of services
including compute, storage, databases, networking, machine
learning, and more. AWS provides a flexible and scalable
environment for running applications and managing workloads.
o Example: AWS S3 is a scalable storage service that allows users to
store and retrieve any amount of data. AWS EC2 provides scalable
computing capacity in the cloud, enabling users to run virtual
servers with configurable resources.
[Link] is Microsoft Azure?
o Answer: Azure is Microsoft's public cloud computing platform,
offering a wide range of services including compute, analytics,
storage, and networking. Azure provides tools and frameworks for
building, deploying, and managing applications across a global
network of data centers.
o Example: Azure Virtual Machines allow users to create and
manage virtual servers with customizable configurations. Azure
SQL Database provides a fully managed relational database service
with built-in intelligence and scalability.
[Link] is Google Cloud Platform (GCP)?
o Answer: GCP is a suite of cloud computing services offered by
Google, providing infrastructure as a service, platform as a service,
and serverless computing environments. GCP offers tools for
computing, storage, data analytics, machine learning, and more.
o Example: Google Compute Engine provides scalable virtual
machines for running applications. Google Cloud Storage offers
object storage for storing and retrieving large amounts of
unstructured data.
[Link] is a cloud service model?
o Answer: A cloud service model defines how cloud services are
provided to users. The primary models are:
▪ Infrastructure as a Service (IaaS): Provides virtualized
computing resources over the internet. Users can rent
virtual machines, storage, and networks.
▪ Platform as a Service (PaaS): Provides a platform allowing
customers to develop, run, and manage applications
without dealing with the underlying infrastructure.
▪ Software as a Service (SaaS): Delivers software applications
over the internet, typically on a subscription basis.

o Example: AWS EC2 (IaaS) allows users to rent virtual servers.

Google App Engine (PaaS) provides a platform for building and
 deploying applications. Salesforce (SaaS) delivers customer
relationship management (CRM) software over the internet.
[Link] is a Content Delivery Network (CDN)?
o Answer: A CDN is a network of servers that delivers web content
to users based on their geographic location. It aims to improve
website performance and availability by caching content closer to
users.
o Example: CloudFront is AWS's CDN service that caches and
delivers web content from edge locations, reducing latency and
improving load times for users around the world.
[Link] is cloud orchestration?
o Answer: Cloud orchestration is the automated arrangement,
coordination, and management of complex cloud services and
resources. It helps streamline processes, manage workloads, and
ensure efficient resource utilization.
o Example: Kubernetes is a cloud orchestration tool that automates
the deployment, scaling, and management of containerized
applications. It coordinates container scheduling, scaling, and
networking, simplifying application management.
[Link] is Infrastructure as Code (IaC)?
o Answer: IaC is the practice of managing and provisioning
computing infrastructure through machine-readable scripts or
configuration files, rather than through manual processes. IaC
allows for automated, consistent, and repeatable infrastructure
management.
o Example: Using AWS CloudFormation, users can define their
infrastructure in JSON or YAML templates. These templates can be
used to automatically create, update, or delete AWS resources,
ensuring consistent and efficient infrastructure management.
[Link] is a managed service in cloud computing?
o Answer: A managed service is a cloud service that is fully managed
by the cloud provider, reducing the need for the customer to
 handle infrastructure or application management tasks. Managed
services offer ease of use, scalability, and reliability.
o Example: Amazon RDS (Relational Database Service) is a managed
service that automates tasks such as database provisioning,
patching, backups, and scaling, allowing users to focus on their
applications rather than database management.
[Link] is cloud monitoring?
o Answer: Cloud monitoring involves tracking and managing the
performance, availability, and security of cloud resources and
services. It provides insights into resource utilization, application
performance, and potential issues.
o Example: AWS CloudWatch monitors AWS resources and
applications, providing metrics, logs, and alarms to help users
track performance and respond to issues. It can monitor EC2
instances, RDS databases, and other AWS services.
[Link] is a cloud-based database?
o Answer: A cloud-based database is a database service delivered
over the cloud, providing scalable, reliable, and managed database
solutions. Cloud-based databases can be relational (SQL) or non-
relational (NoSQL) and offer features such as automated backups,
scaling, and high availability.
o Example: Amazon RDS provides managed relational databases
such as MySQL, PostgreSQL, and Oracle, while Amazon DynamoDB
offers a managed NoSQL database service with low-latency
performance.
Advanced Cloud Concepts
[Link] is a service mesh?
o Answer: A service mesh is a dedicated infrastructure layer for
managing service-to-service communication in microservices
architectures. It provides features such as traffic management,
security, and observability.
o Example: Istio is a popular service mesh that integrates with
Kubernetes to provide secure, reliable, and observable
 communication between microservices. It enables features like
load balancing, service discovery, and monitoring.
[Link] is edge computing?
o Answer: Edge computing involves processing data closer to the
source of data generation (the "edge" of the network) rather than
relying on a central cloud data center. This reduces latency and
improves performance for applications that require real-time
processing.
o Example: A smart factory might use edge computing to process
sensor data locally for real-time monitoring and control, reducing
the need to send large volumes of data to a central cloud for
processing.
[Link] is a serverless architecture?
o Answer: Serverless architecture is a design pattern where
applications are built using third-party, fully managed services,
reducing the need to manage servers. It involves writing functions
that are executed in response to events, with the cloud provider
handling resource management and scaling.
o Example: AWS Lambda allows developers to run code in response
to events (such as HTTP requests) without provisioning or
managing servers. This enables a pay-per-execution model, where
users are charged only for the compute time their code consumes.
[Link] is a container orchestration tool?
o Answer: A container orchestration tool automates the
deployment, scaling, and management of containerized
applications. It coordinates container scheduling, load balancing,
and networking, simplifying the management of containerized
environments.
o Example: Kubernetes is a widely used container orchestration tool
that manages containerized applications across a cluster of
machines. It handles tasks such as container scheduling, scaling,
and rolling updates.
[Link] is a multi-cloud strategy?
 o Answer: A multi-cloud strategy involves using multiple cloud
service providers to meet different business needs. This approach
can improve flexibility, reduce dependency on a single provider,
and enhance resilience and performance.
o Example: A company might use AWS for its extensive range of
services and global reach, while using GCP for its advanced data
analytics and machine learning capabilities. This approach allows
the company to leverage the strengths of each provider.
[Link] is a cloud workload?
o Answer: A cloud workload refers to an application, service, or set
of resources that run in a cloud environment. Workloads can vary
in complexity, from simple web applications to large-scale data
processing jobs.
o Example: An online retailer's e-commerce platform, including the
web application, database, and analytics services, constitutes a
cloud workload running on a cloud provider like AWS.
[Link] is a cloud service catalog?
o Answer: A cloud service catalog is a curated collection of cloud
services and resources available to users within an organization. It
provides a central repository of services that can be easily
accessed and provisioned.
o Example: AWS Service Catalog allows organizations to create and
manage catalogs of approved AWS services, enabling users to
quickly deploy compliant resources while ensuring governance
and control.
[Link] is cloud-native security?
o Answer: Cloud-native security involves designing and
implementing security measures that are specifically tailored for
cloud environments. It focuses on securing applications, data, and
infrastructure through automation, scalability, and integrated
security practices.
o Example: Implementing security groups, IAM policies, and
automated threat detection in AWS to protect cloud-native
 applications and data, ensuring that security measures are
integrated and scalable.
[Link] is cloud governance?
o Answer: Cloud governance involves establishing policies,
processes, and controls to manage and secure cloud resources
effectively. It ensures compliance, cost management, and efficient
resource utilization.
o Example: Using AWS Organizations to manage multiple AWS
accounts with centralized billing, IAM policies, and service control
policies to enforce governance across the organization's cloud
environment.
[Link] is a cloud access security broker (CASB)?
o Answer: A CASB is a security solution that acts as an intermediary
between cloud service users and cloud providers, enforcing
security policies and providing visibility and control over cloud
usage. It helps organizations secure data, ensure compliance, and
manage risks associated with cloud services.
o Example: A CASB like Microsoft Cloud App Security can monitor
and control access to cloud services, enforce data loss prevention
policies, and detect threats, ensuring that cloud resources are
used securely and in compliance with organizational policies.
These detailed answers with explanations and examples should provide a
comprehensive understanding of key cloud computing concepts and prepare
you for interviews at top companies.

[Link]