What is cloud computing?

Cloud computing refers to the practice of renting computing resources, such as storage and databases, from a provider over the internet rather than owning physical servers.

What are the main service models in cloud computing?

The three primary service models in cloud computing are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS).

What does elasticity mean in the context of cloud computing?

Elasticity in cloud computing refers to the ability of a cloud platform to automatically scale resources up or down based on demand, ensuring efficient resource management.

Cloud Computing Vocabulary: SaaS, PaaS, and IaaS

By the Dictionary Wiki Editorial Team · Published February 23, 2024 · Updated July 2, 2024 · 2,398 words · English Language

Open any tech job posting, press release, or architecture diagram today and you will run into a blizzard of cloud jargon. A startup announces it is going "multi-cloud." A CFO asks why the AWS bill keeps climbing. A developer switches from "lift and shift" to "cloud-native" in the same sentence. Behind the buzzwords sits a real shift: companies no longer buy servers, they rent slices of someone else's data center. This guide walks through the words that actually matter so the next time you sit in a planning meeting, a vendor demo, or a certification exam, the vocabulary stops feeling like code and starts feeling like a map.

1. Cloud Computing Fundamentals
2. Cloud Service Models: SaaS, PaaS, and IaaS
3. Deployment Models
4. Virtualization and Containers
5. Cloud Storage and Databases
6. Cloud Networking
7. Serverless and Event-Driven Architecture
8. Cloud Security
9. Cloud Management and Cost Optimization
10. The Evolving Cloud Landscape

1. The Building Blocks: Core Cloud Concepts

Before the acronyms pile up, a handful of base terms set the scene. They describe the break between "servers we own in a room down the hall" and "servers we rent from Amazon, Microsoft, or Google and reach over the network."

Cloud computing — Renting compute, storage, databases, networks, and higher-level software from a provider over the internet, usually billed by how much you actually use rather than how much you pre-purchase.

On-premises — Hardware that lives in a building you control, racked and cooled by your own team. Often shortened to "on-prem" and treated as the opposite of public cloud.

Elasticity — The knack of a cloud platform to grow capacity when traffic spikes and shrink it again when things quiet down, so you pay for what a workload genuinely needs at that moment.

Scalability — The ability to absorb heavier workloads over time, either by making an existing machine bigger (vertical) or by adding more machines beside it (horizontal).

Multi-tenancy — One running copy of a service quietly serving many customers at once, with each customer's data walled off from the others while the underlying hardware is shared.

These five ideas are the reason cloud economics work. Instead of buying a server rated for Black Friday and letting it idle in February, you borrow capacity from a provider who already does the hard work of aggregating demand across thousands of customers.

2. The Three Service Tiers: IaaS, PaaS, and SaaS

Cloud services come in layers. The lower the layer, the more you control and the more you have to manage. The higher the layer, the less you touch and the less you can bend to your will. Most conversations eventually come back to these three letters.

Infrastructure as a Service (IaaS) — Raw virtual hardware on demand: CPUs, disks, private networks, firewalls. Think Amazon EC2 or Azure Virtual Machines. You still install the operating system and everything above it.

Platform as a Service (PaaS) — A managed runtime for your code. You hand over a repository or a container image; the platform handles OS patching, load balancers, and scaling. Google App Engine and Heroku are classic examples.

Software as a Service (SaaS) — A finished application delivered through a browser or API. Gmail, Salesforce, Slack, and Notion live here. You log in, configure, and use; the vendor takes care of every layer below.

Function as a Service (FaaS) — The smallest unit of cloud compute. You upload a single function; the provider runs it whenever an event fires and charges by the millisecond. AWS Lambda popularized the model.

Anything as a Service (XaaS) — An umbrella label for the sprawl of "-as-a-Service" offerings, from databases and machine learning to desktops and security monitoring.

A common way to explain the hierarchy is the house analogy: IaaS is an empty plot of land with utilities hooked up, PaaS is a built house where you just arrange furniture, and SaaS is a hotel room where the sheets are already made. Each step sacrifices customization in exchange for speed.

3. Where the Cloud Lives: Deployment Models

Service model answers "what layer do I buy?" Deployment model answers "whose data center is it in, and who else gets to use it?" Regulation, latency, and budget usually drive the choice.

Public cloud — Capacity owned and operated by a hyperscaler such as AWS, Azure, or Google Cloud, sold to anyone with a credit card and shared at the hardware level across many tenants.

Private cloud — A cloud environment reserved for one organization, running either in that company's own facility or in a walled-off corner of a provider's data center. Useful when regulators or security teams insist on isolation.

Hybrid cloud — A deliberate mix of private and public resources, stitched together so that workloads, identities, and data can move between them as demand or policy changes.

Multi-cloud — Using more than one public provider at the same time, typically to avoid lock-in, negotiate better pricing, or cherry-pick a specific service that one vendor does well.

Most enterprises end up in some flavor of hybrid or multi-cloud by accident before they settle on it by design. Acquisitions inherit AWS while headquarters runs Azure; developers pull in Google BigQuery for analytics; a regulated subsidiary keeps workloads on-prem. Naming the pattern is the first step toward governing it.

4. Slicing Hardware: Virtualization and Containers

None of this works without a way to chop up a physical server into many isolated units. Two generations of technology handle that job: virtual machines, which pretend to be whole computers, and containers, which share more and ship faster.

Virtual machine (VM) — A software-defined computer with its own operating system, carved out of a physical host. From inside, it behaves like a standalone server; from outside, it is just one of many VMs sharing a box.

Hypervisor — The layer that slices the physical server and hands pieces to each VM. Type 1 hypervisors sit directly on the hardware (VMware ESXi, Hyper-V); Type 2 run on top of a regular OS (VirtualBox).

Container — A portable bundle of code, libraries, and config that shares the host kernel instead of booting its own OS, making it far lighter and quicker to start than a VM.

Docker — The toolchain that made containers mainstream, defining the image format and workflow that almost every cloud container platform now accepts.

Kubernetes — An open-source scheduler for containers at scale, handling placement, restarts, rolling updates, and networking across a fleet of machines. Often shortened to "k8s."

Virtualization made cloud economics possible; containers made cloud-native development practical. Between them, they explain why a single rack can host hundreds of independent workloads without anyone stepping on anyone else's toes.

5. Holding the Data: Storage and Database Services

Every workload eventually asks the same question: where does my data live, and how do I get it back quickly? Cloud providers answer with several storage shapes and a menu of managed database services.

Three Flavors of Storage

Object storage treats each file as an addressable blob with metadata attached. It is the default home for photos, videos, backups, and static website assets (Amazon S3 is the archetype). Block storage carves disks into fixed chunks and bolts them to virtual machines, which is what databases and boot volumes need. File storage offers a traditional shared folder accessible via NFS or SMB, which matters when legacy applications expect a mounted drive rather than an API.

Managed Database Options

A managed database service takes backups, patches engines, and handles failover so developers can spend their time on schema and queries instead of on 3 a.m. pages. Relational database services (RDS and its peers) run SQL engines like PostgreSQL, MySQL, or SQL Server with replication built in. NoSQL options cover document stores (MongoDB, Firestore), key-value engines (Redis, DynamoDB), wide-column stores (Cassandra, Bigtable), and graph databases (Neptune, Neo4j). Above all of these, a data lake simply keeps raw files in cheap object storage so analytics tools can scan them later without forcing a schema up front.

6. Moving Bits Around: Cloud Networking

Cloud networking is the plumbing. It decides which services can talk to which, how traffic reaches users, and how fast a page loads in Mumbai versus Minneapolis.

Virtual Private Cloud (VPC) — A logically isolated network inside a public cloud where you pick the IP ranges, subnets, route tables, and firewall rules. Your own private LAN, drawn in software.

Content Delivery Network (CDN) — A worldwide mesh of edge caches that serves static assets from a node near the user, cutting round-trip time and easing load on the origin server.

Load balancer — A traffic cop that spreads requests across a pool of backend instances, removes unhealthy ones, and keeps any single server from being buried.

DNS (Domain Name System) — The lookup service that maps names like example.com to IP addresses. Cloud DNS offerings add global anycast routing and health-aware failover on top of the basics.

API gateway — The managed front door for an API, where authentication, rate limits, request transformation, and metrics all happen before traffic reaches the actual service code.

Networking is usually invisible when it works and catastrophic when it doesn't. A misconfigured security group, a forgotten NAT rule, or a stale DNS record can take an entire product offline faster than any application bug.

7. Writing Code Without Servers: Serverless and Events

"Serverless" is a marketing word more than a literal one. Servers still exist; you simply stop seeing them. You upload code, describe what should trigger it, and the provider scales from zero to whatever is needed and back again.

Serverless computing — A pay-per-execution model where the provider spins up capacity on demand, bills for actual runtime, and returns unused resources to the pool the moment your code finishes.

Event-driven architecture — A design where components react to events (a file uploaded, a row inserted, a button clicked) rather than following a scripted sequence, which pairs naturally with serverless functions.

Cold start — The extra latency on the first request after a function has been idle, caused by the provider having to boot a fresh execution environment before the code can run.

Microservices — An architectural style that breaks a big application into small, independently deployable services, each owning a narrow capability and talking to its peers over APIs or message queues.

Serverless language reflects a mindset change: stop worrying about capacity, start worrying about events. It also changes what "performance tuning" means, because the unit of measurement shifts from a server's CPU utilization to the latency and cost of a single function call.

8. Keeping the Cloud Safe: Security Vocabulary

Cloud security is less about firewalls at the edge and more about identity, configuration, and encryption. The perimeter has dissolved, so the words that matter describe who is allowed to do what and how data is protected at every step.

Shared responsibility model — The contract that says the provider secures the cloud (hardware, hypervisors, the physical site) while the customer secures what they put in the cloud (data, access, application code, configuration).

Identity and Access Management (IAM) — The system of users, roles, policies, and permissions that decides which principals can touch which resources, usually expressed as JSON policy documents.

Encryption at rest — Data scrambled while it is sitting on disk, so that a stolen drive or leaked backup is useless without the key.

Encryption in transit — Data scrambled as it crosses the network, typically using TLS, so that anyone sniffing the wire sees ciphertext instead of payloads.

Zero trust architecture — A stance that treats every request as untrusted until proven otherwise, verifying identity and device posture for each connection rather than relying on whether someone is "inside" the corporate network.

The single most common cause of cloud breaches is not an exotic exploit but a misconfigured IAM policy or a public storage bucket. Learning this vocabulary is not academic; it is how teams avoid making tomorrow's news for the wrong reasons.

9. Running the Cloud Well: Operations and Cost

Getting into the cloud is the easy part. Running it efficiently, keeping it reliable, and not blowing past the budget is where most of the real work happens.

Operational Tooling

Infrastructure as Code (IaC) describes cloud resources in text files (Terraform, CloudFormation, Pulumi) so environments can be version-controlled, peer-reviewed, and rebuilt identically from scratch. Cloud monitoring pulls in metrics, logs, and traces so operators can spot a degradation before customers do. Auto-scaling groups add or remove instances based on CPU, queue depth, or custom signals, keeping performance steady without constant human adjustment.

Cost Controls

Reserved instances (or savings plans) trade a one- or three-year commitment for deep discounts compared with on-demand pricing. Spot instances use leftover capacity at a fraction of the price but can be reclaimed with minutes of notice, which works well for fault-tolerant batch jobs. Right-sizing is the ongoing exercise of matching instance type and size to real usage, usually uncovering fleets of oversized VMs running at 5% CPU. A dedicated cost management platform (or discipline, often called FinOps) ties all of this together, giving finance, engineering, and product a shared view of where the money is going.

10. What Comes Next in the Cloud

The vocabulary keeps growing. Edge computing pushes processing toward users and devices, useful for low-latency uses like autonomous systems or real-time video. Confidential computing encrypts data even while it is being processed, using hardware enclaves so that not even the host OS can peek at sensitive workloads. FinOps turns cloud spend into a cross-functional practice, blending engineering decisions with financial accountability. Sustainable cloud design focuses on carbon-aware scheduling, renewable-powered regions, and more efficient chips as environmental reporting becomes a board-level concern.

Cloud vocabulary is no longer the private language of infrastructure engineers. Product managers argue over PaaS versus IaaS, lawyers read service-level agreements with one eye on data residency, and executives track gross margin against committed use discounts. Whoever understands the terms gets to shape the decisions.

Treat this guide as a starting index rather than a finish line. The provider names will change, new abstractions will appear on top of old ones, and some current buzzwords will quietly disappear. What stays constant is the underlying pattern: someone else runs the hardware, you rent the capability, and the fluent speakers of this vocabulary get to use it effectively.