Cloud Services and Models
Cloud Services and Models
IaaS infrastructure as a service
- share compute resources with others by virtualizing the hardware.
- Each Virtual Machine has its own instance of an operating system
and you build and run applications on it with access to memory, file systems, networking interfaces, and the other attributes that physical computers also have.
- But flexibility comes with a cost
- the smallest unit of compute is a Virtual Machine together with its application
- The guest operating system maybe large, even gigabytes
- It can take minutes to boot up.
Virtual Machine
- highly configurable
- can install and run the tools of choice.
- can configure the underlying system resources
- such as disks and networking,
- can install the own web server database or a middle ware.
- But the application demand increases,
- have to scale out in units of an entire Virtual Machine with a guest operating system for each.
- the resource consumption grows faster
PaaS Platform as a Service
- like App Engine
- Instead of getting a blank Virtual Machine, get access to a family of services that applications need.
- write the code and self-contained workloads that use these services and include any dependent libraries.
- As demand for the application increases
- the platform scales the applications seamlessly and independently by workload and infrastructure.
- scales rapidly
- but you give up control of the underlying server architecture.
Cloud Services
Compare AWS and Azure services to Google Cloud
| Service type | Cloud product | Google Cloud product description | AWS offering | Azure offering | |
|---|---|---|---|---|---|
| App modernization | CI/CD | Cloud Build | Build, test, and deploy on Google Cloud serverless CI/CD platform | AWS CodeBuild, AWS CodeDeploy, AWS CodePipeline | Azure DevOps, GitHub Enterprise |
| App modernization | CI/CD | Google Cloud Deploy | Deliver continuously to Google Kubernetes Engine and Anthos. | AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy | Azure DevOps |
| App modernization | Execution Control | Cloud Tasks | Control and observe asynchronous service requests between independent applications using this zonal, execution-control service. | Amazon EventBridge, Amazon Simple Notification Service (SNS) | Azure Service Bus, Azure Storage Queues |
| App modernization | Multi-cloud | Anthos | Migrate directly from VMs, build, deploy, and optimize apps on GKE, Anthos serverless landing zones and VMs anywhere—simply, flexibly, and securely | Amazon EKS Anywhere, Amazon ECS Anywhere, AWS Outposts | Azure Arc |
| App modernization | Multi-cloud | GKE Enterprise clusters | Extend GKE to work in multiple environments, including attached clusters, AWS, Azure, bare metal, and VMWare. | Amazon EKS Anywhere | |
| App modernization | Multi-cloud | Config Management | Automate policy and security at scale for your hybrid and multi-cloud Kubernetes deployments. | AWS Systems Manager | Azure App Configuration |
| App modernization | Multi-cloud | Config Connector | Manage Google Cloud resources through Kubernetes. | AWS Controllers for Kubernetes | Azure Service Operator |
| App modernization | Multi-cloud | Container-Optimized OS | Efficiently and securely run Docker containers on Compute Engine VMs. | AWS Bottlerocket | Azure Container Instances |
| App modernization | Multi-cloud | Google Distributed Cloud | Extend Google Cloud’s infrastructure and services to the edge and your data centers. | AWS Outposts | Azure Stack |
| App modernization | Multi-cloud | Hybrid Connectivity | Connect your infrastructure to Google Cloud on your terms, from anywhere. | AWS Direct Connect | Azure Express Route |
| App modernization | Multi-cloud serverless | Cloud Run for Anthos (Knative serving) | Flexible serverless development for multicloud environments. | ||
| App modernization | Service mesh | Anthos Service Mesh | Simplify, manage, and secure complex microservices architectures with this fully managed service. | AWS App Mesh | |
| App modernization | Service mesh | Cloud Router | Dynamically exchange routes between your Virtual Private Cloud (VPC) and on-premises networks by using Border Gateway Protocol (BGP). | Amazon VPC | Azure VPN Gateway |
| App modernization | Service mesh | Istio on Google Kubernetes Engine | Quickly create GKE clusters with all the components you need to create and run an Istio service mesh in a single step. | Istio on Amazon EKS | Istio in Azure Kubernetes Service |
| AIML | Cloud cost optimization | Recommender | Optimize your Google Cloud usage with proactive, easily actionable recommendations. | AWS Cost Optimization | Azure Cost Management |
| AIML | Conversational interface | Dialogflow | Lifelike conversational AI with state-of-the-art virtual agents. | Amazon Lex | Azure Conversational AI |
| AIML | Document understanding | Document AI | Automate data capture at scale to reduce document processing costs. | Amazon Textract | Azure Form Recognizer |
| AIML | Image recognition | Vision AI | Derive insights from your images in the cloud or at the edge, or use pre-trained Vision API models to detect emotion, understand text, and more. | Amazon Rekognition Image | Azure Computer Vision |
| AIML | ML for structured data | Vertex AI AutoML tabular models | Automatically build and deploy state-of-the-art machine learning models on structured data. | Amazon SageMaker | AutoML in Azure ML Studio |
| AIML | ML platform | Deep Learning VM Images | Preconfigured VMs for deep learning applications. | Amazon SageMaker, Amazon EC2 P3 | Azure Data Science Virtual Machines |
| AIML | ML platform | TensorFlow Enterprise | Reliability and performance for AI applications with enterprise-grade support and managed services. | Tensorflow on AWS | Azure Databricks |
| AIML | ML platform | Vertex AI | Train your machine learning models at scale, to host your trained model in the cloud, and to use your model to make predictions about new data. | Amazon SageMaker | Azure AI Platform |
| AIML | ML platform | Vertex AI AutoML models | Train high-quality custom machine learning models with minimal effort and machine learning expertise. | Amazon SageMaker Autopilot | Azure Cognitive Services |
| AIML | ML platform | Vertex AI custom training | Host your machine learning models and train them with the power and flexibility of TensorFlow, scikit-learn, XGBoost, and custom containers. | Amazon SageMaker | Azure Machine Learning |
| AIML | ML platform | Vertex AI custom-trained models | Host your trained models so that you can send them prediction requests with the power and flexibility of TensorFlow, scikit-learn, and XGBoost. | Amazon SageMaker | Azure AI Platform |
| AIML | ML platform | Vertex AI Workbench | Create instances running JupyterLab that come pre-installed with the latest data science and machine learning frameworks in a single click. | Amazon SageMaker | Azure Notebooks |
| AIML | Natural language processing | Natural Language AI | Derive insights from unstructured text using Google machine learning. | Amazon Comprehend | Azure Text Analytics |
| AIML | Personalization | Recommendations | Deliver highly personalized product recommendations at scale. | Amazon Personalize | Azure Personalizer |
| AIML | Speech recognition | Speech-to-Text | Accurately convert speech into text using an API powered by Google’s AI technologies. | Amazon Transcribe | Azure Speech to Text |
| AIML | Speech synthesis | Text-to-Speech | Convert text into natural-sounding speech using an API powered by Google’s AI technologies. | Amazon Polly | Azure Text to Speech |
| AIML | Translation | Translation AI | Dynamically translate between languages using Google machine learning. | Amazon Translate | Azure Translator |
| AIML | Video intelligence | Video Intelligence API | Quickly categorize video content using thousands of predefined labels and creating additional custom labels to suit your specific needs. | Amazon Rekognition Video | Azure Video Indexer |
| Backup & disaster recovery | SaaS | Backup and DR Service | Protect your data and business with this backup and disaster recovery offering that supports Google Cloud workloads as well as hybrid workloads like VMware, SAP HANA, Oracle, or SQL Server. | AWS Resilience Hub | Azure Backup and Disaster Recovery |
| Compute | Core compute | Cloud GPUs | Train and run machine learning models faster than before. | Amazon Elastic Compute Cloud (EC2) P3 | GPU Optimized VMs |
| Compute | Core compute | Cloud TPU | Train and run machine learning models faster than ever before. | AWS UltraClusters | Azure Virtual Machines |
| Compute | Core compute | Local SSD | Support workloads that require high performance, low latency temporary storage. Local SSD disks are always-encrypted solid-state storage for Compute Engine VMs. | AWS Nitro SSD | NVMe disks |
| Compute | Core compute | Compute Engine | Accelerate your digital transformation with high-performance VMs. | Amazon Elastic Compute Cloud (EC2) | Azure Virtual Machines |
| Compute | Core compute | Compute Engine Autoscaler | Automatically add or delete VM instances from a managed instance group (MIG) based on increases or decreases in load. | AWS EC2 Autoscaling | Azure Autoscale, Azure Virtual Machine Scale Sets |
| Compute | Core compute | OS Login | Manage SSH access to your instances using IAM without having to create and manage individual SSH keys. | Amazon EC2 Instance Connect | |
| Compute | Core compute | Persistent Disk | Reliable, high-performance block storage for VM instances. | Amazon Elastic Block Store (EBS) | Azure Managed Disks |
| Compute | Core compute | SSH from the browser | Connect to a Compute Engine virtual machine (VM) instance using SSH with the Google Cloud console in your web browser. | AWS EC2 Instance Connect | Azure Bastion |
| Compute | Core Compute | VM Manager | Manage operating systems for large virtual machine (VM) fleets running Windows and Linux on Compute Engine. | AWS Systems Manager | |
| Compute | Dedicated VMs | Sole-tenant nodes | Host your VMs on hardware dedicated only to your project. | Amazon EC2 Dedicated Host | Azure Dedicated Host |
| Compute | Infrastructure modernization | SAP on Google Cloud | Run SAP on Google Cloud. | SAP on AWS | SAP on Azure |
| Compute | PaaS | App Engine | Build highly scalable applications on a fully managed serverless platform. | AWS Lambda, AWS Fargate, AWS App Runner | Azure App Service |
| Compute | VMware connectivity | VMware Engine | Migrate and run your VMware workloads on Google Cloud. | VMware Cloud on AWS | Azure VMware Solution |
| Containers | CaaS | Google Kubernetes Engine | Secured and managed Kubernetes service with four-way autoscaling and multi-cluster support. | Amazon Elastic Kubernetes Service (EKS), Amazon Elastic Container Service (ECS) | Azure Kubernetes Service (AKS) |
| Containers | Container registry | Artifact Registry | Store, manage, and secure your container images. | Amazon Elastic Container Registry (ECR), AWS CodeArtifact | Azure Container Registry, Azure Artifacts |
| Containers | Container Security | Binary Authorization | Require images to be signed by trusted authorities during the development process and then enforce signature validation when deploying. | ||
| Containers | Gaming | Game Servers | Deliver seamless multiplayer gaming experiences with simpler multicluster management. | Amazon GameLift | Azure for Gaming |
| Data analytics | Business intelligence | Looker | Explore, share, and visualize your company’s data so that you can make better business decisions. | Amazon QuickSight | Microsoft Power BI |
| Data analytics | Data discovery and metadata management | Dataplex | Discover, understand, and manage data at scale with powerful search and seamless integration to BigQuery, Pub/Sub, and Cloud Storage, secured using IAM and Cloud Data Loss Prevention. | AWS Glue Data Catalog | Azure Purview, Azure Data Explorer |
| Data analytics | Data integration / ETL | Cloud Data Fusion | Implement fully managed, cloud-native data integration at scale. | Amazon AppFlow, Amazon Data Pipeline, AWS Glue | Azure Data Factory |
| Data analytics | Data processing | Dataproc | Deploy open-source data and analytics processing services (Apache Hadoop, Apache Spark, etc.) with improved efficiency and security. | Amazon Elastic MapReduce (EMR), AWS Batch, AWS Glue | Azure Data Lake Analytics, HDInsight |
| Data analytics | Data warehouse | BigQuery | Serverless, highly scalable, and cost-effective multi-cloud data warehouse designed for business agility. | Amazon Athena, Amazon Redshift | Azure Synapse Analytics |
| Data analytics | Data wrangling | Dataprep by Trifecta | An intelligent cloud data service to visually explore, clean, and prepare data for analysis and machine learning. | AWS Glue Data Brew | Azure Data Factory |
| Data analytics | Messaging | Pub/Sub | Messaging and ingestion for event-driven systems and streaming analytics. | AWS Kinesis, Amazon MQ | Azure Service Bus Messaging |
| Data analytics | Messaging | Pub/Sub Lite | Send and receive messages between independent applications using this zonal, real-time messaging service. | Amazon Simple Notification Service, Amazon Simple Queueing Service | Azure Service Bus Messaging |
| Data analytics | Query service | BigQuery | Analyze petabytes of data at scale using ANSI SQL and gain 26%–34% lower three-year total cost of ownership (TCO) than competing cloud data warehouses. | Amazon Redshift Spectrum | Azure Synapse Analytics |
| Data analytics | Stream data ingest | Pub/Sub | Create scalable messaging and ingestion for event-driven systems and streaming analytics. | Amazon Kinesis | Azure Event Hubs |
| Data analytics | Stream data processing | Dataflow | Unify stream and batch data processing that’s serverless, fast, and cost-effective. | Amazon Kinesis Data Firehose | Azure Stream Analytics |
| Data analytics | Workflow orchestration | Cloud Composer | Author, schedule, and monitor pipelines that span across hybrid and multi-cloud environments using this fully managed workflow orchestration service built on Apache Airflow. | Amazon Data Pipeline, AWS Glue, Managed Workflows for Apache Airflow | Azure Data Factory |
| Data analytics | Stream data processing | Datastream | Synchronize data reliably, and with minimal latency, using a serverless change data capture (CDC) and replication service. | AWS Glue, Amazon Aurora zero-ETL integration with Amazon Redshift, AWS DMS | Azure Data Factory |
| Data analytics | Data processing | Dataform | Develop and operationalize scalable data transformations pipelines in BigQuery using SQL. | ||
| Database | Document data storage | Firestore | Easily develop rich applications using a fully managed, scalable, and serverless document database. | Amazon DocumentDB, Amazon DynamoDB | Azure Cosmos DB |
| Database | In-memory data store | Memorystore | Reduce latency with scalable, secure, and highly available in-memory service for Redis and Memcached. | Amazon ElastiCache | Azure Cache |
| Database | NoSQL: Indexed | Datastore | A highly scalable NoSQL database for your web and mobile applications. | Amazon DynamoDB | Azure Cosmos DB |
| Database | NoSQL: Key-value | Bigtable | Run large analytical and operational workloads using this fully managed, scalable NoSQL database service. | Amazon DynamoDB | Azure Cosmos DB |
| Database | RDBMS | AlloyDB for PostgreSQL | Run transactional workloads 4x faster than standard PostgreSQL, and analytical queries up to 100x faster. | Amazon Aurora | Azure Cosmos DB for PostgreSQL, Azure SQL Database |
| Database | RDBMS | Cloud Spanner | Manage relational data with massive scale, strong consistency worldwide, and up to 99.999% availability. | Amazon Aurora | Azure SQL Database |
| Database | RDBMS | Cloud SQL | Manage relational data for MySQL, PostgreSQL, and SQL Server for workloads under 64 TB. | Amazon Relational Database Service (RDS), Amazon Aurora | Azure Database for MySQL and Azure Database for PostgreSQL |
| Database | Relational | Bare Metal Solution | Lift and shift Oracle workloads to Google Cloud. | Amazon RDS for Oracle | Azure Oracle Database Enterprise Edition |
| Developer tools | Client libraries | Cloud SDK | Tools and libraries for interacting with Google Cloud products and services. | AWS SDKs | Azure SDKs |
| Developer tools | Cloud development IDE plugin | Cloud Code for IntelliJ | Write, debug, and deploy your cloud-based applications for IntelliJ, VS Code, or any browser. | AWS Toolkit for IntelliJ | Azure Toolkit for IntelliJ |
| Developer tools | Cloud development IDE plugin | Cloud Code for VS Code | Write, debug, and deploy your cloud-based applications for IntelliJ, VS Code, or any browser. | AWS Toolkit for Visual Studio Code | Azure Tools for Visual Studio Code |
| Developer tools | Cloud-based IDE | Cloud Shell | Manage your infrastructure and develop your applications from any browser. | AWS CloudShell | Azure Cloud Shell |
| Developer tools | Command-line interface (CLI) | Cloud SDK | Tools and libraries for interacting with Google Cloud products and services. | AWS CLI | Azure CLI |
| Developer tools | Error handling | Error Reporting | Real-time exception monitoring and alerting for your applications. | ||
| Developer tools | Git Repositories | Cloud Source Repositories | Access fully featured, private Git repositories hosted on Google Cloud. | AWS Code Commit | Azure Repos |
| Developer tools | Job scheduling | Cloud Scheduler | Fully managed cron job service. | Amazon EventBridge | Azure Logic Apps |
| Developer tools | No-code | AppSheet | Enable anyone to build business applications and automated workflows, without coding. | AppSheet, Amazon Honeycode | Microsoft Power Platform |
| Developer tools | Parallel task execution | Cloud Tasks | Control and observe asynchronous service requests between independent applications using this zonal, execution-control service. | Amazon Simple Queue Service (SQS), Amazon Simple Notification Service (SNS) | Azure Service Bus, Azure Storage Queues |
| Developer tools | PowerShell | Cloud Tools for PowerShell | Full cloud control from Windows PowerShell. | AWS Tools for PowerShell | Azure Tools for PowerShell |
| Enterprise | Abuse prevention | reCAPTCHA Enterprise | Help protect your website from fraudulent activity, spam, and abuse without creating friction. | AWS WAF CAPTCHA, AWS Fraud | Microsoft Dynamics Fraud |
| Enterprise | Marketplace | Marketplace | Scale procurement for your enterprise via online discovery, purchasing, and fulfillment of enterprise-grade cloud solutions. | AWS Marketplace | Azure Marketplace |
| Enterprise | ML workflows | Tensorflow Enterprise | Scale resources across CPUs, GPUs, and record-setting Cloud TPUs. | Tensorflow on AWS | Azure DataBricks |
| Enterprise | Solutions catalog | Private Catalog | Control internal enterprise solutions and make them easily discoverable. | AWS Service Catalog | Azure Custom Images, Azure API Management |
| Government services | Regulated services | Assured Workloads | Run more secure and compliant workloads on Google Cloud. | AWS GovCloud | Azure Government |
| Integration services | API management | Apigee API Management | Design, secure, analyze, and scale APIs anywhere with visibility and control. | Amazon API Gateway | Azure API Management |
| iPaaS | Integration platform | Application Integration | An Integration Platform as a Service (iPaaS) that automates business processes by connecting any application with point-and-click configurations. | Amazon AppFlow | Azure Logic Apps |
| Management tools | API management | API Gateway | Develop, deploy, secure, and manage APIs with a fully managed gateway. | Amazon API Gateway | Azure API Management |
| Management tools | Cost management | Cost Management | Tools for monitoring, controlling, and optimizing your Google Cloud costs. | AWS Cost Explorer, AWS Budgets | Azure Cost Management |
| Management tools | Deployment | Cloud Deployment Manager | Create and manage cloud resources with simple templates. | AWS CloudFormation, AWS Serverless Application Model (SAM), AWS Cloud Development Kit (CDK) | Azure Deployment Manager |
| Management tools | Monetization | Apigee API Management | Easy-to-use and flexible way to monetize your APIs so that you can generate revenue whenever your APIs are used. | Amazon Publisher Services, Mobile Ads | Azure API Management |
| Media | AI | Video AI | Enable powerful content discovery and engaging video experiences. | Amazon Rekognition Video | Azure Video Analyzer for Media |
| Media | Encoding and streaming | Livestream API | Encode and transform live video content for use across a variety of user devices. | AWS MediaLive | Azure Media Services |
| Media | Encoding and streaming | Transcoder API | Convert video files and package them for optimized delivery to web, mobile, and connected TVs. | AWS Media Convert | Azure Media Services |
| Media | Monetization | Video Stitcher API | Dynamically insert content and ads for targeted personalization of video-on-demand (VOD) and live content. | AWS MediaTailor | Azure Media Services, Azure Video Indexer |
| Migration | Container migration | Migrate to Containers | Intelligently extract, migrate, and modernize applications to run natively on containers in GKE and Anthos clusters. | AWS App2Container | Azure Migrate |
| Migration | Server migration | Migrate to Virtual Machines | Migrate VM instances to Google Cloud from AWS, Azure, or VMWare VSphere. | AWS Server Migration Service | Azure Migrate |
| Migration | SQL database migration | Database Migration Service | Migrate databases to Cloud SQL from on-premises, Compute Engine, and other clouds. | AWS Database Migration Service | Azure Database Migration Service |
| Migration | Storage migration | Storage Transfer Service | Complete large-scale online data transfers from online and on-premises sources to Cloud Storage. | AWS Storage Gateway, AWS DataSync | Azure Data Factory, Azure Storage Mover |
| Migration | Storage migration | Transfer Appliance | Securely migrate large volumes of data to Google Cloud through physical shipments of large-capacity and cost-efficient storage transfer appliances. | AWS Snowcone, AWS Snowball, AWS Snowmobile | Azure Data Box |
| Networking | CDN | Cloud CDN | Serve web and HTTP(S) content globally and in a secure manner using the low-latency, global Google Front End (GFE). | Amazon CloudFront | Azure Front Door |
| Networking | CDN | Media CDN | Deliver exceptional media content through Google’s planet-scale cache network. | Amazon CloudFront | Azure Front Door |
| Networking | Domains and DNS | Cloud DNS | Publish your zones and records in DNS without the burden of managing your own DNS servers and software. | Amazon Route 53 | Azure DNS |
| Networking | Domains and DNS | Cloud Domains | Register and configure a domain in Google Cloud. | Amazon Route 53 | |
| Networking | Firewall | Google Cloud Armor | Help protect your applications and websites against denial of service and web attacks. | AWS WAF, AWS Shield | Azure Web Application Firewall (WAF) |
| Networking | Firewall | Google Cloud Armor Managed Protection Plus | Help protect your applications and websites against advanced denial of service and web attacks. | AWS Shield Advanced | Azure DDoS Protection |
| Networking | Firewall | Cloud Firewall | Protect your network with firewalls that are fully embedded in the cloud networking fabric, highly scalable, and granular. | AWS Network Firewall, AWS Security Groups, AWS network Access Control List (ACL) | Azure Firewall |
| Networking | Load balancing | Cloud Load Balancing | Efficiently distribute network traffic across Compute Engine, Google Kubernetes Engine (GKE), serverless applications, and multi-cloud services. | Elastic Load Balancing | Azure Load Balancer |
| Networking | Network connectivity | Cloud Interconnect | Extend your on-premises network to Google’s network through a highly available, low-latency connection. You can use Dedicated Interconnect to connect directly to Google or use Partner Interconnect to connect to Google through a supported service provider. | AWS Direct Connect | Azure ExpressRoute |
| Networking | Network connectivity | Cloud VPN | Connect your peer network to your Virtual Private Cloud (VPC) network through an IPsec VPN connection. | AWS Virtual Private Network (VPN) | Azure Virtual Private Network (VPN) |
| Networking | Network connectivity | Network Connectivity Center | Reimagine how you deploy, manage, and scale your networks on Google Cloud and beyond. | Amazon Cloud WAN, AWS Transit Gateway | Azure Virtual WAN |
| Networking | Network connectivity | Private Service Connect | Create a private and secure connection from your VPCs to Google, third parties, or your own services. | AWS PrivateLink | Azure Private Link |
| Networking | Network monitoring | Network Intelligence Center | Centralize your network monitoring functions to verify network configurations, optimize network performance, increase network security, and reduce troubleshooting time. | AWS Network Manager | Azure Network Watcher |
| Networking | Premium networking | Network Service Tiers, Premium Tier | High-performing network experience using Google’s global network. | AWS Global Accelerator | Internet egress (routed over the premium Microsoft global network) |
| Networking | Premium networking | Network Service Tiers, Standard Tier | Cost-effective network for data transfers with performance that is comparable to the internet. | AWS data transfer | Internet egress (routed over the public Internet (ISP network) |
| Networking | Service mesh | Traffic Director | Easily deploy global load balancing across clusters and VM instances in multiple regions, offload health checking from service proxies, and configure sophisticated traffic control policies. | AWS App Mesh | Open Service Mesh |
| Networking | Services discovery (DNS) | Service Directory | Publish, discover, and connect services from a single directory. | AWS Cloud Map | Hashicorp Consul Service on Azure |
| Networking | Virtual networks | Cloud NAT | Send and receive packets using Google Cloud private GKE clusters or Compute Engine VM instances with no external IP address. | AWS NAT gateway | Azure NAT Gateway |
| Networking | Virtual networks | Virtual Private Cloud | Provide managed networking functionality for your cloud-based services running on Compute Engine VM instances, Google Kubernetes Engine, App Engine flexible environment instances, and other Google Cloud products built on Compute Engine VMs. | Amazon Virtual Private Cloud (VPC) | Azure Virtual Network |
| Operations | Audit logging | Cloud Audit Logs | Log all user activity on Google Cloud. | AWS CloudTrail | Azure Audit Logs |
| Operations | Logging | Cloud Logging | Manage logging and analysis in real time at scale. | Amazon CloudWatch Logs | Azure Monitor Logs |
| Operations | Monitoring | Cloud Monitoring | Monitor the performance, availability, and health of your applications and infrastructure. | Amazon CloudWatch | Azure Monitor |
| Operations | Performance tracing | Cloud Trace | Find performance bottlenecks in production. | AWS X-Ray | Azure Monitor Application Insights Distributed Tracing |
| Operations | Profiling | Cloud Profiler | Understand resource consumption in your code and see the ways the code is actually called. | Amazon CodeGuru Profiler | Azure Monitor Application Insights Profiler |
| Security & identity | Certificate management | Certificate Authority Service | Simplify the deployment and management of private certificate authorities without managing infrastructure. | AWS Private Certificate Authority (AWS Private CA) | |
| Security & identity | CIAM | Identity Platform | Add Google-grade identity and access management to your apps. | Amazon Cognito | Azure Active Directory B2C |
| Security & identity | Cloud provider access management | Access Transparency and Access Approval | Help expand visibility and control over your cloud provider with admin access logs and approval controls. | Customer Lockbox for Microsoft Azure | |
| Security & identity | Container security | Artifact Analysis | Perform vulnerability scans on container images in Artifact Registry and Container Registry, and monitor vulnerability information to keep it up to date. | Amazon ECR Image Scanning | Azure Defender for container registries |
| Security & identity | Data loss prevention (DLP) | Sensitive Data Protection (including Cloud Data Loss Prevention and DLP API) | Discover, classify, and help protect your most sensitive cloud data. | Amazon Macie | Azure Information Protection |
| Security & identity | Encryption | Confidential Computing | Encrypt data in-use with Confidential Computing and Confidential GKE Nodes. | AWS Nitro Enclaves, AMD Secure Encrypted Virtualization-Secure Nested Paging (AMD SEV-SNP) | Azure Confidential Computing |
| Security & identity | Exfiltration prevention | VPC Service Controls | Isolate resources of multi-tenant Google Cloud services to help mitigate data exfiltration risks. | AWS PrivateLink | Azure Private Link |
| Security & identity | Key management | Cloud KMS and Cloud HSM | Host encryption keys and perform cryptographic operations in a cluster of FIPS 140-2 Level 3 certified hardware security modules (HSMs). | AWS KMS (FIPS 140-2 Level 2) | Azure Key Vault (FIPS 140-2 Level 2) |
| Security & identity | Key management | Cloud KMS and Cloud EKM | Use keys that you manage within a supported external key management partner to protect data within Google Cloud. | AWS KMS with AWS External Key Store (XKS), AWS CloudHSM with custom key store | Azure Managed HSM |
| Security & identity | IAM | Cloud Identity | A unified identity, access, app, and endpoint management (IAM/EMM) platform. | AWS IAM Identity Center | Microsoft Entra ID (Azure AD) |
| Security & identity | IAM | Identity and Access Management | Provide fine-grained access control and visibility for centrally managing resources. | Amazon Identity and Access Management | Azure Identity Management |
| Security & identity | IAM | Identity-Aware Proxy (IAP) | Use identity and context to guard access to your applications and VMs. | AWS Verified Access | Azure Application Proxy |
| Security & identity | IAM | Identity-Aware Proxy (IAP) TCP forwarding | Establish an encrypted tunnel over which you can forward SSH, RDP, and other traffic to VM instances. | AWS Systems Manager | Azure Bastion Host |
| Security & identity | IAM | Managed Service for Microsoft Active Directory | Use a highly available, hardened service running actual Microsoft Active Directory (AD). | AWS Managed Microsoft AD | Azure Active Directory Domain Services |
| Security & identity | Resource access management | Organization Policy Service | Configure restrictions on how resources can be used. | AWS Organizations policies | Azure Policy |
| Security & identity | Resource monitoring | Cloud Asset Inventory | View, monitor, and analyze all your Google Cloud and Anthos assets across projects and services using this metadata inventory service. | AWS Config | Azure Resource Graph |
| Security & identity | Resource monitoring | Resource Manager | Hierarchically manage resources by project, folder, and organization. | AWS Resource Access Manager, AWS Organizations | Azure Resource Manager |
| Security & identity | SIEM | Google Security Operations SIEM | Normalizes, indexes, correlates, and analyzes security and network data to provide instant analysis and context on risky activity. | Amazon Security Lake | Microsoft Sentinel |
| Security & identity | SOAR | Google Security Operations SOAR | A platform that is designed to help organizations detect, investigate, and respond to security threats in real time. | Microsoft Sentinel | |
| Security & identity | Secret management | Secret Manager | Store API keys, passwords, certificates, and other sensitive data. | AWS Secrets Manager, AWS Systems Manager Parameter Store | Azure Key Vault |
| Security & identity | Key management | Cloud Key Management Service (Cloud KMS) | Manage encryption keys on Google Cloud. | AWS Key Management Service (KMS) | Azure Key Vault |
| Security & identity | Security and risk management | Security Command Center | Security and risk management platform for Google Cloud. | Amazon Guard Duty, AWS Security Hub, AWS Audit Manager, AWS Config | Microsoft Defender for Cloud |
| Security & identity | Zero trust | BeyondCorp Enterprise | Enable secure access to critical applications and services, with integrated threat and data protection. | ||
| Security & Identity | IAM | Workload Identity Federation | Use an external identity provider (IdP) to authenticate and authorize your users using IAM, so that your users can access Google Cloud services. | AWS IAM Identity Center | Azure Active Directory External Identities |
| Serverless | Build | Cloud Storage for Firebase | Store and serve user-generated content from Firebase apps, such as photos or videos, including bandwidth-friendly transactions and automated ML, synced automatically in real time. | AWS Simple Storage Service (S3) | Azure Blob Storage |
| Serverless | Build | Firebase Auth | Sign in users to your Firebase app, either by using Firebase UI as a complete drop-in authentication solution, or by using the Firebase Authentication SDK to manually integrate one or several sign-in methods into your app. | Amazon Cognito | Azure App Service authentication (Easy Auth) |
| Serverless | Build | Firebase Hosting | Provides fast and secure hosting for your Firebase web app, static and dynamic content, and microservices, including a generous free tier. | AWS Amplify Hosting | GitHub Pages, Static Web Apps |
| Serverless | Build | Firebase Realtime Database | Store and sync data from your Firebase application with our NoSQL cloud database. Data is synced across all clients in real time, and remains available when your application goes offline. | Amazon DynamoDB, AWS AppSync | Azure Cosmos DB |
| Serverless | Containers without infrastructure | Cloud Run | Develop and deploy highly scalable containerized applications on a fully managed serverless platform. | AWS App Runner, AWS Fargate, AWS Lambda | Azure Container Apps, Azure Container Instances |
| Serverless | Engage | Firebase A/B Testing | Deploy A/B experiments to test how a change to your application’s UI, features, or engagement campaigns affects key metrics (like revenue) before you implement the change widely. | ||
| Serverless | Engage | Firebase Cloud Messaging | Send and receive notifications across platforms with this reliable and battery-efficient connection between your server and devices, including iOS, Android, and the web. | Amazon Device Messaging (ADM), Amazon Simple Notification Service (SNS) | Azure Notification Hubs |
| Serverless | Engage | Firebase Messaging Campaigns (Firebase Cloud Messaging or Firebase In-App Messaging) | Engage active users of your Firebase application by sending them targeted, contextual messages to complete key actions, such as beating a game level, buying an item, or subscribing to content. | Amazon Simple Notification Service (SNS) | Azure Notification Hubs |
| Serverless | Engage | Firebase Remote Config | Control and optimize your app on the fly. | AWS AppConfig | Azure App Configuration |
| Serverless | Engage | Google Analytics for Firebase | Make informed decisions regarding application marketing and performance optimizations by understanding user behavior using the Firebase SDK and integration with the Google ecosystem. | AWS Amplify, Amazon Pinpoint | |
| Serverless | Event handling | Eventarc | Asynchronously deliver events from Google services, SaaS, and your own apps using loosely coupled services that react to state changes. | AWS EventBridge | Azure Event Grid |
| Serverless | FaaS | Cloud Functions | Run your code with zero server management with this scalable, pay-as-you-go functions-as-a-service (FaaS) offering. | AWS Lambda | Azure Functions Serverless Compute |
| Serverless | FaaS | Cloud Functions for Firebase | Run backend code for your Firebase applications in response to events that are triggered by Firebase and Google Cloud features, without managing servers. | AWS Lambda | Azure Functions Serverless Compute |
| Serverless | Release & monitor | Firebase App Distribution | Distribute your Firebase apps to trusted testers quickly and easily. | Azure App Center | |
| Serverless | Release & monitor | Firebase Crashlytics | Get real-time, actionable insight into Firebase application issues with this native crash reporting solution for iOS, Android, and Unity, including streaming data export. | Azure App Center | |
| Serverless | Release & monitor | Firebase Performance Monitoring | Gain insight into your app’s performance issues. | ||
| Serverless | Release & monitor | Firebase Test Lab | Test your Firebase application on devices hosted in a Google data center. | AWS Device Farm | Azure App Center |
| Serverless | Workflow orchestration | Workflows | Orchestrate and automate Google Cloud and HTTP-based API services with serverless workflows. | AWS Step Functions | Azure Logic Apps |
| Serverless | Release & monitor | Firebase App Check | Help protect your API resources from abuse by preventing unauthorized clients from accessing your backend resources. | ||
| Serverless | FaaS | Firebase Extensions | Deploy pre-built solutions to add new functionality to your app without managing servers or containers. New functionality includes payment processing, data syncing, and generative AI. | AWS Serverless Applications | |
| Serverless | Build | Firebase Machine Learning | Use machine learning in your apps to solve real-world problems. | ||
| Storage | Block storage | Persistent Disk | Store data from VM instances running in Compute Engine or GKE, Google Cloud’s state-of-the-art block storage offering. | Amazon Elastic Block Store (EBS) | Azure Disk Storage |
| Storage | File storage | Filestore | Provide fully managed NFS file servers on Google Cloud for applications running on Compute Engine VMs (VMs) instances or GKE clusters. | Amazon Elastic File System (EFS) | Azure Files |
| Storage | Infrequently accessed object storage | Cloud Storage Archive | Store infrequently accessed data using Google Cloud’s ultra low-cost, highly durable, highly available archival storage. | Amazon S3 Glacier | Azure Archive Storage |
| Storage | Object storage | Cloud Storage | Store any amount of data and retrieve it as often as you’d like, using Google Cloud’s object storage offering. | AWS Simple Storage Service (S3) | Azure Blob Storage |
| Web proxy | Egress security | Secure Web Proxy | Helps you secure egress HTTP(S) traffic as a proxy service. | Azure Firewall Explicit proxy (preview) |
.
This post is licensed under CC BY 4.0 by the author.
Comments powered by Disqus.