getting cloud architecture right the first time ver 2
TRANSCRIPT
David S. Linthicum
Blue Mountain Labs
How to Get Cloud Architecture and Design Right the First Time
Abstract
So, what are the proper ways to design, build, and leverage cloud computing systems? What are the steps to success? What are the emerging best practices? How does SOA fit in? In this session we’ll answer these questions, and more, covering the right and wrong ways to leverage, design, and build cloud-based systems and infrastructure. Going beyond the hype, this includes advice from those currently in the trenches who make cloud computing work for the Global 2000 and government. The audience is anyone who will soon fight to make cloud computing work for their clients, employers, and/or investors, and need to knock it out of the park the first time.
Where To Find Out More
Bonus Content: How to architect a hybrid cloud computing solution.
Slides available:
Where to find me.
• @DavidLinthicum• [email protected]• www.bluemountainlabs.com • www.davidlinthicum.com• http://www.linkedin.com/in/davidlinthicum
• Grab a card after the presentation.
Geek Level for this Presentation
Systems Programmer and
Dungeon MasterYour Grandparents that
are Still Using AOL Dialup
Why You Should Care
Most Cloud-Based Systems are Lacking Architecture
Thus, many clouds are not meeting expectations.
The results:
• Inefficient utilization of resources. • Resource saturation.• Lack of elasticity and scalability. • Lack of security and governance. • Frequent outages. • Bad or no tenant management. • Other very bad things.
Common Mistakes
• Not understanding how to make architectures scale.• Not dealing with tenant management issues.• Not understanding that security is systemic. • Not understanding the proper use of services.• Tossing technology at the problem.• Listening to the wrong people. • Managing-by-magazine.
The Multitenant Thing
• No two multitenant architectures are alike.
• Needs to be effective in the context of the problem.
• Needs to leverage best architecture practices.
• Needs to practice isolation and protection.
“With a multitenant architecture, a software application is designed to virtually partition its data and configuration so that each client organization works with a customized virtual application instance.”
Source: Wikipedia
You have some choices
Source: http://vikashazrati.wordpress.com/2008/06/23/multi-tenancy-explained/
ABCs of Multitenancy
Source: Steve Bobrowski Amazon Machine Images
Virtualization is Not Always a Requirement
Types of Cloud Architecture Patterns Emerging
• Migration to a Cloud• Business Systems• Infrastructure
• Building on a Cloud (PaaS)• Building a Hybrid Cloud • Building a Cloud
• IaaS• SaaS• PaaS
Complexity
General Architecture Patterns to Follow
• Enterprise Vulnerabilities Assess your Risks
1. Governance2. Regulatory Compliance3. Security & Identity Management4. Business Continuity5. Process and Services6. Data Management7. System Integration8. Resource Skills & Knowledge9. Application Readiness10. Network Readiness
Assess your vulnerabilities and mitigate your risks.
COMPLEXITY OF MITIGATING RISK
• R
ISK
TO
OR
GA
NIZ
ATIO
N
12
5
34
6
7
8
9
10
Architecture Roadmap Where to begin
Build a solid foundation:
• Determine business drivers
• Understand: data, services, business processes and system integration points
• Design a “cloud-friendly” enterprise architecture roadmap that leverages Services Oriented Architecture (SOA)
• Determine an integration strategy for internal and external systems
• Outline a migration path for legacy systems to the new architecture
•
Leverage SOA to build a sturdy and agile foundation for the Cloud
“as-is”
“to be”
deploy
General Rules and Guidelines
• Focus on the primitives. • The best clouds are sets of low level services that can be
configured.• Data services• Transaction services• Utility services
• Leverage distributed components that are centrally controlled.
• Build for tenants, not users. • Don’t lean too much on virtualization. • Security and governance are systemic.
Use Case: General Business System Migration to the Cloud
The General Idea
• Break the system down to it’s component parts, understanding each part.
• Rethink the database, it’s typically a mess.• Rethink the system as sets of services/API, watch the
granularity. • Data services, transaction services, utility services
• Create a security and governance plan. • Consider the user interfaces.• Consider device interfaces.• Migrate only the components to the cloud that will provide the
best value.
Good New/Bad News
• Good News:• Most cloud platforms provide the tenant management
features for you.• Most cloud platforms manage the resources for you.• The cloud platforms are getting better.
• Bad News:• Security is still your problem.• Application and service design is still your problem.• Testing can be a hassle.
Reference Architecture
Sec
urity &
Iden
tity
Man
ag
emen
t & S
ervic
e Go
vern
ance
Data
Data Services/Abstraction
Transactional Services
Process Management
(BPMS)Composites/Portals
Monitoring and Management
Rules Management
Create the InformationModel
OntologiesOntologies
Understand Ontologies
Understand the Data
DataDictionary
&Metadata
DataDictionary
&Metadata
Catalog the Data
DataCatalog
DataCatalog
LegacyMetadata
LegacyMetadata
ExternalMetadata
(B2B)
ExternalMetadata
(B2B)
Build Information Model
InformationModel
InformationModel
Reference Architecture
Data
Data Services/Abstraction
Create a Service Model
CandidateServices
CandidateServicesUnderstand Services
Information to Services
ServicesAnd
Information
ServicesAnd
Information
Build Service Model
ServiceModel
ServiceModel
DataCatalog
DataCatalog
InformationModel
InformationModel
Reference Architecture
Data
Data Services/Abstraction
Transactional Services
December 17, 2010 DRAFT Page 31
Cloud Provider
On Premises
December 17, 2010 DRAFT Page 32
Cloud Provider
On Premises
Create a Process Model
CandidateProcesses
CandidateProcessesUnderstand Processes
Services to Processes
Services to
Processes
Services to
Processes
Build Process Model
ProcessModel
ProcessModel
DataCatalog
DataCatalog
InformationModel
InformationModel
ServiceModel
ServiceModel
Reference Architecture
Data
Data Services/Abstraction
Transactional Services
Process Management
(BPMS)Composites/PortalsRules Management
December 17, 2010 DRAFT Page 35
On Premises Cloud Provider
Create a Governance Model
Defined Policies
Defined PoliciesDefine Policies
Design Policies
PolicyDesigns
PolicyDesigns
Implement Policies
GovernanceModel
GovernanceModel
ProcessModel
ProcessModel
InformationModel
InformationModel
ServiceModel
ServiceModel
Reference Architecture
Sec
urity &
Iden
tity
Man
ag
emen
t & S
ervic
e Go
vern
ance
Data
Data Services/Abstraction
Transactional Services
Process Management
(BPMS)Composites/Portals
Monitoring and Management
Rules Management
December 17, 2010 DRAFT Page 38
RuntimeGovernance
Repository Logs
Policies
Policies
Monitoring
Test SOA using CloudArchitecture
TestPlan
TestPlanCreate Test Plan
Black Box Testing
Black BoxTestingResults
Black BoxTestingResults
White Box Testing
White BoxTestingResults
White BoxTestingResults
ProcessModel
ProcessModel
InformationModel
InformationModel
ServiceModel
ServiceModel
GovernanceModel
GovernanceModel
Assigning Candidate Data, Services, and
Processes for the Clouds
ProcessAssignments
ProcessAssignments
Analyze Candidate Processes
Analyze Candidate Services
ServiceAssignments
ServiceAssignments
Analyze Candidate Data
DataAssignments
DataAssignments
CandidateProcesses
CandidateProcesses
CandidateServices
CandidateServices
Data Dictionary
and Metadata
Data Dictionary
and Metadata
GovernanceModel
GovernanceModel
Select Platforms and DeployProcesses, Services, and Data
to Platforms.
CandidatePlatforms
CandidatePlatforms
List Candidate Platforms
Analyze and Test
Candidate Platforms
TestResults
TestResults
Select Target Platforms
TargetPlatforms
TargetPlatforms
ProcessAssignments
ProcessAssignments
ServiceAssignments
ServiceAssignments
DataAssignments
DataAssignments
Deploy to
Target Platforms
Stepping to the Clouds
Q&A
We are leading the conversation with thought leadership and
cutting edge services.
The shift to Cloud
#1 best selling
book on Cloud Computing
#1 Most read
blog on Cloud Computing
#1 Most listened to Podcast on Cloud Computing with over
10,000 listeners