next build 2015 architecting for the cloud
TRANSCRIPT
![Page 1: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/1.jpg)
Architecting for the Cloud
![Page 2: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/2.jpg)
Shared Responsibility
![Page 3: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/3.jpg)
You are the architect!
Cloud is one big, great toolbox but…
You keep on having FULL responsibility for architecting the system
![Page 4: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/4.jpg)
Design for Failure
![Page 5: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/5.jpg)
Region Region
Global Services(such as admin console/API, Route 53, Cloudfront)
Availability Zone Availability Zone
Regional Services (such as ELB, S3, SNS, SQS etc.)
Cross-Region utilities(such as RDS Read-Replicas, AMI copy, Route53 LBR)
Leverage Topologies
![Page 6: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/6.jpg)
Focus on Resilience
Availability of resources is difficult to guarantee, accept it, leverage it.
Design for resilience and low MTTR instead
![Page 7: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/7.jpg)
Cloud requires a mind shift
When changing anything, launch a new stack.Don’t waste time fixing dying servers (unless of course)
Treat servers as disposable units
Router
Blue Stack Green Stack
![Page 8: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/8.jpg)
Design for PaaS
Using high level services seems open door…
But in reality IaaS is still king
Design for PaaS (even if it doesn’t fit right from the start)
![Page 9: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/9.jpg)
Pragmatic portability
Avoid vendor lock-in, but not at all costs
Stick to standards, understand alternatives but happily leverage unique features
![Page 10: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/10.jpg)
SECURITY AND DATA PRIVACY
![Page 11: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/11.jpg)
Is your cloud secure enough?
Still concern #1
Make sure you have your policy in place (and act upon it).
![Page 12: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/12.jpg)
Apply Defence-in-depth
Secure each layerUse automation for repeatable tasks
Leverage the available servicesOrganise your security operations
Design security from the very start.
![Page 14: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/14.jpg)
BonusSERVICE INSTEAD OF APPLICATION
![Page 15: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/15.jpg)
Think services
User Experience > ApplicationEnsure holistic view
Fail fast, act fast
Apply devops both in culture and design
![Page 16: Next build 2015 architecting for the cloud](https://reader035.vdocuments.site/reader035/viewer/2022070515/587bf6831a28ab7c668b4b41/html5/thumbnails/16.jpg)
Service reference architecture
Application Design PrinciplesSelf-service capabilities
Catalogue (SLA)
Licensing
Billing
Subscription Management
ID Management
Usage Analytics
Validation
Deployment
Provisioning
Monitoring & Root Cause Analysis
Platform and Infra services
DevOpsBack Office
End Users
App Developers
ServiceOperators