So what does „Cloud‟ really mean?Infinite computing resources on demandNo capital expenditurePay for what you useI pay ONLY for what I use ONLY when I use it withthe ability to SCALE capacity up and down ONDEMAND8
Available in three flavours9InfrastructureAs a Service• Uses VMs• Consumer manages, patchesand monitors machines• Good for Legacy Apps• Not great for scalabilityPlatform Asa Service• Provides APIs• Building Block Services• Provider manages VMs• Requires a migration of apps• Great opportunity for scalabilitySoftware Asa Service• Web Front End to Software• Multi-Tenant• Logical Separation of data• Very little customisation• Commodity
PaaSIssuesAll of the SaaS issuesAll of the IaaS issuesDesign PatternsTest EnvironmentRoll backScaling13
144 Cloud Deployment ModelsPrivate cloudenterprise owned or leasedCommunity cloudshared infrastructure for specific communityPublic cloudSold to the public, mega-scale infrastructureHybrid cloudcomposition of two or more clouds
The Share vs. Isolate ContinuumEconomy of ScaleSimpler ManagementSLA per tenantData SeparationIsolate ShareConsiderations:Business (Time to market, ROI)Technical (Expected tenant size and load)Operation (“Can you guarantee SLA without isolating?”)Regulatory constraints (“Data must be physically separate”)
21Threat Exposure and Cost EffectivenessPrivate clouds may have less threat exposurethan community clouds which have less threatexposure than public clouds.All else being equal, massive public clouds maybe more cost effective than large communityclouds which may be more cost effective thansmall private clouds.Doesn’t strong security controls mean that I canadopt the most cost effective approach?
22Cloud Migration and Security ControlsClouds can contain strong security controlsQuantifying security advantages vs. challenges isnot currently possibleReducing the threat exposure and implementingstrong security controls should lead toprocessing higher sensitivity dataThus, strong security controls are necessary forall cloud models (even private clouds)
23Ownership and Security ArchitecturesClouds typically have a single security architecture buthave many customers with different demandsClouds should attempt to provide configurable securitymechanismsOrganizations have more control over the securityarchitecture of private clouds followed by communityand then publicThis doesn‟t say anything about actual securityHigher sensitivity data is likely to be processed onclouds where organizations have control over thesecurity model
24Putting it TogetherMost clouds will require very strong securitycontrolsAll models of cloud may be used for differingtradeoffs between threat exposure and efficiencyThere is no one “cloud”. There are many modelsand architectures.How does one choose?
26Migration Paths for Cloud AdoptionUse public cloudsDevelop private cloudsBuild a private cloudProcure an outsourced private cloudMigrate data centers to be private clouds (fully virtualized)Build or procure community cloudsOrganization wide SaaSPaaS and IaaSDisaster recovery for private cloudsUse hybrid-cloud technologyWorkload portability between clouds
Why Hybrid Apps?Need to connect back from the cloud to on premise dataHave to provide access to customers behind corporatefirewallsMust remotely manage the cloud platform and on-premise systemsHave to keep a big distributed communicationinfrastructure running as it‟s safety relatedData Privacy and SecurityLegal and Regulatory requirements
The Long Term DriversLarger datacentres can deploy computationalresources at significantly lower costDemand pooling improves the utilization of theseresources, especially in public cloudsMulti-tenancy lowers application maintenancelabor costs for large public cloudsUnparalleled levels of elasticity and agility thatwill enable exciting new solutions andapplications.28
29The Short Term scenariosSmall enterprises use public SaaS and public cloudsand minimize growth of data centersLarge enterprise data centers may evolve to act asprivate cloudsLarge enterprises may use hybrid cloud infrastructuresoftware to leverage both internal and public cloudsPublic clouds may adopt standards in order to runworkloads from competing hybrid cloud infrastructures
ConclusionSaaS is matureIaaS will see consolidationPaaS is the way forward, will provide theplatform for more and more of SaaSHybrid configurations will be the next stepALL THESE NEED WORK TO TAKEADVANTAGE OF THE PLATFORM30
Secure GlobalOn-demandComputingAlways AvailableCloud Bursting andLoad-balancingGlobal Applicationand Data DeliveryThe Global Cloud