Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

AWS Partner ConneXions Taiwan - Q3 2016 Technology Update

363 views

Published on

During this session, you will get an update on what’s happening at AWS, APN program announcements, new services and how to position AWS to the customers. You will also get introduced to some of our ISV solutions that could help you strengthen your value proposition to your customers.nology Update

Published in: Technology
  • Be the first to comment

  • Be the first to like this

AWS Partner ConneXions Taiwan - Q3 2016 Technology Update

  1. 1. AWS 最新技術資訊 John Chang Ecosystem Solutions Architect September 2016
  2. 2. From 2010
  3. 3. AWS 10 Years Later: ACTIVE CUSTOMERS PER MONTH RUN RATE YOY GROWTH Q2 2015 TO Q2 2016 1,000,000+ $11B+ 58%
  4. 4. The Technology Platform of Choice
  5. 5. Broad Global Geographic Footprint Expanding In 2016 13 Regions 35 Availability Zones
  6. 6. Use the AWS Well Architected Framework Build on the five pillars of core cloud functionality Impacts Design, Implementation, Deployment, Operations It is the path, not the destination Where you are on the path determines the service you use The Path To Well Architected, Cloud Native Applications
  7. 7. Virtual Machines Containers Functions
  8. 8. Per VM Per Hour Multi-threaded Multi-task AMI Patching The World Of Virtual Machines Hours to Months
  9. 9. The World Of Virtual Machines Virtual Machines
  10. 10. The Strong VM Ecosystem EBSAuto ScalingVPC RDS
  11. 11. General Purpose SSD Provisioned IOPS SSD Throughput Optimized HDD Cold HDD Amazon Elastic Block Store (Amazon EBS)
  12. 12. Two New EBS Updates
  13. 13. Cost of EBS Snapshots decreased by 47% 47% DECREASE Two New EBS Updates
  14. 14. Increased performance with up to 66% more IOPS per GB 66% INCREASE Cost of EBS Snapshots decreased by 47% 47% DECREASE Two New EBS Updates
  15. 15. The Strong VM Ecosystem ELBEBSAuto ScalingVPC RDS
  16. 16. Classic Load Balancing ELB Traffic EC2 Instances EC2 Instances EC2 Instances LOGOUT LIST SIGN UP LIST SIGN UP LOGOUT Full App #1 Full App #2 Full App #3 SIGN UP LOGOUT LIST
  17. 17. High performance load balancing for applications Application Load Balancer
  18. 18. Application Load Balancer ALB EC2 Instances EC2 Instances EC2 Instances SIGN UP LOGOUT LIST App Component #1 App Component #2 App Component #3 /signup /logout /list
  19. 19. High-performance Load Balancing Of Applications Content-based routing HTTP/2 WebSocket Detailed logging
  20. 20. Monolithic Application Services Microservices The Story Of Amazon.com
  21. 21. Small functional building blocks as output of the development process Minimizing dependency and reducing complexity of dependency management The Move To Microservices Is Assisted By The Rise of Containers
  22. 22. Minutes to Days Versioning Multi-threaded Single-task Per VM Per Hour Container File The World Of Containers
  23. 23. High Availability Infrastructure Management Security Task Scheduling Pipeline Integration Container Management Service Discovery Resource Access The Challenges Of Container Based Operation
  24. 24. Server Guest OS Bins/Libs Bins/Libs App2App1 Scheduling One Resource Is Straightforward
  25. 25. AZ 1 Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS AZ 2 Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS AZ 3 Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Server Guest OS Scheduling A Cluster Is Hard
  26. 26. Container Management No Cluster To Manage Batch and Long Running Task Scheduling Container Registry Access to EBS, ELB, CloudWatch Integration With IAM Multi-AZ Aware Amazon EC2 Container Service (ECS) The Best Way To Run Your Containers In Production
  27. 27. Maintains Available Resources Tracks Resource Changes Accepts Resource Requests Guarantees Accuracy and Consistency What Is A Container Manager?
  28. 28. EC2 INSTANCES LOAD BALANCER Internet ECS AGENT TASK Container TASK Container ECS AGENT TASK Container TASK Container AGENT COMMUNICATION SERVICE Amazon ECS API CLUSTER MANAGEMENT ENGINE KEY/VALUE STORE ECS AGENT TASK Container TASK Container Amazon ECS LOAD BALANCER
  29. 29. ECS container management is decoupled from container scheduling
  30. 30. ECS Container Scheduling Batch jobs Long-running apps ECS service scheduler Health management Scale-up and scale-down AZ aware Grouped containers ECS Task scheduler Run tasks once Batch jobs RunTask (random) StartTask (placed)
  31. 31. ECS Scheduling
  32. 32. Deep Integration With Other AWS Services Elastic Load Balancing Amazon Elastic Block Store Amazon Virtual Private Cloud Amazon CloudWatch AWS Identify and Access Management AWS CloudTrail
  33. 33. Amazon CloudWatch Logs Amazon S3 Amazon Kinesis AWS Lambda Amazon Elasticsearch Service Amazon ECS Store Stream Process Search Amazon CloudWatch Logs Amazon CloudWatch Logs Amazon CloudWatch Logs CloudWatch Logging With awslogs
  34. 34. DynamoDB ECS Cluster EC2 Instance EC2 Instance TASK A TASK B TASK B S3 Storage IAM Roles For Tasks
  35. 35. AMAZON ECS Publish metrics AMAZON CLOUDWATCH ELASTIC LOAD BALANCING Auto Scaling ECS service Availability Zone A Availability Zone B TASK A Scale in / Scale out policies Add/remove ECS tasks Automatic Service Scaling TASK C TASK B
  36. 36. Dynamic content routing and shared load balancers Application Load Balancer And Amazon ECS
  37. 37. ECS Is The Best Way To Run Your Containers In Production
  38. 38. No server is easier to manage than no server Serverless Computing
  39. 39. Code Single-threaded Single-task Versioning Microseconds to Seconds Per Memory/Second Per Request Free Tier The World Of Lambda Functions
  40. 40. Languages Node.js (JavaScript) Python Java (Java 8 compatible) Triggers The State Of Lambda S3 Bucket API gateway DynamoDB Table AWS CloudTrail Scheduled events Kinesis Stream Custom SNS Notification
  41. 41. Customer Success With AWS Lambda MOBILE CHAT APP CLOUD TELEPHONY AD DATA ANALYTICS AND ROUTING REAL-TIME VIDEO AD BIDDING DATA PROCESSING THREAT INTELLIGENCE AND ANALYTICS MOBILE APP ANALYTICS NEWS CONTENT PROCESSING WEB APPLICATIONSGAME METRICS ANALYTICS IMAGE CONTENT FILTERING NEWS CONTENT PROCESSING GENE SEQUENCE SEARCH WEB APPLICATIONS
  42. 42. Create robust, scalable and secure APIs in minutes Amazon API Gateway Signing & authorization Versioning SDK Generation Caching Metering & throttling
  43. 43. Create robust, scalable and secure APIs in minutes Signing & authorization Versioning SDK Generation Caching Metering & throttling Usage Plans Amazon API Gateway
  44. 44. Set rate limits Meter API usage Access Control Per API Developer Key Usage Plans Enable Easy Monitoring And Metering
  45. 45. Mobile Apps Websites Services Internet API Gateway Cache API Gateway CloudWatch Lambda Functions EC2 Endpoints Any Other Endpoint Amazon API Gateway
  46. 46. DynamoDB API Gateway Lambda Lambda Lambda RDSS3 Mobile Analytics SNS Mobile Device Amazon Cognito Mobile Backend Data & Content Analytics Notifications Amazon API Gateway Role In Mobile
  47. 47. github.com/awslabs Executable Reference Architectures For Serverless Applications
  48. 48. DynamoDB Lambda Function 2 API Gateway S3 Route 53 Lambda Function 1 www.mydashboard.com Streams Static HTML/JS Website Twilio Phone Number or Shortcode Reference Architecture Serverless Web Application
  49. 49. DynamoDB Lambda Function 1 S3 Lambda Function 2 Lambda Function N S3 SNS Reference Architecture Serverless File Processing
  50. 50. DynamoDB Lambda Function 1 S3 CloudWatchKinesis Lambda Function2 Event Ingestion Monitoring & Alarms Reference Architecture Serverless Stream Processing
  51. 51. DynamoDBLambda Function 1 S3 SNS API Gateway Amazon Cognito Lambda Function 3 Lambda Function 4 CloudSearch CloudFront Media Files Repository Content Delivery Network Mobile Users Search Engine Mobile Push Notifications Lambda Function 2 Database Stream Reference Architecture Serverless Mobile Backend
  52. 52. DynamoDB S3 Kinesis CloudWatchLambda Function 1 Lambda Function 3 Lambda Function 4 Event Data Monitoring & Alarms Event Storage Event Storage Redshift Event Analytics Elastic MapReduce Event Analytics Connected Devices Synchronous Calls Spot Instances Reference Architecture Serverless IoT Backend
  53. 53. Amazon Cognito Identity Cognito User Pools You can easily and securely add sign-up and sign-in functionality to your mobile and web apps with a fully-managed service that scales to support 100s of millions of users. Federated User Identities Your users can sign-in through social identity providers such as Facebook, Twitter and SAML providers and you can control access to AWS resources from your app. GuestYour own auth SAML
  54. 54. Email or Phone Number Verification Forgot Password User Sign-up and Sign-in User Profile SMS-based MFA User Scenarios Manage users in a User Pool Select Email and Phone Verification Customize with Lambda Triggers Setup Password Policies Create and Manage User Pools Define Attributes Administrator Scenarios Token-based Authentication Secure Remote Password Protocol SMS-based Multi-factor Authentication Secure Foundation
  55. 55. Amazon Cognito - Your User Pools Now available in 4 regions: IAD, PDX, NRT and DUB GA Launched on 07/28 Custom Authentication flow Global user sign-out Admin support for user sign-in Configurable expiration for refresh tokens API Gateway integration Remember trusted devices User Search Customizable email addresses Attribute permissions and scopes Worldwide SMS support
  56. 56. Can we make it easier to build real-time streaming data applications?
  57. 57. Kinesis Analytics Run standard SQL queries over streaming data Kinesis Firehose Easily load streaming data into AWS Kinesis Streams Build custom applications to collect & analyze streaming data Processing Real Time Data With Amazon Kinesis
  58. 58. Generally available today Amazon Kinesis Analytics
  59. 59. Amazon Kinesis Analytics Powerful real-time processing Easy to use Automatic elasticity Use standard SQL
  60. 60. Easily Analyze Streaming Data With Standard SQL Automatic schema generation Rich SQL editor Built-in templates Out-of-box integration for ingestion and output Real-time: Sub 1-second processing latency
  61. 61. Available Today IPv6 Endpoints For Amazon S3
  62. 62. Security Baseline GLACIER VAULT LOCK & SEC RULE 17A-4(F)27018 AWS is responsible for the security OF the Cloud Compute Storage Database Networking AWS Global Infrastructure Availability Zones Regions Edge Locations Build Everything On A Constantly Improving
  63. 63. Customers have their choice of security configurations IN the Cloud Customer applications & contentC U S T O M E R S Security And Compliance Is A Shared Responsibility Platform, Applications, Identity & Access Management Operating System, Network & Firewall Configuration Client-side Data Encryption Server-side Data Encryption Network Traffic Protection AWS is responsible for the security OF the Cloud Compute Storage Database Networking AWS Global Infrastructure Availability Zones Regions Edge Locations
  64. 64. Networking Virtual Private Cloud Web Application Firewall Identity IAM Active Directory Integration SAML Federation ] Broadest Services To Secure Applications
  65. 65. Networking Virtual Private Cloud Web Application Firewall Encryption CloudHSM Server-side Encryption Encryption SDK Identity IAM Active Directory Integration SAML Federation Key Management Service ] Broadest Services To Secure Applications
  66. 66. Bring your own keys to AWS Key Management Service AWS Key Management Service Import Key
  67. 67. Import your keys into AWS KMS Greater control over the generation, lifecycle management, and durability of your keys Meet compliance requirements to generate and store copies of keys outside of your cloud provider AWS Key Management Service
  68. 68. Broadest Services To Secure Applications Compliance ConfigCloud Trail Service Catalog Config Rules Inspector Networking Virtual Private Cloud Web Application Firewall Encryption CloudHSM Server-side Encryption Encryption SDK Identity IAM Active Directory Integration SAML Federation Key Management Service
  69. 69. Systematic approach to ensure security Formalizes AWS account design Automates security controls Streamlines auditing Provides control insights throughout the IT management process Security By Design IAM KMSCloud HSM Cloudtrail Config
  70. 70. Huge & Less Frequent Medium & Often Persistent Connectivity Small & Frequent Design the Data Transfer to the Cloud
  71. 71. Snowball Petabyte Scale Data Transport Service
  72. 72. Large Customer Dataset End-To-End Custody Customer Dataset Loaded
  73. 73. New 80T Snowball Device Growing Snowball
  74. 74. New 80T Snowball Device Growing Snowball All AWS Regions by End of 2016
  75. 75. New 80T Snowball Device API For 3rd Party Growing Snowball All AWS Regions By End Of 2016
  76. 76. New 80T Snowball Device API For 3rd Party S3 API Growing Snowball All AWS Regions By End Of 2016
  77. 77. On-Premises Databases AWS Database Migration Service
  78. 78. ENGINE A Schema Conversion Tool Schema & Data Transformation Database Migration Service Convert Database Functions Tables Partitons Sequences Views Stored Procedures Triggers Functions ENGINE B Migrate Between Database Engines
  79. 79. Automate the discovery of data center applications and their dependencies AWS Application Discovery Service
  80. 80. Automatically discover app inventory Identifies app & infrastructure dependencies Measures performance baseline Data encrypted with Amazon Simplify Application Discovery With AWS ADS
  81. 81. Get Help With Migration From ISV And SI Partners
  82. 82. It’s a journey…
  83. 83. Thank you.

×