Full contact cloud architecture and design linthicum ver 2
Full Contact Cloud Architecture and Design David S. Linthicum SVP, Cloud Technology Partners David.firstname.lastname@example.org www.cloudtp.com
AbstractSo how does one design and build a cloud computing system? My advice isthat you jump in, grab problem by the throat, and make your cloud-basedarchitecture and resulting system do your bidding. In this session we’ll coverthe right and wrong ways to leverage, design, and build cloud-based systemsand infrastructure. Going beyond the hype, this includes advice from thosecurrently in the trenches who make cloud computing work for the Global2000 and government. The audience is anyone who will soon fight to makecloud computing work for their clients, employers, and/or investors, andneed to knock it out of the park the first time.
Most Cloud-Based Systemsare Lacking Architecture
Thus, many clouds are not meeting expectations.
The results:• Inefficient utilization of resources.• Resource saturation.• Lack of elasticity and scalability.• Lack of security and governance.• Frequent outages.• Bad or no tenant management.• Other very bad things.
Common Mistakes• Not understanding how to make architectures scale.• Not dealing with tenant management issues.• Not understanding that security is systemic, and impacts performance.• Not understanding the proper use of services (Yes, that means SOA).• Tossing technology at the problem.• Listening to the wrong people.
The Multitenant Thing• No two multitenant architectures are alike.• Needs to be effective in the context of the problem.• Needs to leverage best architecture practices.• Needs to practice isolation and protection. “With a multitenant architecture, a software application is designed to virtually partition its data and configuration so that each client organization works with a customized virtual application instance.” Source: Wikipedia
You have some choicesSource: http://vikashazrati.wordpress.com/2008/06/23/multi-tenancy-explained/
ABCs of Multitenancy Source: Steve BobrowskiAmazon Machine Images
Types of Cloud Architecture Patterns Emerging• Migration to a Cloud – Business Systems Complexity – Infrastructure• Building on a Cloud (PaaS)• Building a Hybrid Cloud• Building a Cloud – IaaS – SaaS – PaaS
Types of Cloud Architecture Patterns We’ll focus We’ll focus here here Emerging• Migration to a Cloud – Business Systems Complexity – Infrastructure• Building on a Cloud (PaaS)• Building a Hybrid Cloud• Building a Cloud – IaaS – SaaS – PaaS
Enterprise Vulnerabilities Assess your Risks1. Governance2. Regulatory Compliance3. Security & Identity Management4. Business Continuity RISK TO ORGANIZATION 25. Process and Services 16. Data Management 4 9 37. System Integration 68. Resource Skills & Knowledge 5 79. Application Readiness 8 1010. Network Readiness COMPLEXITY OF MITIGATING RISK
Architecture Roadmap General GuidanceBuild a solid foundation:Determine business driversUnderstand: data, services, business processes and system integration pointsDesign a “cloud-friendly” enterprise architecture roadmap that leverages Services Oriented Architecture (SOA)Determine an integration strategy for internal and external systemsOutline a migration path for legacy systems to the new architecture
General Rules and Guidelines• Focus on the primitives. – The best clouds are sets of low level services that can be configured. • Data services • Transaction services • Utility services• Leverage distributed components that are centrally controlled.• Build for tenants, not users.• Don’t lean too much on virtualization.• Security and governance are systemic.
Use Case: General Business SystemMigration to the Cloud
The General Idea• Break the system down to it’s component parts, understanding each part.• Rethink the database, it’s typically a mess.• Rethink the system as sets of services/API, watch the granularity. – Data services, transaction services, utility services• Create a security and governance plan.• Consider the user interfaces.• Consider device interfaces.• Migrate only the components to the cloud that will provide the best value.
Good New/Bad News• Good News: – Most cloud platforms provide the tenant management features for you. – Most cloud platforms manage the resources for you. – The cloud platforms are getting better.• Bad News: – Security is still your problem. – Application and service design is still your problem. – Testing can be a hassle. – Watch out for immaturity if standards.
Reference Architecture Monitoring and ManagementManagement & Service Governance Process Management Rules Management Composites/Portals (BPMS) Security & Identity Transactional Services Data Services/Abstraction Data
Create the Information ModelLegacy Ontologies Legacy OntologiesMetadata Understand Ontologies Metadata Data Data DictionaryExternal Dictionary External &Metadata Understand the Data & Metadata Metadata(B2B) Metadata (B2B) Data Data Catalog Catalog Catalog the Data Information Information Model Model Build Information Model
Create a Service ModelData Candidate Data CandidateCatalog Services Catalog Understand Services Services Services Services AndInformation And Information InformationModel Model Information to Services Information Service Service Model Model Build Service Model
Transactional ServicesData Services/Abstraction Data
Create a Process ModelData Candidate Data CandidateCatalog Processes Catalog Understand Processes Processes Services to Services to ProcessesInformation Processes InformationModel Model Services to Processes Process Process Model ModelService Build Process Model ServiceModel Model
Monitoring and ManagementProcess Management Rules Management Composites/Portals (BPMS) Transactional Services Data Services/Abstraction Data
Create a Governance ModelProcess Defined Process DefinedModel Policies Model Define Policies Policies Policy Policy DesignsInformation Designs InformationModel Model Design Policies Governance Governance Model ModelService Implement Policies ServiceModel Model
Monitoring and ManagementManagement & Service Governance Process Management Rules Management Composites/Portals (BPMS) Security & Identity Transactional Services Data Services/Abstraction Data
Assigning Candidate Data, Services, and Processes for the Clouds ProcessCandidate Process Assignments CandidateProcesses Analyze Candidate Processes Assignments Processes Service Service Assignments AssignmentsCandidate Candidate Analyze Candidate ServicesServices Services Data Data Assignments AssignmentsData Analyze Candidate Data DataDictionary Dictionaryand andMetadata MetadataGovernance GovernanceModel Model
Select Platforms and Deploy Processes, Services, and Data to Platforms. Candidate Candidate PlatformsProcess Process List Candidate Platforms PlatformsAssignments Assignments Test Test ResultsService Results ServiceAssignments Analyze and Test Assignments Candidate Platforms Target Target PlatformsData Platforms DataAssignments Assignments Select Target Platforms Deploy to Target Platforms