Salesforce Engineering, profile picture
Uploaded bySalesforce Engineering
525 views

Orchestration, the conductor's score

The document discusses Salesforce's approach to infrastructure orchestration, emphasizing the importance of explicit standards and declarative object models to manage complexity and enable rapid implementation changes. It outlines the benefits of measuring success, data analysis, and ensuring security through defined models and interactions. Overall, the focus is on creating a structured framework that enhances customer success and operational efficiency.

Embed presentation

Orchestration, the conductor’s score The approach to infrastructure and application scale at Salesforce. David Lucey Network Architect dlucey@salesforce.com Linkedin: dplucey Twitter: @dplucey
2013 • 2014 • 2015 2008 • 2009 • 2010 2011 • 2012 • 2013 2014 • 2015 2011 • 2012 2013 • 2014 2015 Most innovative companies in the world 20K FY16 Employees Salesforce: 4th Largest Enterprise Software Company in the World This Year 4th largest software company based on analyst consensus revenue for FY2017. Salesforce fiscal 2017 guidance provided November 18, 2015: "revenue for the company's full fiscal year 2017 is projected to be approximately $8.0B to $8.1B.” $ 6.67B FY16 annual revenue
A Complete Platform for Customer Success Customer Success Services Customer Success Platform Complete CRM Developer Success Platform 5.5 million apps Force.com Heroku Enterprise AppExchange Shield Trailhead Wave Thunder Lightning Apps Analytics Community Marketing Service IoT Sales Success Community 2 million members MVPs / Events / Community Salesforce Success Services Success Ecosystem SI’s / ISV’s AppExchange Customer Success Managers Ignite / Program Architects Multitenant Cloud
Unlimited Transactions at Scale Further Improving response times B 70B 140B 210B 280B Q4FY13 Q2FY14 Q4FY14 Q2FY15 Q4FY15 Q2FY16 Q4FY16 200ms 220ms 240ms 260ms 280ms Q4FY13 Q2FY14 Q4FY14 Q2FY15 Q4FY15 Q2FY16 Q4FY16 Transactions Per Quarter 270B Transactions in Q4FY16 52% YoY Growth (Q4FY15-Q4FY16) Average Page Time 211ms Latency in Q4FY16 Flat (Reduction) YoY
Orchestration is a tough nut to crack. Complexity increases with number of interactions, not number of elements. • Network elements have a good deal more interactions that servers We focus on object models to constrain and define the complexity. They shape how we think about the problem, and give us something to compare to.
Orchestration is a tough nut to crack. Complexity increases with number of interactions, not number of elements. • Network elements have a good deal more interactions that servers We focus on object models to constrain and define the complexity. They shape how we think about the problem, and give us something to compare to. How we think about the problem gives us the key to solving it.
We start with explicit rolling standards We explicitly standardize and templatize everything We build each instance with a defined lifespan Version Everything A network version is fit for purpose. We focus on fast-recovery architecture.
We start with explicit rolling standards We explicitly standardize and templatize everything We build each instance with a defined lifespan Version Everything A network version is fit to a purpose. We focus on recovery-only architecture. What does this buy us? • The constraints actually set us free. • They give us a rock-solid foundation to build upon. • We can focus our efforts on what really differentiates our platform.
It’s all about the declarative object model. Declarative model • A structured description of the desired outcome. • A puppet manifest Imperative model • A structured description of exact steps to take to affect a desired outcome. • A configuration template
It’s all about the declarative object model. Declarative object models are our best friends. • Everything MUST be modeled, from applications right down to power, cabling, and space. Declarative models focus on intent, not implementation • The model is stating what the requester wants, not how they get it. • This forms an explicit contract, “If I ask for this, I will get something that behaves this way.” Models can and should be composed of other models. • Infinite Composability
It’s all about the declarative object model
It’s all about the declarative object model
It’s all about the declarative object model
It’s all about the declarative object model
It’s all about the declarative object model These models give us an External Source of Truth • The routing table is no longer the definition of accuracy. • We should be able to execute on intent *solely* from the model.
Keeping the children in line. If we do not measure it, we cannot succeed at it. • This is a guiding principle within Salesforce Infrastructure. We determine how to measure success before we start, then iterate on it. Knowledge is power, and data is the key to knowledge • Grab any data you may possibly need. How long we keep it is a business decision. Data we have no plans to analyze is not worthless, but data we never analyze is. • Analyze everything in time-series from failure or degradation • Need to change - Let each product owner decide what is important and write their own jobs. How do we know if the infrastructure is adhering to our models?
Herding cats is easy when you have food We now have expected state (intent) and observed state (telemetry).
Herding cats is easy when you have food We now have expected state (intent) and observed state (telemetry). A controller’s job is to compare the two intelligently • …and make further statements of intent • It must be loosely coupled to succeed.
Herding cats is easy when you have food We now have expected state (intent) and observed state (telemetry). A controller’s job is to compare the two intelligently • …and make further statements of intent • It must be loosely coupled to succeed. Watchdogs (observers) and Robots (actuators) • Watchdogs are distributed and robots are more centralized. • Responsibility of their operation and accuracy belongs to the owner.
Herding cats is easy when you have food
Herding cats is easy when you have food We loosely couple elements, focusing on intent and interaction. • This gives each team known inputs and outputs. The middle is their own black box. • A statement of intent can be broken down into finer grained statements of intent as needed.
Herding cats is easy when you have food. Remember that we model everything? We model configs too. • A config template is just a tightly coupled type of model. • We have templates for vendor configs, just like everyone else…but not for long. We’re getting behind OpenConfig to help push. • It lets us loosely couple to our network gear – and declare intent. • We’re working to build OpenConfig models for load-balancing and security as well. • This shifts the most complicated layer of our orchestration, vendor interaction, over to the vendors. • This is a huge win for our industry – except for the vendors.
Security in a Panopticon World Security is one of the prime drivers for our declarative model. • We know where everything is supposed to be. • We know what everything should be doing. • We know how it should be doing it. We’re gathering how things are. • In the applications • At the host • Throughout the network • At ingress and egress
Security in a Panopticon World Prevention and detection can be elaborated from application models. Traffic inspection can be compared against the models. Security Analytics can also be compared against the models. Response can be signaled from the controller. We augment that with our Trust Team, to identify any exploits that static analysis of code, infrastructure, and our security analytics doesn’t turn up.
What it all looks like. The application owner defines their model: • Submit artifacts • Add configuration templates • Define interactions • Define infrastructure needs • Number of instances of each type • Fault zones • Load-balancing and other service needs • Define metrics and watchdogs
What it all looks like. The application owner defines their model: • Submit artifacts • Add configuration templates • Define interactions • Define infrastructure needs • Number of instances of each type • Fault zones • Load-balancing and other service needs • Define metrics and watchdogs Whether they deploy into our platform or elsewhere, the application model can drive the deployment. Network is just another owner. The only addition is their physical needs.
Takeaways Explicit Infrastructure Standards • Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free.
Takeaways Explicit Infrastructure Standards • Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free. Declarative Object Models • Anything can be modeled, and everything MUST be modeled. • Models should be made up of other models, like Lego™ blocks.
Takeaways Explicit Infrastructure Standards • Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free. Declarative Object Models • Anything can be modeled, and everything MUST be modeled. • Models should be made up of other models, like Lego™ blocks. Measure Everything • If we do not measure it, we cannot succeed at it. • We figure out how to measure success before we start, then iterate on it. • Grab everything. How long we keep it is a business decision. • Data we have no plans to analyze isn’t worthless, but data we never analyze is.
Takeaways Focus on intent and the interactions, not the implementation • Loose Coupling and explicit contract versioning allow for more rapid implementation changes, • Both for component interoperability and for customer interaction. • This is the heart and soul of ‘Infrastructure as Code’
Takeaways Focus on intent and the interactions, not the implementation • Loose Coupling and explicit contract versioning allow for more rapid implementation changes, • Both for component interoperability and for customer interaction. • This is the heart and soul of ‘Infrastructure as Code’ Security can accrete from the framework • With explicit standards and explicit contracts owned by our product owners, security models and incident detection naturally fall out as a result. • Layered security becomes variations that elaborate from our explicit contracts. • Security analytics is a further elaboration of our explicit contracts • predictive analytics can improve those contracts.
thank y u

More Related Content

PPTX
Salesforce's Trusted Enterprise Platform and Apache Phoenix
bySalesforce Engineering
 
PPTX
Tailoring the DITA Suit to Fit
bySalesforce Engineering
 
PPTX
Declarative Network Configuration
bySalesforce Engineering
 
PPTX
Operationalizing Big Data as a Service
bySalesforce Engineering
 
PPTX
Legacy Content: Applying your new content strategy to old information
bySalesforce Engineering
 
PPTX
Content Strategy Workshop
bySalesforce Engineering
 
PPTX
Finding Security Issues Fast!
bySalesforce Engineering
 
PPTX
How Open Source Embiggens Salesforce.com
bySalesforce Engineering
 
Salesforce's Trusted Enterprise Platform and Apache Phoenix
bySalesforce Engineering
 
Tailoring the DITA Suit to Fit
bySalesforce Engineering
 
Declarative Network Configuration
bySalesforce Engineering
 
Operationalizing Big Data as a Service
bySalesforce Engineering
 
Legacy Content: Applying your new content strategy to old information
bySalesforce Engineering
 
Content Strategy Workshop
bySalesforce Engineering
 
Finding Security Issues Fast!
bySalesforce Engineering
 
How Open Source Embiggens Salesforce.com
bySalesforce Engineering
 

What's hot

PPTX
Crossbrowser Testing at Salesforce Analytics
bySalesforce Engineering
 
PPTX
Dev ops.enterprise.2014 (1)
bySalesforce Engineering
 
PDF
Scrum at Scale
bySalesforce Engineering
 
PPTX
Ten Years of DITA: Are We There Yet?
bySalesforce Engineering
 
PPT
The Ideal Salesforce Development Lifecycle
byJoshua Hoskins
 
PPTX
Scaling Continuous Integration for Puppet
bySalesforce Engineering
 
PPTX
Agile at Salesforce From theory to practice, how to be agile at scale
bySalesforce Engineering
 
PDF
Manage Your Agile Development from Salesforce
bySalesforce Developers
 
PPT
Designing custom REST and SOAP interfaces on Force.com
bySteven Herod
 
PDF
Salesforce API Series: Release Management with the Metadata API webinar
bySalesforce Developers
 
PPTX
9 Principles for Salesforce Application Architecture
bySteven Herod
 
PPTX
Triggers for Admins: A Five-step Framework for Creating Triggers
bySalesforce Developers
 
PDF
How to Setup Continuous Integration With Git, Jenkins, and Force.com
bySalesforce Developers
 
PPTX
Automating Deployment Between Orgs Using Git & Continuous Integration
bySebastian Wagner
 
PPTX
Release Management: Managing Your Internal Releases
byJoshua Hoskins
 
PDF
Streamline Selenium Testing with Page Flow Navigation
bySalesforce Developers
 
PDF
Agile.2013.effecting.a.dev ops.transformation.at.salesforce
byDave Mangot
 
PPTX
Design patterns for salesforce app decomposition
bySai Jithesh ☁️
 
PDF
From Sandbox To Production: An Introduction to Salesforce Release Management
bySalesforce Developers
 
PDF
CodeLive with Adam Daw - Building a mobile friendly geolocation aware candy t...
byJackGuo20
 
Crossbrowser Testing at Salesforce Analytics
bySalesforce Engineering
 
Dev ops.enterprise.2014 (1)
bySalesforce Engineering
 
Scrum at Scale
bySalesforce Engineering
 
Ten Years of DITA: Are We There Yet?
bySalesforce Engineering
 
The Ideal Salesforce Development Lifecycle
byJoshua Hoskins
 
Scaling Continuous Integration for Puppet
bySalesforce Engineering
 
Agile at Salesforce From theory to practice, how to be agile at scale
bySalesforce Engineering
 
Manage Your Agile Development from Salesforce
bySalesforce Developers
 
Designing custom REST and SOAP interfaces on Force.com
bySteven Herod
 
Salesforce API Series: Release Management with the Metadata API webinar
bySalesforce Developers
 
9 Principles for Salesforce Application Architecture
bySteven Herod
 
Triggers for Admins: A Five-step Framework for Creating Triggers
bySalesforce Developers
 
How to Setup Continuous Integration With Git, Jenkins, and Force.com
bySalesforce Developers
 
Automating Deployment Between Orgs Using Git & Continuous Integration
bySebastian Wagner
 
Release Management: Managing Your Internal Releases
byJoshua Hoskins
 
Streamline Selenium Testing with Page Flow Navigation
bySalesforce Developers
 
Agile.2013.effecting.a.dev ops.transformation.at.salesforce
byDave Mangot
 
Design patterns for salesforce app decomposition
bySai Jithesh ☁️
 
From Sandbox To Production: An Introduction to Salesforce Release Management
bySalesforce Developers
 
CodeLive with Adam Daw - Building a mobile friendly geolocation aware candy t...
byJackGuo20
 

Viewers also liked

PPTX
Stacki - The1600+ Server Journey
bySalesforce Engineering
 
PDF
Introducing Wordpress Multitenancy
bySalesforce Engineering
 
PPTX
Getting to NO NINES
bySalesforce Engineering
 
PPTX
Quality Testing and Agile at Salesforce
bySalesforce Engineering
 
PPTX
Production Readiness Testing Using Spark
bySalesforce Engineering
 
PPTX
Global State Management of Micro Services
bySalesforce Engineering
 
PPTX
Apache BookKeeper Distributed Store- a Salesforce use case
bySalesforce Engineering
 
PDF
Microservices
bySalesforce Engineering
 
PPTX
Introduction to Deep Learning
bySalesforce Engineering
 
PPTX
The Future of Hbase
bySalesforce Engineering
 
PPTX
Dream of the (blue) Effective Case Management System
bySalesforce Engineering
 
Stacki - The1600+ Server Journey
bySalesforce Engineering
 
Introducing Wordpress Multitenancy
bySalesforce Engineering
 
Getting to NO NINES
bySalesforce Engineering
 
Quality Testing and Agile at Salesforce
bySalesforce Engineering
 
Production Readiness Testing Using Spark
bySalesforce Engineering
 
Global State Management of Micro Services
bySalesforce Engineering
 
Apache BookKeeper Distributed Store- a Salesforce use case
bySalesforce Engineering
 
Microservices
bySalesforce Engineering
 
Introduction to Deep Learning
bySalesforce Engineering
 
The Future of Hbase
bySalesforce Engineering
 
Dream of the (blue) Effective Case Management System
bySalesforce Engineering
 

Similar to Orchestration, the conductor's score

PDF
DevSecOps: A Secure SDLC in the Age of DevOps and Hyper-Automation
byAlex Senkevitch
 
PPTX
OpenFest 2014 Aggressive DevOps
byIvo Vachkov
 
PDF
GHC 2019 Abstract - Building a Service Delivery Infrastructure
byPaulaPaulSlides
 
PDF
Brighttalk understanding the promise of sde - final
byAndrew White
 
DOCX
BROCADE and New IP Story
byAntonio Palumbo
 
PPTX
A Blueprint for a Successful DevOps Metamorphosis
byXebiaLabs
 
PPTX
One Does Not Simply Walk Into Devops
byUri Cohen
 
PDF
Security as Code (Second Early Release) Bk Sarthak Das
byminroyallugg
 
PDF
You Build It, You Secure It: Higher Velocity and Better Security with DevSecOps
byDevOps.com
 
PDF
Security as Code (Second Early Release) Bk Sarthak Das
bymagaudzontar
 
PPTX
The-Future-of-Software-Development.Presentation
byOzias Rondon
 
PDF
Our Brave Modular Future
byOrchestrate
 
PDF
Network Source of Truth and Infrastructure as Code revisited
byNetwork Automation Forum
 
PDF
Devopsdays State of the Union Amsterdam 2014
byJohn Willis
 
PDF
Putting the Sec into DevOps
byMaytal Levi
 
PPTX
How to Usher in a new Monitoring System
byNikita Ostrovsky, M.S.
 
PDF
Introduction to dev ops
byLen Bass
 
PPTX
Introduction to Serverless. Oracle Fn Project.
byRolando Carrasco
 
PDF
The Future of Networking, and the Past of Protocols
byOpen Networking Summits
 
PDF
Single Source of Truth for Network Automation
byAndy Davidson
 
DevSecOps: A Secure SDLC in the Age of DevOps and Hyper-Automation
byAlex Senkevitch
 
OpenFest 2014 Aggressive DevOps
byIvo Vachkov
 
GHC 2019 Abstract - Building a Service Delivery Infrastructure
byPaulaPaulSlides
 
Brighttalk understanding the promise of sde - final
byAndrew White
 
BROCADE and New IP Story
byAntonio Palumbo
 
A Blueprint for a Successful DevOps Metamorphosis
byXebiaLabs
 
One Does Not Simply Walk Into Devops
byUri Cohen
 
Security as Code (Second Early Release) Bk Sarthak Das
byminroyallugg
 
You Build It, You Secure It: Higher Velocity and Better Security with DevSecOps
byDevOps.com
 
Security as Code (Second Early Release) Bk Sarthak Das
bymagaudzontar
 
The-Future-of-Software-Development.Presentation
byOzias Rondon
 
Our Brave Modular Future
byOrchestrate
 
Network Source of Truth and Infrastructure as Code revisited
byNetwork Automation Forum
 
Devopsdays State of the Union Amsterdam 2014
byJohn Willis
 
Putting the Sec into DevOps
byMaytal Levi
 
How to Usher in a new Monitoring System
byNikita Ostrovsky, M.S.
 
Introduction to dev ops
byLen Bass
 
Introduction to Serverless. Oracle Fn Project.
byRolando Carrasco
 
The Future of Networking, and the Past of Protocols
byOpen Networking Summits
 
Single Source of Truth for Network Automation
byAndy Davidson
 

More from Salesforce Engineering

PPTX
Locker Service Ready Lightning Components With Webpack
bySalesforce Engineering
 
PPTX
Scaling HBase for Big Data
bySalesforce Engineering
 
PPTX
Techniques to Effectively Monitor the Performance of Customers in the Cloud
bySalesforce Engineering
 
PPTX
Predictive System Performance Data Analysis
bySalesforce Engineering
 
PPTX
Apache HBase State of the Project
bySalesforce Engineering
 
PPTX
Hit the Trail with Trailhead
bySalesforce Engineering
 
PPTX
HBase/PHOENIX @ Scale
bySalesforce Engineering
 
PPTX
Scaling up data science applications
bySalesforce Engineering
 
PPTX
Containers and Security for DevOps
bySalesforce Engineering
 
PPTX
Aspect Oriented Programming: Hidden Toolkit That You Already Have
bySalesforce Engineering
 
PPTX
Monitoring @ Scale in Salesforce
bySalesforce Engineering
 
PPTX
Performance Tuning with XHProf
bySalesforce Engineering
 
PPTX
A Smarter Pig: Building a SQL interface to Pig using Apache Calcite
bySalesforce Engineering
 
PPTX
Implementing a Content Strategy Is Like Running 100 Miles
bySalesforce Engineering
 
PPTX
Salesforce Cloud Infrastructure and Challenges - A Brief Overview
bySalesforce Engineering
 
PDF
Koober Preduction IO Presentation
bySalesforce Engineering
 
Locker Service Ready Lightning Components With Webpack
bySalesforce Engineering
 
Scaling HBase for Big Data
bySalesforce Engineering
 
Techniques to Effectively Monitor the Performance of Customers in the Cloud
bySalesforce Engineering
 
Predictive System Performance Data Analysis
bySalesforce Engineering
 
Apache HBase State of the Project
bySalesforce Engineering
 
Hit the Trail with Trailhead
bySalesforce Engineering
 
HBase/PHOENIX @ Scale
bySalesforce Engineering
 
Scaling up data science applications
bySalesforce Engineering
 
Containers and Security for DevOps
bySalesforce Engineering
 
Aspect Oriented Programming: Hidden Toolkit That You Already Have
bySalesforce Engineering
 
Monitoring @ Scale in Salesforce
bySalesforce Engineering
 
Performance Tuning with XHProf
bySalesforce Engineering
 
A Smarter Pig: Building a SQL interface to Pig using Apache Calcite
bySalesforce Engineering
 
Implementing a Content Strategy Is Like Running 100 Miles
bySalesforce Engineering
 
Salesforce Cloud Infrastructure and Challenges - A Brief Overview
bySalesforce Engineering
 
Koober Preduction IO Presentation
bySalesforce Engineering
 

Recently uploaded

PPTX
FERROUS AND NON FERROUS ALLOYS--UNIT- III
byDJAGADEESH1
 
PDF
Earths-Structure-and-Composition_20260127_110958_0000.pdf
byabdurasabarfaki
 
PDF
JVM in the Age of AI: 2026 Edition - Deep Dive
byArtur Skowroński
 
PPTX
UNIT 2 _8051.pptx ,INSTRUCTION SET OF 8051,EXAMPLES OF ARITHMETIC,LOGICAL.BRA...
byrekhabalaji2607
 
PDF
TechRush Hackathon 2026: A Platform for Innovation, Learning, and Real-World ...
byreshmi7103
 
PPTX
Group-3-Ethics - Freedom as foundation for moral acts
byCharlsCasquejo2
 
PDF
Reality Check Deploying Computer Vision and LLMs at the Edge
byICS
 
PPTX
24ME402-ENGINEERING MATERIALS AND METALLURGY --- UNIT-I
byDJAGADEESH1
 
PPTX
Tips for Designing Flex Circuits for Medical Applications
byEpec Engineered Technologies
 
PDF
God series - Physics video office crossed
byjangidankit8781
 
PDF
Chip Designer's Code - Linux Terminal Part 6 - Text Viewers
byAmr Adel
 
PPTX
820656155-Unit-III-Univariate-Analysis.pptx
bykalaimugill
 
PPTX
farmmachinery and it’s functions and it’s mainstream 160910080709.pptx
byhitokalijimo
 
PPTX
Applications of cloud computing in education
byhatimunwala5
 
PPTX
battery energy storage system (BESS).pptx
bymanish99skp
 
PPTX
Fake News Detection System | Plagiarism detection
bysurajkanojiya13
 
PPTX
TRICKLING FILTER PROCESS FOR WASTEWATER TREATMENT.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
PPTX
M1 - HPE Alletra Storage MP B10000 - presenter.pptx
byThanhBnhNguyn92
 
PPTX
Unit-2: Network Models--OSI Reference Model, TCP/IP Reference Model
bySuvarnaSharma5
 
PDF
Mahabir - Structural Steel Brochure - 2025
byMahabirIndustries1
 
FERROUS AND NON FERROUS ALLOYS--UNIT- III
byDJAGADEESH1
 
Earths-Structure-and-Composition_20260127_110958_0000.pdf
byabdurasabarfaki
 
JVM in the Age of AI: 2026 Edition - Deep Dive
byArtur Skowroński
 
UNIT 2 _8051.pptx ,INSTRUCTION SET OF 8051,EXAMPLES OF ARITHMETIC,LOGICAL.BRA...
byrekhabalaji2607
 
TechRush Hackathon 2026: A Platform for Innovation, Learning, and Real-World ...
byreshmi7103
 
Group-3-Ethics - Freedom as foundation for moral acts
byCharlsCasquejo2
 
Reality Check Deploying Computer Vision and LLMs at the Edge
byICS
 
24ME402-ENGINEERING MATERIALS AND METALLURGY --- UNIT-I
byDJAGADEESH1
 
Tips for Designing Flex Circuits for Medical Applications
byEpec Engineered Technologies
 
God series - Physics video office crossed
byjangidankit8781
 
Chip Designer's Code - Linux Terminal Part 6 - Text Viewers
byAmr Adel
 
820656155-Unit-III-Univariate-Analysis.pptx
bykalaimugill
 
farmmachinery and it’s functions and it’s mainstream 160910080709.pptx
byhitokalijimo
 
Applications of cloud computing in education
byhatimunwala5
 
battery energy storage system (BESS).pptx
bymanish99skp
 
Fake News Detection System | Plagiarism detection
bysurajkanojiya13
 
TRICKLING FILTER PROCESS FOR WASTEWATER TREATMENT.pptx
byChemical Engineering Dept. NIT Rourkela-769008, Odisha, India
 
M1 - HPE Alletra Storage MP B10000 - presenter.pptx
byThanhBnhNguyn92
 
Unit-2: Network Models--OSI Reference Model, TCP/IP Reference Model
bySuvarnaSharma5
 
Mahabir - Structural Steel Brochure - 2025
byMahabirIndustries1
 

Orchestration, the conductor's score

  • 1.
    Orchestration, the conductor’sscore The approach to infrastructure and application scale at Salesforce. David Lucey Network Architect dlucey@salesforce.com Linkedin: dplucey Twitter: @dplucey
  • 2.
    2013 • 2014• 2015 2008 • 2009 • 2010 2011 • 2012 • 2013 2014 • 2015 2011 • 2012 2013 • 2014 2015 Most innovative companies in the world 20K FY16 Employees Salesforce: 4th Largest Enterprise Software Company in the World This Year 4th largest software company based on analyst consensus revenue for FY2017. Salesforce fiscal 2017 guidance provided November 18, 2015: "revenue for the company's full fiscal year 2017 is projected to be approximately $8.0B to $8.1B.” $ 6.67B FY16 annual revenue
  • 3.
    A Complete Platform forCustomer Success Customer Success Services Customer Success Platform Complete CRM Developer Success Platform 5.5 million apps Force.com Heroku Enterprise AppExchange Shield Trailhead Wave Thunder Lightning Apps Analytics Community Marketing Service IoT Sales Success Community 2 million members MVPs / Events / Community Salesforce Success Services Success Ecosystem SI’s / ISV’s AppExchange Customer Success Managers Ignite / Program Architects Multitenant Cloud
  • 4.
    Unlimited Transactions atScale Further Improving response times B 70B 140B 210B 280B Q4FY13 Q2FY14 Q4FY14 Q2FY15 Q4FY15 Q2FY16 Q4FY16 200ms 220ms 240ms 260ms 280ms Q4FY13 Q2FY14 Q4FY14 Q2FY15 Q4FY15 Q2FY16 Q4FY16 Transactions Per Quarter 270B Transactions in Q4FY16 52% YoY Growth (Q4FY15-Q4FY16) Average Page Time 211ms Latency in Q4FY16 Flat (Reduction) YoY
  • 5.
    Orchestration is atough nut to crack. Complexity increases with number of interactions, not number of elements. • Network elements have a good deal more interactions that servers We focus on object models to constrain and define the complexity. They shape how we think about the problem, and give us something to compare to.
  • 6.
    Orchestration is atough nut to crack. Complexity increases with number of interactions, not number of elements. • Network elements have a good deal more interactions that servers We focus on object models to constrain and define the complexity. They shape how we think about the problem, and give us something to compare to. How we think about the problem gives us the key to solving it.
  • 7.
    We start withexplicit rolling standards We explicitly standardize and templatize everything We build each instance with a defined lifespan Version Everything A network version is fit for purpose. We focus on fast-recovery architecture.
  • 8.
    We start withexplicit rolling standards We explicitly standardize and templatize everything We build each instance with a defined lifespan Version Everything A network version is fit to a purpose. We focus on recovery-only architecture. What does this buy us? • The constraints actually set us free. • They give us a rock-solid foundation to build upon. • We can focus our efforts on what really differentiates our platform.
  • 9.
    It’s all aboutthe declarative object model. Declarative model • A structured description of the desired outcome. • A puppet manifest Imperative model • A structured description of exact steps to take to affect a desired outcome. • A configuration template
  • 10.
    It’s all aboutthe declarative object model. Declarative object models are our best friends. • Everything MUST be modeled, from applications right down to power, cabling, and space. Declarative models focus on intent, not implementation • The model is stating what the requester wants, not how they get it. • This forms an explicit contract, “If I ask for this, I will get something that behaves this way.” Models can and should be composed of other models. • Infinite Composability
  • 11.
    It’s all aboutthe declarative object model
  • 12.
    It’s all aboutthe declarative object model
  • 13.
    It’s all aboutthe declarative object model
  • 14.
    It’s all aboutthe declarative object model
  • 15.
    It’s all aboutthe declarative object model These models give us an External Source of Truth • The routing table is no longer the definition of accuracy. • We should be able to execute on intent *solely* from the model.
  • 16.
    Keeping the childrenin line. If we do not measure it, we cannot succeed at it. • This is a guiding principle within Salesforce Infrastructure. We determine how to measure success before we start, then iterate on it. Knowledge is power, and data is the key to knowledge • Grab any data you may possibly need. How long we keep it is a business decision. Data we have no plans to analyze is not worthless, but data we never analyze is. • Analyze everything in time-series from failure or degradation • Need to change - Let each product owner decide what is important and write their own jobs. How do we know if the infrastructure is adhering to our models?
  • 17.
    Herding cats iseasy when you have food We now have expected state (intent) and observed state (telemetry).
  • 18.
    Herding cats iseasy when you have food We now have expected state (intent) and observed state (telemetry). A controller’s job is to compare the two intelligently • …and make further statements of intent • It must be loosely coupled to succeed.
  • 19.
    Herding cats iseasy when you have food We now have expected state (intent) and observed state (telemetry). A controller’s job is to compare the two intelligently • …and make further statements of intent • It must be loosely coupled to succeed. Watchdogs (observers) and Robots (actuators) • Watchdogs are distributed and robots are more centralized. • Responsibility of their operation and accuracy belongs to the owner.
  • 20.
    Herding cats iseasy when you have food
  • 21.
    Herding cats iseasy when you have food We loosely couple elements, focusing on intent and interaction. • This gives each team known inputs and outputs. The middle is their own black box. • A statement of intent can be broken down into finer grained statements of intent as needed.
  • 22.
    Herding cats iseasy when you have food. Remember that we model everything? We model configs too. • A config template is just a tightly coupled type of model. • We have templates for vendor configs, just like everyone else…but not for long. We’re getting behind OpenConfig to help push. • It lets us loosely couple to our network gear – and declare intent. • We’re working to build OpenConfig models for load-balancing and security as well. • This shifts the most complicated layer of our orchestration, vendor interaction, over to the vendors. • This is a huge win for our industry – except for the vendors.
  • 23.
    Security in aPanopticon World Security is one of the prime drivers for our declarative model. • We know where everything is supposed to be. • We know what everything should be doing. • We know how it should be doing it. We’re gathering how things are. • In the applications • At the host • Throughout the network • At ingress and egress
  • 24.
    Security in aPanopticon World Prevention and detection can be elaborated from application models. Traffic inspection can be compared against the models. Security Analytics can also be compared against the models. Response can be signaled from the controller. We augment that with our Trust Team, to identify any exploits that static analysis of code, infrastructure, and our security analytics doesn’t turn up.
  • 25.
    What it alllooks like. The application owner defines their model: • Submit artifacts • Add configuration templates • Define interactions • Define infrastructure needs • Number of instances of each type • Fault zones • Load-balancing and other service needs • Define metrics and watchdogs
  • 26.
    What it alllooks like. The application owner defines their model: • Submit artifacts • Add configuration templates • Define interactions • Define infrastructure needs • Number of instances of each type • Fault zones • Load-balancing and other service needs • Define metrics and watchdogs Whether they deploy into our platform or elsewhere, the application model can drive the deployment. Network is just another owner. The only addition is their physical needs.
  • 27.
    Takeaways Explicit Infrastructure Standards •Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free.
  • 28.
    Takeaways Explicit Infrastructure Standards •Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free. Declarative Object Models • Anything can be modeled, and everything MUST be modeled. • Models should be made up of other models, like Lego™ blocks.
  • 29.
    Takeaways Explicit Infrastructure Standards •Otherwise our automation is 10% engine, 90% exceptions • Constraint sets us free. Declarative Object Models • Anything can be modeled, and everything MUST be modeled. • Models should be made up of other models, like Lego™ blocks. Measure Everything • If we do not measure it, we cannot succeed at it. • We figure out how to measure success before we start, then iterate on it. • Grab everything. How long we keep it is a business decision. • Data we have no plans to analyze isn’t worthless, but data we never analyze is.
  • 30.
    Takeaways Focus on intentand the interactions, not the implementation • Loose Coupling and explicit contract versioning allow for more rapid implementation changes, • Both for component interoperability and for customer interaction. • This is the heart and soul of ‘Infrastructure as Code’
  • 31.
    Takeaways Focus on intentand the interactions, not the implementation • Loose Coupling and explicit contract versioning allow for more rapid implementation changes, • Both for component interoperability and for customer interaction. • This is the heart and soul of ‘Infrastructure as Code’ Security can accrete from the framework • With explicit standards and explicit contracts owned by our product owners, security models and incident detection naturally fall out as a result. • Layered security becomes variations that elaborate from our explicit contracts. • Security analytics is a further elaboration of our explicit contracts • predictive analytics can improve those contracts.
  • 32.

Editor's Notes

  • #3 Key Takeaways: Be humble Our success is just a reflection of our customers success Talk Track: This model and your success helped us grow from a startup to the 6th largest software company in the world. We have 17,000 employees dedicated to the success of our customers. Just this year, we’ve been welcomed into the Fortune 500 and are humbled to be named Fortune’s most admired software company three years in a row, Fortune Best Place to Work seven years in a row, and one of Forbes’ most innovative companies in the world five years in a row! All of this is only made possible by you, our customers, and your innovation and success.
  • #4 Key Takeaways: Success requires more than technology alone We have built an ecosystem of employees, customers and partners This is an opportunity for customers (large and small) Talk Track: At Salesforce, we are focused on helping you create 1 to 1 relationships with your customers. This all starts with our Developer Success Platform, giving you the flexibility to customize and create trusted apps to fit your business, quickly. With over 5.5 million apps built on the platform, we take care of infrastructure so you can focus on innovation. This platform is also what powers our complete CRM, the Customer Success Platform provides the tools you need to connect to your customers across your entire business. However, we understand that great technology alone is not enough to guarantee success, we have people and a robust ecosystem of partners to support you as part of our Customer Success Services. Whether it’s your Salesforce Customer Success Manager or one of the 2 million members in our success community, we have a team of people dedicated to success.
  • #6 Explict standards are the foundation, without them nothing else can happen
  • #7 Walnut: https://www.pexels.com/photo/healthy-dried-fruits-shell-cover-65541/
  • #8 Explict standards are the foundation, without them nothing else can happen
  • #9 Explict standards are the foundation, without them nothing else can happen
  • #18 http://pulpbits.net/5-excellent-herding-cats-picture/herding-cats/
  • #19 http://pulpbits.net/5-excellent-herding-cats-picture/herding-cats/
  • #20 Chihuahua: http://www.publicdomainpictures.net/view-image.php?image=92163&picture=chihuahua-yawning Robot: https://en.wikipedia.org/wiki/Robot#/media/File:HONDA_ASIMO.jpg
  • #23 http://www.openconfig.net/site/templates/img/oc-masthead.png
  • #24 https://en.wikipedia.org/wiki/Panopticon#/media/File:Presidio-modelo2.JPG
  • #25 https://en.wikipedia.org/wiki/Panopticon#/media/File:Presidio-modelo2.JPG