TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
Oracle+cloud+computing+ +iasa+thailand+2011
1. <Insert Picture Here>
IASA Thailand Keynote:
Oracle Enterprise Cloud Computing Roadmap
Name : Tan Meng Wai
Title : Director of Enterprise Architecture
2. NIST Definition of Cloud Computing
Cloud computing is a model for enabling convenient, on-
demand network access to a shared pool of configurable
computing resources (e.g., networks, servers, storage,
applications, and services) that can be rapidly provisioned
and released with minimal management effort or service
provider interaction.
This cloud model promotes availability and is composed of:
5 Essential Characteristics 3 Service Models 4 Deployment Models
• On-demand self-service • SaaS • Public Cloud
• Resource pooling • PaaS • Private Cloud
• Rapid elasticity • IaaS • Community Cloud
• Measured service • Hybrid Cloud
• Broad network access
Source: NIST Definition of Cloud Computing v15
5. Why Enterprise Architecture?
Business Goals Technology Challenges
Delivering Real Increasing System
Business Value Complexity
Enterprise
Architecture
Reduce Costs Business Infrastructure
Integration
Faster to
Business - IT Alignment
Market
Intelligence & Enterprise
Analysis Mgmt
Innovate
Applications & Data &
Services Content
Globalize
Security & Application
and so on Compliance Development
5
6. Do You Provide or Use Internal or
Private Clouds?
Yes, in production at scale 11.3%
Yes, in limited use 12.8% 28.6%
Yes, in pilot stage 4.5%
Preliminary planning 4.9%
Under consideration 10.5%
No 47.4%
Don’t know/unsure 8.7%
28.6% of respondents have internal or private clouds today
Source: IOUG ResearchWire member study on Cloud Computing, conducted in August-September 2010.
7. Does Your Company Use Services from
Public Cloud Providers?
Yes 13.8%
No 54.6%
Under consideration 11.2%
Don’t know/unsure 20.4%
13.8% of respondents use public clouds today
Source: IOUG ResearchWire member study on Cloud Computing, conducted in August-September 2010.
8. Is your Enterprise Architecture cloud ready?
Client 1
FBT PAY G
NTS
TRDS
Customs NTS A/c
Penalty
Data…….
• Which business process,
services, application, data
RBA
De f
RRE Re fun ds
IPS In tegrate d A/C
1
and infrastructure should I
Excise Payments
CCD Complian ce
Staff
CR EC I ADD AW A ELS
move into the cloud?
Staff
Business Phone
DDDR TASS
PKI CDCC
CWMS GC I B us. Intel
IVR WOC
Ref aterial
m
• Openness
B OA
Remote TAX
Client B ANK Staff Staff AG ENTS Call Centres
B EP
Integration Layer • Security
Service Group A Service Group B Service Group C
• Control
• Compliance
Application Grid Application Grid Application Grid • SLA
• Integration
Data Grid Data Grid Data Grid
Security Layer
9. Roadmap to Enterprise Cloud Computing
Traditional Transitional Optimized IT Cloud
1
Pt. to Pt. Integrations
Client
FBT PAY G
Integration Layer
NTS
Service Group A Service Group C
TRDS
Customs NTS A/c Service Group B
Inv
Data…….
SFAProduct product ERP SCM productMES- DB LMS MGMT
Penalty SFA-Product ERP- product Dev
DB-
Stage
B2B
B2B- PaaS IaaS
RBA
SFA Stage
RRE
IPS Integrated A/C Refunds
Def
SFA-
Product ERP-
Stage
MES- MES-
B2B- Stage Application Grid Application Grid Application Grid
1 Dev
Test Prod Stage Prod
Excise Payments
productMES- DB
Compliance
CR ECI ADD AWA ELS
CCD Staff SFAProduct product ERP SCM LMSInv
DB-
Product product Dev MGMT Data Grid Data Grid Data Grid
SaaS
Staff
Business
DDDR
Phone
TASS ERP- Stage
PKI CDCC
IVR
CWMS GCI
WOC
Bus. Intel
Stage
Ref aterial
m
BOA
Security Security Security Security Security Layer
Remote TAX
Client BANK Staff Staff AGENTS Call Centres
B EP
Rationalization IT-as-a-Service
• Local IT silos • Standardized • Pools of resources • Rapid provisioning
interfaces/systems
• Peak load sized • Consolidated • Lower costs
• Lower license and
• Difficult to scale support costs • Better productivity • IT as a “Business”
• Difficult to • Higher QoS • Faster project
• Increased
change utilization of IT turnaround
• Improved IT agility
• Expensive to skills • Greater focus on
manage • Improved security and business
• Reduced IT project management
• Complexity time/costs/risks
• Higher QoS
driven risk
10. What should you put in the Cloud?
Key characteristics of the right service
• Business processes, applications and data that
are largely independent
• Easier to run on a separate remote platform
• Less integration and interaction with other parts of the
architecture reduces SLA complexity
• On-premise changes have less impact to cloud
• Less data synchronization reduces complexity and
errors
11. What should you put in the Cloud?
Key characteristics of the right service
• Integration points between on-premise applications and
cloud applications must be well-defined
• Expect to maintain a Hybrid Cloud Model
• Key Integration Challenges :-
• How do I populate data into the cloud application for the first
time?
• How do I provision on-premise users into the cloud
application?
• How do I manage user access to the cloud application?
• How do I ensure data consistency across all applications?
• How do I optimize business processes across all applications?
12. What should you put in the Cloud?
Key characteristics of the right service
• The security offered by the cloud provider should
be good enough for certain types of data
• Do you have an enterprise level data security
categorization?
• What are the business risk if the data is lost?
• What are the business risk if the data is compromised?
• If the benefits outweigh the risks then it’s good for
cloud
13. What should you put in the Cloud?
Key characteristics of the right service
• Applications must be able to leverage web
technologies (able to communicate outside the
firewall)
• Legacy applications not recommended unless
modernized using web technologies (eg. wrapper)
• Applications that require native interfaces not
recommended
14. More Guidance: Cloud Principles
Scalability Architecture makes or breaks an application in the cloud. The defining issue
is state management.
Design for scale-out
The ease of scalability of the cloud can lead to lazy architecture & weak
capacity planning, which drives up cost
Provision small at first: Make the application prove its needs
Availability DR is more important in the public cloud due to the frequency of failures
Recovery plans must include all aspects of the infrastructure, not just data
Architect so that availability of the entire system is not compromised by one
component being unavailable
Portability Stuff (data, programs) should be able to move into or out of the cloud easily
Security Encryption is more important in public clouds (data at rest and in motion)
Performance Design applications so logic can be spread across multiple servers
Cluster database or use read-only slaves
Use the fastest disk available for databases
More layers of virtualization will likely impact disk I/O performance
14
15. What Type of Private Platform and
Infrastructure Cloud Services Is Your
Company Providing?
Application server platform as a service 24.7%
Database platform as a service 21.4% PaaS
Identity as a service 4.7%
Compute as a service 10.2%
Storage as a service 18.1% IaaS
Software development and test as a service 14.9%
Don’t know/unsure 20.5%
None 37.2%
Most popular:
App Server as a service
Database as a service
Source: IOUG ResearchWire member study on Cloud Computing, conducted in August-September 2010.
16. Oracle Has a Broad but Focused Cloud
Computing Strategy
Private Cloud Solutions Public Cloud Solutions
• Applications on a shared platform • Oracle On Demand cloud services
• Database & middleware for PaaS • Oracle on 3rd party public clouds
• Hardware & systems for IaaS • Powering 3rd party public clouds
Private Cloud Public Clouds
Apps I
I SaaS
N
N
T
T
PaaS R PaaS
E
A
R
N
N
E
IaaS T
E IaaS
T
Cloud Integration
• Security, business process integration and data integration
spanning on-premise and public clouds
17. Roadmap to Cloud Computing
From Consolidation to Private PaaS
Exadata and Exalogic as the
Foundation for Private PaaS
Oracle’s Complete Cloud Offerings
19. Server Virtualization and Clustering Deliver
Resource Pooling and Elastic Scalability
Server Virtualization Clustering
Make one physical resource look like many Make many physical resource look like one
Consumers Consumers
Single Virtual Resource
Multiple Virtual Resources
Clustering Software
Virtualization Software
Single Physical Resource
Multiple Physical Resources
Both server virtualization and clustering are key technologies for cloud
20. Database Consolidation Approaches
Three Options Using Oracle Database 11g
Common building blocks are shared server and storage pools
DW CRM ERP DW ERP CRM DW ERP CRM
DB
DB
DB
DB
DB
DB
DB
OS OS OS
Oracle VM Oracle VM OS OS OS OS
Server Operating System Database
Deploy in dedicated VMs Share server pool Share database instances
Server virtualization Real Application Clusters Real Application Clusters
21. Middleware Consolidation Approaches
Three Options Using Oracle WebLogic
Custom ERP Custom CRM ERP Custom CRM ERP
WebLogic WebLogic WebLogic
WLS Server WebLogic
Server Server WLS
VO VO Server
Virtualization
Option
Guest OS Guest OS
Oracle VM Oracle VM OS OS
Virtualization Virtualization
Clustering
with Guest OS with no Guest OS
Shared App Server
Dedicated App Servers Dedicated App Servers
Shared Pool of Hardware
Server virtualization Higher System Utilization
22. Roadmap to Cloud Computing
From Consolidation to Private PaaS
Exadata and Exalogic as the
Foundation for Private PaaS
Oracle’s Complete Cloud Offerings
23. Exadata and Exalogic
Extreme Performance, Engineered Systems
• Database and middle tier machines
• Unmatched performance, simplified deployment,
lower total cost
• Building blocks for private and public PaaS
25. Oracle Exadata Database Machine
Fastest OLTP and DW Performance Best for Database Consolidation
• Database Server Pool
– Oracle Database 11g Release 2
– Oracle Real Application Clusters
– Automatic Storage Management
• Storage Server Pool
– Up to 336 TB disk
– 5 TB flash storage
– Oracle Exadata Storage Software
• InfiniBand Network
– 40 Gb/sec redundant switches
26. Oracle Exadata Extreme Performance
Query Throughput 75 GB/sec
• Faster Than DW Appliances GB/sec Uncompressed Data
Single Rack Flash
• Faster query throughput 20
• Fastest disk throughput 10 Disk
• Much faster with Flash Teradata Netezza Exadata
2650 TwinFin 12
• More Bandwidth than High-End Arrays Storage Data Bandwidth 75 GB/sec
• Storage Arrays can’t deliver disk bandwidth (Uncompressed GB/sec)
Flash
• No extra bandwidth from Flash
• No CPU offload 9 11 ??? Disk
2.5 <6
• No Columnar Compression
IBM NetApp IBM Hitachi EMC Exadata
• No InfiniBand XIV 6080 DS8700 USP V VMAX
• More Data Capacity Systems with Equal User Data
All with Largest Disks,
10x
Best Compression
• More disk drives/rack
2-4x
• Larger disk drives 3x
1.4x
• Much better compression
Teradata EMC Netezza Exadata
2650 VMAX TwinFin 12
29. Oracle Exalogic Extreme Performance
• Internet Applications
• 12X improvement Exalogic
• Over 1 Million HTTP Requests/Sec. Alternative
• FaceBook’s Web Traffic on 2 Full Racks
• Messaging Applications
• 4.5X improvement
Exalogic
• Over 1.8 Million Messages/Sec.
• All Chinese Rail Ticketing on 1 Rack Alternative
• Database Applications
• 1.4X improvement
• Almost 2 million JPA Operations/Sec. Alternative
Exalogic
• All E-Bay Product Searches on 1/2 Rack
30. Roadmap to Cloud Computing
From Consolidation to Private PaaS
Exadata and Exalogic as the
Foundation for Private PaaS
Oracle’s Complete Cloud Offerings
31. Oracle Cloud Solutions
Applications Cloud Management
Oracle Enterprise
Manager
Custom Apps Oracle Applications ISV Apps
Application
Performance Mgmt
Platform as a Service
Lifecycle
Integration: Process Mgmt: Security: User Interaction: Management
SOA Suite BPM Suite Identity Mgmt WebCenter
Application Grid: WebLogic Server, Coherence, JRockit Configuration
Exalogic Elastic Cloud Management
Database Grid: Oracle Database, Database Options
Application
Exadata Database Machine
Quality Mgmt
Infrastructure as a Service
Oracle Solaris
Operating Systems: Oracle Enterprise Linux
Oracle Linux Ops Center
Oracle VM for SPARC (LDom) Oracle VM for x86
Solaris Containers
Physical & Virtual
Servers Systems Mgmt
Storage
32. Oracle Cloud Management Capabilities
Cloud Management Capabilities
Self-Service Metering and Policy-Driven Capacity Assembly
Provisioning Resource Mgmt Packaging
Chargeback Planning
Foundation Capabilities for Managing Datacenters
Configuration Lifecycle
and
Compliance Management
Application Application
Performance Quality
Management Management
Full Apps to Disk
Management
33. Database Security for Cloud Environments
Audit Trail
Consolidation
Unauthorized DBA Activity
Auditing
Procurement
Multi-factor Authorization
Authorization
HR
DB Consolidation Security
Applications Authentication
Rebates
Network
SQL
Monitoring
and
Blocking Encrypted Encrypted Encrypted Data
Database Backups Traffic Masking
34. Securing Cloud with Oracle Identity
Management
On-Premise Private Cloud Public Clouds
Oracle Apps ISV Apps Custom Apps SaaS Apps
Cloud Identity Services
Oracle Platform Security Services
Authentication Authorization Roles & Auditing Identity User
Data Federation
Entitlements Provisioning
Standards-based Interfaces
Oracle Identity Management
Identity Store, Credential Store, and Policy Store Providers
Access Management Identity Administration Identity Analytics Directory Services
35. Integrating On-Premise Apps with Cloud Apps
Firewall Security Perimeter
Oracle BPM Suite
Oracle Identity Manager & Identity Analytics
ERP PLM SCM HCM CRMCRM
Oracle SOA Suite
DATA
SYNC
Oracle Data Integrator
Oracle GoldenGate
Firewall Security Perimeter
Challenges across the divide between On-premise and Cloud Apps
• How do I populate data into the cloud application for the first time? Oracle Data Integrator
• How do I provision on-premise users into the cloud application? Oracle Identity Manager
• How do I manage user access to the cloud application? Oracle Identity Manager & Analytics
• How do I ensure data consistency across all applications? Oracle GoldenGate & SOA Suite
• How do I optimize business processes across all applications? Oracle BPM Suite & SOA Suite
36. Summary
From Consolidation to Private PaaS
Exadata and Exalogic as the
Foundation for Private PaaS
Oracle’s Complete Cloud Offerings