Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Securing your Cloud Application using StratosLive


Published on

Many organizations opt to move their applications to cloud considering the innumerous benefits it provides. However, serious thought must be given to the security aspect of the application and data before deciding to make this move For e.g. What happens if part of your critical customer information leaks out or your application becomes non-responsive due to a DOS attack ?...

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this

Securing your Cloud Application using StratosLive

  1. 1. Prabath Siriwardena – Software Architect, WSO2Thilina Buddhika – Technical Lead & Product Manager, WSO2
  2. 2. Cloud Computing
  3. 3. Cloud Computing
  4. 4. As a Service ?
  5. 5. As a Service ?Pay per use Resource SharingSelf service provisioning Unlimited Resource
  6. 6. • In public – IaaS, PaaS, SaaS available on the Internet – Use one of the cloud service providers – Information is stored and managed by provider under SLA• In Private – Have a cloud, in-house – IaaS provides by hardware on your data centers – PaaS running on your IaaS – SaaS executing on your PaaS• Or use both – Hybrid Cloud
  7. 7. Enterprise IT in 2010
  8. 8. Enterprise IT in 2015+
  9. 9. What do you expect from a platform ?
  10. 10. • Public Cloud – Fast time to market – Makes it easier to write scalable code• Private Cloud – Give each team their own instant infrastructure – Govern centrally but code and deploy by team – Automated governance, registry, identity – Instant BAM
  11. 11. • Distributed / Dynamically Wired (works properly in the cloud) – Finds services across applications – Reuse services from other departments e.g. People information required by all of Finance, Engineering and Sales• Elastic (uses the cloud efficiently) – Scales up and down as needed – Some departments might want varying resources with varying bandwidth with varying priority• Multi-tenant (only costs when you use it) – Virtual isolated instances to facilitate isolation between departments etc. – e.g. Sales vs. Finance tenants. Finance want complete isolation for some sensitive services• Self-service (in the hands of users) – De-centralized creation and management of tenants – No need to come to IT department to gain access – served via portal – no need to be on the queue or waiting list• Granularly Billed and Metered (pay for just what you use) – Allocate costs to exactly who uses them – Bill and cost various departments per use – Get rid of the situations where unused computing assets lying in one department while the other departments are starving for the same• Incrementally Deployed and Tested (supports seamless live upgrade) – Not disrupt other operations
  12. 12. • A full middleware platform available as a service, with self service • Fast provisioning• Based on OSGi • Modular, componentized, standard• Multi-tenant, Elastic, Metered and Billed • Effective and powerful• Available under the Apache License • Open Source, Open License, Open Development
  13. 13. WSO2 Carbon  WSO2 Stratos  WSO2 StratosLiveOn Premise: In Private Cloud: As a Service in the Public• In Production at Fortune • A single managed platform Cloud: 1000 companies • Elastic, Self-Service, Multi- • We manage, run and• Handling 1bn tenant maintain your application transactions/day • Accelerates your private platform• The only modular open cloud beyond virtual • Complete Pay as you Use source middleware stack machines to provide real • ESB-as-a-Service• Everything you need to Enterprise Cloud Services • Governance-as-a-Service build Enterprise • Use only what you need • Identity-as-a-Service Applications • With appropriate SLAs and• From Core Logic to Mobile simple monthly billing Apps
  14. 14.  Enable sign into Stratos using Google Apps username/password. For successful sign in using Google Apps,  If a tenant does not exist, it will be created with the same name as Google Apps domain. The IdP of this domain is Google Apps
  15. 15.  <login-config> <auth-method>BASIC</auth-method> <realm-name>Basic Auth</realm-name> </login-config> Automatically ties into Stratos Identity