Presentation is loading. Please wait.

Presentation is loading. Please wait.

Important Questions Moving to the Cloud (Or even splitting the environment) Stephen Wynkoop ( )SSWUG.ORG.

Published byHillary Mosley Modified over 9 years ago

Similar presentations

Presentation on theme: "Important Questions Moving to the Cloud (Or even splitting the environment) Stephen Wynkoop ( )SSWUG.ORG."— Presentation transcript:

1 Important Questions Moving to the Cloud (Or even splitting the environment) Stephen Wynkoop ( swynk@sswug.org )SSWUG.ORG

2 My Background Databases – Early (very) Access – First version of SQL Server – Even dBase and other platforms Coding along the way, books, SSWUG.ORG

3 Agenda Different, But the Same Approach Lessons Learned Along the Way Getting Started

4 Key To Success Understand your application(s) and environment.

5 Important to Remember Cloud resources are NOT an all or nothing proposition.

6 Overall, Breaking Into Pieces Functional Security Availability Fault Tolerance Sound familiar? EnvironmentEnvironment

7 Functional Considerations Understand the application – What storage requirements are there? – What type of security is needed? – Recovery? – Processing – and what types Reporting, transactional, etc. – Spikes – elasticity in demand/requirements

8 Functionality – Questions #1 Usage patterns – “When is the application used, are there spikes or critical periods?” Authentication – “Beyond login, are there other authentication requirements? Think single sign-on, or application roles/logins.” 3 rd Party Apps – “What are the interface requirements?”

9 Functionality – Questions #2 Usage – “What comes out of the front-end inputs?” (reporting, exports, sharing) Recovery – “What is acceptable downtime?” and “What is the downtime process?”

10 Security Considerations Authentication Data protection Network segmentation Data in transit, data in use, data at rest Archived information Information sharing/reporting

11 Security – Questions #1 General – “How are users authenticated?” – this could be cards, UID/PW, etc. Protection – “What regulatory bodies care about this information?” – Remember, there may be multiples – HIPAA, PCI, etc. plus simple best practices

12 Security – Questions #2 Segmentation – “Who will have access, and why, and what protection is needed?” Firewalls, segmentation, VPN, etc. Protection – “Where does information go?” – protection of that information - encryption Sharing – “Who uses this information, how is it provided to them?”

13 Availability Drives system sizing Drives load balancing Drives scale up and down Drives associated resources, tool selection This drives the entire environment “chain”

14 Availability Surprises This was our biggest challenge area – Still is. Architecting correctly to support this is challenging. Physical System requirements Logical System requirements Application requirements Oddities, licensing, support

15 Fault Tolerance Determines functional components – Database, OS, app tools Determines failover requirements Determines feature selection within tools and platforms

16 Fault Tolerance – Questions #1 Application – “What happens when the application “crashes” – what does recovery look like?” Process drives how you recover… Consider recovery like trauma – – What is the immediate assessment and action process? – What is the short term stop-gap process? – What is recovery like? – What is confirmed recovery?

17 Fault Tolerance – Questions #2 Understand – Transparent recovery vs. ‘please wait’ – component approach can help OR HINDER fault tolerance. – Key: How do components interact?

18 Fault Tolerance - Surprises Things to consider: – IP Address changes (DNS, IPs, etc.) – Machine name changes/DNS name changes – Cached DNS – Cycle times on availability checks – Firewalls, other items that reference IP/machine name – Application configurations, database connections, etc.

19 Data Entry Security Encryption at the source Access controls These can become architecture issues because services can be involved.

20 A LOOK AT SSWUG ARCHITECTURE

21 Auto Scaling group Availability Zone #1 www.sswug.org security group root volume data volume Elastic Load Balancing Amazon S3 bucket S3-served Video, graphics EC2 instance web app server DNS Flash Server “Main” Server root volume data volume Default 2 instances, Max 10 Medium instances M1.large “Dev” Server “Test” Server M1.medium Site source AMI for Servers github

22 Key Services Enabled Elastic Load balancing Auto-scaling groups AMIs Multiple availability zones Cloudfront S3 - storage SES – email DNS (Route 53) Resized instances for services Encoding services Challenges: – Full-text services – Encryption options – Managing emergence of technologies

23 Interesting Trends Many start with “co-locating” approach Instead: – “Peel” off services you need – Consider backup, bursting to the cloud services – Use the elasticity, fault tolerance to your advantage – excellent place to start

24 Interesting Trends 2 Database services for analysis, reporting great starting points, etc. Supporting services (DNS, backups, etc.) Pro tip: Watch for incremental costs that can slowly snowball (storage, other usage-based)

25 Biggest Mistake Not figuring out services, components and implementation options that will enhance your environment.

26 Pet Peeve Billing – Monitor – Analyze – Trend – Trim All of these different pieces do make it more difficult to manage costs.

27 Where Do You Start? Ask the questions Understand the applications and the requirements Historic process applied to current technologies

28 Questions? Email:swynk@sswug.orgswynk@sswug.org Twitter:@swynk Phone:520-760-2400 x1030

Download ppt "Important Questions Moving to the Cloud (Or even splitting the environment) Stephen Wynkoop ( )SSWUG.ORG."

Similar presentations

B. Ramamurthy 4/17/20151. Overview of EC2 Components (fig. 2.1) 10..* 1 1 1 1 4/17/20152.

B. Ramamurthy 4/17/ Overview of EC2 Components (fig. 2.1) 10..* /17/20152.
STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES IT Services Storage And Backup Low Cost Central Storage (LCCS) January 9, 2009 1.

STANFORD UNIVERSITY INFORMATION TECHNOLOGY SERVICES IT Services Storage And Backup Low Cost Central Storage (LCCS) January 9,
Intro to SharePoint 2013 Architecture Liam Cleary.

Intro to SharePoint 2013 Architecture Liam Cleary.
AWS Simple Icons v2.1 Usage Guidelines Check to make sure you have the most recent set of AWS Simple Icons. This version was last updated 4/18/2013 (v2.1)

AWS Simple Icons v2.1 Usage Guidelines Check to make sure you have the most recent set of AWS Simple Icons. This version was last updated 4/18/2013 (v2.1)
Futures – Alpha Cloud Deployment and Application Management.

Futures – Alpha Cloud Deployment and Application Management.
Using ArcGIS for Server in the Amazon Cloud

Using ArcGIS for Server in the Amazon Cloud
1 NETE4631 Cloud deployment models and migration Lecture Notes #4.

1 NETE4631 Cloud deployment models and migration Lecture Notes #4.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
High Availability Group 08: Võ Đức Vĩnh50703006 Nguyễn Quang Vũ50703033.

High Availability Group 08: Võ Đức Vĩnh Nguyễn Quang Vũ
TAC Vista Security. Target  TAC Vista & Security Integration  Key customer groups –Existing TAC Vista users Provide features and hardware for security.

TAC Vista Security. Target  TAC Vista & Security Integration  Key customer groups –Existing TAC Vista users Provide features and hardware for security.
Uniqueness of user names is enforced Customer information logged to database Require contact information as well as email address Email address will.

Uniqueness of user names is enforced Customer information logged to database Require contact information as well as address address will.
Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.

Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.
Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.

Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.
Running Your Database in the Cloud Eran Levin VP R&D - Xeround.

Running Your Database in the Cloud Eran Levin VP R&D - Xeround.
A Brief Overview by Aditya Dutt March 18 th ’ 2014 1Aditya Inc.

A Brief Overview by Aditya Dutt March 18 th ’ Aditya Inc.
Cloud Computing for the Enterprise November 18th, 2011. This work is licensed under a Creative Commons.

Cloud Computing for the Enterprise November 18th, This work is licensed under a Creative Commons.
Oracle Application Server 10g (9.0.4) Recommended Topologies Pavana Jain.

Oracle Application Server 10g (9.0.4) Recommended Topologies Pavana Jain.
Mastering Amazon RDS Data Masters. Special Thanks To… Miami Innovation Center for Entrepreneurship www.startup-miami.com/mice.

Mastering Amazon RDS Data Masters. Special Thanks To… Miami Innovation Center for Entrepreneurship
Implementing ISA Server Publishing. Introduction What Are Web Publishing Rules? ISA Server uses Web publishing rules to make Web sites on protected networks.

Implementing ISA Server Publishing. Introduction What Are Web Publishing Rules? ISA Server uses Web publishing rules to make Web sites on protected networks.
Introduction to Cloud Computing

Introduction to Cloud Computing

Similar presentations

Ads by Google