Full Contact Cloud Architecture and Design

David S. LinthicumSVP, Cloud Technology PartnersDavid.linthicum@cloudtp.com

www.cloudtp.com

Abstract

So how does one design and build a cloud computing system? My advice is that you jump in, grab problem by the throat, and make your cloud-based architecture and resulting system do your bidding. In this session we’ll cover the right and wrong ways to leverage, design, and build cloud-based systems and infrastructure. Going beyond the hype, this includes advice from those currently in the trenches who make cloud computing work for the Global 2000 and government. The audience is anyone who will soon fight to make cloud computing work for their clients, employers, and/or investors, and need to knock it out of the park the first time.

Slides available:

• @DavidLinthicum

• david.linthicum@cloudtp.com

• www.cloudtp.com

• www.davidlinthicum.com

• www.linkedin.com/in/davidlinthicum

• www.slideshare.net/linthicum

• I Blog for InfoWorld and GigaOM Pro

Geek Level

Your Grandparents whoare still using AOL That guy who can convert

your name to Hex

Why You Should Care

Most Cloud-Based Systems are Lacking Architecture

Thus, many clouds are not meeting expectations.

The results:

• Inefficient utilization of resources. • Resource saturation.• Lack of elasticity and scalability. • Lack of security and governance. • Frequent outages. • Bad or no tenant management. • Other very bad things.

Hitting the Wall

Common Mistakes

• Not understanding how to make architectures scale.

• Not dealing with tenant management issues.• Not understanding that security is systemic, and

impacts performance. • Not understanding the proper use of services

(Yes, that means SOA).• Tossing technology at the problem.• Listening to the wrong people.

The Multitenant Thing

• No two multitenant architectures are alike.

• Needs to be effective in the context of the problem.

• Needs to leverage best architecture practices.

• Needs to practice isolation and protection.

“With a multitenant architecture, a software application is designed to virtually partition its data and configuration so that each client organization works with a customized virtual application instance.”

Source: Wikipedia

You have some choices

Source: http://vikashazrati.wordpress.com/2008/06/23/multi-tenancy-explained/

ABCs of Multitenancy

Source: Steve Bobrowski Amazon Machine Images

Virtualization is Not Always a Requirement

Types of Cloud Architecture Patterns

Emerging

• Migration to a Cloud– Business Systems

– Infrastructure

• Building on a Cloud (PaaS)• Building a Hybrid Cloud • Building a Cloud

– IaaS

– SaaS

– PaaS

Complexity

Types of Cloud Architecture Patterns

Emerging

• Migration to a Cloud– Business Systems

– Infrastructure

• Building on a Cloud (PaaS)• Building a Hybrid Cloud • Building a Cloud

– IaaS

– SaaS

– PaaS

Complexity

We’ll focushere

We’ll focushere

General Architecture Patterns to Follow

Enterprise Vulnerabilities Assess your Risks

1. Governance2. Regulatory Compliance3. Security & Identity Management4. Business Continuity5. Process and Services6. Data Management7. System Integration8. Resource Skills & Knowledge9. Application Readiness10. Network Readiness

COMPLEXITY OF MITIGATING RISK

RIS

K T

O O

RG

AN

IZA

TIO

N

12

5

34

6

7

8

9

10

Architecture RoadmapGeneral Guidance

Build a solid foundation:

Determine business drivers

Understand: data, services, business processes and system integration points

Design a “cloud-friendly” enterprise architecture roadmap that leverages Services Oriented Architecture (SOA)

Determine an integration strategy for internal and external systems

Outline a migration path for legacy systems to the new architecture

“as-is”

“to be”

deploy

General Rules and Guidelines

• Focus on the primitives. – The best clouds are sets of low level services that can be

configured.• Data services

• Transaction services

• Utility services

• Leverage distributed components that are centrally controlled.

• Build for tenants, not users. • Don’t lean too much on virtualization. • Security and governance are systemic.

Use Case: General Business System Migration to the Cloud

The General Idea

• Break the system down to it’s component parts, understanding each part.

• Rethink the database, it’s typically a mess.• Rethink the system as sets of services/API, watch the

granularity. – Data services, transaction services, utility services

• Create a security and governance plan. • Consider the user interfaces.• Consider device interfaces.• Migrate only the components to the cloud that will

provide the best value.

Good New/Bad News

• Good News:– Most cloud platforms provide the tenant management

features for you.– Most cloud platforms manage the resources for you.– The cloud platforms are getting better.

• Bad News:– Security is still your problem.– Application and service design is still your problem.– Testing can be a hassle.– Watch out for immaturity if standards.

Reference Architecture

Security & Identity

Managem

ent & Service G

overnance

Data

Data Services/Abstraction

Transactional Services

Process Management (BPMS) Composites/Portals

Monitoring and Management

Rules Management

Create the InformationModel

OntologiesOntologies

Understand Ontologies

Understand the Data

DataDictionary &Metadata

DataDictionary &Metadata

Catalog the Data

DataCatalog

DataCatalog

LegacyMetadata

LegacyMetadata

ExternalMetadata(B2B)

ExternalMetadata(B2B)

Build Information Model

InformationModel

InformationModel

Data

Data Services/Abstraction

Create a Service Model

CandidateServices

CandidateServicesUnderstand Services

Information to Services

ServicesAndInformation

ServicesAndInformation

Build Service Model

ServiceModel

ServiceModel

DataCatalog

DataCatalog

InformationModel

InformationModel

Data

Data Services/Abstraction

Transactional Services

Source: Microsoft

Source: Microsoft

Create a Process Model

CandidateProcesses

CandidateProcessesUnderstand Processes

Services to Processes

Services toProcesses

Services toProcesses

Build Process Model

ProcessModel

ProcessModel

DataCatalog

DataCatalog

InformationModel

InformationModel

ServiceModel

ServiceModel

Data

Data Services/Abstraction

Transactional Services

Process Management (BPMS) Composites/Portals

Monitoring and Management

Rules Management

Source: Activevos

Create a Governance Model

Defined Policies

Defined PoliciesDefine Policies

Design Policies

PolicyDesigns

PolicyDesigns

Implement Policies

GovernanceModel

GovernanceModel

ProcessModel

ProcessModel

InformationModel

InformationModel

ServiceModel

ServiceModel

Security & Identity

Managem

ent & Service G

overnance

Data

Data Services/Abstraction

Transactional Services

Process Management (BPMS) Composites/Portals

Monitoring and Management

Rules Management

RuntimeGovernance

Repository Logs

Policies

Policies

Monitoring

Assigning Candidate Data, Services, and Processes for the Clouds

ProcessAssignments

ProcessAssignments

Analyze Candidate Processes

Analyze Candidate Services

ServiceAssignments

ServiceAssignments

Analyze Candidate Data

DataAssignments

DataAssignments

CandidateProcesses

CandidateProcesses

CandidateServices

CandidateServices

Data Dictionaryand Metadata

Data Dictionaryand Metadata

GovernanceModel

GovernanceModel

Select Platforms and DeployProcesses, Services, and Datato Platforms.

CandidatePlatforms

CandidatePlatforms

List Candidate Platforms

Analyze and Test Candidate Platforms

TestResults

TestResults

Select Target Platforms

TargetPlatforms

TargetPlatforms

ProcessAssignments

ProcessAssignments

ServiceAssignments

ServiceAssignments

DataAssignments

DataAssignments

Deploy toTarget Platforms

Stepping to the Clouds

Q&A

Thanks!