devops - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/seminars/20181025-tin... · • devops is far...
TRANSCRIPT
![Page 1: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/1.jpg)
1
A way to reduce risks for IoT?
DevOps
Hui Song, SINTEF
![Page 2: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/2.jpg)
2
Internet of Things
Ryan Manship, The Business of Federal Technology
![Page 3: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/3.jpg)
3
As the IoT grows, so do the risks• "I try to avoid all the risks
before I go" – hardware thinking• Certification• Good design• Thorough testing
• "Hmm, we will see…" –software thinking• Keep changing• Continuous risk management• Prompt reaction
![Page 4: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/4.jpg)
4
DevOps: The state of the art of software development practice
Up to 50 releases per day…
![Page 5: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/5.jpg)
5
How software developers deal with risksA short (simplified) history of software development models
![Page 6: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/6.jpg)
6
It all started from "waterfall"
Software systems
![Page 7: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/7.jpg)
7
Agile development
Automatic testing
Software products
![Page 8: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/8.jpg)
8
DevOps
Software Services
![Page 9: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/9.jpg)
9
How is operation different now?Operation is different in cloud
![Page 10: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/10.jpg)
10
A developer's view of the history
Waterfall Agile DevOps
I can code I can also test it…
I can even operate it
Do it often, automatically, and reproducibly
Automatic test casesAutomatic deploymentAutomatic monitoring
![Page 11: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/11.jpg)
11
How comes DevOps• Driving force: Ever-changing requirements and environments• Actually required: Software as a service
• More control of the software lifecycle• Even more fine-grained modularity (microservices)• Small teams
• Enabled by: New technologies• Cloud and containers -> Reproducible deployment• Framework and high-level languages -> actually readable code• Continuous integration pipelines
![Page 12: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/12.jpg)
12
DevOps
DevOps is a set of practices (2) intended to reduce the time(1) between committing a change to a system and the change being placed into normal production, while ensuring high quality (3).
(1) Reduced time: relatively: 0, absolutely: up to 50 times a day*(2) Automatic: everything is code, therefore programmable and tracked(3) Without sacrifice of quality: thorough testing, chaos engineering…
*https://www.infoq.com/news/2014/03/etsy-deploy-50-times-a-day
![Page 13: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/13.jpg)
13
How does it look like? A use case from Etsy
• Making many small, continuous changes: "how comfortable am I with deploying a change right now?"
• Every developer a Virtual Machine, configured by Chef, with the same cookbooks used in production
• Try is a tool that allows a developer to test his changes in Jenkins, without having to commit to trunk.
• The CI cluster is powerful enough to support 150 engineers, and more than 14000 tests suites runs per day.
• The pipeline passes through the staging environment, the same production environment, but only Etsy's employees have access to it. One-click deployments by Deployinator
• Config flags supports completely enable or disable a feature or variants of a given feature, and thus allows A/B testing
• Developers do their own feature monitoring and everyone has access to all the graphs through dashboards.
• IRC is the main communication tool
![Page 14: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/14.jpg)
14
Tools are the backbones to DevOps
![Page 15: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/15.jpg)
15
More tools
![Page 16: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/16.jpg)
16
A periodic table of tools
![Page 17: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/17.jpg)
17
DevOps and risks• Use tools to minimize the known risks
• Automation, traceability, reproducibility, testing…• So that developers can handle the unknown risks quickly and continuously
![Page 18: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/18.jpg)
18
More about DevOps tools• No tools, no DevOps• Tools work with each other in a flexible way• Every team needs their own tools
![Page 19: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/19.jpg)
19
DevOps in IoTFill-in the gaps
![Page 20: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/20.jpg)
20
DevOps for IoT• DevOps is far from being adopted in the IoT world• Opportunities:
• Fast to market, new devices and requirements, experimental culture…• A pragmatic way towards trustworthiness
• Challenges:• Hardware culture: certification, technical complexity, etc.• More unpredicted running environments
• Tool or Practice: a "chicken or the egg" problem: • A research and innovation action to build the missing tools• Demonstrate the practice on industrial use cases
![Page 21: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/21.jpg)
21
The ENACT project
• Start date: 01-01-2018• Duration: 3 years• Project leader: SINTEF• Consortium: 11 partners
![Page 22: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/22.jpg)
22
DevOps for Trustworthy Smart IoT Systems
• Four high-level user stories: As a developer, I want to...• develop new and trustworthy features into an SIS in an agile way, so that I can promptly
and continuously bring new values to the end users• release the changes into the running smart IoT system automatically and reproducibly, so
that I can immediately see the effect of the changes • patch the running IoT system promptly and continuously, so that it keeps trustworthy
despite internal threats (such as insufficient security setting, unexpected attacks, system failures, unexpected actuation conflicts, etc.)
• patch the running IoT system promptly and continuously, so that it keeps trustworthy despite external threats (new vulnerabilities, software updates, new security strategies, new user profiles, policies changes, etc.)
![Page 23: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/23.jpg)
23
ToolsRisk
Management
Actuation conflict management
GeneSIS
GeneSIS
Security and privacy monitoring
Context-aware Access control
RCATest, simulation And emulation
Security andPrivacy control
ThingML
Behavioral drift analysis
GeneSIS
Actuation conflict management
Diversifier
Diversifier
![Page 24: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/24.jpg)
24
A sample storyRisk
ManagementGeneSIS
Security and privacy monitoring
Context-aware Access control
RCATest, simulation And emulation
GeneSISDiversifier
Diversifier(alternative architectures)
(choose one architecture)
(Configure context)Rail Domain
Smart Building
eHealth
![Page 25: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/25.jpg)
25
Conclusions• DevOps facilitates agility• DevOps makes real-time risk management possible• IoT requires DevOps• Currently some key tools are missing for IoT DevOps• At SINTEF, we are trying to deal with this problem
![Page 26: DevOps - heim.ifi.uio.noheim.ifi.uio.no/~ketils/kst/Seminars/20181025-Tin... · • DevOps is far from being adopted in the IoT world • Opportunities: • Fast to market, new devices](https://reader034.vdocument.in/reader034/viewer/2022042223/5eca4e32e5b0eb32ea140945/html5/thumbnails/26.jpg)
26
Thanks!