geting cloud architecture right the first time linthicum interop fall 2013

© 2013 Cloud Technology Partners, Inc. / Confidential

1

David Linthicum / [email protected] / Senior Vice President

Getting Cloud Architecture Right the First Time


2

Geek Level

Your Grandparents whoare still using AOL

That guy who can convertyour name to Hex


3

Why You Should Care


4

Most Cloud-Based Systems are Lacking Architecture


5

Thus, many clouds are not meeting expectations.


6

• Inefficient utilization of resources.

• Resource saturation.

• Lack of elasticity and scalability.

• Lack of security and governance.

• Frequent outages.

• Bad or no tenant management.

• Other very bad things.

The results:


7

• Not understanding how to make architectures scale.

• Not dealing with tenant management issues.

• Not understanding that security is systemic, and impacts performance.

• Not understanding the proper use of services (Yes, that means SOA).

• Tossing technology at the problem.

• Listening to the wrong people.

Common Mistakes


8

• No two multitenant architectures are alike.

• Needs to be effective in the context of the problem.

• Needs to leverage best architecture practices.

• Needs to practice isolation and protection.

The Multitenant Thing

“With a multitenant architecture, a software application is designed to virtually partition its data and configuration so that each client organization works with a customized virtual application instance.”

Source: Wikipedia


9

You have some choices

Source: http://vikashazrati.wordpress.com/2008/06/23/multi-tenancy-explained/


10

ABCs of Multitenancy

Source: Steve Bobrowski Amazon Machine Images


11

Virtualization is Not Always a Requirement


12

• Migration to a Cloud– Business Systems

– Infrastructure

• Building on a Cloud (PaaS)

• Building a Hybrid Cloud

• Building a Cloud– IaaS

– SaaS

– PaaS

Types of Cloud Architecture Patterns Emerging

Complexity


13

General Architecture Patterns to Follow


14

1. Governance

2. Regulatory Compliance

3. Security & Identity Management

4. Business Continuity

5. Process and Services

6. Data Management

7. System Integration

8. Resource Skills & Knowledge

9. Application Readiness

10. Network Readiness

Enterprise Vulnerabilities - Assess your Risks

COMPLEXITY OF MITIGATING RISK

RIS

K T

O O

RG

AN

IZA

TIO

N

12

5

34

6

7

8

9

10


15

Build a Solid Foundation:

Architecture Roadmap General Guidance

• Determine business drivers

• Understand: data, services, business processes and system integration points

• Design a “cloud-friendly” enterprise architecture roadmap that leverages Services Oriented Architecture (SOA)

• Determine an integration strategy for internal and external systems

• Outline a migration path for legacy systems to the new architecture


16

“as-is”


17

“to be”


18

Deploy


19

• Focus on the primitives. – The best clouds are sets of low level services that can be configured.

• Data services

• Transaction services

• Utility services

• Leverage distributed components that are centrally controlled.

• Build for tenants, not users.

• Don’t lean too much on virtualization.

• Security and governance are systemic.

General Rules & Guidelines


20

Use Case:

General Business System Migration to the Cloud


21

• Break the system down to it’s component parts, understanding each part.

• Rethink the database, it’s typically a mess.

• Rethink the system as sets of services/API, watch the granularity. – Data services, transaction services, utility services

• Create a security and governance plan.

• Consider the user interfaces.

• Consider device interfaces.

• Migrate only the components to the cloud that will provide the best value.

The General Idea


22

Good News

• Most cloud platforms provide the tenant management features for you.

• Most cloud platforms manage the resources for you.

• The cloud platforms are getting better.

Bad News

• Security is still your problem.

• Application and service design is still your problem.

• Testing can be a hassle.

• Watch out for immaturity if standards.

Good News / Bad News


23

Security & Identity

Managem

ent & Service G

overnance

Data

Data Services/Abstraction

Transactional Services

Process Management (BPMS) Composites/Portals

Monitoring and Management

Rules Management

Reference Architecture


24

Create the InformationModel

Ontologies

Understand Ontologies

Understand the Data

DataDictionary &Metadata

Catalog the Data

DataCatalog

LegacyMetadata

ExternalMetadata(B2B)

Build Information Model

InformationModel


25

Data




26

Create a Service Model

CandidateServicesUnderstand Services

Information to Services

ServicesAndInformation

Build Service Model

ServiceModel

DataCatalog

InformationModel


27

Data





28

Cloud Provider

On Premises


29

Cloud Provider

On Premises


30

Create a Process Model

CandidateProcessesUnderstand Processes

Services to Processes

Services toProcesses

Build Process Model

ProcessModel

DataCatalog

InformationModel

ServiceModel


31

Data



Process Management (BPMS) Composites/PortalsRules Management



32

On Premises Cloud Provider


33

Create a Governance Model

Defined PoliciesDefine Policies

Design Policies

PolicyDesigns

Implement Policies

GovernanceModel

ProcessModel

InformationModel

ServiceModel


34

Security & Identity

Managem

ent & Service G

overnance

Data



Process Management (BPMS) Composites/Portals

Monitoring and Management

Rules Management



35

RuntimeGovernance

Repository Logs

Policies

Policies

Monitoring


36

Test SOA using CloudArchitecture

TestPlanCreate Test Plan

Black Box Testing

Black BoxTestingResults

White Box Testing

White BoxTestingResults

ProcessModel

InformationModel

ServiceModel

GovernanceModel


37

Assigning Candidate Data, Services, and

Processes for the Clouds

ProcessAssignments

Analyze Candidate Processes

Analyze Candidate Services

ServiceAssignments

Analyze Candidate Data

DataAssignments

CandidateProcesses

CandidateServices

Data Dictionaryand Metadata

GovernanceModel


38

Select Platforms and DeployProcesses, Services, and Data

to Platforms.

CandidatePlatforms

List Candidate Platforms

Analyze and Test Candidate Platforms

TestResults

Select Target Platforms

TargetPlatforms

ProcessAssignments

ServiceAssignments

DataAssignments

Deploy toTarget Platforms


39

Stepping to the Clouds

1. Access the mission.2. Access the culture.3. Access the value.4. Understand your data.5. Understand your services.6. Understand your processes.7. Understand the cloud

resources.8. Identify candidate data.9. Identify candidate services10. Identify candidate processes.

11. Create a governance strategy.12. Create a security strategy. 13. Bind candidate services to data

and processes.14. Relocate services, processes,

and information. 15. Implement security. 16. Implement governance.17. Implement operations.


40

[email protected] / @davidlinthicum / @cloudtp

Questions?