management and security in the cloud andi mann vp strategic solutions, ca technologies...
TRANSCRIPT
Management and Security in the Cloud
Andi MannVP Strategic Solutions, CA [email protected]@AndiMann
Practical Notes on Delivering Mission-Critical Cloud Services
agenda
— Choosing the right cloud(s)
— Choose evolution or revolution
— Key management/security technologies
USE
PROVIDE
3 Copyright © 2011 CA Technologies
PLAN, DESIGN, DELIVER
ASSSURE, SECURE, OPTIMIZE
TRANSFORM
Traditional Services
CloudServices
The Business IT
BrokeredCloud Services
Private/Hybrid Cloud Services
3 key actions to leverage the diverse cloud ecosystem
4 Copyright © 2011 CA Technologies
PROVIDE agile private/hybrid cloud services
USE public cloud with greater confidence
TRANSFORM cycle times & business alignment to drive innovation agility
Service UserPhysical
Assets
VirtualAssets
5 Copyright © 2011 CA Technologies
extend management and security to USE and PROVIDE cloud and traditional services together
PLAN DELIVERTraditional
Services Private/Hybrid Cloud Services
BrokeredCloud Services
DESIGN
ASSURESECURE OPTIMIZE
PLAN
core lifecycle capabilities to USE and DELIVER cloud
6 Copyright © 2011 CA Technologies
Create a decision model for your apps and servicesBusiness service insightProject and portfolio analysisIdeation and decision modelingCapacity and resource planning
cloud evaluationservice portfolio view of applications and clouds
7 Copyright © 2011 CA Technologies High Performance
Good-Enough Performance
Commoditizing Differentiating
Hybrid Cloud
Virtual Fabric
V+P Automation
Public Cloud
e.g. ERP
e.g. E-mail
e.g. Analytics
Traditional Datacenter
Private CloudPublic Cloud
e.g. Web-centric
cloud evaluation/decision model – Visible Ops
Source: IT Process Institute, ‘Visible Ops - Private Cloud: From Virtualization to Private Cloud in 4 Practical Steps ’
8 Copyright © 2011 CA Technologies
cloud evaluation/decision model – Forrester Research
Source: Forrester Research Inc. Evaluating Application Fit With Cloud, Galen Schreck, May 5, 2011,
9 Copyright © 2011 CA Technologies
cloud evaluation/decision model – Freeform Dynamics
Source: Freeform Dynamics, Applied Cloud Computing: A practical guide to identifying the potential in your environment, Dale Vile and Tony Lock, October 2010
10 Copyright © 2011 CA Technologies
Bu
sin
es
s C
ap
ab
ility
No
n-C
ore
Co
re
Business DifferentiationNon-Differentiator (Reuse/Buy) Market Differentiator (Build)
On Premises COTS (IaaS)
Smart MetalJava as a Service
On Premises PaaS
Off Premises SaaS
On Premises IaaS
Off Premises PaaS
Smart MetalJava as a Service
Off Premises SaaS
cloud evaluation/decision model – Fortune 500 company
11 Copyright © 2011 CA Technologies
DESIGN
core cloud capabilities to USE and DELIVER cloud
12 Copyright © 2011 CA Technologies
Design services per businessagility, performance andcost needsBusiness service insightService modeling and simulationContinuity planningRevolutionary & evolutionary approaches
13 Copyright © 2011 CA Technologies
cloud-migrant, cloud-native, cloud-free, and ‘rogue’ cloud
IT ServiceUsers
‘Rogue’ Cloud Services
‘The Business’
Cloud-FreeServices
Service Design Models
Cloud Migrant Services
Cloud-Native Services
virtualization is foundational for cloud service designbut there is a lot more involved
Source: NIST Cloud Computing Reference Architecture Version 1, March 30, 2011
14 Copyright © 2011 CA Technologies
DELIVER
core cloud capabilities to USE and DELIVER cloud
15 Copyright © 2011 CA Technologies
Automate hybrid serviceprovisioning and processesVirtual component management Business service fabricStandardization and automationService interface (catalog)Measurement and control
evolution to cloud by building virtualization maturityfrom virtualization to cloud
Consolidation
Optimization (standardization)
Automation(orchestration)
Dynamic IT
CAPEX OPEX Revenue
Value Driver
Agility
Virtual Infrastructure Management
Virtual Systems
Management
Virtual Service
Management
Management Approach
Copyright © 2011 CA Technologies
Virtualization
16
InfrastructureAutomation
ServiceAutomation
Virtualization Management
??
?
revolutionary approach to virtual business service delivery
17 Copyright © 2011 CA Technologies
App
OS
WS DBApp
OS OS OSServer
Phys Server
Switches, Balancer
s
SAN,NAS
Firewall, IDS
Virtual Switch
Virtual Security
Virtual SAN
Virtual Server
App
OS
Phys Server
Hypervisor
Phys Server
Hypervisor
Virtual Service FabricSwitch, Storage, Network, CPU, Memory
Phys Server
Hypervisor
Phys Server
Hypervisor
WS
OS? DB
OS?
Virtual Business Service
ASSURE
core cloud capabilities to USE and DELIVER cloud
18 Copyright © 2011 CA Technologies
Assure application performanceApplication performance managementEnd-to-end assuranceQuality of experience monitoringService desk/service catalog
to provide cloud, you must manage and assure cloud service
Source: NIST Cloud Computing Reference Architecture Version 1, March 30, 2011
19 Copyright © 2011 CA Technologies
assure performance – 24x7 service-aware cloud monitoringSE
RVIC
E-AW
ARE
end-to-end visibility into complex hybrid service models
root cause diagnosis, impact analysis, user experience triage
optimize behavior, predict problems before they occur
20 Copyright © 2011 CA Technologies
… across physical, virtual, and cloud
SECURE
core cloud capabilities to USE and DELIVER cloud
21 Copyright © 2011 CA Technologies
Enforce content-aware identity and access controls
‘Cloud of clouds’ authenticationSecurity to, for, from the cloudIdentity and access management Data protection
22
content-aware security to, for, and from the cloud
Partners
Customers
Mobile
Internal Employees
Copyright © 2011 CA Technologies
Cloud Apps, Web Services, 3rd-party APIs
Enterprise Applications
SaaS,PaaS,IaaS
Identity management Web access mgtVirtual server securityData protectionUser activity reporting
Apply existing security TO the cloudProvide security FOR cloud services
Use security solutions FROM cloud providers Cloud Apps, Web Services, 3rd-party APIs
SaaS,PaaS,IaaS
OPTIMIZE
core cloud capabilities to USE and DELIVER cloud
23 Copyright © 2011 CA Technologies
End-to-end service visibility and lifecycle orchestrationBusiness service insightProcess orchestrationProject and portfolio management Resource optimization (incl. power)Chargeback
optimize resource utilization, placement, allocationrightsize infrastructure capacity to minimize cost and maximize response
24 Copyright © 2011 CA Technologies
Continually identify heterogeneous resource
pool (e.g. VM) usage, impact
Automate placement of resources at scale across
vendors, pools, users
not just technology – optimize, integrate, orchestrate process
25 Copyright © 2011 CA Technologies
ConfigurationDatabase
External Physical VirtualPool
Internal
Provision & Deprovision Requested Resources
Review &Approve
ConfigurationValidation
StandardConfiguration
Request
Customer
Review &Approve
Manager Approver
SLA DashboardRequest Portal
Capacity MgtPortal
CapacityManager
Service LevelMonitoring
Empower users with self-service
Maintain standards & compliance
Predict current & future
capacity needs
Define service metrics
Reconcile Costof Service
Charge back & show back
RelationshipManager
Manage service levels and costs
Metering &Performance
Capture consumption (CPU, RAM, disk, power)
Role-based access
Host-based Access Control / Web SSO
Compliance & Reporting
Audit TrailPerformance
Database
Capture Service Performance
Real-timePerformance
View
Pool & provision
Traditional Services
PhysicalAssets
CloudServices
The Business IT
BrokeredCloud Services
Private/Hybrid Cloud Services
core lifecycle capabilities to TRANSFORM business & IT
26 Copyright © 2011 CA Technologies
PROVIDE agile private/hybrid cloud services
USE public cloud with greater confidence
TRANSFORM cycle times & business alignment to drive innovation agility
Service UserVirtualAssets
“It’s our production
environment,self-scaling and
portable.”
“It’s our test environment, problems are
easy to recreate.”
“It’s our dev environment, available on
demand.”
TRANSFORM service cycles for business innovationincl. agile, devops, ‘build for failure’, app-focus, etc.
Business QA Operations
Common Environment and Processes
Private CloudRevolution:
Virtual Fabric
Virtual Business Services
Evolution: Automation
27 Copyright © 2011 CA Technologies
Public Cloud
TRANSFORM IT to be the broker of a ‘cloud of clouds’
Source: NIST Cloud Computing Reference Architecture Version 1, March 30, 2011
28 Copyright © 2011 CA Technologies
TRANSFORM to survive and thrive in a hybrid worldplatform-agnostic solutions, standards-based approaches
29 Copyright © 2011 CA Technologies
All trademarks, trade names, service marks and logos referenced herein belong to their respective companies
Why CA Technologies for Cloud Computing
Ensure business value of clouds with application and service focus
Accelerate private cloud with heterogeneous automation and virtual fabric from a single vendor
More safely leverage public clouds with the industry’s leading security and assurance solutions
Leverage VMware investment with diverse partnerships and hardware independence
30 Copyright © 2011 CA Technologies
31 Copyright © 2011 CA Technologies
CA cloud innovations: a few highlighted offerings
*Available as an on-demand cloud service from CA and/or its network of service providers
Map application transactions in real-time wherever they go — across your traditional, private cloud & IaaS deployments
Application Performance MgmtDesign and deploy n-tier virtual business services across private and public clouds*
AppLogicManage Agile development with technology used by salesforce.com to manage development of their SaaS apps*
Agile Vision
Traditional Services
VirtualAssets
PhysicalAssets
CloudServices
The BusinessIT
BrokeredCloud Services
Private/Hybrid Cloud Services
HyperformixEnsure application performance in virtual environments with predictive analytics for workload placement
Quickly project your identity controls in front of any cloud your business needs with multi-factor authentication*
ArcotStart monitoring the health of your AWS, Rackspace, Salesforce, Azure and Google Apps services in minutes*
Nimsoft
Service User
recap
USE
PROVIDE
TRANSFORM
32 Copyright © 2011 CA Technologies
PLAN, DESIGN, DELIVER
ASSSURE, SECURE, OPTIMIZE
— Management & security at the forefront
— Leverage & extend your IT investments
— Choose evolution, revolution, or both
— Choose leading cloud management and security solutions from CA Technologies
BrokeredCloud Services
Traditional Services
VirtualAssets
PhysicalAssets
CloudServices
Business IT
Private/Hybrid Cloud Services
User
thank you.
questions?