Post on 07-Nov-2014
description
1 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
2 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Oracle Enterprise Architect Club, Nigeria
Cloud Architecture Framework Principles and Best Practices
Peter Boglo, Technology Pre-Sales Consultant Oracle
3 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
The following is intended to outline our general product
direction. It is intended for information purposes only, and
may not be incorporated into any contract. It is not a
commitment to deliver any material, code, or functionality,
and should not be relied upon in making purchasing
decisions. The development, release, and timing of any
features or functionality described for Oracle’s products
remains at the sole discretion of Oracle.
4 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Program Agenda
• Background
• Cloud Architecture Framework, Principles &
Best Practices
5 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Background
6 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Summary
For more information on Oracle Reference Architecture (ORA), please visit http://www.oracle.com/goto/itstrategies
Cloud – Not a new
technology, but a new
model (Business & IT)
Cloud – Tremendous
benefits, but requires
change!
Oracle Cloud Reference
Architecture – helps you
manage and govern this
change and accelerate Cloud
Adoption!
Oracle Products – enable you
to build enterprise-grade
private and public Clouds.
© 2010 Oracle September, 2010 v6 7
NIST Definition of Cloud Computing
Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.
This cloud model promotes availability and is composed of:
Source: NIST Definition of Cloud Computing v15
3 Service Models
• SaaS
• PaaS
• IaaS
4 Deployment Models
• Public Cloud
• Private Cloud
• Community Cloud
• Hybrid Cloud
5 Essential Characteristics
• On-demand self-service
• Resource pooling
• Rapid elasticity
• Measured service
• Broad network access
© 2010 Oracle September, 2010 v6 8
Enterprise Technology Strategy for Cloud – Approach
• Assumption
- The architecture for XaaS/Cloud is ‘emerging’, i.e., there is little consensus in the
industry on architectural capabilities & features.
• Goal of this architecture
- Define key entities (resource pools, control plane, deployable entities, etc.),
functionality (service provisioning, user registration, etc.), design principles, (e.g.,
separation of resource and cloud management), highlight relevant standards
(Oracle Cloud API / DMTF use cases) and integration with key product
architectures
• Constraints - Focus on provisioning PaaS on IaaS
- Focus on enterprise cloud (not public, some hybrid)
- Primary focus on operator use cases
© 2010 Oracle September, 2010 v6 9
Key Industry Standards and Collateral
• NIST – Definition of Cloud Computing
- http://csrc.nist.gov/groups/SNS/cloud-computing/cloud-def-v15.doc
- Not all characteristics needed equally by all clouds
• DMTF – Cloud computing standards
- http://dmtf.org/standards/cloud
- See especially descriptions of roles and services model
• Cloud Computing Use Case Discussion Group
- http://groups.google.com/group/cloud-computing-use-cases
- More so ‘business scenarios’ than functional use cases
• Oracle Cloud API - http://www.oracle.com/technetwork/topics/cloud/oracle-cloud-resource-model-api-154279.pdf
10 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Cloud Architecture Framework
11 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Artifact: Business Model
11 11
SU
PP
LY
D
EM
AN
D
12 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
IT Strategies from Oracle
Content Definition Framework
Challenges:
• Define an approach to incrementally deliver collateral in a consistent manner over time
• Define an extensible approach to integrate current technology strategies incrementally and incorporate new technology strategies and
solution designs as they emerge
• Define a detailed and consistent reference architecture for developing and integrating solutions based on current technologies from Oracle and other vendors
Tech
no
logy
Per
spec
tive
s
Cloud Computing
SOA
BPM
EDA
BI
…
Industry
Pers
pectiv
es
Communications
Financial Services
Utilities
Public Sector
Life Sciences
…
Oracle Reference Architecture Enterprise Technology
Strategies Enterprise Solution
Designs
Business Services
Application Infrastructure
Interaction
Information Management
Shared Infrastructure
Ente
rpri
se D
eve
lop
me
nt En
terp
rise Se
curity
Ente
rprise
Man
agem
en
t
Business Processes
Information Assets
13 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
How do they map to Oracle Architecture
Framework
14 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Cloud Drivers
$ Green
Reduce time to Market
Change IT Cost Structure
Reduce Complexity
RMS
TopPlan
RDW
MAS
RDM
RDM
RDM
MAS
(Tandem)
RTE(Z)
Tandem
AIM
Sales
Audit
TMS
Sorter
PeopleSoft
(FMS)
PeopleSoft
(HR)
Stores Stores Stores Stores Stores
Credit
Switch
Credit
Authorizer
Tandem
(Fine
Jewlry)
Business
Warehouse
EJ
Aspect
ReconNet
EquityEdge
BlueBird
Planalytics
Scale on Demand
Optimizing dev / test
environments Metering and Chargeback
Virtualization
Strategic
Tactical
15 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Cloud Architecture Guiding Principles
Predictable Subscription Model Predictable Performance
Leverage existing investments Automate Everything
Cloud Management
Cloud Conceptual View Cloud Consumer
Cloud Broker
Access Infrastructure
Cloud
Brokerin
g
Services
IaaS
PaaS
SaaS
Cloud Provider
Physical Resources Blades Disk Engineered Others
Resource Abstraction Compute Storage Others
Facilities Real Estate Utilities Cooling Others
Cloud M
anagement
Security and Policy Mgmt
Cloud Business
Mgmt
Cloud Operations
Orchestration
Design-time
Cloud Architecture - Logical View
Deployable Entities
Servic
es
PaaS Container
IaaS Storage Network Server
SaaS Application
Queue
Business Process Business Service
Interfaces Portals Native Protocols Custom UIs Self-Service APIs A
ccess
Network Perimeter Security Proxy Naming Balancing
Resou
rces
Physical Pools Disks Servers Engineered
Logical Pools Networks Compute Storage External Clouds
Legacy
Partners
Other
Data
Pool Managers
Business Mgmt
Customer, Contracts,
Revenue Mgmt
Orchestration Orchestration,
Mediation
Security and Policy Mgmt
Security, Policy Mgmt, Security Services
User Interaction / self service
Clo
ud
Man
ag
em
en
t
Operations
Service, Lifecycle,
Configuration,
Performance,
Monitoring
Design-time Model Mgmt, Tools
Other
Facilities Cooling Real Estate Utilities Other
Cloud Management Capabilities Cloud Business Management
Customer Management
Contracts Management
Revenue Management
Customer Mgmt Portal Customer
DB
Contracts Repository
Definition Discovery Contracts Portal
Pricing
SLA
Rating
Discounts Metrics
Finance DB
Billing Payment
Reporting Chargeback Collection B2B Interface
Opportunity Management
Account Management
Customer Provisioning
Relationship Management
Orchestration
Workflow
Event Processing
Mediation
Design-time
Solution Catalog
Model Management Validation
Federation Deploy Package
Model Design Introspection
Cloud Management
Security & Policy Management Security Management
Security Services
Identity Entitlements
Delegated Admin Certificates
Risk Analysis
Authentication
Authorization
Federation
Role Mapping Encryption
Auditing
Security Store
Policy Store
Fraud Detection
Policy Management Attachment
Deployment
Assessment
Authoring Compliance
Enforcement
IVR Interface
Cloud Operations
Service Management
Lifecycle Management
Monitoring
Performance Management
Configuration Management
Service Definition
Metering Forecasting
Service Discovery
SL Authoring
Abstraction
Capacity Management
Asset Discovery Asset Mgmt
Patch Mgmt
Release Mgmt
Knowledge Mgmt
Compliance Change Control
SL Management
Biz Service
User Experience
Diagnostics Problem/Incident
Biz Transaction
Provision Management
Resource Mgmt
Administration
Dashboard
Diagnostics
Query
Reporting
Topology Viewer
Management Repository
Self Service
Repositories User Interaction
Repository
Cloud Business Management
Cloud Business Management
Customer Management
Contracts Management
Revenue Management
Customer Mgmt Portal
Customer DB
Contracts Repository
Definition Discovery Contracts
Portal
Pricing
SLA
Rating
Discounts Metrics
Finance DB Billing Payment
Reporting Chargeback Collection B2B Interface
Opportunity Management
Account Management
Customer Provisioning
Relationship Management
IVR Interface
Repositories User Interaction
Security and Policy Mgmt Cloud Business
Mgmt
Cloud Operations
Cloud Management
Orchestration
Design-time
Cloud Operations
Cloud Operations
Service Management
Lifecycle Management
Mo
nito
ring
Performance Management
Configuration Management
Service Definition
Metering Forecasting
Service Discovery
SL Authoring
Abstraction
Capacity Management
Asset Discovery Asset Mgmt
Patch Mgmt
Release Mgmt
Knowledge Mgmt
Compliance Change Control
SL Management
Biz Service
User Experience
Diagnostics Problem/Incident
Biz Transaction
Provision Management
Resource Mgmt
Administration
Dashboard
Diagnostics
Query
Reporting
Topology Viewer
Self Service
Repositories User Interaction
Management Repository
Security and Policy Mgmt Cloud Business
Mgmt
Cloud Operations
Cloud Management
Orchestration
Design-time
Monitoring Templates
Policy Library
Corrective Actions
Software Library
Historical
Monitoring Data
Deployment Procedures
Management Repository
Reports Configurations
Job Library
Service Level Rules
Security and Policy Management
Security & Policy Management
Security Management
Security Services
Identity Entitlements
Delegated Admin Certificates
Risk Analysis
Authentication
Authorization
Federation
Role Mapping Encryption
Auditing
Security Store
Policy Store
Fraud Detection
Policy Management
Attachment
Deployment
Assessment
Authoring Compliance
Enforcement
Security and Policy Mgmt Cloud Business
Mgmt
Cloud Operations
Cloud Management
Orchestration
Design-time
Orchestration and Design-Time
Orchestration
Workflow
Event Processing
Mediation
Design-time
Solution Catalog
Model Management
Validation
Federation Deploy Package
Model Design Introspection
Repository
Security and Policy Mgmt Cloud Business
Mgmt
Cloud Operations
Cloud Management
Orchestration
Design-time
Sample Use Cases
Hybrid Cloud Use Cases Lifecycle distribution
Dev/test cloud the Common one
Functional distribution Public & private services
a Likely one
Workload distribution ‘Cloud bursting’
the Hard one
It is common when ‘Hybrid’ is mentioned to think of …
• Simple Dev/test or
• Complicated Cloud scaling
• also consider functional distribution architecture
Platform as a Service Architectures
Hypervisor
OS OS OS
Server Server
Consumers
OS
Consumers
Server Server
OS
Server Server
Consumers
A. Server Consolidation B. OS Consolidation C. Platform Consolidation
P P Platform P P Platform Platform
PC PC PC PC PC PC PC PC PC PC PC PC
OS OS
PC – Platform Component
Oracle Cloud Components
Deployable Entities
Serv
ices
PaaS Container
IaaS Storage Network Server
SaaS Application
Queue
Business Process Business Service
Interfaces Portals Native Protocols Custom UIs Self-Service APIs Access
Network Perimeter Security Proxy Naming Balancing Resourc
es
Physical Pools Disks Servers Engineered
Logical Pools Networks Compute Storage External Clouds
Legacy
Partners
Other
Data
Pool Managers
Business Mgmt
Customer, Contracts,
Revenue Mgmt Orchestration Orchestration,
Mediation
Security and Policy Mgmt Security, Policy Mgmt, Security
Services
User Interaction / self service
Clo
ud M
anagem
ent
Operations Service, Lifecycle,
Configuration,
Performance,
Monitoring
Design-time Model Mgmt, Tools
Other
Facilities Cooling Real Estate Utilities Other
Product Mapping to Logical View Oracle WebCenter, Oracle
Enterprise Manager
Fusion Middleware
Oracle Applications
(Fusion & Apps Unlimited)
Exa
da
ta, E
xa
logic
Oracle VM for x86 and SPARC, ZFS Storage, Sun
SuperCluster, Sun Blade Ethernet Switch
Identity & Access
Manager, …
Billing & Revenue
Management,
OEM, OER
Oracle Enterprise
Manager
Oracle
Database
Virtual Assembly
Builder, OEM
OEM, BPM Suite,
OSB Oracle Solaris, Oracle Linux
Oracle Resource Model API
Oracle IdM, OAM, Directory Services Plus, HTTP Server
Exa
da
ta, E
xa
logic
Cloud Business Management Customer Management
Contracts Management
Revenue Management
Customer Mgmt Portal Customer
DB
Contracts Repository
Definition Discovery Contracts Portal
Promotion
SLA
Pricing
Discounts Metrics
Finance DB
Billing Payment
Reporting Invoicing BI
Chargeback Taxation Collection
B2B Interface
Opportunity Management
Account Management
Customer Provisioning
Relationship Management
Orchestration
Workflow
Event Processing
Mediation
Design-time
Solution Catalog
Model Management Validation
Federation Deploy Package
Model Design Introspection
Cloud Management
Security & Policy Management Security Management
Security Services
Identity Entitlements
Delegated Admin Certificates
Risk Analysis
Authentication
Authorization
Federation
Role Mapping Encryption
Auditing
Security Store
Policy Store
Fraud Detection
Policy Management Attachment
Deployment
Assessment
Authoring Monitoring
Enforcement
IVR Interface
Cloud Operations Service Management
Lifecycle Management
Monitoring
Performance Management
Configuration Management
Service Definition
Metering Forecasting
Service Discovery
SL Authoring
Abstraction
Capacity Management
Asset Discovery Asset Mgmt
Patch Mgmt
Release Mgmt
Knowledge Mgmt
Compliance Change Control
SL Management
Biz Service
User Experience
Diagnostics Problem/Incident
Biz Transaction
Provision Management
Resource Mgmt
Administration
Dashboard
Diagnostics
Query
Reporting
Topology Viewer
Management Repository
Self Service
Repositories User Interaction
Repository
Product Mapping - Capabilities
Introspection
WebC
en
ter
Oracle Applications
(Fusion & Apps Unlimited),
Oracle Identity Manager
Oracle Billing & Revenue
Management, Oracle
Enterprise Manager
Oracle Enterprise Manager
Oracle Enterprise Manager, Oracle
Enterprise Repository
OID - Identity Manager, OAM –
Access Manager, OPSS –
Platform Security Services,
OES – Entitlement Server,
OAAM – Adaptive Access
Manager
Oracle Enterprise Manager,
Oracle BPM Suite, Oracle
Service Bus
Oracle Virtual Assembly
Builder, Oracle Enterprise
Manager
Oracle Database,
RAC, Oracle
Enterprise
Repository
Oracle Exalogic Elastic Cloud Oracle Exalogic Elastic Cloud Oracle Exadata
Distributed Deployment
Engineered Systems Deployment
31 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Q&A
32 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
Other Resources
• http://www.slideshare.net/OTNArchbeat/oracle-cloud-
reference-architecture
• http://www.slideshare.net/OTNArchbeat/oracle-cloud-
reference-architecture-12943788
• http://www.oracle.com/technetwork/topics/entarch/oracle-
ra-cloud-foundation-r3-0-
1414991.pdf?ssSourceSiteId=opn
• http://www.intelcloudbuilders.com/docs/icb_ra_oracle.pdf
33 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8
34 Copyright © 2012, Oracle and/or its affiliates. All rights
reserved.
Insert Information Protection Policy Classification from Slide 8