Ignite eCommerce growth with AWS
-
Upload
amazon-web-services -
Category
Technology
-
view
653 -
download
2
Transcript of Ignite eCommerce growth with AWS
© 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Dickson Yue, Solutons Architect
20 May
電子商務雲端新戰場
產業議程 - 電子商務、數位媒體與行銷
CELEBRATING THE 10TH
ANNIVERSARY OF AMAZON WEB
SERVICES
Global shoppers
http://www.pwc.com/gx/en/industries/retail-consumer/global-total-retail.html
The two highest-earnings income
brackets in each of our surveyed
countries plan to purchase from an
out-of-country online retailer in the
next 12 months for better prices
“Every 100ms delay
costs. 1% of sales”
Amazon Route 53 is designed to automatically route your users
to the optimal location depending on network conditions
54 edge locations
DNS
: myshop.com ?
: myshop.com ?: myshop.com ?
Choose a region near to the majority of your customers to
reduce data latency in your applications
54 edge locations
12 regions
Distribute content to end users with low latency, high data
transfer speeds with CDN - Amazon CloudFront
54 edge locations
12 regions
Serve from edge
Serve from origin
To further optimized for China user experience, provision
a separate stack for China for the best performance
54 edge locations
12 regions
Mobile Commerce
http://www.verifi.com/wp-content/uploads/2015/03/Verifi_State-of-
Mobile_FINALweb.pdf
Goldman Sachs predicts that mobile
commerce will account for almost half of all
e-commerce by 2018
http://www.pwc.com/gx/en/industries/retail-consumer/global-total-retail.html
6X
6X ?
visits
resources
Demand
Q1 Q2 Q3 Q4
1X Users
3X Users
6X Users
Time
Demand
On premise
AWS
AWS的資源能無縫滿足業務需求
DNS
UserCDN
Magento
RDS DB
Backup
Storage
S3Magento
Admin
Office
VPN Private
subnet
Public
subnet
Availability Zone
Private
subnet
Amazon
Route 53User
Amazon
CloudFront
Magento
RDS Master
(Multi-AZ)
Elastic
Load
Balancer
RDS Slave
(Multi-AZ)
Magento
Availability Zone Availability Zone
Backup
Storage
Static website
*.html, *.js *.css
*.jpg *.mp4
S3
Magento
Admin
Private
subnetOffice
VPN
Amazon
Route 53User
Amazon
CloudFront
Magento
RDS Master
(Multi-AZ)
Elastic
Load
Balancer
RDS Slave
(Multi-AZ)
Magento
Availability Zone Availability Zone
Backup
Storage
Static website
*.html, *.js *.css
*.jpg *.mp4
S3
Redis
Read ReplicaRedis
MasterMagento
Admin
Private
subnetOffice
VPN
Magento
Master Slave Master Slave Master Slave
Amazon
Route 53User
Amazon
CloudFront
Magento
RDS Master
(Multi-AZ)
Elastic
Load
Balancer
RDS Slave
(Multi-AZ)
Magento
Availability Zone Availability Zone
Backup
Storage
Static website
*.html, *.js *.css
*.jpg *.mp4
S3
Redis
Read ReplicaRedis
Master
RDS Read
ReplicaRDS Read
Replica
MagentoMagento
Magento
Admin
Private
subnetOffice
VPN
4Mcustomers
7Mvisits weekly
11Mmobile app
download
2Morders shipped
in Q4 2015
Before
• Platform fully hosted in a
physical DC in Hong Kong
• Average capacity utilization
10%
• Living dangerously during
peak
• Lead-time for adding peak
capacity – 10 days
ZALORA cloud journey
After
• Redshift for click stream
analysis
• “Double 12”: China's Cyber
Monday 6X
• Live migration in 30 days for all
8 sites
• Average 40% utilization;
• 4X capacity increase in 15
mins
”
“
Zalora Increases Capacity by up to 150% Using AWS
Founded in 2012, Zalora is a one-stop online fashion
retailer in South East Asia and Australasia.
Karthik Subramanian
Chief Technology Officer, Zalora
”
“ • Zalora needed a scalable, cost-effective infrastructure
to support long-term expansion plans
• The business is running its Australian and Taiwan
websites on AWS
• Increased capacity by 150 percent during sale
periods
• Supported 30 million unique users per month
• Brought new products to market up to three times
faster
AWS is focused on
innovation and on making life
easier for technology people.
It’s in their DNA.
Promotion at scale
Flash Sale
Pre-Order
Thanksgiving-Black Friday weekend Cyber Monday
Single’s day 光棍節
双十二
Challenge
10Xcustomers
Somerobots
Promotion at scale
Amazon
DynamoDB
Web
DMZ
public subnet
Cache
Private
private subnet
CDN
Edge
Lambda
CDN
Edge
WAF
WAF
X
• Bad request 4xx 5xx
• Rate limit
• SQLI XSS
Static website
*.html, *.js *.css
*.jpg *.mp4
S3
Simulation
Amazon
DynamoDB
Web
DMZ
public subnet
Cache
Private
private subnet
CDN
Edge
Lambda
CDN
Edge
WAF
WAF
X
• Bad request 4xx 5xx
• Rate limit
• SQLI XSS
Static website
*.html, *.js *.css
*.jpg *.mp4
S3
@200km/s
@60km/s
jmeter
jmeter
Regular montly
• Monthly ~750 hrs
• Web 1X traffic
• C4 large X 4 instance
• Cost
• 4 X 750
• = 3000 instances hrs
TCO
Flash sale
• Once off 12 hrs
• Web 10X traffic
• C4 large X 40 instance
• Cost
• 40 X 24
• = 960 instances hrs
10X traffic 32% monthly cost
2015年4月8日米粉節,有1460萬用戶參與了米粉節的狂歡,一共銷售超過200萬台手機和120萬的智慧型裝置與手機配件,實現了超過20億人民幣,創造了金氏紀錄,其中利用移動裝置操作佔比43.6%。
在金氏紀錄誕生的同時,是AWS為閃購活動保駕護航,並且幫助小米網節省了數十萬的IT費用。
http://cloud.51cto.com/art/201505/475517.htm
”
“
Security
PCI compliance
SSL certification
Every customer gets the same AWS security foundations
AWS maintains a formal control environment
• SOC 1 (SSAE 16 & ISAE 3402) Type II (was SAS70)
• SOC 2 Type II and public SOC 3 report
• ISO 27001, 9001 Certifications
• Certified PCI DSS Level 1 Service Provider
• FedRAMP Certification
• HIPAA and MPAA capable
AWS Foundation Services
Compute Storage Database Networking
AWS Global Infrastructure Regions
Availability Zones
Edge Locations
PCI Compliance service
Auto Scaling
AWS CloudFormation
Amazon CloudFront
AWS CloudHSM
AWS CloudTrail
AWS Direct Connect
Amazon DynamoDB
AWS Elastic Beanstalk
Amazon Elastic Block Store (EBS)
Amazon Elastic Compute Cloud (EC2)
Elastic Load Balancing (ELB) Amazon
Elastic MapReduce (EMR)
Amazon Glacier
AWS Key Management Service (KMS)
AWS Identity and Access Management
(IAM)
Amazon Redshift
Amazon Relational Database Service
(RDS)
Amazon Route 53 Amazon SimpleDB
Amazon Simple Storage Service (S3)
Amazon Simple Queue Service (SQS)
Amazon Simple Workflow Service (SWF)
Amazon Virtual Private Cloud (VPC)
支援商家或服務提供者處理、儲存和傳輸信用卡資料的服務已經過驗證,符合 PCI 標準。這些服務包含:
Mitigate attacks
ELB
DMZ
public subnet
CloudFront
Edge Location
WAF / Proxy
private subnet
Attack
users
WAF
ELB
Auto Scaling
frontend servers
private subnet
web app
server
AWS WAF
Encryption &
Key Mgmt
Server &
Endpoint
Protection
Application
SecurityVulnerability
& Pen
Testing
Advanced
Threat
Analytics
Identity and
Access
Mgmt
Network
Security
AWS Marketplace: One-stop shop for security tools
Amazon Certification Manager
Amazon Confidential
• Provision SSL/TLS certificates
from Amazon for use with AWS
resources• Elastic Load Balancing
• Amazon CloudFront
distributions
• AWS handles the muck • Key pair and CSR generation
• Managed renewal and
deployment
• Domain validation via email
Support for both SSL and HTTPs is provided
SSL Negotiation Policies provide selection of ciphers
and protocols that adhere to the latest industry best
practices
Optimized for balance between security and client
connectivity, as testing with Amazon.com traffic
SSL on ELB
Within 24 hours, 62% of load balancers
migrated to the latest SSL Negotiation
Policy, disabling SSLv3.
POODLE SSLv3
”
“
MyDress helps enable fashion labels in Japan, Korea,
and Taiwan to sell clothes and accessories to
customers in Hong Kong online.
使用AWS,我們並不需
要購足足夠的硬體來應
付尖峰需求,而在平時
閒置.
Edman Hung
IT Manager, Mydress
”
“ • MyDress一開始使用實體資料中心,但是難以支撐快
速業務增長的需求,2014年的一次DDoS攻擊導致服
務4小時不可用,業務流失高達52%
• 基於Magento的電商平台需要一個高可用、安全、可
延展和高性能的基礎設施平台,並能支持促銷等彈性
業務需求
• 使用AWS節省新台幣$2,200,000 (US$77,350)
AWS Platform For eCommerce
App
Backend
API
Gateway
Lambda
CDN
CloudFront
Mobile
AppsAnalytics
RedShift
Data
Storage
S3
Machine
Learning
Machine
Learning
DynamoDB
AWS Global Infrastructure APN Partner Solutions
KinesisMobile
Push
EMR
Mobile
Analytics
Device farm
Cache
Memcache
Redis
Web
Load
balancer
Compute
Auto
scaling
Networking
DNS
Virtual
private
network
RDS
MySQL
RDS Oracle
AWS WAF