WAF(Web Application Firewall) Cloud Computing Service Duk Soo Kim, [email protected] 2010.06.01.
Smarter Planet: Using cloud computing to deliver ... Computing for Fortune 100.pdfthe enterprise and...
Transcript of Smarter Planet: Using cloud computing to deliver ... Computing for Fortune 100.pdfthe enterprise and...
© 2010 IBM Corporation
IBM cloud computing
© 2010 IBM Corporation
Smarter Planet: Using cloud computingto deliver innovation and efficiencyand the role of data…
Document number
Anant JhingranCTO, Information Management
© 2010 IBM Corporation
IBM cloud computing
2
There are three ways to deliver IT capabilities
…including cloud computing, a new modelfor delivering and consuming IT capabilities
Software, hardwareand services
Preintegrated systemsand appliances
Provided asservices…
© 2010 IBM Corporation
IBM cloud computing
3
CloudWorkload Optimized Systems
Warehousing Transactional Map-Reduce
Vertically Integrated
~10-50 servers per system/box
“Do not touch the system/box -- what aparticular system does internally isnobody’s business and its MIPS/storageare guarded by hard boundaries.”
System close to 100% utilized by runningone or two workloads
Horizontally Pooled
~500-1000 servers in the cloud
“Come one, come all.” The resources arefor everyone’s to use
System close to 100% utilized by running alarge number of workloads
Storage
Servers
Databases
App-tiers
© 2010 IBM Corporation
IBM cloud computing
4
There is a spectrum of deployment options for cloud computing
Private PublicHybridIT capabilities areprovided “as a service,”over an intranet, withinthe enterprise andbehind the firewall
Internal andexternal servicedeliverymethods areintegrated
IT activities /functions are
provided “as aservice,” over the
Internet
Third-partyoperated
Third-party hostedand operated
Enterprisedata center
Enterprisedata center
Private cloud Hosted privatecloud
Managedprivate cloud
Enterprise
Member cloudservices
A
Enterprise
B
Public cloudservices
A
Users
B
© 2010 IBM Corporation
IBM cloud computing
55
Impact of CloudOn Consumer
(Pain)
In order to understand workloads, we need to look at the pain vs.gain equation for the consumer of Public Cloud Services
What gain does theconsumer get from theprovider?
What pain does theconsumer incur to utilizethose services?
Lower costs due tostandardization andbetter utilization
Business Resiliency
“Pay as you go”benefits for bursty use
Better Data Security
Ecosystem Availability andNetwork Effects
Conformance to Standardization
Integration Complexity
Latency and Data Transfer
Data and Business Policies
For a given workload, if Gain > Pain (by some factor), then it makes sense to utilize cloud for its deliveryProvider can be “internal IT”
We assume that the workload ends up on the right architecture, otherwise the pain will be too high
Benefits of CloudDelivered By Provider
(Gain)
© 2010 IBM Corporation
IBM cloud computing
66
External Cloud Usage Patterns Will Depend on Relative Level ofGain vs. Pain of a Cloud Delivered Service
Lower Gain From Clouds
Higher Gain From Clouds
Small Scale [incl. Start-ups], Ephemeral or High Demand FluctuationsVariable Model Less Expensive Even With Premium; Cost Allows Basic Function Accessibility to SME
High Amount of Data Transfer RequiredNetwork BW charges or Latency wipe out benefits for external cloud Large Enterprise with Long-Running, Stable Demand
Lower Cost Possible With Optimized Traditional Model
Lower Pain ofCloud Delivery
Higher Pain ofCloud Delivery
Self-Contained Applications/ServicesLittle or No Integration Needed; Easy to Schedule
Legacy or Highly Complex Services;Heterogeneous Services
Not Service Oriented or High Benefit to specializedinfrastructure for components of solution
Workloads Amenable to Standardization, Multiplexing andConforms to Cloud Architecture
Significant Application Redesign to Conformto Cloud Architecture
Moderately Complex Servicese.g. Application Development & Test
Additional Wild Card:Level of Control Needed/Fear of Lock-In
Security & BusinessResiliency Tradeoffs
Ecosystem Availability & Network Effects for Workload
© 2010 IBM Corporation
IBM cloud computing
7
Workloads ready for cloud computing
AnalyticsData mining, text mining or
other analyticsData warehouses or data
martsTransactional databasesBusiness servicesCustomer relationship
management(CRM) or sales forceautomation
E-mailEnterprise resource planning
(ERP) applications Industry-specific applicationsCollaborationAudio/video/Web
conferencingUnified communicationsVoIP infrastructure
Desktop and devicesDesktopService/help deskDevelopment and testDevelopment environmentTest environmentInfrastructureApplication serversApplication streamingBusiness continuity/
disaster recoveryData archivingData backupData center network capacitySecurityServersStorageTraining infrastructureWide area network (WAN)
capacity
Source: IBM Market Insights, Cloud Computing Research, July 2009.
© 2010 IBM Corporation
IBM cloud computing
8
Public and Private Clouds are preferred for different workloads
Database- and application-orientedworkloads emerge as most appropriate
Data mining, text mining, or other analytics Security Data warehouses or data marts Business continuity and disaster recovery Test environment infrastructure Long-term data archiving/preservation Transactional databases Industry-specific applications ERP applications
Infrastructure workloadsemerge as most appropriate
Audio/video/Web conferencing Service help desk Infrastructure for training and
demonstration WAN capacity, VOIP Infrastructure Desktop Test environment infrastructure Storage Data center network capacity Server
Source: IBM Market Insights, Cloud Computing Research, July 2009. n=1,090
Top public workloadsTop private workloads
© 2010 IBM Corporation
IBM cloud computing
9
Hybrid Cloud Management, Security and Integration
From the Enterprise Client’s perspective:
Seamless integration of enterprise management withworkload running off-premise on clouds
– Visibility of software applications and services(monitoring, events, availability, performance)
– Control of identity, data security, governance, andcompliance
– Automation of service definitions, policy basedworkload offloading, P2C/V2C cloud conversion,elastic scaling of CCMP, availability and disasterrecovery SLAs
Security for Hybrids– Control security and resilience of services (identity
management, compliance, isolation) Enterprise to Cloud Integration
– Secure and efficient data exchange across theenterprise and clouds
– Secure business application connectivity andgovernance
Application and Workload migration– Tools to support the migration of workloads to cloud
Enterprise Resources
Public Cloud
Touchpoint
Pipe
Transformation
Private Cloud
Federated VirtualService Domains
BusinessApplications& Information
Enterprise Management of Cloudsoftware, applications, workload
Secure Pipe
Off-premiseshared
services
Private sharedservices
© 2010 IBM Corporation
IBM cloud computing
10
Hybrid Cloud Management, Security & Connectivity in a Picture
On-premise businessapplications & information
Enterprise Infrastructure &Private Cloud
Cloud Integrator: SecureConnector, Business
Application Integration,Information Brokering,
Monitoring & Management,Security Federation
Public Cloud [SaaS, IBM Cloud,other Public Cloud]
Off-premise shared services
Off-premise businessapplications &information
Governance
Management
Integration
SecurityPrivate sharedservices
© 2010 IBM Corporation
IBM cloud computing
11
A framework for cloud computing
Bus
ines
s pl
anni
ng /
lifec
ycle
man
agem
ent s
ervi
ces
Shared middleware services
Infrastructure services
Industry-specific services
Inte
grat
ed s
ervi
cem
anag
emen
t and
sec
urity
Cloud-based businesssolutions for industry-specific processes
Virtualized and optimizedsystems storage and
networking
IT services that are integratedwith cloud services
Application infrastructure fordelivering cloud services
Business servicesdelivered via the cloud Integrated capabilities
for visibility, control,automation and securityof cloud services
Capabilities to define anenterprise architecture for
business planning/alignmentand tools for managing thelifecycle of cloud services
Processservices
Collaborationservices
Analyticsservices
Existing services andthird-party services
© 2010 IBM Corporation
IBM cloud computing
12
Serv
ice
Del
iver
yPo
rtal
BSS – Business Support Services
OSS – Operational Support Services
Reporting & AnalyticsMetering
Serv
ice
Dev
elop
men
tPo
rtal
Common Cloud Management Platform
Security & Resiliency
CloudService
Offerings
Service Provider Portal
Service Business Manager Service Operations Manager
API
Use
r Int
erfa
ce
API
The Common Cloud Platform
Virtualized Infrastructure – Server, Storage, Network
“Common Cloud Service Platform - PaaS”
Unified servicemanagement drivingdelivery economics
•Emerging andexisting programmingmodels•Hybrid Environments
Loosely Coupled Workloads
Analytics Workloads
Storage/Data Integration Workloads
Transactional Workloads
PaaS Tooling – Integrated Developer and Administrator Tools,
BSS plugin - PaaS specifc user roles OSS plugin - Service Templates,Management Plans
© 2010 IBM Corporation
IBM cloud computing
1313
Database Multi-Tenancy for the Cloud
Tenant A
Tenant B
App Server
Shared Tables
(economic)
Separate Instances/Databases
(deluxe/advanced)
Separate Tables
(intermediate)
Tenant A
Tenant B
Multi-tenant App
App Server
Multi-tenant App
Hig
her Q
uery
Opt
imiz
atio
n/ru
ntim
eC
ompl
exity
,
Hig
her S
ecur
ity W
orrie
s
Multi-tenant App
App Server
Higher Multitenancy, better resourceutilization
© 2010 IBM Corporation
IBM cloud computing
14
Ready-to-consume cloud services from IBM
Computing on DemandInfrastructure Compute
IBM Smart Business on the IBM Cloud
Business processes BPM BlueWorks Smart business expensereporting on the IBM Cloud
Collaboration IBM LotusLive
Desktop and devices IBM Smart Business Desktop on the IBM Cloud IBM Smart Business End User Support
Development and test IBM Smart Business Development and Test on the IBM Cloud
Infrastructure storage IBM Information Protection Services
Software as a Service IBM Tivoli Live IBM WebSphere Application
Server IBM WebSphere sMash
IBM WebSphere Portal IBM DB2 IBM Informix Dynamic Server Lotus Domino Lotus Web Content Mgmt
© 2010 IBM Corporation
IBM cloud computing
15
What is coming
Infrastructure as a Service Shared Middleware view
– Pattern deployment of applications– Stood up Services (such as Database)
An ever increasing software and solutions consumable in public and private clouds
© 2010 IBM Corporation
IBM cloud computing
16
16
WAS 5
WAS 5
DB2 8
DB2 8 WebLogic x
MySQL
WAS 6
WAS 6
DB2 9
DB2 9
App1 App2 App3
After the Infrastructure is virtualized, there is still a lot of variability and complexity in theapplications, and costs due to that. Standardization and Shared Services addresses thosecosts.
WAS 6
WAS 6
DB2 9
DB2 9 WAS 6
DB2 9
WAS 6
WAS 6
DB2 9
DB2 9
App1 App2 App3
Shared VirtualizedHardware
Shared VirtualizedHardware
Standardize
“Pattern”Deployment(butindependentstacks)
WAS 6
WAS 6
WAS 6
WAS 6
WAS 6
App1 App2 App3
Shared VirtualizedHardware
DB2-as-a-Shared-Service
LeverageShared Service
Still stovepipesReduced Complexity throughstandardized images andpatterned deployment
Increased Reuse throughshared middleware service
Pattern1 Pattern2
Pattern1 = clustered app-tier + HA data-tier Pattern2 = single app-tier, single data-tier
Value Beyond the Infrastructure Layer to Shared Middleware
© 2010 IBM Corporation
IBM cloud computing
17
Example of a Cluster Pattern
EAR DBTWO (Primary)
DBTWO (Standby)EAR
WXSCatalog
WXSCatalog
WXSCatalog
haproxy
haproxy
EIP1
EIP2
WAS
WAS
EAR
WAS
(For Session replication)
© 2010 IBM Corporation
IBM cloud computing
18
Information Management is all about this…
Flexible Architecture
BusinessOptimization
Customer & ProductProfitability
Multi-channelMarketing
Workforce Optimization
Dynamic Supply Chain
Financial Risk Insight
SPSS
© 2010 IBM Corporation
IBM cloud computing
19
So what part of Information Management should run in the cloud?
CloudPrivate,Hosted,PublicHybrid
Enterprise
Data Collectors
Collect & Move Data
Enterprise Complexity
Off- Premises, Relevant Data
CustomerData
NewsFeed / Wires
BusinessSolutions
TargetedWebsites
InformationExtraction
SocialMedia
Amazon, IBM or anyvirtualized Public or PrivateCloudFlexible Architecture
BusinessOptimization
Customer & ProductProfitability
Multi-channelMarketing
Workforce Optimization
Dynamic Supply Chain
Financial Risk Insight
© 2010 IBM Corporation
IBM cloud computing
20
There are people who are claiming that “cloud” databasesare completely new
BigTable
Drizzle
Voldemort Cassandra
Flurry of activity in this space motivated by– Content Centric Applications– But also a license to do something new
We are also investigating, but today I will tell you that you can go a looong way with what you have and what we have!
HBase
Hadoop
© 2010 IBM Corporation
IBM cloud computing
21
DB2 on Cloud
DB2 and the DB2 development environment are on the cloud today.
Particularly attractive for development and test users. Fastdeployment, pay-as-you-go pricing, as many instances as you need atno extra cost.
Public cloud and private cloud deployments are in production.
All of the attributes of DB2 are present on the cloud version.
Low Operational CostsAutomate DBA tasks,
optimize storage,leading performance.
ReliabilityStrong heritage ofproven reliability,
availability,and security.
Ease of UseDeveloper support,
XML datamanagement,
virtual appliances.
Optimized… to lower administration, storage, development,and server costs while delivering top performancefor OLTP and analytical workloads
“Middleware on steroids: Another significant sign that IBM's‘Got cloud’ is its new offering of middleware products such asDB2, WebSphere, and Lotus offered as Amazon MachineImages (AMI'). With these new deliverables, a developer canfire up Amazon cloud instances and start workingimmediately with IBM's enterprise middleware softwareproducts.” -- John Willis SearchCloudComputing.com
© 2010 IBM Corporation
IBM cloud computing
22 22
Analytics Available on Cloud
Cognos Many Eyesvisualization andsocial networking
! Blue Insight : the largest private cloud computing environment for business a nalytics that will provide more than 200,000 IBMers with the ability to extract information from around the world t o make smarter decisions through information empowerment – no matter where the data resides
! IBM Smart Analytics Cloud offering : based on the same architecture as Blue Insight, this solution will enable large enterprise clients to build their own private cloud environment with easily consumable business intelligence services, system and software
The Smart Analytics Cloud enables IBM to deliver business intell igence (BI) with greater efficiency across the enterprise
Smart Analytics (Private) Cloud in the IBM corporationOur commitment to informed decision making led us to consider pr ivate cloud delivery of Cognos via System z, which is the enabling fou ndation that makes possible +$20M savings over 5 years .
-IBM CIO Office
In the spotlight
Content Analytics
Cognos hosted WorkforcePerformance (MBPS) - available
Cognos 8- Smart Analytics Private Cloud - available- On-Premise Standardization - available- OEM Cloud Enablement - available- Developer Try and Download
Cognos On DemandEarly Idea to host C8 instancesOn Compute Cloud forMBPS and GBS engagements
© 2010 IBM Corporation
IBM cloud computing
23
In the end cloud will enable new insights, not just cheaper…
Online Transaction
Processing
SystemOnline Transaction
Processing
SystemContinuous arrival of
high volumeinformation (evolving,
highly variant)
E.g., clickstream data,location tracking data,
market data , WebData
(struct-/semi--/un-structured)
Web Buzz data
About products/companies
(for reputation analysis)
Auto/Cross
Correlation
Analytics,
Predictive Analytics
100’s TBs,
PetaBytes
Deep & Wide
analytics
Market Data Feeds
Weather Data
Reference Data
Dashboards
EmbeddedAnalytics
FinancialPlanning
Mash ups
Scorecards
© 2010 IBM Corporation
IBM cloud computing
24
We are actively seeking partners and customers
To build on our platform To consume our platform Both private and public models