introduction to cloud computing and open source solutions
DESCRIPTION
Introduction to Cloud Computing and Open Source solutionsTRANSCRIPT
“Cloud Computing and open source solutions”
By Amine AbidaPreviously ENIT student & G²FOSS member and ex-president
Ecole Nationale d’ingénieurs de Tunis08/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Introduction
• About me• Where did I worked on Cloud solutions?
208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Foretaste!
• Cloud Computing? Why it’s called cloud?
308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Distributed systems
08/11/2014 4
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Distributed systems
• A system where its components are connectedand dealing together using message exchange.
• The system is viewed to the user as a single machine.
• Examples: Internet, Intranet, Cloud, …
508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Master/Slave architecture
608/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Client/Server architecture
708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Peer to peer architecture
808/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Totally centralized P2P
908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Index centralized P2P
1008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Totally dicentralized P2P
1108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cluster architecture
• Grouping machines to form a unique unit.• Many machines could execute the same
service.• Good for extending the network by simply
adding new machines.
1208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Publish/Subscribe architecture
1308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Back to the cloud…
08/11/2014 14
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Back to the Cloud: Definition
• “Hardware or software provided as a service and accessible through the internet”.
1508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Official definition
• How did the NIST define it?
1608/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Official definition
1708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud advantages
1808/11/2014
EconomicEasyness
Data storage
Security updates
Cheaper software
On demand
Accessibility
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud constraints
Excellent internet bandwidth
TransportabilityUnknown storage place
1908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud risks in enterprise level
• Sharing authentication certificates.• Protecting and securing enterprise sensitive
data.• Cloud service provider is taking care of
enterprise identity manager.• Need trust while processing enterprise data.
2008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud new needs
• Simplify– Identity management.– Certificates management.
• Provide– Warranties for processing data.
• Protect– Private data, control protection system.
• Build trust– More audits, official certifications.
2108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud offer types
2208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
IaaS
2308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
PaaS
2408/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
SaaS
2508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud offer types in details
08/11/2014 26
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud model types
2708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Going deeper: Virtual machines
08/11/2014 28
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Virtual machines
2908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Going deeper: Identity management
08/11/2014 30
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Identity service
3108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OAuth 2.0
3208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
SAML SSO
3308/11/2014
• SSO = Single Sign On
Amine Abida Ecole Nationale d’ingénieurs de Tunis
SAML SSO
3408/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenID
3508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Going deeper: Data replication
08/11/2014 36
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Data replication
3708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
RAID
3808/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Going deeper: Security in the cloud
08/11/2014 39
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Security in the Cloud (1)
• The cloud present several security issues.• The technology is still in research phase more
than being commercialized.• What are the specific security issues?
4008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Security in the Cloud (2)
• No technical solutions to apply writtenregulations for protecting data in the cloud.
• No warranty that the cloud service provider would not spy on private data.
• Respect the difference of regulations from one country to another.
4108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Security in the Cloud (3)
• Using virtual machines on the cloud to attackother systems (especially DoS attacks).
• Warranty on defining access control policies.• No system isolation when a server is infected.
4208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud standarisation initiatives
Open Cloud Manifesto
Cloud Security Alliance Jericho Forum
4308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Cloud solutions providers
08/11/2014 44
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Essential Cloud service providers
4508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Amazon Web services
4608/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Amazon EC2
4708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Google App Engine
4808/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Google Apps for business
4908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
SAP Cloud solutions
5008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Microsoft cloud solutions
5108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Microsoft cloud solutions: Azure
5208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Open source solutions
5308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Openess in the cloud
08/11/2014 54
Amine Abida Ecole Nationale d’ingénieurs de Tunis
08/11/2014 55
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Definition
• The most famous open source cloud software.• Licensed by Apache 2.0 license
=> Not completely free software.
5608/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack general architecture
5708/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Keystone
5808/11/2014
• OpenStack’s identiy service• Let’s see a scenario…
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Keystone
5908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Swift
6008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Horizon
6108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Horizon
6208/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Neutron
• Neutron is the service responsible for providing network connectivity to virtual machines created by OpenStack.
6308/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Nova
• Nova is the core of OpenStack for managing the virtual machines with Keystone identity provider and the stored images.
6408/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
OpenStack: Glance
• Glance is the provider of images for the creation of the virtual machines.
6508/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Launching instances
08/11/2014 66
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Launching instances
08/11/2014 67
Amine Abida Ecole Nationale d’ingénieurs de Tunis
What did we see?
• Distributed systems, main architectures• Cloud computing in details
– Definition, advantages, constraints, …– Layers, offer types– Identity management– Data replication– Security in the cloud
• Cloud solutions providers• OpenStack introduction
6808/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
What can you do to explore more?
• Install cloud software on virtual machines in your laptop.
• Use open cloud platform to develop cloud applications.
• Subscribe to some trial services of famous cloud providers.
6908/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Next possibilities for learning
• How I could continue to work with you:– Install OpenStack services to construct our own
cloud.– Develop JAVA applications that works with
OpenStack services.– Develop and deploy Java applications in SAP HANA
Cloud Platform.
7008/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Discussion / Q&A
7108/11/2014
Amine Abida Ecole Nationale d’ingénieurs de Tunis
Thanks!
08/11/2014 72
Amine Abida Ecole Nationale d’ingénieurs de Tunis
About this presentation
7308/11/2014
The content of this presentation is theproperty of the General and GeographicFree and Open Source Software society atthe National Engineering School of Tunis(Ecole Nationale d’Ingenieurs de Tunis -ENIT).You have the right to distribute thispresentation without modifying it.