Moving to the Cloud with Windows Azure Platform?

Luka Debeljak, CEE Windows Azure Lead

Microsoft

The Cloud Market: Tripling in Three Years

• By 2014, cloud computing services will grow to a $45 billion industry a year (IDC)

• Traditional IT services will transfer to the new cloud model, with lots of potential revenue in new businesses and revenue streams (Gartner)

IDC: Worldwide Software As a Service 2010-2014 Forecast: Software will Never Be the Same, June 2010

$17.6B

$6.9B

$14.0B

$5.7B

$13.3B

$2.9B

SaaS PaaS IaaS

2009

2013

Cloud Computing

What…

Why…

Just in time provisioning and scaling of services on shared hardware

Accelerates the speed and lowers the cost of IT

TIME

IT C

APA

CIT

YAllocating Resources: The Traditional View

Allocated IT resources

Oversupply

Undersupply

Load forecast

Initial investment

Oversupply

Actual load

TIME

IT C

APA

CIT

YAllocating Resources: The Cloud View

Allocated IT resources Actual load

Lower initial investment

Less oversupply

Load forecast

Less oversupply

No undersupply

BUSINESS APPSCOLLABORATION STORAGE PLATFORMMANAGEMENTPRODUCTIVITY COMMUNICATIONS

DEEP INVESTMENTS IN INFRASTRUCTURE

• Over $2B invested in cloud infrastructure

• Geo-replicated customer data• Public and private cloud flexibility• 30,000 engineers working on cloud services

COMMITMENT TO SERVICES EXCELLENCE• Financially-backed uptime guarantees

• SAS 70 and ISO 27001 compliant• Carbon footprint innovation• Rapid innovation model

Microsoft On-Premise and in the Cloud

Cloud Services

Packaged Software

Storage

Servers

Networking

O/S

Middleware

Virtualization

Data

Applications

Runtime

You m

anag

e

Infrastructure

(as a Service)

Storage

Servers

Networking

O/S

Middleware

Virtualization

Data

Applications

Runtime

Man

ag

ed b

y v

en

dor

You m

anag

e

Platform(as a

Service)

Man

ag

ed b

y v

en

dor

You m

anag

e

Storage

Servers

Networking

O/S

Middleware

Virtualization

Applications

Runtime

Data

Software(as a

Service)

Man

ag

ed b

y v

en

dor

Storage

Servers

Networking

O/S

Middleware

Virtualization

Applications

Runtime

Data

ComputeVMRole, Admin Access

Storage Management

Relational data ConnectivityCaching

Access controlCDN

Introducing the Windows Azure PlatformThe Windows Azure platform is an internet-scale cloud services platform, hosted in Microsoft data centers around the world, that provides a simple, reliable, and powerful platform for creating web applications and services.

Data Sync

Developer ExperienceUse existing skills and tools.

Reporting

Windows AzureCloud Operating System

Virtual Network

Compute Storage

DEMOWindows Azure Portal

Windows Azure Web & Worker Roles

• Windows Server 2008 x64 (R2 coming soon)• .NET Framework – 3.5 SP1 and 4.0• Native Code, PHP, Java, etc. – Bring your own

runtime• Supports Full Trust today (admin mode coming

soon)• Fabric manages role lifecycle

Role is hosted on IISHTTP/HTTPSASP.NETFast CGI + PHP

Role is an executableCreate your own web server, host a database, etc.

Inbound onAny TCP PortHTTP/HTTPS

Web RoleWorker Role

Windows Azure Storage

• Scalable storage in the cloud– 100TB per storage account– Auto-scale to meet massive volume and

throughput• Accessible via RESTful Web Service API

– Access from Windows Azure Compute– Access from anywhere via internet– Supporting .NET Client Library

• Various storage types– Table– Queue– Blob– Drives

Windows Azure CDN

Browse to

cdn.customer.comGET

foo.jpg

Windows Azure Storage

ECN NODE…

ECN NODE 2 - TOKYO

ECN NODE 1 - LONDON

EDGE CACHING SERVERS

Create Storage Account

via Portal

Enable CDN forStorage account

Windows

AzureCustome

r

Upload contentto public

BLOBContainer

• Enables a better user experience, global reach, increased engagement, more revenue

• Broad reach with 22+ locations globally

New Windows Azure Features

• Windows Azure Virtual Machine Role• Windows Azure Virtual Network• Extra Small Virtual Machines• New Windows Azure Platform Management

Portal• Multiple users & roles for management• Windows Server 2008 R2 & IIS 7.5• Elevated Privileges (Admin mode)• Full IIS• Remote Desktop

Virtual Machine Role

• IaaS feature provided to help you move applications to Windows Azure

• Enables you to have full control over the OS Image– Create your VHD locally– Upload the VHD to storage– Deploy a service package that uses the custom OS image

• Key considerations– Image must be Windows Server 2008 R2 Enterprise– No durability of OS image– You configure and maintain the Operating System

VM Role

Abstraction Control

Web/Worker Role

VM Role Lifecycle

CloudOn-Premises

Blob Storag

eBoot VHD

Customize VHD

Save Diff.VHD

Base.VHD

Identical/similar deployment instances using common uploaded OS image (base.VHD + diff.VHD)

• Additional Software• Windows Azure

Integration • Components

• Agent• Runtime Interface (topo,

config, shutdown notification, …)

• Remote Desktop configurator

• Diagnostics• Windows Azure Drives driver

• Generalize (Recommended)

Admin Mode & Startup Tasks• Enables short, unattended setups on role startup

– Silent MSIs, COM Components, Registry Keys, etc.– Configured in the .csdef

• Task Type– Simple – System waits for the task to exit– Background – System does not wait for the task to exit– Foreground – same as background, but blocks role restart

until tasks exit

<WebRole name=“FabrikamShipping.App.Web"> <Startup> <Task commandline="relative\path\ToSetupExecutable" executionContext="limited|elevated" taskType=“simple|foreground|background"/> </Startup></WebRole>

Windows Azure Connect

• Secure network connectivity between on-premises and cloud– Supports standard IP protocols

• Enables hybrid apps access to on-premises servers

• Allows remote administration of Windows Azure apps

• Simple setup and management– Integrated with WA Service Model– Web, Worker and VM Roles

supportedEnterprise

Windows Azure

SQL AzureExtending SQL Server to the Cloud

Data SyncDatabase Reporting

SQL Azure Database

• SQL Server relational database model delivered as a service– Support for existing APIs & tools– Built for the cloud with high availability & fault tolerance– Easily provision and manage databases across multiple

datacenters

• SQL Azure provides logical server– Gateway server that understands TDS protocol– Looks like SQL Server to TDS Client– Actual data stored on multiple backend data nodes

• Logical optimizations supported– Indexes, Query plans etc..

• Physical optimizations not supported– File Groups, Partitions etc…

• Transparently manages physical storage

Reporting & Data Sync

• SQL Azure Reporting– SQL Server Reporting provided as a service

– Reports authored using existing tools (BIDS) and uploaded to the cloud

– Reports can have rich Data Visualizations (Maps, Charts, Tablix) and be exported to variety of rendering formats (Excel, Word, PDF)

– Reports can be rendered as part of an app using the Report Viewer control

– Directly view the reports in the browser

– Web Service interface to render and manage reports

• SQL Azure Data Sync– CTP1 available now provides geo-replication

– CTP2 available by the end of the year adds sync between SQL Server and SQL Azure

– Builds on Sync Framework

DEMOSQL Server Database

Windows Azure AppFabricBuilding Block Services for Connected Apps

CachingService Bus

Access Control

Access Control

• Makes it easy to authenticate and authorize users

• Integration Single Sign On and centralized authorization into your web applications

• Standards-based identity providers– Enterprise directories (e.g. Active

Directory Federation Server v2.0)– Web identities (e.g. Windows Live ID,

Google, Yahoo!, and Facebook)

A Primer on Claims

?

!?

ExternalizesAuthentication

Gets user info from the document

Trust

Read Policy

Read Policy

Cla

ims

Pro

cess

ing

Applic

ati

on

Logic

AuthenticateGet Token

Send Token (claims)

Establish Session

Relying Party

Identity Provider

Security Token Service

Claims Based Access

Application Server

Microsoft Identity Platform

ADFS 2.0

End User

5. Send claims

Establish relationship using federation metadata

trust

Identity Provider

1. Read policy

2. R

ead

polic

y4.

Get

cla

ims

3. A

uthe

nticat

e

Relying Party

WindowsIdentity

Foundation

App Business

LogicWindowsCardSpac

e2.0

Federation

trust

trust

Relying PartyUser

Application

2. Redirect to STS

1. Attempt access

3. Home re

alm

discovery

4. Redire

ct to STS

5. A

uthe

ntic

ate

Windows Identity

Foundation

AD FS 2.0 AD FS 2.0

Company A Company B

trust

trust

Relying PartyUser

Application

9. Post claims

7. Post

claim

s

8. Get c

laims

6. G

et c

laim

s

Company A Company B

Federation

Windows Identity

Foundation

Windows Azure AppFabric Connectivity

34

Application #1 Application #2Direct Connection facilitated by Service Bus if that is best

connection mechanism.

TextXMLGraphicsBinary DataStreaming

Firewall

Send

Receive

Exchange messages between loosely coupled, composite

applications.

Send

Receive

AppFabric Caching

• Distributed, in-memory application cache for Windows Azure apps

• Primary use cases– Session state provider for Windows Azure applications– Cache layer for Windows Azure applications that leverage

storage in SQL Azure Databases or Windows Azure storage

• Provided as a service – Provision, configure, and use– No installation or management of machines/instances– Dynamically increase and decrease cache size as needed– Same programming model for both cloud and on-premises

DEMOWindows Azure AppFabric

Windows Azure Marketplace

Apps• Find and publish applications

and building block services for Windows Azure

• Directory available by the end of the year. Commerce capabilities coming in the future.

Data• Information marketplace for

discovering, purchasing, & selling data

• Data can be hosted in Windows Azure or by the data provider

• Data exposed as OData services

– SDKs available for .NET, Silverlight, Javascript, iOS, Java, PHP, Ruby, …

– Enables self-service BI within Excel

• Data providers include:– Data.gov, Navteq, etc.

• Directory & Commerce available today

ComputeVMRole, Admin Access

Storage Management

Relational data ConnectivityCaching

Access controlCDN

Windows Azure Platform

Data Sync

Developer ExperienceUse existing skills and tools.

Reporting

Benefits of moving to Windows Azure

Transcend Complexity

Focus IT on driving the business not

maintenance

Utilize familiar development tools

Transparent ROI

Agile Infrastructure

Rapid deployment of new business

solutions

Scale capacity up and down on

demand

SustainedAdvantage

Low ongoing infrastructure costs

Helps provide a secure and

compliant platform

Opportunity for extra functionality

Windows Azure Platform Consumption Prices

Elastic, scalable, secure, and highly available

automated service platform

Pay as you go and grow for only what you use when you use it

Highly available, scalable, and self managed

distributed database service

Compute

$0.05-0.96/hour+ Variable Instance Sizes

Per service hour

Web EditionPer database/month

$9.99/month(up to 1 GB DB/month)

Business Edition

Starting at $99.99/month(10-50 GB DB/month)

Per database/month

Storage Per GB stored and

transactions$0.15 GB/month

$0.01/10k transactions

Windows Azure AppFabric Service Bus and Access Control ServiceScalable, automated, highly available services for secure connectivity

Prices shown in USD only

Access Control

$1.99/10k transactions

Per Message Operation

$3.99/month per connection

Per Message OperationService Bus

International prices are available

Windows Azure Instance Sizes

Unit of Compute Defined

Variable instance sizes to handle complex workloads of any size

Small

1 x 1.6Ghz (moderate IO)

1.75 GB memory

250 GB storage(instance storage)

Medium

2 x 1.6Ghz (high IO)

3.5 GB memory

500 GB storage(instance storage)

Large

4 x 1.6Ghz (high IO)

7.0 GB memory

1000 GB storage(instance storage)

Small

$0.12

Per service hour

Medium

$0.24

Per service hour

X-Large

$0.96

Per service hour

Large

$0.48

Per service hour

X-Large

8 x 1.6Ghz(high IO)

14 GB memory

2000 GB (instance storage)

Extra Small

$0.05

Per service hour

Extra Small

1 x 1.0Ghz(low IO)

768 MB memory

20 GB storage(instance storage)

Windows Azure Platform Appliance

• Windows Azure Platform in your datacenter– Designed for unlimited scale & multi-tenancy– Identical to the hardware in Microsoft’s datacenters– Delivered by a choice of hardware partners

• Benefits– Platform as a Service – Physical Control– Geographic Proximity– Regulatory Compliance– Data Sovereignty

• Currently in development with several partners– Fujitsu, Dell, HP, and eBay