June 11, 2012Troy Bleeker

Agenda

Participants will learnA cloud computing recap.What is our cloud like and why do we have it?Lab:

VPN, IDs, shared file server, tool install and configuration

Launch an instance, attach volumes Test application on an instance

Remove the cost of acquisition, install, and configuration

Cloud Computing Benefits

Right machine Right person Right skills Right time

Instance

Image

Instance

More BenefitsFlexibility of Volumes (for example)

Can move to bigger instanceBacks up only the pertinent data

DO NOT USE system volumes for critical data /dev/sda1 or /dev/sda2

What is our cloud?Infrastructure as a Service (IAAS)Ubuntu Enterprise Cloud (UEC) is Ubuntu's

Eucalyptus-powered cloud

Node Controller

Node Server 1

AdminClient

Interface

VPN/LAN

Node Controller

VMVM

To Manage Cloud

VM

User

To Connect To Instances

Node Server 3

Node Controller

VMVM VM

Node Server 2

Node Controller

VMVM VM

Node Server 11

VMVM VM

…

Private Switch

Build/BackupServerCloud Controller Walrus Controller

Cirrusmatic ServerPersistence

Storage

Image Storage

Cluster Controller Storage Controller

Samba file server

Cirrusdata Server

PurposeThe cloud environment exists to fulfill the

mission of SHARPn and other related projects at Mayo Clinic.

…will enhance patient safety and improve patient medical outcomes through the use of an electronic health record. … We propose research that will generate a framework of open-source services that can be dynamically configured to transform EHR data into standards-conforming, comparable information suitable for large-scale analysis, inferencing, and integration of disparate health data.…to enable the use of EHR data for secondary purposes, such as clinical research and public health. By creating tangible, scalable, and open-source tools, services and software for large-scale health record data sharing, this project will ultimately help improve the quality and efficiency of patient care through the use of an electronic health care record.

Setting ExpectationsOur cloud is a protected, non-public resource

Government regulationsMayo Clinic security policies

Our cloud is a research system not a production systemThe cloud is not monitored 24x7Maintenance is completed during business hoursUsers setting up instances must have Linux know-how

and some system administration skillsData backup is available but must be set up by the user

Help is available if needed

Cloudusers

A. VPN

C. Cloud Machine Image setup

D. Instance

File shares

Images(VMs)Images

(VMs)Images(VMs)

B. SHARP file share

D. InstanceD. Instance

SecurityFile share is separate,

but still protectedVPN thru FirewallEncryptionKey pairsUser IDsNo PHI

A. Institutional VPN account, share with your group (password reset <=180 days)B. Common SHARP file server, user ID for each person (does not expire)C. Start/stop/manage cloud machine images/instances, user ID for each person (does not

expire)D. Default, root user ID in a running Instance is “ubuntu” (does not expire)

Creator of the instance can create other user IDs

Instance type

Description Minimum

Instance type Technical Stack

Several Building blocks N/A•Ubuntu 11, Mirth, NwHIN, MySQL, Apache

emi-DD121096 LexEVS m1.small •LexEVS 6.0

emi-277E121D cTAKES with Mirth m1.small •cTAKES 1.2

emi-D0E6153C JBoss with DROOLS m1.small •JBoss 6.0, DROOLS 5.2

emi-???????? DN pipeline m1.small •cTAKES 2.5 …

Instance type CPUs RAM (GB)Temp Storage

(GB)

m1.small 1 4 20

c1.medium 2 8 20

m1.large 4 16 40

m1.xlarge 8 32 80

c1.xlarge 16 65 100

200 CPUs 1.8TB of RAM 36.3TB of storage

HurdlesSimultaneous access to the cloud and workSkills required for software on images

Need for speed will send doctors to the cloud:http://www.healthcareitnews.com/news/need-speed-will-send-doctors-cloud-experts-say

Cloud Security: Public versus Privatehttp://www.healthdatamanagement.com/news/private-public-cloud-computing-data-security-44566-1.html

Articles

http://informatics.mayo.edu/cirruswiki/index.php/Cloud_Resource_Lab

VPN must be successful before moving onIDs and Passwords are CASE SENSITIVE