Clearing Away The Clouds

Document Sample
Clearing Away The Clouds Powered By Docstoc
					                                                      11/5/2009




 Clearing Away The Clouds
 Dave Edstrom
 Chief Technologist – GSE SW LOB
 http://blogs.Sun.COM/DaveEdstrom
 Sun Microsystems, Inc.



Dave Edstrom Chief Technologist Global Software   1




  My First Job In The Computer Industry In
  1978
   • Bureau of Economic Analysis
     under the Department of
     Commerce
   • Assembler Programmer using
     punch cards on a Honeywell
     2080A mainframe
   • Wrote statistics software in
     assembler – fun :-)
   • Was this cloud computing?




Dave Edstrom Chief Technologist Global Software   2




                                                             1
                                                                                                   11/5/2009




  Sun’s Cloud Computing Vision Since 1984


                                   THE
                                 NETWORK
                                        is the
                                       Computer

Dave Edstrom Chief Technologist Global Software                                                3




  The Two Things You Need To Know
       aka Being Clear, Concise and Compelling
  • Glen Whitman, Economist, was asked the
    following at a diner:
             – “What are the two things you need to know about
               Economics?
                                          –       1) Incentives matter.
                                          –       2) There is no such thing as a free lunch.
       > For every subject, there are really only two things
       you really need to know. Everything else is the
       application of those two things, or just not
       important.”
  • “I would have written a shorter letter, but I did not have the
    time.” Mark Twain ended in a letter to a friend

Dave Edstrom Chief Technologist Global Software                                                4




                                                                                                          2
                                                                                                                                                                                    11/5/2009




    Everyone is Talking About Clouds

                                                                              Software as a Service
               Platform as a Service                                                                        Storage as a Service
                                                                                      Grid Computing
                Database as a Service                                                                               Virtualization
                  Utility Computing                                                                          Application Hosting
                                                                             Infrastructure as a Service



  Dave Edstrom Chief Technologist Global Software                                                                                                                       5




                                                Grace Hopper Was Right
                                                                           aka Processor Physics
                                                                                                                kHz                GHz        GHz          THz
                                                                           microseconds                         20th century                  21st century
                         1 kHz                                                                                  achievement                   challenge
milliseconds                                                                     1 MHz
                                                                                                      nanoseconds
                                      distance light travels in a vacuum




                                                                                                                          1 GHz
                                                                               299.8 meters




                                                                                                                                          picoseconds
                   299.8 kilometers




                                                                                                                                                                     femtoseconds
                                                                                                                     11.8 inches
                       186.3 miles




                                                                                                                      29.98 cms
                                                                                983.7 feet




                                                                                                                                                            1 THz


                                                                                                                                         14 GHz          11.8 mils
                                                                                                                            2000
                                                                                                                                         70.7 ps          0.3 mm
                                                                                                                                         equals

                                                                                                                            Athlon
                                                                                              1974                          1 GHz
                                                                                                                                                  21.2
                                                                                                                                                  mm




                                                                             1971
                                                                                              8080
                                                                             4004
                                                                                              2 MHz
                                                                             108 kHz

  Dave Edstrom Chief Technologist Global Software                                                                                                                       6




                                                                                                                                                                                           3
                                                                                              11/5/2009




Converging Trends In Microprocessors
    The Big Bang Is Happening!

   Network                                              Moore’s Law
   Computing Is                                         Provides an Ever-
   Thread Rich                                          Increasing
   Thanks To Java and                                   Transistor Budget
   multi-threaded,                                           What do you
   multi-tasking                                             do with a
   Operating Systems                                         BILLION
   Worsening                                                 transistors on
   Memory                                                    one chip?
   Latency                                              Growing Complexity
                                                        of Processor Design
                                                    Most Data Centers out of power and
                                                    cooling LONG before they run out of
                                                    floor space.

How To Think About Latency
Dave Edstrom Chief Technologist Global Software                                           7




               Throughput Computing
                     Voltage vs. Amperage
                     MIPS back in the 1980s
                   (Meaningless Information Provided by Salespeople)
   Tomorrow, buying systems will be dictated by new and
   useful metrics such as compute power per watt/space.




Dave Edstrom Chief Technologist Global Software                                           8




                                                                                                     4
                                                                                                      11/5/2009




             Dawn Of The Information Factories
                                    aka The Desktop Is Dead
                              2006 article by George Gilder in this month's Wired Magazine
                                        Google No Longer Advertises Its Numbers

• Googleplex in The Dalles, Oregon (this is three years old, but you will get
  the idea..)
• Built near a hydro-electric dam because of Google's tremendous power
  needs * 1.8 GIGAWATTS
   > That is 1/3 the amount of power that the city of Las Vegas will use
       on the hottest day of the year.
• The current extended googleplex
   > MASSIVE number of computers – current low estimates are
       450,000+ computers
   > 200 petabytes of hard disk storage * One petabyte is a thousand
       terabytes, or, to put this amount in perspective, it is 12 times the amount of archived
       web data in the U.S. Library of Congress as of May 2008.
    > Four petabytes of RAM
    > To handle the current load of 100 million queries a day, its
       collective input-output bandwidth must be in the neighborhood
       of 3 petabits per second.
• The prefix peta signifies numbers of the magnitude 10 to the 15th
  power or stated another way a million billion


Dave Edstrom Chief Technologist Global Software                                                   9




   All Clouds Share Key Traits

                                         One Service Fits All
                             Virtualized Physical Resources
                                            Self Provisioning
                                                     Elasticity
                                                 Pay per Use
                                       Programmatic Control
Dave Edstrom Chief Technologist Global Software                                                  10




                                                                                                             5
                                                             11/5/2009




                 Is This Cloud Computing?




Dave Edstrom Chief Technologist Global Software         11




  Machine Images and helloCloudWorld()

                                                  NEW
                                                   !




Dave Edstrom Chief Technologist Global Software         12




                                                                    6
                                                                                                                      11/5/2009




NY Times: Canonical Cloud Example
                                   • Needed to convert 11 million articles and images in
                                     its archive
                                      > Every newspaper from 1851 to 1980
                                      > http://timesmachine.nytimes.com
                                   • NYT IT Department said it would take them seven
                                     weeks
                                   • One NYT Developer, on his own, used 100 Amazon
                                     EC2 instances
                                   • Created in 24 hours for less than $300




Dave Edstrom Chief Technologist Global Software                                                                  13




High Level Steps Developer Took At
Amazon
                                   •   Load VirtualBox

                                   •   Config OS

                                   •   Load and Config IDE

                                   •   Write Application that reads, transforms and writes articles and images

                                   •   Put in master counter in apps

                                   •   Take a snapshot to get an AMI

                                   •   Get account at Amazon.com

                                   •   Load Data to Amazon

                                   •   Load apps to Amazon

                                   •   Decide on best EC3 ROI

                                   •   Instantiate EC3s

                                   •   Move data back to NY Times

                                   •   Go brag to NY Times Management :-)


Dave Edstrom Chief Technologist Global Software                                                                  14




                                                                                                                             7
                                                                                        11/5/2009




                                             Challenges
                                             That Do Not
                                              Magically
                                            Go Away With
                                               Clouds
Dave Edstrom Chief Technologist Global Software                                    15




                      Accidental Architecture
         Silo Oriented Architectures Still Need To Be Addressed

                                                  • Chaos in the Data Center
                                                  • Integration is a nightmare
                                                  • New Projects can not easily
                                                    integrate in this minefield
                                                  • CIOs don't know what can
                                                    break
                                                  • The cloud will be the new
                                                    app server for developers
                                                  • Virtualization and SLAs will
                                                    be a huge differentiator



Dave Edstrom Chief Technologist Global Software                                    16




                                                                                               8
                                                                                                                          11/5/2009




            Accidental Architectures
     CIO Nightmare: Multiple Sources of Truth
      Credit Card                                                                                   Mortgage




            Balance        Fraud         Credit                               Credit      Balance       Interest
             Check        Detection      Check                                Check        Check          Calc




                                                                       Partner Credit     Back-End       Customer
                      Back-End          Partner
     Customer                                                              Data            System          Data
                       System           Credit
       Data                              Data
Dave Edstrom Chief Technologist Global Software                                                                      17




Developer Design/Run Time Governance Does Not Magically Happen
                                                  The Developer's Eye Chart
                           Modular &                                                                Coarse-Grained
  Layered                  Autonomous               Service Reuse              Interoperable        Business Services




  Composable              Stateless                 XML Doc-Based              Asynchronous         Conversational




 Reliable Messaging Secure                        Policy-Driven               Described             Orchestrated




                         Registered &
  Choreographed          Discovered                Loosely Coupled            Versioned             Self Healing




Dave Edstrom Chief Technologist Global Software                                                                      18




                                                                                                                                 9
                                                                                            11/5/2009




          Cloud Feature                             Resulting Benefit
                   Developers                                  Deployers
     Why won’t IT support this?                      Why do we have so many
     Why can’t I use the                             versions of every
     versions I want?                                package?
     Why can’t I get better                          Where can I cut costs?
     availability?                                   How can I do finer grain
     How can I pay only for                          provisioning?
     what I need?                                    Where do we enforce
     How quickly can I get                           security, regulation and
     more servers?                                   audit?


Dave Edstrom Chief Technologist Global Software                                        19




     Customers Are Struggling With Balancing
     Their Locked In Proprietary Solutions and
                   Open Source
 •        Escalating Software Costs
            >       Vendors with lock-in keep ratchetting up the costs
            >       Most IT shops spend 30-40% on Software Development and
                    Maintenance
            >       69% of Software Projects FAIL

 •        Greenfield and Good Enough
            >       Companies can move the up front software costs to the deployment
                    stage
            >       Most companies are looking for a dual-prong strategy of existing
                    proprietary solutions and open source (with commercial support)
                    to take costs and time out of the equation
Dave Edstrom Chief Technologist Global Software                                        20




                                                                                                  10
                                                                        11/5/2009




                                   Security
                                 Considerations
                                                  Data at Rest
                                                       &
                                                  Data in Flight


Dave Edstrom Chief Technologist Global Software                    21




  Traditional Security Concerns Do Not Go Away
  • Physical security of infrastructure
  • Network security
  • Segmentation, configurations, etc
  • Encryption
  • RBAC discussions are now ABAC discussions
  • Configuration management
  • Patches, hardening, etc
  •   Account management
  •   IP protection
  •   Alerts, monitoring, logging
  •   Other services
  • Incident response, multi-factor authentication, etc
Dave Edstrom Chief Technologist Global Software                    22




                                                                              11
                                                                                               11/5/2009




  Security Considerations
How do you securely cloudify an application?
Privileged user access: Loss of control when data is processed outside the confines of
    the company.
Regulatory compliance: Company’s are still responsible for regulatory
   compliance, even if the data and associated infrastructure lives in a different
   physical location
Data location: Where will my source code live? Russia, China?
Data segregation: Co-mingling of data with competitors?
Recovery: DR, replication, backup, what happens when service is terminated?
Investigative support: In the event of an legal requirement to produce evidence, will
   the cloud computing vendor be able to comply?
Long-term viability: What happens in the event of an acquisition or dissolution? Is the
   data easily transferred? Are there home grown technologies in use which would
   impact your ability to sustain business after an “event”?



Dave Edstrom Chief Technologist Global Software                                           23




           Access Control Policy
     The Two Things You Need To Know
            SAML and XACML
     • At the core of access control policy lies an access control
       attribute vocabulary that a circle of trust enables its constituent
       services to share.
     • This shared vocabulary allows the creation of access policies
       that use attributes, generated anywhere within a circle of trust,
       while allowing the enforcement of the policies to be distributed to
       edge services.
     • Without a shared vocabulary and a circle of trust infrastructure
       to share its attribute values, there would be no shared access
       control context within which to share information - every service
       would be an access control island that hindered information
       sharing.

Dave Edstrom Chief Technologist Global Software                                           24




                                                                                                     12
                                                                                              11/5/2009




                                                  SAML
   • SAML is Secure Assertion Markup Language
     > SAML provides a standard for secure assertions that enables assertions to be
       exchanged within and between security domains.
   • SAML provides the standard security plumbing that wraps access control
     attributes with trust.
   • A core element of a domain’s security infrastructure is its identity provider
     (IDP).
     > An IDP is the entity that authenticates an identity’s credentials and
        authorizes an identity’s use of access control attributes.
     > An IDP typically issues its results as secure assertions.
     > These assertions are typically digitally signed and contain the IDP issuer, the
        time of issue, the intended consumer, etc. such that a relying party can
        trust them without having to interact directly with the issuing IDP.




Dave Edstrom Chief Technologist Global Software                                          25




  XACML Key Governance Standard
     • XACML is eXtensible Access Control Markup Language
       > XACML (defined by OASIS)is rapidly becoming the standard security
         language for Intelligence Agencies and Health Organizatons because of its
         fine grained and flexible security framework.
     • Key XACML concept is Circle of Trust
     • XACML allows the creation of Trusted platforms that can enforce platform
       policy via:
       > Policy Administration Points (PAPs)
       > Policy Decision Points (PDPs)
       > Policy Enforcement Points (PEPs)
       > Secure Token Service (STS)
     • XACML is typically paired with SAML (Secure Assertion Markup Language)
       for identity AAA (Authentication, Authorization and Audit)


Dave Edstrom Chief Technologist Global Software                                          26




                                                                                                    13
                                                                                              11/5/2009




    Secure Assertions XACML and SAML
    • Secure assertions are typically divided into two classes
      > authentication assertions
      > attribute assertions
    • Authentication assertions represent the result of authenticating an
      identity
    • Attribute assertions are additional information granted to an
      authenticated identity.
      > Attributes are defined as Subjects, Actions, Resources, and
         Environments
      > Think of PAPs, PEPs, PDPs as the three branches of XACML
         access control where policy is administered, enforced and
         decided with a common vocabulary for both the request and
         the result. SOD or Separation Of Duties is a key concept
         with proper XACML implementations.
      > XACML access control decisions primarily consist of a grant
         or deny decision. In some cases, due to lack of information, a
         decision is indeterminate.
Dave Edstrom Chief Technologist Global Software                                          27




      Secure Service Oriented Architecture
              Quantum Mechanics
•   It is impossible to predict both the method a developer will take in solving a
    problem and the many different ways that end users will want to use software.
    Governance and SOD are key.
•   Follow the Intelligence Agencies and the Health Care industry for security
    concerns.
•   The Secret Service Security model of increasing orbits of protection is not
    enough in today's World Wide Web
     > Dave Edstrom (the three quotes above)

•   If you want total security, go to prison. There you're fed, clothed, given medical
    care and so on. The only thing lacking... is freedom.
           – Dwight D. Eisenhower

•   “If you are not afraid, you simply do not understand.”
•   “Scaling is always the problem.”
           – Mike O'Dell (the two quotes above)



Dave Edstrom Chief Technologist Global Software                                          28




                                                                                                    14
                                                                                                                        11/5/2009




  Security Content Automation Protocol (SCAP)
  •   The Security Content Automation Protocol (SCAP) is a method for using specific standards to enable
      automated vulnerability management, measurement, and policy compliance evaluation (e.g., FISMA
      compliance). The National Vulnerability Database (NVD) is the U.S. government content repository for SCAP.
  •   The Security Content Automation Protocol (SCAP), pronounced “S-Cap”, combines a number of open
      standards that are used to enumerate software flaws and configuration issues related to security. They
      measure systems to find vulnerabilities and offer methods to score those findings in order to evaluate the
      possible impact. It is a method for using those open standards for automated vulnerability management,
      measurement, and policy compliance evaluation. SCAP defines how the following standards (referred to as
      SCAP 'Components') are combined:
  •   SCAP Components
       >   * Common Vulnerabilities and Exposures (CVE)
       >     * Common Configuration Enumeration (CCE)
       >     * Common Platform Enumeration (CPE)
       >     * Common Vulnerability Scoring System (CVSS)
       >     * Extensible Configuration Checklist Description Format (XCCDF)
       >     * Open Vulnerability and Assessment Language (OVAL)


  •   These components can be used to build products that have SCAP Capabilities:
  •   SCAP will likely be very important as a security protocol in your career



Dave Edstrom Chief Technologist Global Software                                                                    29




      Faster time-to-market
      Reduction of custom software
      Pay only for what you use Faster time-to-market
      Grow infrastructure with business
                      Ephemeral Keys
                                Reduction of custom
                                software
               Encrypted Swap / No Swap
                                Pay only
                 Encrypted File Systems for what you
                                use
              Encrypted Data Transit (In/Out)
                                Grow infrastructure
                                with business
          Secured, Fit for Purpose Machine Image


Dave Edstrom Chief Technologist Global Software                                                                    30




                                                                                                                              15
                                                                                                      11/5/2009




  Cloud Computing Layers
                                    Software as a Service
                                          Applications offered on-demand over
                                             the network (salesforce.com)

                                        Platform as a Service
                                        Developer platform with built-in services
                                                (Google App Engine)

                                 Infrastructure as a Service
                                  Basic storage and compute capabilities offered
                                       as a service (Amazon web services)

Dave Edstrom Chief Technologist Global Software                                                  31




                SLAs and Security Will Be The Two Key
                  Differentiator for Cloud Computing
            Sun’s Computing Cloud Hosted at SuperNAP, Las Vegas


                                                      • State of the art facility (Switch)
                                                        > 1500 watts per sq ft density
                                                        > 146 MVA generator capacity
                                                        > 7000+ cabinets
                                                        > 24/7/365 security
                                                      • Tier 2 site (for fuel delivery), below
                                                        Hoover Dam, above things like
                                                        hospitals
                                                      • Second to none connectivity
                                                        > 26 national carriers are physically
                                                          on-net within the data center


Dave Edstrom Chief Technologist Global Software                                                  32




                                                                                                            16
                                                                                11/5/2009




           The Best White Paper On Clouds




        http://www.eecs.berkeley.edu/Pubs/TechRpts/2009/EECS-2009-28.pdf

Dave Edstrom Chief Technologist Global Software                            33




                   Top 10 Obstacles and Opportunities
                          From Berkeley Paper



     1) Availability of service
     2) Data Lock-In
     3) Data Confidentiality and Auditability
     4) Data Transfer Bottlenecks
     5) Performance Unpredictability
     6) Scalable Storage
     7) Bugs in Large Scale Distributed Systems
     8) Scaling Quickly
     9) Reputation Fate Sharing
     10) Software Licensing



Dave Edstrom Chief Technologist Global Software                            34




                                                                                      17
                                                                    11/5/2009




  Emerging Cloud Deployment
  Patterns
                                             Test and
                                           Development

                                      Functional Offload
                                         (Batch Processes –
                                           TimesMachine)

                                      Functional Offload
                                       (Storage – SmugMug)

                                          Augmentation
                                  (Temporary Load – Animoto)


                                          Web Service

Dave Edstrom Chief Technologist Global Software                35




  Sun and Amazon Working Together




Dave Edstrom Chief Technologist Global Software                36




                                                                          18
                                                                                                                   11/5/2009




  The AWS / Xen image model
      AWS Deployment Model                                               Sun & AWS
      Amazon Machine Image                                • MySQL production support for EC2
                                                             – mysql.com/ec2
             (AMI)                                        • OpenSolaris Beta on Amazon EC2
                                                             – sun.com/amazon
  λ   Xen images built around several kernels                – Amazon Machine Images (AMI)
      λ Alternate kernels available (AKI)                        • OpenSolaris (32-bit)
      λ select from 'public' AMIs or build a                     • SXCE (32-bit, 64-bit)
        custom/private one                                   – How it works
  λ   Most AMIs built on Fedora or Ubuntu                        • Open AWS account
  λ   Easy to modify and share                                   • Register for Beta
      λ Tools provided by Amazon                                 • Use OpenSolaris on EC2
        “Paid AMI” can be created by ISVs
      λ
                                                             – Collaborate / Join the OpenSolaris on
  λ   Stored on S3                                             EC2 community




Dave Edstrom Chief Technologist Global Software                                                               37




  Amazon Web Services




                                             http://aws.amazon.com/solutions/featured-partners/opensolaris/
                                             http://aws.amazon.com/solutions/featured-partners/mysql/


Dave Edstrom Chief Technologist Global Software                                                               38




                                                                                                                         19
                                                                                                 11/5/2009




  Sun and Amazon: A Closer Look
   • An introduction to accessing object-based data on the Sun Cloud Storage Service via
     the AWS S3-compatible Object API.
      > http://channelsun.sun.com/video/software/cloud/24744868001/objectbased+access+on+
         the+sun+cloud+storage+service/24586080001
   • Multiple Solaris AMIs available at Amazon
   • Three Standard Instances
     > Small
     > Large
     > Extra-Large
          – 8 EC2 instances, 15GB RAM, 1.69TB, .80 per hour

   • Data Transfer
        >   $0.10 per GB of VPN Data Transfer (In)
        >   $0.17 per GB of VPN Data Transfer (Out) – First 10 TB per Month
        >     * $0.13 per GB of VPN Data Transfer (Out) – Next 40 TB per Month
        >     * $0.11 per GB of VPN Data Transfer (Out) – Next 100 TB per Month
        >     * $0.10 per GB of VPN Data Transfer (Out) – Over 150 TB per Month



Dave Edstrom Chief Technologist Global Software                                             39




  Hardened Solaris on Amazon EC2
   • Sun Microsystems Inc. is pleased to announce the release of
     Hardened OpenSolaris 2008.11 on Amazon EC2's cloud
     computing service. This 32-bit AMI gives you the power and
     security of OpenSolaris combined with the flexibility of Amazon's
     cloud computing service, and is optimized for for Amazon EC2's
     cloud computing environment.
   • The OpenSolaris system configuration has been adjusted to
     comply with the recommendations published by Sun and the
     Center for Internet Security, a non-profit organization charted to
     develop and encourage widespread use of security configuration
     benchmarks developed through a global consensus process
     involving participants from academia, industry and government.




Dave Edstrom Chief Technologist Global Software                                             40




                                                                                                       20
                                                                                                                            11/5/2009




   Virtualization and
   Standards




                                                                                                                      41
Dave Edstrom Chief Technologist Global Software                                                                        41




  Sun Virtual Datacenter Model
                                                                • 100% abstract provisioning for
                                                                  true cloud model
                                                                • Design application
                                                                  from pre-built components using
                                                                  drag-and-drop
                                                                • Deploy to cloud
                                                                • Monitor, manage and reconfigure
                                                                • Compatibility with programmatic
                                                                  APIs
                                                                • Encapsulate system architecture
                                                                  of an application
                                                                • Ability to model, save and deploy
                                                                  entire system

                        http://www.datacenterknowledge.com/archives/2009/03/19/cloudy-sun-virtual-data-center-demo/
    Take A Look:
                                  http://www.informationweek.com/blog/main/archives/2009/03/reviewcam_of_su.html

Dave Edstrom Chief Technologist Global Software                                                                        42




                                                                                                                                  21
                                                                                         11/5/2009




   Desktop to Datacenter Virtualization
      Unifying Virtualization and Management Across the Infrastructure

                                  DATA CENTER MANAGEMENT
                                     Sun xVM | Ops Center
            SERVER                                DESKTOP             STORAGE
        VIRTUALIZATION                         VIRTUALIZATION      VIRTUALIZATION

        Solaris Containers                  Sun xVM | VirtualBox
                                                                    OpenStorage
        Sun xVM | Server                       Sun xVM | VDI




                                                NETWORK
                                             VIRTUALIZATION

 Dave Edstrom Chief Technologist Global Software                                    43




Open Virtualization Format
Specification DMTF describes an open, secure,
 OVF Specification from
       portable, efficient and extensible format for the packaging and
       distribution of software in (collections of) virtual machines

  •    Optimized for distribution
  •    Optimized for a simple, automated user experience
  •    Supports both single VM and multiple-VM configurations
  •    Portable VM packaging
  •    Vendor and platform independent
  •    Extensible
  •    Localizable
  •    Open standard




 Dave Edstrom Chief Technologist Global Software                                    44




                                                                                               22
                                                                                                   11/5/2009




  Virtual Datacenter (VDC) Model

                                                          • Design application
                                                            from pre-built components using
                                                            drag-and-drop
                                                          • Deploy to cloud
                                                          • Monitor, manage and
                                                            reconfigure
                                                          • Compatibility with programmatic
                                                            APIs
                                                          • Support standard OVF images
                                                          • Ability to model, save and
                                                            deploy entire system

        http://www.informationweek.com/blog/main/archives/2009/03/reviewcam_of_su.html

Dave Edstrom Chief Technologist Global Software                                               45




            VDC Drag-n-Drop Model




Dave Edstrom Chief Technologist Global Software                                               46




                                                                                                         23
                                                                                                           11/5/2009




  Cloud Storage API access
                                                         Administrative functions to create
                                                         volumes, take snapshots and
      Administration API                                 create clones.
                                                         Web-based Distributed Authoring
      WebDAV Protocol                                    and Versioning Protocol is an
                                                         extension to the HTTP protocol
                                                         that can be used to create
                                                         directories and perform file access
                                                         and management tasks.



                                                         Enables the use of existing AWS S3
       Cloud Storage                                     applications and the ability to create new
         Object API                                      applications with S3-like semantics




Dave Edstrom Chief Technologist Global Software                                                       47




  Storage Service Features
             WebDAV and Adminstration API                            Storage Object API
             (Volume/Folder/File based access)                     (AWS S3 compatibility)


           Ability to store and retrieve data as files      Ability to store and retrieve data as
           in folders and volumes                           objects in buckets

           Ability to clone and snapshot volumes            REST API with open, AWS S3-like
                                                            semantics
           Ability to mount file system                     S3 compatiblity makes applications
                                                            portable
           Open, proven and highly scalable
           protocol                                         Write, read, and delete objects of
                                                            any size

                                   > Detailed metering and billing

             Programmatic, fast, highly available & scalable, and inexpensive

Dave Edstrom Chief Technologist Global Software                                                       48




                                                                                                                 24
                                                                                                                  11/5/2009




                     Cloud and RESTful APIs
 • Everything is a resource – http GET, POST, PUT...
 • Requires only a single starting point - other URIs are
 discoverable
 • Easy to create, save, load, stop, start entire applications
 • Released today to the public under Creative Commons

                                                                     Public
                                           Firewall                 Internet
                                          Appliance


                                                  Private Network

                                Web Server            Database             Media Storage
                                LAMP Stack             MySQL                  Server


Dave Edstrom Chief Technologist Global Software                                                              49




 Starts with the User’s Virtual Data Center

    GET /xrgy.cloud.sun.com

    Server response:

      {
          "name" : "XRGY Virtual Data Center",
          "uri" : "http://xrgy.cloud.sun.com",

          "addresses" : [ ],
          "vnets" : [ ],
          "volumes" : [ ],

          "create-vnet" : "/ops/create-vnet",
          "create-volume" : "/ops/create-vol",
          "create-cluster" : "/ops/create-cluster",

          "clusters" : [                                                                   Note: URI Links
           {
              "name": "cluster1",
              "uri": "/clusters/cluster1",
              "create-vm" : "/clusters/cluster1/ops/create-vm",
                .......
             }]

Dave Edstrom Chief Technologist Global Software                                                              50




                                                                                                                        25
                                                                                        11/5/2009




                                             How Do I Get
                                             Started With
                                               Clouds?

Dave Edstrom Chief Technologist Global Software                                    51




Project Kenai Sun's Open Source
Repository
     •    Project Kenai Services overview
          > http://channelsun.sun.com/video/project+kenai+services+overview/2458
            6072001
     • Project Kenai - Web Services API for Cloud Computing
       > http://kenai.com/
     • Intro to Kenai:
        > http://blip.tv/file/2160167
     • White paper: Introduction to Cloud Computing Architecture:
       > https://www.sun.com/offers/details/CloudComputing.xml




Dave Edstrom Chief Technologist Global Software                                    52




                                                                                              26
                                                                                                                   11/5/2009




  Zembly
                                                                                                  Edit




                                                                                    Participate          Publish


   Developer Platform as a Service (PaaS)
                                                                                                  Use




                                                            A cloud based
                                                            development
                                                            environment
                                                            for building the
                                                            Web for casual
                                                            developers
                                             Social Ecosystem               Development
         Wikipedia                                                           Platform for
             for                                     of
                                               Contributors                Next Generation
        “Live” Code                                                           Web Apps
                                              and Consumers

Dave Edstrom Chief Technologist Global Software                                                            53




                           Get Started Today
                                • Participate in the Development of our
                                  Open Cloud APIs
                                • Sign up for Early Access to Sun Cloud
                                  Services
                                • Become a Sun Cloud Partner
                                • Let Sun experts help you take advantage
                                  of Cloud Computing with Assessment
                                  Services and Workshops
                                     > Gather business requirements
                                     > Create a high-level architecture
                                     > Industry-best practices and proven methodologies
                                         to create value-added solutions

                                http://sun.com/cloud

Dave Edstrom Chief Technologist Global Software                                                            54




                                                                                                                         27
                                                                                  11/5/2009




 Getting Started urls
   •     Sun's intro site
        > http://www.sun.com/solutions/cloudcomputing/index.jsp
   • Site for developers:
     > http://developers.sun.com/cloud/
   • Intro to Sun Open Cloud Platform
      > http://channelsun.sun.com/video/events/communityone/16827779001/su
         n+open+cloud+platform/24939850001
   • Virtual Data Center Demo
     > http://channelsun.sun.com/video/virtual+data+center+demo/1683981400
         1
   • An introduction to accessing file-based data on the Sun Cloud
     Storage Service via the WebDAV protocol and the Administration API.
     > http://channelsun.sun.com/video/software/cloud/24744868001/file-
        based+access+on+the+sun+cloud+storage+service/24586077001


Dave Edstrom Chief Technologist Global Software                              55




  Get an Account at Amazon




Dave Edstrom Chief Technologist Global Software                              56




                                                                                        28
                                                                                          11/5/2009




                                     The
                                  Network is
                                     the
                                  Computer
                                       http://www.sun.com/cloud
Dave Edstrom Chief Technologist Global Software                                      57




                                                    Two Things
                                                  You Need to Know
                                           About Cloud Computing
                                    1) Cloud Computing is the most overloaded and
                                       hyped buzzword in the IT industry today and
                                       most people define cloud computing as any
                                       processing that does not occur where they
                                       are sitting right now.


                                      2) Cloud Computing is the ability to make a
                                      virtual machine image that has my OS and
                                      my application in it, move it to a server
                                      along with my data, run as many instances
                                      as I want and pay for it by the drink.



Dave Edstrom Chief Technologist Global Software                                      58




                                                                                                29
                                                                                                                 11/5/2009




  Java – HUGE Success by Any
  Metric
                                                       6.5B                     Java devices worldwide
                                                       2.6B                     Java mobile devices
                                                    850+M                       Java powered PCs
                                                      40+M                      Blu-ray & set top devices
                                                       5.5B                     Java Cards
                                                     6.5+M                      Java developers




                                              Sun Confidential: Internal Only                               59
Dave Edstrom Chief Technologist Global Software




  Why Was Java SO SUCCESSFUL?
                                                                                Serendipity
                                                                                Secure
                                                                                Object Oriented
                                                                                Open
                                                                                Supported
                                                                                WORA



                                              Sun Confidential: Internal Only                               60
Dave Edstrom Chief Technologist Global Software




                                                                                                                       30
                                                                                                            11/5/2009




  Quick Reminder on Java.....
                                                                   Java Source
                                                                   Code (.jjava)




                                                                  Compile (javac)




                                                                      Byte Code
                                                                       (.class)

                                                           Java Virtual     Machines (JVMs)
                                                                        JVMs

                                                  mobile   Unix              mainframe   Linux   Mac
                                                                   PC




Dave Edstrom Chief Technologist Global Software                                                        61




  What is the REAL win with Java?

                                              Tim Bray Sun DE,
                                              Co-Inventor of XML, states:
                                              “The real win with Java,
                                              is not Java, it     is the JVM.”




Dave Edstrom Chief Technologist Global Software                                                        62




                                                                                                                  31
                                                                                                                11/5/2009




    What Did Tim Bray Mean?
                                         JRuby         Scala                                New Language
                                                                      Java Source
                                         Source        Source                               Source Code
                                                                      Code (.java)
                                         Code          Code




                                                                  Compile to Byte Code



                                                                        Byte Code
                                                                         (.class)

                                                           Java Virtual        Machines (JVMs)
                                                                           JVMs

                                                  mobile   Unix                 mainframe   Linux    Mac
                                                                      PC



                                                  New HOT Languages compile to byte
                                                  codes AND work WITH JAVA.
                                                        The BEST OF ALL WORLDS

Dave Edstrom Chief Technologist Global Software                                                            63




            SOA - Service Oriented Architecture
          What Are The Two Things You Need To Know?
λ   Think of SOA as Surveying One's Assets to determine where you
    can consolidate business services to save money
     − Sun's global shipping consolidation example
          λ Simple and straightforward with quick payback


λ   Next, think of SOA in terms of Simplifying One's Architecture by
    opening up business services to the outside to make money
     − Separating the Interface from the Implementation
     − Interfaces are public and implementations are private
          λ Yard SOA Interface versus Yard Legacy Implementation




Dave Edstrom Chief Technologist Global Software                                                            64




                                                                                                                      32
                                                                                                             11/5/2009




               Java Business Integration (JBI)
                  This will do for SOA what J2EE did for app servers
    Evolution of the Platform to Enable SOA



                      BPEL                                                     Rules
           Engines           BPE                   xForm               Rules

                                                                                          Admin

           Bindings        WS-I                     JMS                EDI




    Service        Service         Service         Service   Service      Service   Service   Service


 Dave Edstrom Chief Technologist Global Software                                                        65




        What Customers Think About......
  You date your hardware vendor, you marry your
proprietary software vendor and have lots of
kids, but with your open software vendor you are
allowed to sleep around if you use protection.
Protection in this context is a defined dual stack
strategy with governance ie a software game plan.
     Date and Marry wisely :-)
  Open Source monetization is evolving in the
industry - make sure you understand your
software vendors strategy.
  Do not let vendors confuse open data, open
APIs with open source software
  Clouds will change businesses. Make sure you
do not get locked in.
  Scaling is ALWAYS the problem.
  SLAs and fine grained security will be the
market differentiators

 Dave Edstrom Chief Technologist Global Software                                                        66




                                                                                                                   33
                                                            11/5/2009




  What I Would Do If I Were You...
   Don't do anything to screw up your chances
   of getting a government clearance. In the DC
   area this is worth $20 to $30K ADDITIONAL
   per year and a guaranteed job.
   Degrees get you in the door
   Learning new technologies and being the
   Michael Jordan of SOMETHING separates
   you from the rest
   Twins Story
        First twin age 20 to 25 invests $300 a month
        Second twin age 25 to 70 $300 a month
        Second twin had $2.1 million
        First twin also had $2.1 million
   Last Four Pieces of Advice
      Life is short
      Death is certain
      If you do not make your own decisions
      now, time will make them for you.
      Never, ever sleep with someone who has
      more problems than you do.

Dave Edstrom Chief Technologist Global Software        67




   THANKS
   sun.com/cloud
   Dave Edstrom
   Chief Technologist – GSE SW LOB
   http://blogs.Sun.COM/DaveEdstrom
   Sun Microsystems, Inc.
Dave Edstrom Chief Technologist Global Software        68




                                                                  34

				
DOCUMENT INFO