Welcome!

OpenStack Journal Authors: Mike Kavis, Liz McMillan, RealWire News Distribution, Jerry Huang, Kevin Benedict

Blog Feed Post

Enterprise Cloud Computing: Dallas – January 23 – 24, 2014


Enterprise Cloud Computing: Dallas – January 23 – 24, 2014
Thursday January 23, 2014-Friday January 24, 2014
Dallas Texas
Venue TBD

Price: $1,045.00 (including $250 early discount)

 

We offer additional discounts for groups of three or more people, government or non-profit employees, people who’ve taken a ZapThink class before, or individuals who are paying out of their own pocket. Please email us at info@zapthink.com for a discount code you can use when registering.

ZapThink Enterprise Enterprise Cloud Computing Course: The Leading Vendor Independent, Architecture-Focused Cloud Training

The Enterprise Cloud Computing course an intensive, two day “fire hose” of information that prepares you to leverage the Cloud to achieve real business value. We cut through the hype and separate what really works from the noise.

Announcing the new version 3.0 of the course!

ZapThink’s Enterprise Cloud Computing course has no prerequisites, and is appropriate for people with different roles and levels of expertise. This course is valuable for anyone who wants in-depth knowledge about how to succeed with Cloud Computing.

With expanded, updated content on Cloud security, governance, and more. Also includes a step-by-step Cloud tutorial!

What makes the Enterprise Cloud Computing course so special?

  • Vendor independent — We discuss vendors in context, both good and bad. You get a balanced perspective on each vendor we discuss.
  • Architecture focused — The course concentrates on what architects have to do to be successful with Cloud in their own organizations. We balance technology details with organizational approaches. If you’re not an architect you’ll learn how to think like one in this class!
  • Practical — we connect theory to practice with what really works in organizations like yours.
  • Current — we refresh the course on a regular basis to reflect the latest Cloud Architecture best practices.
  • Enterprise context — We place Cloud Computing into the context of large organizations, with complex, heterogeneous IT environments and all the politics and bureaucracy that every large organization faces.
  • Led by globally recognized Cloud and Architecture thought leader — All ZapThink’s courses are developed and led by Jason Bloomberg, President of ZapThink. Jason has been an analyst with ZapThink since 2001 and is the co-author of the new book, The Agile Architecture Revolution.
  • Not too technical, not too high-level — Unlike courses offered by others, we cover the technology without getting lost in the details. We discuss the big picture but connect it to the day-to-day reality of the IT shop.
  • Available around the world — See the event schedule for all the locations we’re offering Enterprise Cloud Computing!

Someone in every class will receive a copy of The Agile Architecture Revolution for free!

REGISTER

Enterprise Cloud Computing v. 3.0

Day 1

Registration: 8:00 to 8:30 AM

Module 1: Introduction & Definitions

  • Cloud Computing: Old Wine in New Bottles
  • Formal Definition of Cloud Computing
  • NIST Cloud Computing Definition Framework
    • Essential Cloud Characteristics

    • Cloud Service Models
    • Cloud Deployment Models
    • Managed Hosting vs. Cloud Computing
    • Conceptual Reference Model
    • Cloud Actors
    • Cloud Deployment Scenarios
    • The Enterprise Context
  • Relationship between Cloud & SOA
    • From SOA to Cloud

    • The Big Picture
  • Pioneers of the Cloud
    • The Birth of IaaS: Amazon Web Services

    • Amazon’s Retail Mentality
    • Amazon “Other” Revenue, aka Amazon Web Services
    • AWS Services Today (partial list)
  • The Cloud Service Models
  • Deployment Models
  • Separation of Responsibilities
  • Common IaaS Examples
    • IaaS Caveats
  • PaaS Examples
    • PaaS Caveats
  • Common SaaS Apps
    • SaaS Caveats
  • Different Multitenancy Models
  • Other Common *aaSes
  • Cloud Service Orchestration
    • Open Source Cloud Orchestration Platforms

    • OpenStack
    • OpenStack Ecosystem, Projects, and Support
    • Rackspace Private Cloud (Alamo)
    • HP’s Public Cloud
    • IBM SmartCloud
    • Eucalyptus
    • CloudStack
  • Vendor Spin
    • Oracle’s Shopping List

    • Oracle Cloud: It’s all about Oracle
    • Oracle Cloud Solutions
    • Oracle Fusion (Cloud) Apps
    • IBM’s Shopping List
    • Microsoft’s Shopping List
    • Microsoft SaaS is “Live”
    • Google Cloud Platform
  • Cutting Through the Hype

Case Study: M-Dot / Inmar

Module 2: Virtualization, Workloads, & Pods

  • Virtualization doesn’t equal Cloud
  • Traditional Infrastructure
  • Virtualization Basics
    • Types of Hypervisors
    • Type 1 (Bare Metal) Hypervisors
    • Type 2 (Hosted) Hypervisors
    • Protection Rings
    • Traditional Operating Systems
    • Server Virtualization Landscape
    • Desktop Virtualization Landscape
    • Paravirtualization
    • Full Virtualization (without Hardware Assist)
    • Full Virtualization (with Hardware Assist)
    • OS Virtualization
    • Hosted Virtualization
    • VMWare Virtual Infrastructure Management
  • Cloud Workloads
  • Pods & Cloud Control Systems
    • VMWare 5000-User Pod Example
    • Citrix Pod Example
    • Using a Cloud Control System (CCS)
    • Aggregating Workloads & Pods
    • Availability Zones
    • Pod Architectures at Cloud Providers
  • Cloud Storage Technologies
    • Direct Attached Storage (DAS)
    • DAS Management Challenges
    • Storage Area Networks (SAN)
    • Availability Zone Physical Architecture
    • Sizing SANs

Module 3: Cloud Configuration

  • The Context for Automated Cloud Configuration
  • Fully Automated Provisioning
    • VM Images
    • Automated Provisioning of Environment from Spec
    • No Direct Management of Individual Boxes
    • Revert to “Previously Good State” at Any Time
    • Easier to Reprovision Than Repair
    • Anyone can Deploy or Update an Environment
  • The Toss Test (Hypothetical!)
  • NetFlix Chaos Monkey (Real!)
  • Netflix Simian Army
  • Cloud Configuration Toolchain
    • Toolchain: Provisioning
    • Toolchain: Release Management
    • Toolchain: Monitoring & Control
    • AWS CloudFormation
  • Cloud Configuration Maturity Levels

Case Study: reddit Condé Nast

Module 4: Architecting for the Cloud

  • Cloud Computing Roadmap
    • EA Cloud Strategy

    • TOGAF & Cloud
    • Phased Strategy for Cloud Migration
    • Cloud Deployment Choices
  • Architect for the Cloud
    • Elasticity Makes Clouds Cloudy!

    • The Challenge of Elasticity
    • The Dark Side: Enterprise IT
    • Forces of Change in Enterprise IT
    • The Challenge of Applications
    • What About Enterprise App Vendors?
    • The Challenge of Scalability
    • The Challenge of Fault Tolerance
    • The Challenge of Control
    • The Challenge of Mobility
    • Elastic Thinking
  • Diverse Application Challenges
  • CAP Theorem
    • Basic Availability

    • Partition Tolerance
    • High Availability Consistency
    • Enforced Consistency
    • Eventual Consistency
    • Eventual Consistency Throughout History
    • BASE instead of ACID
    • Is Synching All That Bad?
    • Soft State
    • Are you Ready for Inconsistent Data?
  • The Challenge of State
    • Avoid the “Matrix” Problem

    • Scalability & State, The Old Way
    • The Secret to Transferring App State to the Client
    • HATEOAS
    • What is REST Anyway?
    • REST vs. HOA
    • Essential REST Terminology
    • Uniform Interface
    • Four Architectural Constraints
    • Separation of Resource from Representation
    • Manipulation of Resources by Representations
    • Self-Descriptive Messages
    • Hypermedia as the Engine of Application State
  • Is REST about APIs?
    • Deltacloud: RESTful APIs to the Cloud

    • Deltacloud Example
  • Cacheability in the Cloud
    • Using Caches in the Cloud

    • HOA & Caches
  • HATEOAS in Action
    • The Challenge of SOA-Based BPM

    • Hypermedia-Oriented Architecture
  • The Light Side: The World of Web Scale
  • Cloud Coding Best Practices
Exercise: Application consolidation & migration

Module 5: Amazon Web Services Tutorial

  • Why AWS for this Tutorial?
    • Remember, AWS is IaaS
  • Deploying a Sample App
    • Provisioning in Progress (less than 5 minutes)

    • Provisions Environment & Creates Sample App
    • Events Tab Shows Automated Steps
    • Home Page of Sample App
    • Let’s Create Our Own Application
    • Container (VM) Choices
    • This is Our dev Environment
    • Selecting the Free Instance Type
    • Environment Provisioning in Progress (about 5 min.)
    • dev Environment Provisioned
    • It’s php All Right!
    • Configuration Options
    • More Configuration Options
  • EC2 Dashboard
  • My Instances – Can’t Log Into Them!
  • Need a Key Pair
    • Key Pair Created, Private Key Saved

    • Select Default Security Group
    • Turn On SSH Access
    • Copy Public DNS into WebPuTTY
    • Import Private Key (converted with PuTTYgen)
    • Logged in (Root Available with Paid Instance Types)
  • AMI Instance Options
Class Ends at 5:00 PM

Day Two

Class Begins at 8:30 AM

Module 6: Cloud Standards

  • The Problem with Standards
  • Context for Cloud Standards
    • Scope of Cloud Standardization
    • Who’s Talking to Whom?
    • Cloud Standards Taxonomy
    • Cloud Standards Landscape
    • Prevailing Standardization Approaches
  • Are We Talking About APIs?
    • Compute API Support
    • Amazon AWS APIs
    • Eucalyptus & Amazon AWS APIs
    • OpenStack APIs
    • Cloud APIs: Future Trends
  • Core Cloud Standards
    • OVF
    • CIMI
    • OCCI
    • CDMI
    • Essential Security Standards
  • Cloud Standards Bodies – PaaS
    • PaaS: Cloud4SOA Consortium
  • Cloud Semantic Standards
    • Semantics Depend Upon Context
    • Semantic Interop Largely Manual
    • Types of Application Semantics
    • Semantic Description of a Cloud Application
    • Semantic Conflicts

Module 7: Cloud Security

  • Four Disciplines of Cloud Security
  • #1: Establish Your Risk Profile
    • Risk Profile Defines Control & Technology Requirements
  • # 2: Conduct Asset Inventory
    • Applying the Security Control Model
  • #3: Threat & Vulnerability Analysis
    • Threat Models

    • Attacker Profiles
    • Targets
    • Cloud Vulnerabilities
  • #4: Control Management & Business Resiliency
    • Business Resiliency Capabilities

    • Cloud Security Maturity
    • The Three Core Cloud Access Control Concerns
    • Cloud Security: Authorization
  • Federated Security
    • Federated Identity Standards & Technologies

    • Identity Mediation to the Cloud
    • Example: Vordel Cloud Gateway
    • Vordel’s Drag & Drop Policy Development
    • Security Assertion Markup Language (SAML)
    • SAML Transaction Steps
    • OAuth Authentication Flow
    • Is OAuth Doomed?
    • Identity Federation (Microsoft)
    • Windows to EC2
  • Securing Cloud-Based Solutions
    • Granular Access Control

    • Cloud Security: Data Confidentiality
    • Cryptographically Enforced Data-Centric Security
    • Know Your Data: Data Lineage & Provenance
    • Data Provenance
    • Data Remanence
    • Cloud Security: Data Availability
    • Secure Computation
    • Security Best Practices for NoSQL Data Stores
    • Secure Data Storage & Transaction Logs
    • Endpoint Input Validation & Filtering
    • Real-time Security Monitoring
    • Privacy-Preserving Data Mining and Analytics
  • Virtual Security (VirtSec)
    • VirtSec: External Security

    • Typical DMZ (No Virtualization)
    • Partially Virtualized DMZ
    • Completely Screened DMZ
    • VirtSec Gotchas
    • Securing Tiers in AWS
  • Multitenancy with Cloud Networks
    • Build a Flow thru a Tunnel
  • Public vs. Private Clouds: Which Are More Secure?
  • What about a Virtual Private Cloud (VPC)?
    • Creating AWS VPC

    • Kerberos to VPC
    • Public, Private, or VPC?

Case Study: Amazon.com

Module 8: Cloud Governance

  • Governance is Key to Agile Architecture
  • Governance Leads to Empowerment
  • What is Governance?
  • Governance Domains
    • Governance & Enterprise Risk Management

    • Cloud Governance Challenges
    • Cloud Availability & Failover
    • Dealing with Cloud Reliability Example: Amazon EC2
    • Cloud Governance as VM Governance
    • Sample Amazon Simple Queue Service Policy
    • Rogue Clouds
  • Cloud Service Brokers (CSBs)
    • Unclear Nature of CSB

    • Forrester’s Unified Cloud Broker
    • CSB Topology Options
    • NNSA CSB Key Workflows, Enclaves, and Modules
    • Pilot Texas Cloud Offering
    • CSB Roadmap
  • #5: Visibility, Auditability, Collaboration & Governance
    • Audit Requirements

    • Cloud Assurance
    • Incident Response
  • eDiscovery and the Cloud
    • eDiscovery Issues

    • Cloud Compliance Directions
    • Cloud Compliance Model
  • Auditing & Logging
  • PCI and EU DPD
  • The Cloud Mandate in the US Government
    • Our Tax Dollars At Work

    • The 25 Point Plan
    • “Cloud First” Policy
    • FedRAMP
    • Third Party Assessment Organizations (3PAOs)
    • FedRAMP Hurdles
Exercise: Cloud Governance

Module 9: Big Data & the Cloud

  • What are “Big Data”?
    • Today’s Big Data are Tomorrow’s “Small” Data

    • Big Data Crisis Point
    • Parkinson’s Law (Big Data Corollary)
    • The Three V’s
    • 2012 Big Data Technology Landscape
  • What are Big Data for?
    • Real Time?

    • Big Data Motivations
  • Cloud Features & Big Data
    • Big Data & The Cloud
  • NoSQL Landscape
    • Apache Cassandra

    • Other Leading Open Source NoSQL Choices
    • Amazon DynamoDB
  • Enter Hadoop
    • Hadoop Value Proposition

    • The Hadoop Challenge
    • Hadoop Distributed File System
    • MapReduce
    • Exhaustive Processing
    • Hadoop Architecture
    • Big Data at Apache: Pig, Hive & Zookeeper
    • Common Hadoop Mistakes
    • Amazon Elastic MapReduce
    • Setting the Bar for Private Clouds
    • Hadoop Architecture @ Orbitz
    • Orbitz: Single Input Record and Results
  • Big Data Governance
    • Governance the Old Way

    • Governance the New Way The Secret to Big Data Governance
    • Analytics vs. Curation
    • Next-Gen Data Governance Tool
    • Our Tools are Only as Good as our Architecture
  • Cloud is an Emerging Market
Class Ends at 3:00 PM

REGISTER


Venue:

 

Dallas Texas
Venue TBD

REGISTER

Read the original blog entry...

More Stories By Jason Bloomberg

Jason Bloomberg is Chief Evangelist at EnterpriseWeb, where he drives the message and the community for EnterpriseWeb’s next generation enterprise platform. He is a global thought leader in the areas of Cloud Computing, Enterprise Architecture, and Service-Oriented Architecture. He is a frequent conference speaker and prolific writer, and he also serves as blogger for DevX. His latest book, The Agile Architecture Revolution: How Cloud Computing, REST-based SOA, and Mobile Computing are Changing Enterprise IT (John Wiley & Sons), was published in March 2013. Prior to EnterpriseWeb he was President of ZapThink, where he created the Licensed ZapThink Architect (LZA) SOA course and associated credential, and ran the LZA course as well as his Enterprise Cloud Computing course around the world. He was also the primary contributor to the ZapFlash newsletter and blog for twelve years. Mr. Bloomberg is one of the original Managing Partners of ZapThink LLC, the leading SOA advisory and analysis firm, which was acquired by Dovel Technologies in August 2011. Mr. Bloomberg’s book, Service Orient or Be Doomed! How Service Orientation Will Change Your Business (John Wiley & Sons, 2006, coauthored with Ron Schmelzer), is recognized as the leading business book on Service Orientation. He also co-authored the books XML and Web Services Unleashed (SAMS Publishing, 2002), and Web Page Scripting Techniques (Hayden Books, 1996). He has a diverse background in eBusiness technology management and industry analysis, including serving as a senior analyst in IDC’s eBusiness Advisory group, as well as holding eBusiness management positions at USWeb/CKS (later marchFIRST) and WaveBend Solutions (now Hitachi Consulting).

Cloud Expo Breaking News
Simply defined the SDDC promises that you’ll be able to treat “all” of your IT infrastructure as if it’s completely malleable. That there are no restrictions to how you can use and assign everything from border controls to VM size as long as you stay within the technical capabilities of the devices. The promise is great, but the reality is still a dream for the majority of enterprises. In his session at 14th Cloud Expo, Mark Thiele, EVP, Data Center Tech, at SUPERNAP, will cover where and how a business might benefit from SDDC and also why they should or shouldn’t attempt to adopt today.
MapDB is an Apache-licensed open source database specifically designed for Java developers. The library uses the standard Java Collections API, making it totally natural for Java developers to use and adopt, while scaling database size from GBs to TBs. MapDB is very fast and supports an agile approach to data, allowing developers to construct flexible schemas to exactly match application needs and tune performance, durability and caching for specific requirements.
APIs came about to help companies create and manage their digital ecosystem, enabling them not only to reach more customers through more devices, but also create a large supporting ecosystem of developers and partners. While Facebook, Twitter and Netflix were the early adopters of APIs, large enterprises have been quick to embrace the concept of APIs and have been leveraging APIs as a connective tissue that powers all interactions between their customers, partners and employees. As enterprises embrace APIs, some very specific Enterprise API Adoption patterns and best practices have started emerging. In his session at 14th Cloud Expo, Sachin Agarwal, VP of Product Marketing and Strategy at SOA Software, will talk about the most common enterprise API patterns and will discuss how enterprises can successfully launch an API program.
The social media expansion has shown just how people are eager to share their experiences with the rest of the world. Cloud technology is the perfect platform to satisfy this need given its great flexibility and readiness. At Cynny, we aim to revolutionize how people share and organize their digital life through a brand new cloud service, starting from infrastructure to the users’ interface. A revolution that began from inventing and designing our very own infrastructure: we have created the first server network powered solely by ARM CPU. The microservers have “organism-like” features, differentiating them from any of the current technologies. Benefits include low consumption of energy, making Cynny the ecologically friendly alternative for storage as well as cheaper infrastructure, lower running costs, etc.
Next-Gen Cloud. Whatever you call it, there’s a higher calling for cloud computing that requires providers to change their spots and move from a commodity mindset to a premium one. Businesses can no longer maintain the status quo that today’s service providers offer. Yes, the continuity, speed, mobility, data access and connectivity are staples of the cloud and always will be. But cloud providers that plan to not only exist tomorrow – but to lead – know that security must be the top priority for the cloud and are delivering it now. In his session at 14th Cloud Expo, Kurt Hagerman, Chief Information Security Officer at FireHost, will detail why and how you can have both infrastructure performance and enterprise-grade security – and what tomorrow's cloud provider will look like.
Today, developers and business units are leading the charge to cloud computing. The primary driver: faster access to computing resources by using the cloud's automated infrastructure provisioning. However, fast access to infrastructure exposes the next friction point: creating, delivering, and operating applications much faster. In his session at 14th Cloud Expo, Bernard Golden, VP of Strategy at ActiveState, will discuss why solving the next friction point is critical for true cloud computing success and how developers and business units can leverage service catalogs, frameworks, and DevOps to achieve the true goal of IT: delivering increased business value through applications.
Web conferencing in a public cloud has the same risks as any other cloud service. If you have ever had concerns over the types of data being shared in your employees’ web conferences, such as IP, financials or customer data, then it’s time to look at web conferencing in a private cloud. In her session at 14th Cloud Expo, Courtney Behrens, Senior Marketing Manager at Brother International, will discuss how issues that had previously been out of your control, like performance, advanced administration and compliance, can now be put back behind your firewall.
More and more enterprises today are doing business by opening up their data and applications through APIs. Though forward-thinking and strategic, exposing APIs also increases the surface area for potential attack by hackers. To benefit from APIs while staying secure, enterprises and security architects need to continue to develop a deep understanding about API security and how it differs from traditional web application security or mobile application security. In his session at 14th Cloud Expo, Sachin Agarwal, VP of Product Marketing and Strategy at SOA Software, will walk you through the various aspects of how an API could be potentially exploited. He will discuss the necessary best practices to secure your data and enterprise applications while continue continuing to support your business’s digital initiatives.
The revolution that happened in the server universe over the past 15 years has resulted in an eco-system that is more open, more democratically innovative and produced better results in technically challenging dimensions like scale. The underpinnings of the revolution were common hardware, standards based APIs (ex. POSIX) and a strict adherence to layering and isolation between applications, daemons and kernel drivers/modules which allowed multiple types of development happen in parallel without hindering others. Put simply, today's server model is built on a consistent x86 platform with few surprises in its core components. A kernel abstracts away the platform, so that applications and daemons are decoupled from the hardware. In contrast, networking equipment is still stuck in the mainframe era. Today, networking equipment is a single appliance, including hardware, OS, applications and user interface come as a monolithic entity from a single vendor. Switching between different vendor'...
Cloud backup and recovery services are critical to safeguarding an organization’s data and ensuring business continuity when technical failures and outages occur. With so many choices, how do you find the right provider for your specific needs? In his session at 14th Cloud Expo, Daniel Jacobson, Technology Manager at BUMI, will outline the key factors including backup configurations, proactive monitoring, data restoration, disaster recovery drills, security, compliance and data center resources. Aside from the technical considerations, the secret sauce in identifying the best vendor is the level of focus, expertise and specialization of their engineering team and support group, and how they monitor your day-to-day backups, provide recommendations, and guide you through restores when necessary.
Cloud scalability and performance should be at the heart of every successful Internet venture. The infrastructure needs to be resilient, flexible, and fast – it’s best not to get caught thinking about architecture until the middle of an emergency, when it's too late. In his interactive, no-holds-barred session at 14th Cloud Expo, Phil Jackson, Development Community Advocate for SoftLayer, will dive into how to design and build-out the right cloud infrastructure.
You use an agile process; your goal is to make your organization more agile. What about your data infrastructure? The truth is, today’s databases are anything but agile – they are effectively static repositories that are cumbersome to work with, difficult to change, and cannot keep pace with application demands. Performance suffers as a result, and it takes far longer than it should to deliver on new features and capabilities needed to make your organization competitive. As your application and business needs change, data repositories and structures get outmoded rapidly, resulting in increased work for application developers and slow performance for end users. Further, as data sizes grow into the Big Data realm, this problem is exacerbated and becomes even more difficult to address. A seemingly simple schema change can take hours (or more) to perform, and as requirements evolve the disconnect between existing data structures and actual needs diverge.
SYS-CON Events announced today that SherWeb, a long-time leading provider of cloud services and Microsoft's 2013 World Hosting Partner of the Year, will exhibit at SYS-CON's 14th International Cloud Expo®, which will take place on June 10–12, 2014, at the Javits Center in New York City, New York. A worldwide hosted services leader ranking in the prestigious North American Deloitte Technology Fast 500TM, and Microsoft's 2013 World Hosting Partner of the Year, SherWeb provides competitive cloud solutions to businesses and partners around the world. Founded in 1998, SherWeb is a privately owned company headquartered in Quebec, Canada. Its service portfolio includes Microsoft Exchange, SharePoint, Lync, Dynamics CRM and more.
The world of cloud and application development is not just for the hardened developer these days. In their session at 14th Cloud Expo, Phil Jackson, Development Community Advocate for SoftLayer, and Harold Hannon, Sr. Software Architect at SoftLayer, will pull back the curtain of the architecture of a fun demo application purpose-built for the cloud. They will focus on demonstrating how they leveraged compute, storage, messaging, and other cloud elements hosted at SoftLayer to lower the effort and difficulty of putting together a useful application. This will be an active demonstration and review of simple command-line tools and resources, so don’t be afraid if you are not a seasoned developer.
SYS-CON Events announced today that BUMI, a premium managed service provider specializing in data backup and recovery, will exhibit at SYS-CON's 14th International Cloud Expo®, which will take place on June 10–12, 2014, at the Javits Center in New York City, New York. Manhattan-based BUMI (Backup My Info!) is a premium managed service provider specializing in data backup and recovery. Founded in 2002, the company’s Here, There and Everywhere data backup and recovery solutions are utilized by more than 500 businesses. BUMI clients include professional service organizations such as banking, financial, insurance, accounting, hedge funds and law firms. The company is known for its relentless passion for customer service and support, and has won numerous awards, including Customer Service Provider of the Year and 10 Best Companies to Work For.