This document discusses security in the AWS cloud. It outlines the various AWS services like S3, EC2, VPC and how security groups can be used to restrict access between tiers (web, application, database). It also mentions that AWS provides strong security through control of physical infrastructure, access controls, audits and compliance with regulations like HIPAA and SOX. Customer data is protected and isolated from other customers.
The New York Times migrated many of their online services to AWS to gain scalability, flexibility and cost savings. They moved their archives site, TimesMachine, to AWS using S3, EC2 and Hadoop to host over 400,000 objects and 4TB of data. Their Skimmer prototype was deployed to production on AWS within an hour by launching additional EC2 instances. They now use AWS for over 40% of their infrastructure, saving on operational costs, and are exploring multi-AZ and multi-region capabilities to improve availability.
This document discusses security in the AWS cloud. It outlines the various AWS services like S3, EC2, VPC and how security groups can be used to restrict access between tiers (web, application, database). It also mentions that AWS provides strong security through control of physical infrastructure, access controls, audits and compliance with regulations like HIPAA and SOX. Customer data is protected and isolated from other customers.
The New York Times migrated many of their online services to AWS to gain scalability, flexibility and cost savings. They moved their archives site, TimesMachine, to AWS using S3, EC2 and Hadoop to host over 400,000 objects and 4TB of data. Their Skimmer prototype was deployed to production on AWS within an hour by launching additional EC2 instances. They now use AWS for over 40% of their infrastructure, saving on operational costs, and are exploring multi-AZ and multi-region capabilities to improve availability.
Enterprise Management for the AWS Cloud (DMG209) | AWS re:Invent 2013Amazon Web Services
(Presented by 2nd Watch)
Enterprise IT professionals have unique challenges with cloud resources. Deploying and managing an enterprise application today requires a solution that ensures compliance with corporate IT governance requirements and has predictable and repeatable performance and costs. In addition business users also want solutions that can be deployed quickly. In this session 2nd Watch shows you how to deal with these enterprise class cloud deployment challenges. You see how AWS CloudFormation scripts can be extended to automate reference architecture design creation, deployment, and management. You also learn how to visually inventory deployed AWS reference architectures and monitor AWS usage, including how to budget for platform usage by project, department, or program, and track and allocate costs in a similar way.
The document discusses how startups can use AWS cloud services to simplify building and running applications. It outlines the four main jobs of a startup founder as product vision, business model, speed of execution, and talent. It then discusses additional jobs for technical founders related to security, reliability, scalability, performance, and cost efficiency. The document provides examples of Singapore startups using AWS and discusses how AWS services like EC2 Container Service, Lambda, API Gateway, Cognito, and IoT can help simplify developing, deploying and managing applications by removing the need to manage infrastructure and allowing developers to focus on their code. It also discusses how AWS makes analytics, machine learning, and mobile development simpler through services like Kinesis, Machine
AWS Summit Sydney 2014 | Running Complex Enterprise Workloads on AWS - Sessio...Amazon Web Services
In the near future the majority of enterprise workloads will be running on public cloud platforms like AWS. In this session Fronde - an organisation with six years experience with AWS - will describe their approach to enterprise IT liberation; how to go about moving your complex workloads and strategies to overcome potential obstacles. We’ll demonstrate how we’ve moved traditional on-premise Citrix Virtual Desktop up to AWS to realise a Digital Workspace for the future that delivers real business value.
Come learn practical ways to use Amazon DynamoDB and see them demonstrated with the AWS SDK for Java. We’ll show you how to build systems that dynamically transform your DynamoDB data using DynamoDB Streams and AWS Lambda. Using the AWS Toolkit for Eclipse, we’ll quickly and easily build Lambda functions that act as triggers for events in your system. We’ll cover techniques for batch processing DynamoDB data, demonstrate how to rate limit your requests to control how quickly you consume provisioned throughput, and even show you some techniques for offloading this processing to a completely managed environment in AWS Lambda.
AWS Customer Presentation: Centrastage - AWS Summit 2012 - London Customer Ta...Amazon Web Services
This document discusses remote management and monitoring services provided by Centrastage. It offers a hosted solution with pay-as-you-go billing and no minimum contracts. The solution allows customers to easily deploy monitoring and scale resources on demand without lead times. It utilizes various AWS services like Route53, ELB, EC2, ElastiCache, RDS, S3, and CloudWatch to provide high availability, redundancy, storage, and metrics collection. It also offers continuous integration, security best practices, and third party testing.
AWS Sydney Summit 2013 - Building Web Scale Applications with AWSAmazon Web Services
This document discusses strategies for building applications that can scale on AWS. It recommends architecting for loose coupling between components to allow independent scaling. Using services like SQS as buffers between components decouples them. Auto scaling helps applications automatically scale compute resources up and down based on demand. Elastic Load Balancing distributes traffic across multiple instances. Session state should reside outside of scaled components, in a performant and scalable data store like DynamoDB. Data tier scaling may involve strategies like sharding or using managed databases like DynamoDB or Redshift that scale horizontally. AWS services like ELB, Auto Scaling, SQS, and databases help applications achieve web-scale.
Running Microsoft Enterprise Workloads on Amazon Web ServicesAmazon Web Services
The cloud is the new norm for organisations of all sizes. In this session you will learn how to create an entire Microsoft Enterprise environment in AWS that includes AWS Active Directory Service, Simple System Management (SSM) service, MS Exchange and SharePoint.
James Saull, Principal Solutions Architect, Amazon Web Services, EMEA
This document provides an agenda and overview for an AWS Security Day event. The agenda includes sessions on topics like the AWS shared security responsibility model, IAM best practices, encryption options, logging and alerting, account separation, and new services. It also includes an introduction and overview of AWS by an evangelist, highlighting growth in customers, the vast technology platform, pace of innovation, and computing services like Lambda.
This document discusses the benefits of cloud computing on Amazon Web Services (AWS). Key benefits include no upfront capital expenses, low costs by only paying for resources used, ability to easily scale infrastructure up and down, and improved agility and time to market for deploying new services. AWS offers global infrastructure across multiple regions and availability zones for high availability. Security is a shared responsibility between AWS and customers. AWS provides several foundational services for compute, storage, database, and networking resources that customers can use to build applications.
The AWS cloud infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. In this session, we’ll provide a practical understanding of the assurance programs that AWS provides; such as HIPAA, FedRAMP(SM), PCI DSS Level 1, MPAA, and many others. We’ll also address the types of business solutions that these certifications enable you to deploy on the AWS Cloud, as well as the tools and services AWS makes available to customers to secure and manage their resources.
Scale and Reach: Always Up - Always On - AWS Symposium 2014 - Washington D.C....Amazon Web Services
This session will feature RAINN, and the always up, always on needed infrastructure required to support its mission. You will gain an understanding of their environment and why they chose AWS, how they tackle security and more.
Dole Food's Global Collaboration Platform and Web Presence on AWS (ENT209) | ...Amazon Web Services
Dole Food needed a global SharePoint infrastructure that met tough goals for availability, performance, scalability, and price. Dole also needed a highly scalable and resilient hosting infrastructure for its public web presence. By deploying both on AWS, Dole Food met its goals while avoiding capital expenditures and operational costs. We trace the project’s timeline, discussing how those goals were met and sharing lessons learned. We also talk about how we extended Dole Food’s corporate Active Directory into the AWS cloud.
The document outlines 6 rules for innovation according to Carlos Conde from Amazon: 1) Focus on your customers, 2) Experiment frequently, 3) Measure, improve and iterate, 4) Move fast and be nimble, 5) Embrace failure, and 6) Focus on your business. The document provides supporting quotes and examples from Jeff Bezos and others about the importance of customer-centric innovation and an experimental mindset.
Amazon Web Services puts on-demand infrastructure at your fingertips, making it easy and cost effective to spin up new environments for developing and running your applications. But when things scale out, the number of pieces of infrastructure to manage and configure increases. This webinar introduces two frameworks, Amazon Elastic Beanstalk and Amazon Cloud Formation, both built into the AWS cloud that can help you manage your technical assets as you grow.
AWS makes development of cross-platform mobile applications easy. With highly-scalable cloud services such as Amazon S3, Amazon DynamoDB and Amazon SNS, mobile developers can build powerful cloud-backed mobile apps with just a few lines of code. In this session, you will learn how to connect directly to these services and how to build a powerful back end for your Android and iOS applications. We will also share some best practices from other successful apps such as Flipboard and Supercell so you can focus on differentiating your app functionality whilst leaving the 'table stakes' with no differentiated value to the cloud.
The document summarizes an AWS seminar series held in 2015. It includes:
- An agenda with speakers from AWS discussing topics like cloud computing trends, data analytics, database migrations, and security.
- Sections on why companies are adopting cloud computing quickly due to cost savings and agility. It also discusses the freedoms cloud provides for building, data utilization, data transfers, database choices, and balanced security.
- Advice that cloud adoption is a journey unique to each company, and the AWS Cloud Adoption Framework can help guide organizations through domains, best practices, and perspectives to consider.
AWS Summit 2013 | Singapore - Delivering Search for Today's Local, Social, an...Amazon Web Services
As more organizations seek to leverage the power and benefits of the cloud, they also need to combine new systems with exiting on-premises systems. Services such as Virtual Private Cloud, VPN and DirectConnect enable AWS customers to combine on-premises and cloud-based resources easily and effectively. This session will walk customers through the 4 main patterns of connectivity and will include a ""real time"" demonstration of how easy it is to setup your own VPC and start working in your own private section of the AWS Cloud.
AWS Summit Auckland 2014 | Moving to the Cloud. What does it Mean to your Bus...Amazon Web Services
AWS launched in 2006, and since then we have released more than 530 services, features, and major announcements. Every year, we outpace the previous year in launches and are continuously accelerating the pace of innovation across the organization. Ever wonder how we formulate customer-centric ideas, turn them into features and services, and get them to market quickly? This session dives deep into how an idea becomes a service at AWS and how we continue to evolve the service after release through innovation at every level. We even spill the beans on how we manage operational excellence across our services to ensure the highest possible availability. Come learn about the rapid pace of innovation at AWS, and the culture that formulates magic behind the scenes.
Enterprise Management for the AWS Cloud (DMG209) | AWS re:Invent 2013Amazon Web Services
(Presented by 2nd Watch)
Enterprise IT professionals have unique challenges with cloud resources. Deploying and managing an enterprise application today requires a solution that ensures compliance with corporate IT governance requirements and has predictable and repeatable performance and costs. In addition business users also want solutions that can be deployed quickly. In this session 2nd Watch shows you how to deal with these enterprise class cloud deployment challenges. You see how AWS CloudFormation scripts can be extended to automate reference architecture design creation, deployment, and management. You also learn how to visually inventory deployed AWS reference architectures and monitor AWS usage, including how to budget for platform usage by project, department, or program, and track and allocate costs in a similar way.
The document discusses how startups can use AWS cloud services to simplify building and running applications. It outlines the four main jobs of a startup founder as product vision, business model, speed of execution, and talent. It then discusses additional jobs for technical founders related to security, reliability, scalability, performance, and cost efficiency. The document provides examples of Singapore startups using AWS and discusses how AWS services like EC2 Container Service, Lambda, API Gateway, Cognito, and IoT can help simplify developing, deploying and managing applications by removing the need to manage infrastructure and allowing developers to focus on their code. It also discusses how AWS makes analytics, machine learning, and mobile development simpler through services like Kinesis, Machine
AWS Summit Sydney 2014 | Running Complex Enterprise Workloads on AWS - Sessio...Amazon Web Services
In the near future the majority of enterprise workloads will be running on public cloud platforms like AWS. In this session Fronde - an organisation with six years experience with AWS - will describe their approach to enterprise IT liberation; how to go about moving your complex workloads and strategies to overcome potential obstacles. We’ll demonstrate how we’ve moved traditional on-premise Citrix Virtual Desktop up to AWS to realise a Digital Workspace for the future that delivers real business value.
Come learn practical ways to use Amazon DynamoDB and see them demonstrated with the AWS SDK for Java. We’ll show you how to build systems that dynamically transform your DynamoDB data using DynamoDB Streams and AWS Lambda. Using the AWS Toolkit for Eclipse, we’ll quickly and easily build Lambda functions that act as triggers for events in your system. We’ll cover techniques for batch processing DynamoDB data, demonstrate how to rate limit your requests to control how quickly you consume provisioned throughput, and even show you some techniques for offloading this processing to a completely managed environment in AWS Lambda.
AWS Customer Presentation: Centrastage - AWS Summit 2012 - London Customer Ta...Amazon Web Services
This document discusses remote management and monitoring services provided by Centrastage. It offers a hosted solution with pay-as-you-go billing and no minimum contracts. The solution allows customers to easily deploy monitoring and scale resources on demand without lead times. It utilizes various AWS services like Route53, ELB, EC2, ElastiCache, RDS, S3, and CloudWatch to provide high availability, redundancy, storage, and metrics collection. It also offers continuous integration, security best practices, and third party testing.
AWS Sydney Summit 2013 - Building Web Scale Applications with AWSAmazon Web Services
This document discusses strategies for building applications that can scale on AWS. It recommends architecting for loose coupling between components to allow independent scaling. Using services like SQS as buffers between components decouples them. Auto scaling helps applications automatically scale compute resources up and down based on demand. Elastic Load Balancing distributes traffic across multiple instances. Session state should reside outside of scaled components, in a performant and scalable data store like DynamoDB. Data tier scaling may involve strategies like sharding or using managed databases like DynamoDB or Redshift that scale horizontally. AWS services like ELB, Auto Scaling, SQS, and databases help applications achieve web-scale.
Running Microsoft Enterprise Workloads on Amazon Web ServicesAmazon Web Services
The cloud is the new norm for organisations of all sizes. In this session you will learn how to create an entire Microsoft Enterprise environment in AWS that includes AWS Active Directory Service, Simple System Management (SSM) service, MS Exchange and SharePoint.
James Saull, Principal Solutions Architect, Amazon Web Services, EMEA
This document provides an agenda and overview for an AWS Security Day event. The agenda includes sessions on topics like the AWS shared security responsibility model, IAM best practices, encryption options, logging and alerting, account separation, and new services. It also includes an introduction and overview of AWS by an evangelist, highlighting growth in customers, the vast technology platform, pace of innovation, and computing services like Lambda.
This document discusses the benefits of cloud computing on Amazon Web Services (AWS). Key benefits include no upfront capital expenses, low costs by only paying for resources used, ability to easily scale infrastructure up and down, and improved agility and time to market for deploying new services. AWS offers global infrastructure across multiple regions and availability zones for high availability. Security is a shared responsibility between AWS and customers. AWS provides several foundational services for compute, storage, database, and networking resources that customers can use to build applications.
The AWS cloud infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. In this session, we’ll provide a practical understanding of the assurance programs that AWS provides; such as HIPAA, FedRAMP(SM), PCI DSS Level 1, MPAA, and many others. We’ll also address the types of business solutions that these certifications enable you to deploy on the AWS Cloud, as well as the tools and services AWS makes available to customers to secure and manage their resources.
Scale and Reach: Always Up - Always On - AWS Symposium 2014 - Washington D.C....Amazon Web Services
This session will feature RAINN, and the always up, always on needed infrastructure required to support its mission. You will gain an understanding of their environment and why they chose AWS, how they tackle security and more.
Dole Food's Global Collaboration Platform and Web Presence on AWS (ENT209) | ...Amazon Web Services
Dole Food needed a global SharePoint infrastructure that met tough goals for availability, performance, scalability, and price. Dole also needed a highly scalable and resilient hosting infrastructure for its public web presence. By deploying both on AWS, Dole Food met its goals while avoiding capital expenditures and operational costs. We trace the project’s timeline, discussing how those goals were met and sharing lessons learned. We also talk about how we extended Dole Food’s corporate Active Directory into the AWS cloud.
The document outlines 6 rules for innovation according to Carlos Conde from Amazon: 1) Focus on your customers, 2) Experiment frequently, 3) Measure, improve and iterate, 4) Move fast and be nimble, 5) Embrace failure, and 6) Focus on your business. The document provides supporting quotes and examples from Jeff Bezos and others about the importance of customer-centric innovation and an experimental mindset.
Amazon Web Services puts on-demand infrastructure at your fingertips, making it easy and cost effective to spin up new environments for developing and running your applications. But when things scale out, the number of pieces of infrastructure to manage and configure increases. This webinar introduces two frameworks, Amazon Elastic Beanstalk and Amazon Cloud Formation, both built into the AWS cloud that can help you manage your technical assets as you grow.
AWS makes development of cross-platform mobile applications easy. With highly-scalable cloud services such as Amazon S3, Amazon DynamoDB and Amazon SNS, mobile developers can build powerful cloud-backed mobile apps with just a few lines of code. In this session, you will learn how to connect directly to these services and how to build a powerful back end for your Android and iOS applications. We will also share some best practices from other successful apps such as Flipboard and Supercell so you can focus on differentiating your app functionality whilst leaving the 'table stakes' with no differentiated value to the cloud.
The document summarizes an AWS seminar series held in 2015. It includes:
- An agenda with speakers from AWS discussing topics like cloud computing trends, data analytics, database migrations, and security.
- Sections on why companies are adopting cloud computing quickly due to cost savings and agility. It also discusses the freedoms cloud provides for building, data utilization, data transfers, database choices, and balanced security.
- Advice that cloud adoption is a journey unique to each company, and the AWS Cloud Adoption Framework can help guide organizations through domains, best practices, and perspectives to consider.
AWS Summit 2013 | Singapore - Delivering Search for Today's Local, Social, an...Amazon Web Services
As more organizations seek to leverage the power and benefits of the cloud, they also need to combine new systems with exiting on-premises systems. Services such as Virtual Private Cloud, VPN and DirectConnect enable AWS customers to combine on-premises and cloud-based resources easily and effectively. This session will walk customers through the 4 main patterns of connectivity and will include a ""real time"" demonstration of how easy it is to setup your own VPC and start working in your own private section of the AWS Cloud.
AWS Summit Auckland 2014 | Moving to the Cloud. What does it Mean to your Bus...Amazon Web Services
AWS launched in 2006, and since then we have released more than 530 services, features, and major announcements. Every year, we outpace the previous year in launches and are continuously accelerating the pace of innovation across the organization. Ever wonder how we formulate customer-centric ideas, turn them into features and services, and get them to market quickly? This session dives deep into how an idea becomes a service at AWS and how we continue to evolve the service after release through innovation at every level. We even spill the beans on how we manage operational excellence across our services to ensure the highest possible availability. Come learn about the rapid pace of innovation at AWS, and the culture that formulates magic behind the scenes.
OSA02 - Pas de transactionnel haute performance sans un couple machine logici...Nicolas Desachy
Ressources cloisonnées et dépourvues de flexibilité ? Goulots d\’étranglement au niveau des performances ? Temps d\’arrêt inacceptables ? Coûts et complexité liés à l\’évolutivité ? Tâches de gestion manuelles très longues ? L’explosion des données et la croissance des transactions augmente la demande de systèmes éprouvés et capables de garantir l\’intégrité, les performances et la flexibilité tout en permettant de réaliser des économies. Si ces questions vous interpellent, cet atelier est pour vous. Vous y découvrirez les dernières nouveautés en terme de systèmes transactionnels IBM et les raisons pour lesquelles de nombreux clients migrent vers ces systèmes.
En prime : les premiers retours d’expérience de portage vers IBM DB2 9.7
Tech daysRetour d’expérience Big Compute & HPC sur Windows Azure [TechDays 2014]ANEO
Le cloud est-il adapté aux besoins du calcul hautes performances ? La réponse par l’expérience : les consultants HPC d'ANEO ont porté et optimisé une application scientifique distribuée développée par Supélec depuis leur cluster Linux vers la nouvelle offre de cloud Microsoft, Big Compute (nœuds reliés en InfiniBand).
Retour d’expérience Big Compute & HPC sur Windows Azure [TechDays 2014]Antoine Poliakov
Le cloud est-il adapté aux besoins du calcul hautes performances ? La réponse par l’expérience : les consultants HPC d'ANEO ont porté et optimisé une application scientifique distribuée développée par Supélec depuis leur cluster Linux vers la nouvelle offre de cloud Microsoft, Big Compute (nœuds reliés en InfiniBand).
Retour d'expérience Bouygues Telecom : Analyse BI à l'aide d'une appliance SQ...Microsoft Technet France
Nous allons voir durant cette session comment, avec l’aide d’une Appliance Fast track HP, faire une analyse à postériori de données grâce à : - Powerpivot dans Excel 2010 - Powerview dans Sharepoint 2010 Tout ceci branché sur une instance Analysis Services (AS) en mode Tabular grâce aux outils BI de SQL Server 2012. Nous allons pas à pas manipuler des KPIs bruts, en créer grâce à Powerpivot et les publier dans Sharepoint, les réintégrer dans AS, afin de les manipuler grâce à Powerview.
TechDays 2011 - VIR302 virtualiser vos applications métiers critiques sous hy...Patrick Guimonet
Cette session traite des scénarios de virtualisation pour Microsoft SQL Server, Microsoft SharePoint Server et Microsoft Exchange Server, mais aussi d'application comme SAP et des problématiques clients et comment virtualiser ces applications sous Hyper-V. Pour chaque application, nous aborderons divers scénarios dans lesquels la virtualisation est applicable et nous plongerons plus en détail dans ces technologies. La session met en évidence les meilleures pratiques pour un déploiement réussi.
Mener vos projets IT sur le secteur public est parfois long et compliqué. IBM vous aide à accélérer le processus d'achat d'infrastructure grâce à son référencement UGAP. Tous les clients du Secteur Public peuvent désormais accéder (sans lancement d’appel d'offre) au catalogue UGAP du marché de référencement pour les offres logicielles, les offres stockage et les offres de service IBM.
Pour en savoir plus : http://www-935.ibm.com/industries/fr/fr/secteurpublic/ugap/ ou contacter :
- Jeremy Favresse – Digital Sales Specialist : jeremy.favresse@ie.ibm.com
Découvrez les avantages du stockage IBM Flash ! Les solutions de stockage IBM Flash fournissent la micro-latence, les performances évolutives et l'efficacité opérationnelle nécessaires pour découvrir des informations à partir de volumes massifs de données. Maintenant, vous pouvez faire plus avec moins pour déjouer la concurrence.
IBM FlashSystem va transformer votre entreprise grâce de meilleures décisions prises en temps réel et basées sur les données.
Pour en savoir plus : http://www-03.ibm.com/systems/fr/storage/flash/ ou contacter :
- Youness RACHACH – Software-Defined Storage Specialist : youness.r@fr.ibm.com
- Erwan AUFFRET – Avant-Vente Technique : erwan.auffret@fr.ibm.com
- Marieke SCHABAILLE – Digital Sales Specialist : Mschabai@ie.ibm.com
Retour d'expérience BIG COMPUTE & HPC sur Windows Azure, par ANEO et SUPELECMicrosoft Technet France
Session de retour d'experience sur Windows Azure Big Compute à Supelec Metz: Portage de Linux à Windows et benchmark sur 512 coeurs d'un logiciel de traitement du signal de Supelec Metz. Session présentée par Antoine Poliakov d'ANEO et le prof. Stéphane Vialle de Supelec Metz. www.aneo.eu/ www.metz.supelec.fr/~vialle La plateforme Windows Azure Big Compute a été créée pour répondre aux besoins d'applications parallelisées impliquant des communications entre nœuds de calculs. Big Compute repose sur un cluster bâti autour de la solution HPCPack et interconnecté en infiniband. Dans le but d'explorer cette offre et la valeur ajoutée de cette infrastructure, ANEO a analysé les performances d’une application qui a été portée par ses soins à partir de Linux. Cette application de traitement du signal, développée et optimisée par Supélec, fait de la segmentation audio et présente deux niveaux de parallélisme. Le premier niveaux de parallélisme met en œuvre des threads à l’aide d’OpenMP tandis que le second met en œuvre des process (éventuellement distribués) et s’appuie sur MSMPI. Dans cette présentation, nous exposerons comment effectuer le portage d’une application HPC depuis Linux vers Windows Azure. Nous analyserons et discuterons ensuite les performances obtenues.
Speakers : Antoine Poliakov (ANEO), Pierre-Louis Xech (Microsoft France)
Lors de cette session seront présentés les différents scénarios de déploiements avec SCCM 20012 SP1 (nouveautés du SP1, intégration de Windows 8, nouveaux scénarios applicatifs…)
Le cloud-in-a-box avec Cloud Platform System (CPS) et Windows Azure PackMicrosoft Décideurs IT
Microsoft apporte son expérience dans la conception et la gestion des centres de données et du cloud avec un système convergent entièrement validé et intégré en usine. CPS associe une pile logicielle éprouvée avec Windows Server 2012 R2 et System Center 2012 R2, le portail Windows Azure Pack et les infrastructures serveurs, stockage et équipements réseau de DELL. Basé sur un bloc de construction évolutif et extensible, CPS raccourcit le temps de mise en œuvre tout en proposant une expérience cohérente du cloud telle que demandée par vos métiers.
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
1) The document discusses building a minimum viable product (MVP) using Amazon Web Services (AWS).
2) It provides an example of an MVP for an omni-channel messenger platform that was built from 2017 to connect ecommerce stores to customers via web chat, Facebook Messenger, WhatsApp, and other channels.
3) The founder discusses how they started with an MVP in 2017 with 200 ecommerce stores in Hong Kong and Taiwan, and have since expanded to over 5000 clients across Southeast Asia using AWS for scaling.
This document discusses pitch decks and fundraising materials. It explains that venture capitalists will typically spend only 3 minutes and 44 seconds reviewing a pitch deck. Therefore, the deck needs to tell a compelling story to grab their attention. It also provides tips on tailoring different types of decks for different purposes, such as creating a concise 1-2 page teaser, a presentation deck for pitching in-person, and a more detailed read-only or fundraising deck. The document stresses the importance of including key information like the problem, solution, product, traction, market size, plans, team, and ask.
This document discusses building serverless web applications using AWS services like API Gateway, Lambda, DynamoDB, S3 and Amplify. It provides an overview of each service and how they can work together to create a scalable, secure and cost-effective serverless application stack without having to manage servers or infrastructure. Key services covered include API Gateway for hosting APIs, Lambda for backend logic, DynamoDB for database needs, S3 for static content, and Amplify for frontend hosting and continuous deployment.
This document provides tips for fundraising from startup founders Roland Yau and Sze Lok Chan. It discusses generating competition to create urgency for investors, fundraising in parallel rather than sequentially, having a clear fundraising narrative focused on what you do and why it's compelling, and prioritizing relationships with people over firms. It also notes how the pandemic has changed fundraising, with examples of deals done virtually during this time. The tips emphasize being fully prepared before fundraising and cultivating connections with investors in advance.
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
This document discusses Amazon's machine learning services for building conversational interfaces and extracting insights from unstructured text and audio. It describes Amazon Lex for creating chatbots, Amazon Comprehend for natural language processing tasks like entity extraction and sentiment analysis, and how they can be used together for applications like intelligent call centers and content analysis. Pre-trained APIs simplify adding machine learning to apps without requiring ML expertise.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.
MongoDB in a scale-up: how to get away from a monolithic hell — MongoDB Paris...Horgix
This is the slide deck of a talk by Alexis "Horgix" Chotard and Laurentiu Capatina presented at the MongoDB Paris User Group in June 2024 about the feedback on how PayFit move away from a monolithic hell of a self-hosted MongoDB cluster to managed alternatives. Pitch below.
March 15, 2023, 6:59 AM: a MongoDB cluster collapses. Tough luck, this cluster contains 95% of user data and is absolutely vital for even minimal operation of our application. To worsen matters, this cluster is 7 years behind on versions, is not scalable, and barely observable. Furthermore, even the data model would quickly raise eyebrows: applications communicating with each other by reading/writing in the same MongoDB documents, documents reaching the maximum limit of 16MiB with hundreds of levels of nesting, and so forth. The incident will last several days and result in the loss of many users. We've seen better scenarios.
Let's explore how PayFit found itself in this hellish situation and, more importantly, how we managed to overcome it!
On the agenda: technical stabilization, untangling data models, breaking apart a Single Point of Failure (SPOF) into several elements with a more restricted blast radius, transitioning to managed services, improving internal accesses, regaining control over risky operations, and ultimately, approaching a technical migration when it impacts all development teams.
L'IA connaît une croissance rapide et son intégration dans le domaine éducatif soulève de nombreuses questions. Aujourd'hui, nous explorerons comment les étudiants utilisent l'IA, les perceptions des enseignants à ce sujet, et les mesures possibles pour encadrer ces usages.
Constat Actuel
L'IA est de plus en plus présente dans notre quotidien, y compris dans l'éducation. Certaines universités, comme Science Po en janvier 2023, ont interdit l'utilisation de l'IA, tandis que d'autres, comme l'Université de Prague, la considèrent comme du plagiat. Cette diversité de positions souligne la nécessité urgente d'une réponse institutionnelle pour encadrer ces usages et prévenir les risques de triche et de plagiat.
Enquête Nationale
Pour mieux comprendre ces dynamiques, une enquête nationale intitulée "L'IA dans l'enseignement" a été réalisée. Les auteurs de cette enquête sont Le Sphynx (sondage) et Compilatio (fraude académique). Elle a été diffusée dans les universités de Lyon et d'Aix-Marseille entre le 21 juin et le 15 août 2023, touchant 1242 enseignants et 4443 étudiants. Les questionnaires, conçus pour étudier les usages de l'IA et les représentations de ces usages, abordaient des thèmes comme les craintes, les opportunités et l'acceptabilité.
Résultats de l'Enquête
Les résultats montrent que 55 % des étudiants utilisent l'IA de manière occasionnelle ou fréquente, contre 34 % des enseignants. Cependant, 88 % des enseignants pensent que leurs étudiants utilisent l'IA, ce qui pourrait indiquer une surestimation des usages. Les usages identifiés incluent la recherche d'informations et la rédaction de textes, bien que ces réponses ne puissent pas être cumulées dans les choix proposés.
Analyse Critique
Une analyse plus approfondie révèle que les enseignants peinent à percevoir les bénéfices de l'IA pour l'apprentissage, contrairement aux étudiants. La question de savoir si l'IA améliore les notes sans développer les compétences reste débattue. Est-ce un dopage académique ou une opportunité pour un apprentissage plus efficace ?
Acceptabilité et Éthique
L'enquête révèle que beaucoup d'étudiants jugent acceptable d'utiliser l'IA pour rédiger leurs devoirs, et même un quart des enseignants partagent cet avis. Cela pose des questions éthiques cruciales : copier-coller est-il tricher ? Utiliser l'IA sous supervision ou pour des traductions est-il acceptable ? La réponse n'est pas simple et nécessite un débat ouvert.
Propositions et Solutions
Pour encadrer ces usages, plusieurs solutions sont proposées. Plutôt que d'interdire l'IA, il est suggéré de fixer des règles pour une utilisation responsable. Des innovations pédagogiques peuvent également être explorées, comme la création de situations de concurrence professionnelle ou l'utilisation de détecteurs d'IA.
Conclusion
En conclusion, bien que l'étude présente des limites, elle souligne un besoin urgent de régulation. Une charte institutionnelle pourrait fournir un cadre pour une utilisation éthique.
Le Comptoir OCTO - Qu’apporte l’analyse de cycle de vie lors d’un audit d’éco...OCTO Technology
Par Nicolas Bordier (Consultant numérique responsable @OCTO Technology) et Alaric Rougnon-Glasson (Sustainable Tech Consultant @OCTO Technology)
Sur un exemple très concret d’audit d’éco-conception de l’outil de bilan carbone C’Bilan développé par ICDC (Caisse des dépôts et consignations) nous allons expliquer en quoi l’ACV (analyse de cycle de vie) a été déterminante pour identifier les pistes d’actions pour réduire jusqu'à 82% de l’empreinte environnementale du service.
Vidéo Youtube : https://www.youtube.com/watch?v=7R8oL2P_DkU
Compte-rendu :
Ouvrez la porte ou prenez un mur (Agile Tour Genève 2024)Laurent Speyser
(Conférence dessinée)
Vous êtes certainement à l’origine, ou impliqué, dans un changement au sein de votre organisation. Et peut être que cela ne se passe pas aussi bien qu’attendu…
Depuis plusieurs années, je fais régulièrement le constat de l’échec de l’adoption de l’Agilité, et plus globalement de grands changements, dans les organisations. Je vais tenter de vous expliquer pourquoi ils suscitent peu d'adhésion, peu d’engagement, et ils ne tiennent pas dans le temps.
Heureusement, il existe un autre chemin. Pour l'emprunter il s'agira de cultiver l'invitation, l'intelligence collective , la mécanique des jeux, les rites de passages, .... afin que l'agilité prenne racine.
Vous repartirez de cette conférence en ayant pris du recul sur le changement tel qu‘il est généralement opéré aujourd’hui, et en ayant découvert (ou redécouvert) le seul guide valable à suivre, à mon sens, pour un changement authentique, durable, et respectueux des individus! Et en bonus, 2 ou 3 trucs pratiques!
3. La croissance d’AWS s’accélère…
Le business d’AWS
Utilisation Amazon S3
Utilisation Amazon EC2
4. Auparavant il fallait… Dépenser des millions pour bénéficier d’une infrastructure lente et inflexible….
•Investissement lourd pour lancer un projet
•Possibilité de stockage et de calcul de base
•Responsabilité des mises à jour
•Lenteur pour ajouter de nouvelles capacités
6. Support
Ecosystème de partenaires
Professional Services
Gestionnaires de comptes
Formations et certifications
Architectes solutions
Une équipe et de la documentation en français
7. Quel est le programme de cet après-midi? 13h30 -14h00 –Introduction et témoignage client de Laurent Pulce, CIO, Veolia GlobalEnterprise 14h00 -14h45 –Un voyage dans le AWS Cloud / En partenariat avec Morea14h45 -15h30 -Sécurisez vos applications Web dans le Cloud / En partenariat avec Trend Micro15h30 -15h45 –PAUSE 15h45 -16h30 -HybridIT avec AWS: Etendez la puissance de votre datacenterdans le Cloud / En partenariat avecCSC16h30 -17h15 -Exécution des applications critiques d'entreprise sur AWS / En partenariat avecEdifixio17h15 -18h00 -BigData et BI sur AWS: améliorez vos processus de décision en capitalisant sur vos données / En partenariat avec Keyrus
18h00 –18h15 –Conclusion et tirage au sort du workshop AWS/Morea
18h15 –19h30 -Cocktail
8. Merci à nos partenaires
Premium Sponsor
Gold Sponsors
Silver Sponsors
Un tirage au sort organisé à la fin de la journée…
A gagner? Une demi-journée de Workshop sur le Cloud AWS avec Morea
11. Intel’s roadmap advances………
“The number of transistors incorporated in a chip will approximately double every 24 months."
Gordon Moore, Former CEO & Intel co-founder
Intel®Core™ Microarchitecture
New
Micro- architectureMerom65nm
TOCKPenryn
New
Process Technology45nm
TICK
Intel® MicroarchitectureCodename Nehalem
New
Micro- architectureNehalem45nm
TOCKWestmere32nm
New
Process Technology
TICK
Intel® MicroarchitectureCodename Sandy BridgeSandyBridge32nm
New
Micro- architecture
TOCKIvy Bridge22nm
New
Process Technology
TICK
Intel® MicroarchitectureCodename HaswellHaswell22nm
New
Micro- architecture
TOCKBroadwell14nm
New
Process Technology
TICK
13. Intel®Xeon®Processor E5-2600 v3 product family (Haswell): Improvements
Haswell: What’s new
CPU architectural improvements
−Haswell micro architecture will provide compelling IPC increases for legacyperformance improvements
−Haswell New Instruction set including FMA for up to 2X†improvement in floating point improvement
−AVX 2.0 enabling acceleration of enterprise-class workloads
Next Generation of processor power management
−Energy Efficient Turbo
−UncoreFrequency Scaling
−Per-Core P-state
Improved I/O capabilities
−Increased Intel®Integrated I/O performance
−Increased QPI link speed: 9.6GT/s
Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors. Performance tests are measured using specific computer systems, components, software, operations and functions.Any change to any of those factors may cause the results to vary.Youshould consult other information and performance tests to assist you infully evaluating your contemplated prchases, including the performance of that product when combined with other products.For more information go to http://www.intel.com/performance
†
14. New Intel® Xeon® processor C4 instances
Instance Name
vCPUCount
RAM
Network Performance
c4.large
2
3.75 GiB
Moderate
c4.xlarge
4
7.5 GiB
Moderate
c4.2xlarge
8
15 GiB
High
c4.4xlarge
16
30 GiB
High
c4.8xlarge
36
60 GiB
10 Gbps
•Based on E5-2666 v3, Custom Processor designed for AWS EC2
•Up to 36 vCPU’sat 2.9 GHz, and can achieve clock speeds as high as 3.5 GHz with Turbo boost
Source https://aws.amazon.com/blogs/aws/new-c4-instances/
15. Performance…more than the core
Intel Technology enhanced AWS EC2 Instances
EC2 instances with Intel®processors provide additional features that impact your workload:
Intel®AES-NI1–Intel processors that support these new encryption instructions allow you to enable encryption for enhanced data security without paying a performance penalty.
Intel®AVX–Get dramatically better performance for highly parallel HPC workloads such as life science engineering, data mining, financial analysis, or other technical computing applications. AVX also enhances image, video, and audio processing.
Intel®Turbo Boost Technology2–Get a turbo boost of compute speed, accelerating performance for peak loads. Appropriate for traditional non-parallel workloads.
Intel®Solid State Drives –Enable application performance scaling via consistent fast performance, data integrity & security assurance including 256bit AES encryption, end-to-end & power loss protectionNot all processor technologies are available in all instances (details on following slides).
1. Intel® AES-New Instructions (Intel® AES-NI) requires a system with an AES-NI enabled processor, as well as non-Intel softwareto execute the instructions in the correct sequence. AES-NI is available on select Intel® processors. For availability, consult your reseller or system manufacturer. For more information, see http://software.intel.com/en-us/articles/intel-advanced-encryption-standard-instructions-aes-ni/
2. Intel® Turbo Boost Technology requires a system with Intel Turbo Boost Technology capability. Consult your PC manufacturer. Performance varies depending on hardware, software, and system configuration. For more information, see http://www.intel.com/content/www/us/en/architecture-and-technology/turbo-boost/turbo-boost-technology.html
16. Data Protection with Intel®AES-NI1Efficient ways to use encryption for data protection
1. Intel® AES-New Instructions (Intel® AES-NI) requires a system with an AES-NI enabled processor, as well as non-Intel softwareto execute the instructions in the correct sequence. AES-NI is available on select Intel® processors. For availability, consult your reseller or system manufacturer. For more information, see http://software.intel.com/en-us/articles/intel-advanced-encryption-standard-instructions-aes-ni/
17. Intel®AVX
AVX (Advanced Vector Extensions)
Doubles the size of number of bits used in a SIMD instruction from 128-bits to 256-bits. By doubling the operand size a given floating point instruction will now be able to execute twice as many floating point operations per clock.
Adds new instructions to take advantage of the new register size
Creates a 3-operand non-destructive SIMD instruction.
18. Intel® Advanced Vector Extensions (AVX) 2.0
Floating point Fused Multiply Add (FMA) improves high performance computing, professional imaging, feature detection
256-bit integervector instructions benefits math, codec, image processing and DSP software.
Source as of August 2014 TR#3034 on Linpack*. Baseline configuration: Intel® Server Board S2600CP with two Intel® Xeon® Processor E5-2697 v2, Intel® HT Technology disabled, Intel® Turbo Boost Technology enabled, 8x8GB DDR3-1866, RHEL* 6.3, Intel® MKL 11.0.5, score: 528 GFlops. New configuration: Intel® Server System R2208WTTYS with two Intel® Xeon® Processor E5-2699 v3, Intel® HT Technology disabled, Intel® Turbo Boost Technology enabled, 8x16GB DDR4-2133, RHEL* 6.4, Intel® MKL 11.1.1, score: 1,012 GFlops Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors.Performance tests, such as SYSmark and MobileMark, are measured using specific computer systems, components, software, operations and functions. Any change to any of those factors may cause the results to vary.You should consult other information and performance tests to assist you infully evaluating your contemplated purchases, including the performance of that product when combined with other products.For more information go to http://www.intel.com/performance*Other names and brands may be claimed as the property of others.
2012
2013
2014
Performance Core
Intel®AVX 1.0
2X Flops: 256-bit wide floating point- vectors
E5-2600
(32 nm Tock)
Half-float support,
Random Number Generator
Intel® AVX 2.0
E5-2600 v2
(22 nm Tick)
E5-2600 v3
(22 nm Tock)
Since 2001:
128-bit vectors
new
90%
UP TO 90%
Gen-to-Gen INCREASED
PERFORMANCE
19. Intel®Turbo Boost Technology2
Intel® Turbo Boost Technology 2.02automatically allows processor cores to run faster than the rated operating frequency if they’re operating below power, current, and temperature specification limits.
2. Intel® Turbo Boost Technology requires a system with Intel Turbo Boost Technology capability. Consult your PC manufacturer. Performance varies depending on hardware, software, and system configuration. For more information, see http://www.intel.com/content/www/us/en/architecture-and-technology/turbo-boost/turbo-boost- technology.html
20. E5-2600 v3…The World’s Most Energy Efficient Processor: Per Core P-States (PCPS) contributes to increased power efficiency by optimizing workload processing
Same processor
Same performance
Less Power
PCPS Off
PCPS On
Average freq/power bycore
2 4 6 8 10 12
Core
2 4 6 8 10 12
Core
Comparison based onSPECpower*_ssj2008 resultspublishedas of August 26, 2014. Sugon I620-G20 platform with two Intel® Xeon® Processor E5-2699 v3, 10,599 overall ssj_ops/watt. Source. Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors.Performance tests, such as SYSmark and MobileMark, are measured using specific computer systems, components, software, operations and functions. Any change to any of those factors may cause the results to vary.You should consult other information and performance tests to assist you infully evaluating your contemplated purchases, including the performance of that product when combined with other products.For more information go to http://www.intel.com/performance*Other names and brands may be claimed as the property of others.
24%
UP TO 24%
increase in
Energy Efficiency
21. AWS end customer’s benefit
Novartis reduced cost by choosing premium instances
up to
52%
Decrease inin run-time1
up to 65%
Cost reduction1
Job runtime in seconds1(lower is better)
1 NIBR, of Novartis Pharmaceuticals ran Next Gen Sequencing, Imaging & Modeling & Simtechniques (specifically Virtual Screening w/CPU bound, low mem, low IO, network, parallel Benchmarking SW ran same job many times (workload avg32 secson AWS cc2.8xlarge vs 1min 7 sec on AWS m1.large) revealed that best ROI was with cc2vspot instances
Intel does not control or audit the design or implementation of third party benchmark data or Web sites referenced in this document. Intel encourages all of its customers to visit the referenced Web sites or others where similar performance benchmark data are reported and confirm whether the referenced benchmark data are accurate and reflect performance of systems availablefor purchase.
Software and workloads used in performance tests may have been optimized for performance only on Intel microprocessors.Performance tests, such as SYSmarkand MobileMark, are measured using specific computer systems, components, software, operations and functions.Any change to any of those factors may cause the results to vary.You should consult otherinformation and performance tests to assist you infully evaluating your contemplated purchases, including the performance of that product when combined with other products. For more information go to http://www.intel.com/performance
Sec
0
10
20
30
40
50
60
70
Lower Performing
Premium
22. Full table of Intel technologies available in EC2
Intel CPU Family Xeon E5 v3 Xeon E5 v2 Xeon E5 v2 Xeon E5 v2 Xeon E5 Xeon E5 v2 Intel Xeon
Intel AES New
Instructions
(AES-NI)
Intel Advanced
Vector
Extensions (AVX)
AVX2
Intel Turbo Boost
Technology
SSDs
Amazon EC2 provides a wide selection of instance types optimized to fit different use cases.
The latest Intel Xeon processors are utilized, providing you with high performance and value, and the ability to choose
Amazon EC2 instance types that best meet your performance needs for compute intensive, memory intensive, or IOPS
intensive applications.
Look for advanced Intel features offered on Intel Xeon E5 v2 and v3
processors in select Amazon EC2 instance types
28. Veolia Water Technologies provides the complete range of services required
to design, build, maintain and upgrade water and wastewater treatment
facilities and systems for industrial clients and public authorities.
Veolia Water Technologies - About Us
31
33. 267 Locations in 54 countries
Around 12000 users (roughly same number of workstations),
80% of applications design and hosting centralized in Paris HQ :
• 1 single ERP (JDEdwards) covering all Veolia Water Tech businesses
• BI environment and applications (EPM & DWH)
• Corp Intranet, local intranets and
• CRM
• Engineering applications
All applications based on web or full web architecture
1 single AD, 1 single interconnected network (MPLS and Ipsec)
Extensive use of network optimization systems and performance monitoring
tools
190 physical servers, 260 virtualized servers
Google mail since last year for all Veolia entities
…So far, all servers on premises, hosted in IBM and Equinix Datacenters for
central applications, in Bus offices for local systems
Veolia Water Tech IT Metrics
34. Main Veolia Water Tech IT projects & trends
Move from MPLS private network to internet through Https
Get rid of ALL on premises platforms and move to the Cloud
Support the Digital Transformation business project
35. The Cloud : A no brainer !
• From a core IT activity to an IT facility, like electricity :
• Whenever I need it
• …on demand, with no engagement, pay as I go
• Always available
• …no outage, enhancing the quality of my service
• With the right tuned power
• …to adapt to my current use
• Using the last available technologies
• …no need to take care of it
• Secured and backed up
• …robust and reliable
• With the best price, and no investment
• …From Capex to Opex mode
• But also bring a real benefit to the Business :
• Providing additional off-the-shelf services
• …to enhance the experience and enable to create and develop ideas
• Enable New Business opportunities
• …Help the Digital transformation of the company
36. • Context :
• October 2013 : JM Herrewyn shows interest in Amazon.com and Amazon
Web Services power and asks for investigations about potential business
opportunities
• April 2014 : Liaison Committee presentation about both AWS and E-Commerce
• May 2014 :
• AWS presentation to JMH and GC : Strong will from the VWT top
management to get rid as much as possible of on premises infras
• First workshop and POC planification
• July 2014 : POC kick off
AWS Project Follow up 2014 - #2
Our Journey to the Cloud : The AWS Experiment (1/3)
37. • AWS/Cloud Global VE Global Enterprise objectives :
• Increase stability and level of service for end users in a 24/7 environment
(Atos and Vetech huge difficulties)
• Increase flexibility and reactivity in both project and run mode
• Take benefits of advanced features :
• Multi-region locations and data replication capabilities
• Wide range of AWS off-the-shelf services (monitoring, BI, etc…)
• ...Decrease costs
• ...But also from an IT perspective :
• Embark all IT teams (Infra, BI & Web apps, Latis, Performance, Security ) in
a common project, preparing the switch to a new way of work
AWS Project Follow up 2014 - #2
Our Journey to the Cloud : The AWS Experiment (1/3)
38. • POC Objectives :
• Evaluate the AWS solution on a various range of VWT environments regarding :
• technical aspects (infra, system, security)
• performances
• organization aspects
• costs
• Ramp up the teams on the solution
• Get a clearer idea about what we can address in 2015 or not regarding our level
of maturity
• Figure out the effort on change management aspects
• POC Scope :
• Latis (JdEdwards) preprod
• Typo3 (VWT Intranets)
• Magento (E-Commerce)
• EasyRef (Marketing PHP application)
AWS Project Follow up 2014 - #2
Our Journey to the Cloud : The AWS Experiment (2/3)
39. 2015
AWS Project Follow up 2014 - #2
Our Journey to the Cloud : The AWS Experiment (3/3)
40. Our journey to the Cloud : Outcomes
• A strong solution :
• So far, for Veolia Global Enterprises, everything’s eligible to the Cloud
• Power and flexibility are there
• Beyond IAAS, wide range of off-the-shelf services available
• Complete mastering of regional availability zones
• A real IT transformation :
• New pricing scheme to be fully understood and put under control
• New organization to be put in place : Application / Infra to be revisited (devops, tag
mastering implies new roles…)
• An opportunity for the team to get new perspective, but need to be followed up
• Applications to be revisited to take all the benefits from the AWS capabilities & features
(replication, BI, monitoring…)
• Security & Reversibility to be properly addressed :
• Adopt the right strategy according to reversibility needs
• Security management could be different…or not.
A busy Roadmap for the 2/3 coming years !!
41. Un voyage dansle cloud
Pierre Gilot, Solutions Architect AWS
@aws_actus
47. Gartner Magic Quadrant for Cloud Infrastructure as a Service 2014
Gartner “Magic Quadrant for Cloud Infrastructure as a Service,” Lydia Leong, Douglas Toombs, Bob Gill, Gregor Petri, Tiny Haynes, May 28, 2014. This Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available at http://aws.amazon.com/resources/analyst-reports/. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
49. C’est la première raison qui explique que les entreprises migrent rapidement vers le cloud et AWS
#1: Agilité
50. Les entreprises ne peuvent pas se permettre d’être lentes
Ajouter un nouvel Environnement Dev Ajouter un nouvel Environnement de Prod
Ajouter nouvel environnement en Europe Ajouter 1000 Serveurs
Retirer 1.000 serveurs
Déployer une Entrepôt de PB données
Arrêter 1 PB Data Warehouse
Amazon Web Services:
Infrastructure en minutes
«L’ancien temps»:
Infrastructure en semaines
Tout change avec ce niveau d’agilité…
51. Une plate-forme extensible et agile qui permet aux clients de créer des applications sophistiquées et évolutives
#2 PlateformeExtensible
52. La plateformeAWS
AWS Global Infrastructure
ApplicationServices
Networking
Deployment & Administration
Database
Storage
Compute
53. Oregon
Beijing
Tokyo
Singapore
Ireland
GovCloud
Northern
California
Sydney
São Paulo
Infrastructure Globale AWS
11 Régions
28 Zones de disponibilité
52 EdgeLocations
Une expansion continue
Frankfurt
North Virginia
54. Architecturé pour les exigences de sécurité des entreprises
Certifications et accréditations for charges critiques
AWS CloudTrail-appels API pour la gouvernance et la conformité
Stocker les données dans Amazon S3 ou les archiver dans Amazon Glacier
Enregistrer et examiner les activités des utilisateurs
55. De nombreuses entreprises craignent qu’il n’y ait que deux choix
Construire un cloud privé
Tout supprimer et migrer vers le cloud AWS
#1
#2
56. La Bonne Nouvelle est que le Cloud n’est pas un choix « tout ou rien»
Corporate
Data Centers
On-Premises
Resources
Cloud
Resources
Integration
57. #3: Itération continue
et innovation
AWS propose des mises à jour de l’infrastructure en continue, vous ne devez pas vous en charger
58. Un rythmerapided’innovations
2009
Amazon RDS
Amazon VPC
Auto Scaling
Elastic Load
Balancing
+48
2010
Amazon SNS
AWS Identity
& Access
Management
Amazon Route 53
+61
2011
Amazon
ElastiCache
Amazon SES
AWS
CloudFormation
AWS Direct
Connect
AWS Elastic
Beanstalk
GovCloud
+82
Amazon
CloudTrail
Amazon
CloudHSM
Amazon
WorkSpaces
Amazon Kinesis
Amazon Elastic
Transcoder
Amazon
AppStream
AWS OpsWorks
+280
2013
Amazon SWF
Amazon Redshift
Amazon Glacier
Amazon
Dynamo DB
Amazon
CloudSearch
AWS Storage
Gateway
AWS Data
Pipeline
+159
2012
2008
+24
Amazon EBS
Amazon
CloudFront
+454
2014
Amazon Cognito
Amazon Zocalo
Amazon Mobile
Analytics
*as of Nov 13, 2014
AWS Directory
Service
Amazon RDS for Aurora
AWS CodeDeploy
AWS Lambda
AWS Config
AWS Key Management Service
AWS Service Catalog
Amazon EC2 Container Service
AWS CodePipeline
AWS CodeCommit
59. Infrastructure sursite
Mises à jour à votrecharge
Chaque nouvelle fonctionnalité et service arrive prêt à l'emploi
Mises à jour automatiques
DynamoDB
Cross-region import/export
62. Problématiques communesLongs délais Impossibilité de prédire le succèsStatique, investissement préalable Coût de l’échec élevé Aversion au risque
Innovation étouffée
65. Training
Business Case
RFx
Approvisionnement
Business Processes
Outils de développement
BackendSystems
Compliance
Management produit
Marketing
Portfolio Management
Channels
Cycle de vie
Support
Sécurité
Licences
Tester
Audit
66. Training
Business Case
RFx
Approvisionnement
Business Processes
Outils de développement
BackendSystems
Compliance
Management produit
Marketing
Portfolio Management
Channels
Cycle de vie
Support
Sécurité
Licences
Tester
Audit
70. Cloud pour le développement & le test
SAP
Applications Entreprises Oracle
SAP
Réduit le temps de déploiement de plusieurs semaines à quelques jours
Les coûts de l'environnement de test est réduit
70% de réduction des coûts opérationnels
Tester
71. Construisez de nouvelles applications dans le cloud
Plus rapide à construire… plus facile à gérer…Moins coûteux à exploiter…
Les architectures distribuées à haute disponibilité
Financial record archiving
Clinicaltrial simulations
Product Prototyping& Design
Audience management & creativedesign
Hotelbookingengine
Biologicaldata research
Global web properties
Global deals engine
Videostreaming
SIM cardcredit
News distribution
App streaming
Firmwareupgrades
Mobile games
Tester
72. Production rapide Fonctionnalités limitéesItérer dans la production
“Production istrulythe onlyplace
youcanvalidateyourcode”
-Michael Nygard, authorof ‘Release it!’
Construire des produits à minima viables
Tester
73.
74. Utilisez le Cloud pour faire mieux que les applications sur site
Analyses BigData
DatabasesOracle
Analyses BigData
Exporter les données opérationnelles vers AWS pour procéder à
Sauvegarde automatisés vers Amazon S3 avecOracle RMAN
50% de réduction de cout et des requêtes 2 fois plus rapide avec Amazon Redshift
Tester
79. Your Data Center
Projet A
Déployé
Your LAN
Segments
Mettre à l’échelle
80. Your Data Center
Projet B
Déployé
Projet C
Déployé
AWS VPC
Mettre à l’échelle
81. Votre Data Center
Etendez votre datacenter et votre réseau de
manière sécurisée
Mettre à l’échelle
82. Les applications cloud qui s’intègrent
avec les applications sur site
Data Centers sur site
Hybrid
App
AWS fournit le
contenu et
l'application des
données
Intégration des
centres de
données pour
Samsung pour
les transactions
financières
Mettre à l’échelle
83. Datacenters sur
site
App
1/3 des serveurs
migrés sur AWS
Economie:
£1.5 Million
Migration de 500
domaines web en 5
mois
Nouveau produit
web disponible en 2
jours au lieu de 2
semaines
Migration de la plate-forme
de simulation
d'essais cliniques
Simulations passant
à 1.2hrs vs. 60hrs
64% de réduction de
coût
Migrer les applications existantes vers le
Cloud
Mettre à l’échelle
84. Ok, je suis partant! Comment puis-je profiter de tousles avantages du Cloud?
86. Le nouveau rôle des opérations informatiquesFacilitateur deServicesEvaluation axées sur le business A la demande, en Self-ServiceMesurable, facturation ‘Charge-back’Compliance
Optimiser
88. Livraison continueApp code + infra descriptionControl de versionAutomatisation des tests Déploiements petits et fréquentsDéploiement de production
Optimiser
89. test
Intégration continue
code
build
plan
Développement agile
Source http://www.collab.net
deploy
operate
collaboration
value
DevOps
release
Livraison continue
Optimiser
91. Collecter tous voslogsA/B testingAnalysesCompréhension Actions Itérer continuellement
Vos données conduisent votre prise de décision
Optimiser
“Withoutbigdata analytics, companiesare
blindand deaf, wanderingout onto the web likedeeron a freeway”
Geoffrey Moore
92. Import Export
Glacier
S3 EC2
Redshift
DynamoDB
EMR
Data
Pipeline
Direct Connect S3
Collecter Stocker Analyser Partager
AWS BIG DATA
PORTFOLIO
Amazon Kinesis - service entièrement géré permettant de traiter en
temps réel des données récoltées en continu à une échelle massive.
Tirez parti des services Big Data
Optimiser
93. • From over 40 data centers down to 6
• Planning to migrate 3000 apps by Jan 2015
• Saving $100M over 3 Years
VS
1. Evaluate infrastructure
costs & architecture
2. Make business case 3. Enable decision to move to the
cloud
Customer Spotlight: Dow Jones Intl.
Migration de Datacenter
Optimiser
98. Nous aidons nos clients à :
1. Construire les meilleures architectures AWS
2. Gérer leur plateforme AWS
3. Améliorer l’expérience clients/utilisateurs
4. Exploiter les possibilités du cloud
5. S’adapter au cloud
101. Génèse
2005 - 2008: Hébergement et infogérance DC
Transition
2009 -2011 : Hybride DC-AWS
Evolution
2012 – Aujourd’hui : Full AWS
Notre histoire
102. L’infra n’est plus une finalité
Ops > Devops
Adoption des méthodes agiles
Actions manuelles > automatisation
Construction d’architectures découplées et HD
Réduction du TTM
Focus sur le billing de nos clients
Constat
104. Streaming qualité CD (16bit/44.1kHz et mp3 320kbps)
Téléchargement de musique en 16bit et 24bit
Présent dans 9 pays européens
Différentes applications (mobiles, tablettes, Sonos, …)
105. Informations Techniques
• Plateforme hétérogène en PHP, Python et .Net (C#)
• Streaming vs Téléchargement
• Livraison de divers formats Flac, Alac, Wav,…
• Taille des fichiers
– Mp3 (320 kbps): ~9Mo
– Qualité CD (16bit/44.1 KHz): ~40Mo
– HD (24bit/96KHz): ~95Mo
– Stockage total > 500To
• Livraison quotidienne de nouveaux albums
107. ReLearn…
• Amazon S3
• Elasticité
• Varnish vs CloudFront
• Optimisation de la bande passante
• Comment bien gérer les coûts AWS
• Quels instances?
• Amazon RDS, ELB, EBS, VPC, R53, EMS, E=mc2,…
• Formation de nos ingénieurs
• Comment migrer?
108. Comment Migrer?
• Adapter le code (notamment Amazon S3)
• Utilisation du cache Amazon CloudFront
• Plateforme Internationale avec AWS
• Migration des données (musique)
• Encodage à la volée
• Déploiement des versions
110. Keep Calm and Write Code
• Compréhension et assurance
• Solution pour la migration
• Aide à l’adaptation software et hardware
• Montée en compétence interne
• Review de notre plateforme
• Optimisation des coûts
– Compétences interne
– Services Amazon
– Mise en service de la plateforme
112. Entreprise: Un voyage dansle cloud
Tester régulièrement
Echouerà moindrefrais
Plus d’innovation
Tester peu souvent
Echouercoutecher
Moinsd’innovation
Sur site
115. Chaque client dispose du même niveau de sécurité
Validation par des experts indépendants
• Toutes les régions AWS sont dans le périmètre
• SOC 1 (SSAE 16 & ISAE 3402) Type II
• SOC 2 Type II et rapport public SOC 3
• Certification ISO 27001
• Certifié PCI DSS Niveau 1 - Service Provider
Services Fondamentaux AWS
Serveurs Stockage
Bases de
données
Réseaux
Infrastructure
Globale AWS Régions
Zones de
disponibilité POPs
Amazon
CloudFront
116. Chiffrement côté
client
Chiffrement côté
serveur
Protection du trafic
réseaux
Plates-formes, Applications, Identity & Access Management
Operating System, Réseaux & Configurations Firewalls
Contenus clients
Customers
La sécurité est une responsabilité partagée entre AWS et les Clients
Les clients sont
responsables de
leur sécurité
DANS
le cloud
AWS est
responsable de
la sécurité
DU
cloud
Serveurs Stockage
Bases de
données
Réseaux
Infrastructure
Globale AWS Régions
Zones de
disponibilité POPs
Amazon
CloudFront
Services Fondamentaux AWS
117. Vos propres
solutions
accréditées
• Une culture de sécurité et
d’amélioration continue
• Audits en continu
• Protection à large échelle
des points d’accès aux
services
Vos auditeurs peuvent auditer votre environnement au
sein d’AWS
Vos propres
certifications
Vos propres
audits externes
• Réussir la certification PCI
• Certifier ISO27001 sur un
périmètre réduit
• Avoir vos propres contrôles
clefs audités ou publier vos
propres attestations
indépendantes
Clients
Serveurs Stockage
Bases de
données
Réseaux
Infrastructure
Globale AWS Régions
Zones de
disponibilité POPs
Amazon
CloudFront
Services Fondamentaux AWS
118. Laissez AWS s’occuper des tâches lourdes
Bâtiments
Sécurité physique
Infrastructure Serveurs
Infrastructure Stockage
Infrastructure Réseaux
Virtualisation (EC2)
Accès durci aux services
Fonctionnalités IAM riches
Configuration réseaux
Security groups
Firewalls OS
Operating systems
Applications
Configuration des services
AuthN & acct management
Politiques d’autorisation
+ =
Customer
Les clients choisissent le bon niveau de sécurité pour leur business. En tant que client
AWS vous pouvez vous concentrer sur votre métier.
119. Vous choisissez où les stocker et qui est autorisé à les utiliser
•Les clients choisissent et gèrent leurs niveaux de confidentialité
•Les clients choisissent la Région géographique et il n’y a aucune réplication automatique vers une autre région
•Les clients peuvent chiffrer leurs contenus, conserver la possession des clefs et ajouter des contrôles supplémentaires pour protéger leurs contenus au sein d’AWS
La sécurité de nos services et de nos clients est clef pour AWS
Les clients gardent la pleine propriété et le plein contrôle de leurs contenus et applications
120. Oregon
Beijing
Tokyo
Singapore
Ireland
GovCloud
Northern
California
Sydney
São Paulo
11 Régions
Expansion continue
Frankfurt
N. Virginia
Les clients choisissent où mettre leurs contenus et leurs applications
121. 11 Régions
28 Zones de disponibilités
Availability Zone -A
Availability Zone -B
Availability Zone -C
Région
Les régions sont redondées dans plusieurs bâtiments
122. Vos propres solutions résilientes et tolérantes aux pannes
AWS opère un service élastique et tolérant aux pannes
Construisez des solutions réparties sur plusieurs data-centers
AWS vous aide à simplifier les architectures active-active
Tous les bâtiments AWS sont "alwayson"
Pas besoin d’un site de PRA quand les services sont résilients
Tous les clients sont gérés avec les mêmes standards globaux
AWS a une connectivité large et robuste
Chaque AZ a de multiples accès avec des ISP Tier1
L’infrastructure réseaux est tolérante aux pannes
123. Créez votre propre environnement hybride avec Amazon VPC
Your organization
Project Teams Marketing
Business Units Reporting
Digital /
Websites
Dev and
Test env
Redshift
EMR
Analytics
Internal
Enterprise
Apps
Amazon
S3
Amazon Glacier
Storage
/Backup
124. Vous pouvez appliquer vos politiques de sécurité actuelles
Launch
instance
EC2
Catalogue d’AMI Instance en
fonctionnement
Votre instance
Hardening and configuration
Audit and logging
Vulnerability management
Malware and IPS
Whitelisting and integrity
User administration
Operating system
Configure
instance
Configurez voure environnement selon vos besoins
Appliquez vos règles existantes
Créez ou importez vos images de références (golden images)
Choisissez comment appliquer vos environnements de
sécurités des serveurs virtualisés
125. AWS account
owner
Network
management
Security
management
Server
management
Storage
management
Contrôle d’accès et séparation des rôles avec AWS IAM
Vous contrôlez:
QUI (utilisateur ou rôle) peut
AGIR (verbe) sur
QUOI (ressource) depuis
OU (adresse IP) et
QUAND (contrôle par plages horaires).
Contrôle d’accès fin sur l’ensemble de
vos environnements avec
authentification multi-facteurs
Intégration avec vos annuaires
d’entreprise avec SAML 2.0
Build and run
Internet
Gateway Subnet 10.0.1.0/24
Subnet 10.0.2.0/24
VPC A - 10.0.0.0/16
Availability Zone
Availability Zone
Router
Internet
Customer
Gateway
Region
126. Nouveau service :
AWS Key Management Service
Gérez vos clefs de chiffrement dans un service géré par AWS
•Utilise des HSM pour la durabilité
•Intégré avec les autres services AWS (Amazon EBS, Amazon S3, Amazon Redshift)
•Contrôle fin sur les droits d’accès aux clefs
•Rotation des clefs automatique
•Hautement disponible et hautement sécurisé
•White-paper: «AWS Key Management Service CryptographicDetails» https://d0.awsstatic.com/whitepapers/KMS-Cryptographic-Details.pdf
127. Chiffrez vos données comme vous le souhaitez
Chiffrez vos volumes Elastic Block Store
•Chiffrement géré automatiquement par AWS
•Solutions proposées par TrendMicroet d’autres partenaires pour une gestion externe des clefs
Amazon S3 offre du chiffrement côté client et côté serveurs
•Gérez vous-mêmes vos clefs ou laissez AWS le faire pour vous
Amazon Redshift chiffre en standard avec 1 click
•Vous pouvez gérer vos propres clefs
Amazon RDS est compatible Transparent Data Encryption(TDE)
•Chiffrez simplement les tables contenant des données sensibles
DBA
128. Boîtiers hardware résistant aux attaques et contrôlés par les clients dans votre VPC.
•Solution Industry-standard SafeNetLuna devices. Common CriteriaEAL4+, NIST FIPS 140-2 certified
•Les administrateurs d’AWS n’ont aucun accès aux clefs
Stockage fiable et durable des clefs
•Pour le chiffrement Amazon Redshift
•Pour vos propres applications
•Pour des solutions de chiffrement de disques de partenaires
Vous pouvez utiliser AWS CloudHSM pour stocker vos clefs
129. Intégrez AWS CloudHSM avec vos HSM sur site
Vos sites
Applications
Vos HSM
NATCloudHSM NATCloudHSM
Volume, object,
database encryption
Transaction signing /
DRM / apps
EC2
H/A PAIR SYNC
EBS
S3
Amazon S3
Amazon Glacier
130. Les partenaires AWS vous aident à construire des solutions sécurisées
Bâtiments
Sécurité physique
Infrastructure Serveurs
Infrastructure Stockage
Infrastructure Réseaux
Virtualisation (EC2)
Accès durci aux services
Fonctionnalités IAM riches
+ =
AWS partner solutions
Testez des logiciels de sécurité de partenaires sur AWS
Marketplace
Vos solutions AWS
sécurisées
145. How frequently do you deploy security patches?
11/27/2014 14
9
Copyright 2013 Trend Micro Inc.
Microsoft Tuesdays, Scheduled Maintenance
Emergency Patching, Zero-Day Response
146. How fast can you test and deploy patches for your enterprise applications?
11/27/2014 15
0
Copyright 2013 Trend Micro Inc.
Vulnerability Disclosed orExploit Available
Patch Available
CompleteDeployment
Test
Soak
Exposure
Begin Deployment
Patched
147. How fast can you test and deploy patches for your enterprise applications?
11/27/2014 15
1
Copyright 2013 Trend Micro Inc.
Vulnerability Disclosed orExploit Available
Patch Available
CompleteDeployment
Test
Soak
Exposure
Begin Deployment
Patched
Trend Micro Virtual Patching
148.
149. Virtual Patching
•Protect against vulnerability exploits before patches available
•Save money avoiding costly emergency patching
•Patch at your convenience
Automatically helps relieve
the pain of patching
150. Cloud and Data Center Security
Anti-
Malware
Log
Inspection
Application
Scanning
Host
Firewall
IntrusionPrevention
Data Center
Physical
Virtual
Private Cloud
Integrity
Monitoring
Data CenterOps
Security
Public Cloud
154
Copyright 2014 Trend Micro Inc.
151. Service
Software
Software installed under customer control
(may be in the cloud!)
Annual software license
Annual Subscription or
Usage-based
Per instance OR
based on what you use
155
Copyright 2014 Trend Micro Inc.
Purchase security the way you purchase the cloud
152. Disponible dans le marketplace
11/27/2014 15
6
Copyright 2013 Trend Micro Inc.
153. TRY IT ! http://deepsecurity.trendmicro.com
11/27/2014 15
7
Copyright 2013 Trend Micro Inc.
155. White-paperset bonnes pratique sur la sécurité AWS
•http://blogs.aws.amazon.com/security
•http://aws.amazon.com/compliance
•http://aws.amazon.com/security
•«Riskand compliance», inclut les réponses au questionnaire CSA
•Meilleures pratiques de sécurité, guides d’audit et checklistsopérationnelles, pour vous aider à mesurer votre sécurité avant de déployer en production
Inscrivez-vous au support AWS
•http://aws.amazon.com/support
•Soyez aidés quand vous en avez le plus besoin
•Choisissez parmi les différents niveaux de support sans engagement long terme
AWS publie de nombreux documents sur la sécurité
162. Services: Plate-formeAWS
Infrastructure
Regions
Edge Locations
Availability Zones
Foundation
Services
Compute
(Virtual, Auto-scaling and Load Balancing)
Networking
Applications
Virtual Desktops
Collaboration and Sharing
PlatformServices
Caching
Relational
No SQL
Cluster Computing
Real-time
Data Workflows
Data Warehouse
Queuing
Orchestration
App Streaming
Transcoding
Email
Search
Containers
Dev/ops Tools
Resource Templates
Usage Tracking
Monitoring and Logs
Identity
Sync
Mobile Analytics
Notifications
Databases
Analytics
App Services
Deployment & Management
Mobile Services
Storage
(Object, Block and Archive)
163. Stratégiehybride
Cloud Apps
On-Premise Apps
Connection privée
Migration d’applications
Integration du contrôled’accès
Opérationavec des outilsexistants
Your Data Centers
164. Outils pour les architectures hybrides
VM Import/Export
VPC Network
IAM Policies
Virtual Images
On-Premise Apps
Private Network
Your Data Centers
VPC
Corporate Directory
Your Cloud Apps
Your Data Our Storage
169. Compute
Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Services: Réseau: Amazon VPC
Etendez votre réseau d’entreprise avec Amazon VPC
•Création de section logique du Cloud AWS avec votre propre topologie réseau
•Contrôle complet sur la création de subnets, d’adresses IP, des ouvertures réseaux et de la sécurité
•Création de subnetspublics/privés dans de multiple zone de disponibilité
•Vous choisissez où déployer vos ressources
•Utilisation de NACL et de Security Group pour contrôler les flux réseaux
10.100.0.0/16
Application Server
Availability Zone B
Availability Zone A
10.100.2.0/23
10.100.0.0/23
171. Connection directe avec Amazon VPC
•Connection standard IPSEC via Internet (VPN tunnels)
•Lien privé avec AWS Direct Connect
•Avec les partenaires, bande passante de 50M à 10G
•Connectez de multiple VPCsavec des VLANs(standard de l’industrie) et des protocoles de routingniveau 3
•Interfacez votre réseau avec vos ressources privées
•Déployez votre propre équipement pour l’optimisation, e.g. Appareil d’optimisation WAN
Compute
Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Customer VPC
Internet VPNConnection
Customer IPSEC
Router/Firewall
Customer Direct
Connect Router
PrivateDirect
Connect
Customer Corporate Network
Services: Réseau: Direct Connect
172. VPNTunnels
Customer VPN
Gateway
Directory
Server
Database
Server
Application
Server
Client
VPC Configuration
•VPC CIDR Network:10.100.0.0/16
•VPC Subnet 1: 10.100.0.0/23
•VPC Subnet 2:10.100.2.0/23
•VPN Type:Dynamic BGP
•Security Group:HTTP, HTTPS, SSH, ICMP
Data Center Configuration
•Corporate Network:10.96.0.0/16
•DC Network:10.96.24.0/21
•VPN Gateway IP:54.254.241.240
Votrepremier VPC
Application
Server
Availability Zone B
Availability Zone A
173. VPNTunnels
Customer VPN
Gateway
Directory
Server
Database
Server
Application
Server
Client
Fonctionnalités VPC
•Plusieurs VPCspar compte AWS
•Interface réseaux multiples par instance EC2
•Adresses IP multiples par interface réseau
•Changement d’interface réseau entre les instances EC2
•Filtrage entrant/sortant avec les SG et NACL
•Peeringpossible entre VPCs
•Support pour les instances dédiées
Services: Réseau
Application
Server
Availability Zone B
Availability Zone A
178. Sécurisez l’accès à vos ressources AWS
AWS Identity and Access Management
• AWS IAM vous permet de contrôler l’accès à vos ressources
• Permissions utilisateurs granulaires, accès aux ressources et
aux actions. Vous choisissez qui fait quoi et comment.
• Ajout facile d’un facteur d’authentification supplémentaire,
virtuel ou physique.
Créer des utilisateurs et des
groupes
Donner des permissions aux
groupes
• Quelles actions sont autorisées
a accès
A quels fichiers ?
Pour faire quoi ?
Application
Server
• Qui peut créer un subnet
• Qui peut modifier un Security
Group
• Qui peut lancer une instance
EC2, dans quel subnet
Donner des droits aux applis
Accès aux ressources AWS
• Rotation des clés natives
Pas de clés dans le code
Accès sécurisé à la console
MFA obligatoire sur l’API
179. Fédération d’identité
Intégrez vos identités à AWS
• Accès sécurisé aux ressources AWS en utilisant votre autorité
• SSO pour la Console Web AWS ou les API
• Construisez votre fédération SSO avec AWS STS
• Fédérez vos annuaires actuels (Active Directory, TFIM, OAM
or un autre SAML 2.0 compliant IdP)
180. Instance
Name
VPC ID
Subnet ID
Instance type
Security Groups
i-5ef40608
SharePoint App Server
vpc-ebfd0283
subnet-e1fd0289
c3.xlarge
Admin, App
i-59f4060f
SharePoint App Server
vpc-ebfd0283
subnet-e1fd0289
c3.xlarge
Admin, App
i-f6be9aa0
Web Server
vpc-ebfd0283
subnet-e1fd0289
m3.large
Admin, Web
i-ec50e1ba
Web Server
vpc-ebfd0283
subnet-e1fd0289
m3.large
Admin, Web
i-9f50e1c9
Database Server
vpc-ebfd0283
subnet-f9a51991
r3.2xlarge
Admin, Database
i-77ab8f21
Database Server
vpc-ebfd0283
subnet-f9a51991
r3.2xlarge
Admin,Database
i-d9912f8f
Directory Server
vpc-ebfd0283
subnet-f9a51991
c3.medium
Admin,Directory
i-407b3316
Directory Server
vpc-ebfd0283
subnet-f9a51991
c3.medium
Admin,Directory
Gestion des ressources et des coûts
Taggezet décrivez votre infrastructure
•Décrivez chaque ressource AWS avec un appel API
•Les ressources AWS peuvent avoir des tags
•Les tags permettent de contrôler l’accès
•Les tags apparaissent dans la facturation (charge back)
•Générez dynamiquement un inventaire complet
•Visualisez votre infrastructure AWS en temps-réel
Name: APAWSIN001
Purpose: Production
Application: SharePoint Farm03
Business Unit: Marketing
CostCentre: 2384234
Status
Location
Group
Product
Attributes
SLA
Life Cycle
181. Gestion opérationnelle
Intégrez AWS dans vos opérations
•Amazon CloudWatchfournit des métriques temps réel sur les différents services AWS, création de métriques propres et d’alarmes.
•AWS SNS permet l’intégration avec vos systèmes d’alertes
•Utilisez vos outils actuels, installation sur une instance EC2
•Vos outils intègrent déjà les API AWS
•Tous vos processexistants continuent de fonctionner
182. Application
Server
Construisez un catalogue de service avec AWS
Architecture réutilisable
•Les ressources AWS peuvent être groupées et décrites dans des templatesAWS CloudFormation
•Les templatessont déployés en ‘stack’
•Les templatessont standardisés, réutilisables, Infrastructure as code
•Architecture simple ou très complexe
Test
Environment
CloudFormation
Template
CloudFormation
Stack
183. Construisez un catalogue de service avec AWS
Les templatessont au catalogue
•Exemple: micro site marketing pour 3 mois
•Intégration de ce templateau catalogue
•Déploiement en minutes, pas en jour ni en semaine
•Archivez et supprimez lorsque nécessaire
Weeks
Later
WebServer
Application
Server
Directory
Server
DatabaseServer
WebServer
Application
Server
Directory
Server
DatabaseServer
Minutes
Later
184. AWS Service Catalog
Créez votre propre catalogue de service, donnez l’accès à vos utilisateurs
•Création de portfolio par des administrateurs qui respectent vos Best Practices
•Portail Self-Service pour vos utilisateurs, notifications
•Gestion de droits très fines pour gérer la visibilité des produits
•Intégration possible dans votre propre portail self- service
186. Alfresco
Server
Availability Zone A
Availability Zone B
Directory
Server
Database
Server
Application
Server
Client
Corporate
Data Centre
Essayez!
Marketplace Product
Your own
application
Un POC va
répondreàun nombrede questionstrèsimportant !
187. Hybrid IT avec AWS & CSCDevenezuneEntrepriseCloud Empowered
BenoîtEutache
Cloud & Big Data Business Development, CSC
189. Complexitéde gestiond’un Cloud Hybride
Enterprise
Hybrid Cloud Management
BizCloud
CloudCompute
Private Cloud
Private Cloud
Public Cloud
MPLS
Cost Controls
Security Controls
Governance and Regulatory Compliance
Placement Decisions
In-House IT Skill Set
Avoiding
Vendor
Lock-In
Other Cloud
Other Cloud
190. AgilityPlatform accélère les bénéfices d’AWSCloud Management Platform pour gouverner un modèle IT Hybride
Policy
Policy
Policy
Policy
Governance/Security
Policy-Driven Governance
Cloud-Portable Blueprints
Application Release Automation
Applications
Roles
Rights & Permissions
Projects
Orgs
Network
Compute
Storage
Infrastructure & SOE
Platforms
Provide independent application deployment across many clouds and providers
Agility Platform
191. Policy
Policy
Policy
Policy
Governance/Security
Applications
Roles
Rights & Permissions
Projects
Orgs
Network
Compute
Storage
OS & OS Config.
SOE Agents/Util.
Security and Environment Config.
Code/Artifacts
Infrastructure & SOE
Platforms
Services
Topologies/Config.
App Config.
Application Components
Point de ContrôleUnique pour la Gouvernance
Regulatory compliance policies
SLA policies including autoscaling
Configuration management policies
Security zones policies
Lifecycle event policies
Orchestration policies
Access control/entitlement policies
Workload placement policies
Quotas and scheduling
Metering/chargeback policies
Backup and failover policies
Resource capacity policies
Storage tier policies
Much more…
192. Implementation Cloud HybrideRéussie
“We’ve gone from spending 50% of our operating budget on infrastructure to just 26%. A nearly 75% investment in apps and information rather than infrastructure —that’s huge.” (The Wall Street Journal)
Increased Innovation
App updates/deployment up almost 3x, from 1,200 to 3,000 changes a month
Lowered Costs for “Keeping Lights On”
Cut IT operations costs by $100M a year
IT Budget
Innovation
Operations
CIO of APAC Top 5 bank
193. Implementation Cloud HybrideRéussie
•42% total-cost-of-ownership savings for business-critical applications
•84% operating cost savings for IT infrastructure services
•App updates/deployment up almost 3x
•Enabled migration of 60% –70% of enterprise application portfolio to cloud
A more agile and cost-effective IT operating model supported by standardized infrastructure and platform services deployable across private and public clouds:
•Enterprise adoption of fully governed IT model
•Migration of business applications to secure hybrid cloud environments
•On-demand self-service access to infrastructure, platforms, and application components to support the DevOps process
Challenge: Control costs, adapt to rapidly changing business needs, and support new market entry; meet expanding IT resource needs without investmentin data center expansion
Retail and Commercial Banking
Solution
Results
194. OrganizationalStructure:
Exemple de Gouvernance Les bonnes règles pour les bons utilisateurs
Goliath Bank
Dev
Production
Staging
QA
WealthMgmtBU
PaymentProcessing
Online Banking
Dev
Production
Staging
QA
Mobile Apps Team
Conformité réglementaire: Staging/Proddéploie seulement sur des CloudsPCI-compliant
Contraintes géographiques: workloadsavec données UE seulement dans cloudsUE
Standards IT: La même règle de sécurité/monitoring appliquée pour toutes les workloads
Contraintes de ressources: “Equipe QA” limitée à 100 VMs, chacune avec un leasede 30 jours
195. Implementation Cloud HybrideRéussie
•Reduce time to market & R&D costs by deploying Agility Platform, rather than trying to build something similar
•Ability to create an additional line of business to value to existing customers and attract new customers
CSC Agility Platform™ serves as a horizontal platform allowing access to the other provider services
•orchestration, policy-driven governance and easy integration into their partner ecosystem, to accelerate the development of it’s public and private cloud business
Challenge: To add valuefor existing business customers and expand into new marketto gain new customers within an Hybrid Cloud ecosystem
Telecommunications Provider
Solution
Results
196. Solution: CSC Hybrid Cloud Services Orchestration, Gouvernance, Cloud Public et Privédélivrésen mode as a Service
IaaS
Platforms
Apps
Complete functionality of CSC Agility Platform
Access to CSC private and public clouds
Amazon adapters and integrated service
Chargeback, real-time cost visibility, and consolidated billing
VM onboarding wizard to rein in Shadow IT
Extends existing IT ecosystems with adapters, API, SDK, and CLI
Private
Clouds
Public
Clouds
Design
Dev
Test
Prod
SDLC Tools
Store
INCLUDED:
CloudCompute
BizCloud
BizCloudVPE
INCLUDED:
Other cloud adapter available at additional cost
197. Public Cloud Market Leader
Compute, Storage, dB
IAM, VPC
Service CatalogCloud Empowered Entreprise
Right Cloud solution
For right usagePrivate Cloud & Governance
Legacyplatforms
BizCloud
AgilityPlatform
ManagedServices
Le bon modèleIT HybrideChoixde cloud et gouvernanceadaptéà l’usage
+
=
Internal Private
Secure Public
External Private
199. Exécution des applications critiques d'entreprise sur AWS
Philippe Desmaison
Partner Solutions Architect
AWS France
Olivier Tarroux
Infrastructure & Operation Manager
Edifixio
avec
200. Proposition de valeur d’AWS pour les applications critiques
Agenda de cette session
Architectures résilientes
Haute Disponibilité
PRA
DEMO
SAP Hana
Un écosystème prêt pour le Cloud AWS
Microsoft
Oracle
SAP
Cas d’usages
Une approche Partenaireavec
AWS Support
Support Premium
201. Applications CritiquesLes point clefs
Sécurité
Offrir le meilleur niveau de sécurité possible
Haute Disponibilité du service
Offrir des possibilités architecturales de mise en haute disponibilité de la solution
Durabilité des données
Offrir des solutions de stockage avec une durabilité la plus forte possible au meilleur coût
Portabilité, Réversibilité, ‘Supportabilité’
Offrir la flexibilité nécessaire en terme de licence, de support et de changement
‘Auditabilité’ de la solution
Offrir des outils permettant une gouvernance complète de la solution
202. Applications critiques sur AWS
AWS propose une infrastructure taillée pour l’Entreprise
SécuritéWorld-class (ISO27001 / PCI-DSS / SOC1 / SOC2 / SOC3 …)
Des briques d’Architecture qui se prêtent à la résilience (Multi-AZ)
Des services AWS (EC2, RDS, S3, Route53) avec une SLA claire
Les applications Oracle, Microsoft et SAP sont supportées sur AWS
Portabilité des licences (BYOL –BringYourOwnLicense)
Audit et logs natifs à la Plateforme (Amazon CloudTrail, CouldwatchLogs, AWS Config)
203. Applications critiques
Une Entreprise plus agile grâce au Cloud AWS
Une gestion des coûts très fine (notion de Tags)
Agilitédécuplée impliquant un Go-To-Marketrapide (Provisionnement minute)
Facilité de déploiement (Template d’image, CloudFormation)
Une évolutivitéPush-button(Plus de décision de sizingen amont)
Une présence globale(11 régions)
Duplication à l’identique d’environnements (Dev, Test, pre-Prod, Prod)
204. Architectures résilientes
Des architectures taillées
pour l’entreprise
Customer Network
ERP
DEV
Users
Systems
NAT
SAProuter
Solution
Manager
ERP
QAS
ERP
PRD
Internet
Availability Zone A Availability Zone B
ERP
Standby
DB Replication
Virtual Private Cloud
VPN or
AWS Direct Connect
205. AvailabilityZone A
Region
AvailabilityZone B
Haute disponibilité multi datacenters
Architectures flexibles intra-Cloud
Au sein d’une région AWS
Architecture Actif / Actif
RTO / RPO faible
Haute disponibilité intégrée
206. Availability Zone A
Region
Availability Zone B
Haute disponibilitémulti datacenters
Architectures flexiblesintra-Cloud
Au seind’unerégionAWS
Architecture Actif/ Actif
RTO / RPO faible
Haute disponibilitéintégrée
207. Availability Zone A
Region
Availability Zone B
Haute disponibilitémulti datacenters
Architectures flexiblesintra-Cloud
Au seind’unerégionAWS
Architecture Actif/ Actif
RTO / RPO faible
Haute disponibilitéintégrée
208. Availability Zone A
Region Dublin
Availability Zone B
Availability Zone C
Availability Zone A
Region Francfort
Availability Zone B
Availability Zone C
Regional Load Balancers
Regional Load Balancers
Geo-localisation
Geo-localisation
Haute disponibilitémulti régions
Architectures flexiblesintra-Cloud
209. Availability Zone A
Region Dublin
Availability Zone B
Availability Zone C
Availability Zone A
Region Francfort
Availability Zone B
Availability Zone C
Regional Load Balancers
Regional Load Balancers
Geo-localisation
Geo-localisation
Haute disponibilitémulti régions
Architectures flexiblesintra-Cloud
210. Availability Zone A
Region
Availability Zone B
Amazon S3
Backups & Images
Restaurationrapideet Bascule automatique
Architectures flexiblesintra-Cloud
211. Availability Zone A
Region
Availability Zone B
Amazon S3
Backups & Images
Restaurationrapideet Bascule automatique
Architectures flexiblesintra-Cloud
212. Availability Zone A
Region
Availability Zone B
Amazon S3
Backups & Images
Restaurationrapideet Bascule automatique
Architectures flexiblesintra-Cloud
213. SAP, Microsoft, Oracle et des milliersd’autresapplications
Un ecosystèmeprêt pour le Cloud AWS
214. Un écosystème prêt pour le Cloud AWS
Production Développement et Test DisasterRecovery
Les applications clefs pour l’entreprise
+ 1900 Applications AWS MarketPlace
215. Solutions SAP
SAP Business Suite
SAP HANA One
SAP Business All-in-One
SAP BusinessObjects
SAP Rapid DeploymentSolutions (RDS)
SAP Afaria
SAP Business One
SAP HANA pour BW sur instances EC2 r3 jusqu’à 1,22To de mémoire
SAP HANA pour ECC sur instances EC2 r3 jusqu’à 244 Go de mémoire
Certifiées en production
216. Etude de cas : Kellogg
Kellogg utilise AWS pour ses applications Mission-Critical
Kellogg producesbreakfast foodsfor more than180 companiesworldwide, withannualrevenue of almost$15 B.
UsingAWS savesus $900,000 in infrastructure costsalone, and letsus rundozensof simulations a daysowecanreducetradespend. It’sa win-win.
•Objectif: Nécessité d’un meilleur moyen de suivre et de simuler les coûts associés aux offres promotionnelles et capacité d'exécuter plus de 1 simulation par jour
•En utilisant SAP HANA sur AWS, Kellogg estime le gain à 900 000 $ sur une période de 5 ans par rapport à une infrastructure traditionnelle.
•En outre, Kellogg est maintenant en capacité de réaliser des dizaines de simulations chaque jour, et a divisé son temps de déploiement d’un facteur 30.
StoverMcIlwain
Senior Directorof IT Infrastructure Engineering
”
“
219. Solutions Microsoft
AnnuaireActive Directory
ACTIVE DIRECTORY
SHAREPOINTEXCHANGE
DYNAMICS
SQL SERVER
Opérépar AWS
AWS Directory Service
Un service d’annuaireopérépar AWS
•Connectez-vousàvotreMicrosoft Active Directoryexistanton-premises.
•Créezun nouvelannuairestand-alone.
220. ACTIVE DIRECTORY
SHAREPOINTEXCHANGE
DYNAMICS
SQL SERVER
Déployezvotreapplication Sharepointen moinsde 90 minutes àpartirde nostemplates CloudFormation
AWS
CLOUDFORMATION
100% supporté
Sharepoint
Solutions Microsoft
Réalisezvotrepropreinstallation surmesuredansvotreenvironnement
Amazon
EC2
221. Solutions Microsoft
Base de donnéesSQL Server
ACTIVE DIRECTORY
SHAREPOINTEXCHANGE
DYNAMICS
SQL SERVER
100% opérépar AWS
BYOL oupaiementàl’heure
Amazon RDS
222. Solutions Oracle
Vosapplications Oracle surAWS
JD EDWARDS
PEOPLESOFT
E-BUSINESS SUITE
MIDDLEWARE
SOA SUITE
100% SUPPORTE
CLOUD BACKUPS
MANAGED DB
Portabilitédes licences
Paiementàl’heure
Support de Oracle Golden Gate
Native RMAN et intégration
Amazon S3
Oracle Golden Gate versRDS
ORACLE LINUX
Amazon Machine Image
226. Démarrezavec un Proof Of Concept (POC)
Uneexperience riche en informations
POC
Essayer la Plateforme
Analyserles résultats
Monterle Business Case
Déployerl’Env. de Développement
Déployerl’Env. De Production
Habituellement, vouscommencezici
Maisavec le Cloud, vouspouvezdémarrericidorénavant
229. en quelques mots
EdifiXioest une société comptant 200 collaborateurs et située en France, aux US et en Inde.
Nous avons développé un partenariat avec AWS dès 2009 et avons obtenu le label «AWS Advanced Partner» en 2013.
Nous proposons les services suivants :
Consulting(Etudes de faisabilité, POC, Assistance à maitrise d’oeuvre)
Build/ Migration d’applications critiques (ou pas !)
Opérations 24x7 avec engagement sur les SLA
230. Est-il raisonnable d’exécuter des applications critiques sur AWS ? En 2009, la plupart de nos clients commençaient avec des applications non critiques (Lafarge étant une exception). En 2014 nos clients vont sur AWS parce qu’ilsont des applications critiques
•SLA réel est plus élevéque les solutions alternatives.
•Il est aisé de construire des architectures robustes.
•La capacité dont ils ont besoin est assurée.
•Le PRA est plus simple et moins cher.
•Le provisionnement automatique réduit l’erreur humaine de manière drastique. La plupart du temps, il n’y a plus de contraintes techniques, mais les aspects Sécurité et Opérations restent des sujets à étudier plus particulièrement avec les clients.
231. Sécurité & OpérationsSécurité
•Les grandes organisations ont défini des règlesqui doivent être respectées impérativement pour les applications critiques. Par exemple :
•Chiffrement des données, à la fois en transfert et sur les espaces de stockage.
•Copie des données de backup vers un autre compte AWS, et une autre Région AWS
•Rupture de protocoles pour les accès Administrateur sur le Cloud.
•… Opérations
•Les applications critiques sont souvent hybrides et se doivent d’être monitoréescomme un tout.
•Intégration des outils classiques de monitoring comme Nagiosavec AWS CloudWatchest un facteur clef de succès pour obtenir le niveau de SLA requis.
233. Exemples de cas d’usages
DanslecadredesoninitiativedeTransformationDigitale,SchneiderElectricadéployéuneplateformeconsolidantlesdonnéestechniquesdesesclientssurAWS.LabasededonnéesOraclesurAmazonRDS,avecuneréplicationsurplusieurszonesdedisponibilité(Multi-AZ),estdevenuuncomposantclefdeplusieursapplicationstournantsurAWS.
LafargeamigrésonsiteCorporatesurAWS.
D’autresclientsontmisenplacesurAWSdesapplicationsàlafoisd’envergureetcritiques.Cesprojetssonttoujoursencoursetnousnesommespasencoreautorisésàcommuniquerdesdétailssurlesimplémentations.
234. BigData et BI sur AWS
Améliorez vos processus de décision en capitalisant sur vos données
Enterprise Day, 20 Novembre 2014
Julien Lépine, Solutions Architect AWS
235. Quand on parle de BigData, on parle de quoi?
GO
TO
PO
ZO
EO
1990
2000
2010
2020
•2.7 Zettaoctets(ZO) de données existent dans l’univers numérique aujourd’hui
–1 ZO = 1 milliard de Téraoctets
•450 milliards de transactions par jour d’ici 2020
•Plus de données non-structurées que structurées
•Usages et plateformes multiples: Mobile, Web, Social, IoT
236. Avec ses contraintes associées
•Techniques
–Un existant difficile à maintenir et étendre
–Un environnement jeune et en mouvement
–Nouvelles compétences à acquérir et maintenir
•Business
–Besoin mal identifié et confus
–Investissement lourd pour ROI incertain
237. Du produit à l’écosystème, évolution du contexte
*
Produit
*
Vous êtes ici
Fournisseurs
Environnement
Clients
(B2B, B2C)
Clients de vos clients (B2B2C)
Distribution
Retraitement
Marketing
Partenaires
238. Le besoin a changé, vos outils ont-ils évolué ?
•La vision centralisée (client/serveur, mainframe) n’est plus adaptée, car figée sur le seul produit
•Les décisions doivent être prises de plus en plus vite, et les environnements sont en mouvement constant
•On se rend compte qu’on peut valoriser la donnée de plusieurs manières, et en fonction du contexte
•Les logiques de plateforme permettent de générer de la valeur sur les données existantes
239. Pourquoi c’est important ?
•Rapidité et fiabilité de décision
•Agilité et innovation
•Rétention client
•Vision intégrée de l’écosystème, avec partenaires
•Réagir voir anticiper sur des évènements externes
240. Quels impacts sur vos métiers ?
•Impacte tous les secteurs, et toutes les fonctions
–Marketing (bien-sûr), R&D, SAV, RH, Finance, Achats…
•Au coeur des méthodes Lean/TQM et CMMI
•Recherche de l’optimum global (effectiveness) et non de la performance seule (efficiency)
•Création de nouvelles sources de valeur pour l’entreprise
241. Quels sont les freins ?
•Investissements lourds
•Projets longs et complexes
•Technologies en évolution constante
242. Quelle démarche ?
•Utiliser une démarche itérative / agile
•Étendre son domaine analytique
•Capturer des données en temps-réel
•Création d’une plateforme ouverte
243. Capitalisez sur votre existant
•Amazon EC2
–Windows / Linux
•Amazon RDS
–MySQL, Oracle, PostgreSQL, Microsoft SQL Server
•Amazon Redshift
–Compatible PostgreSQL
•Amazon Aurora
–Compatible MySQL
Amazon Redshift
Amazon RDS
Amazon EC2
Amazon RDS
244. Financial Times Uses AWS to Reduce Infrastructure Costs by 80%
Financial Times is one of the world’s leading business news organizations, with a combined paid print and digital circulation of 665,000.
When our analysts first started to do queries on Amazon Redshift, they thought it was broken because it was working so fast.
•Needed a way to increase speed, performance and flexibility of data analysis at a low cost
•Using AWS enabled FT to run queries 98% faster than previously—helping FT make business decisions quickly
•Easier to track and analyze trends
•Reduced infrastructure costs by 80% over traditional data center model
John O’Donovan
CTO, Financial Times
”
“
246. •S&P Capital IQ provides data, research, and analytic tools to institutional investors, investment advisors, and wealth managers around the world
•The data science team wanted to prototype new ideas quickly and run tests using Hadoopsoftware without a long purchasing cycle or ramp-up time to bring hardware on-premise
•Able to use Amazon Elastic MapReduce to run a Hadoop cluster to track asset portfolios, identify new trading and investment ideas, and analyze risk
S&P Capital IQ Leverages AWS For It’s Flexibility and Scale For Big Data Analytics
247. •Pfizer’s HPC software and systems for worldwide research and development (WRD) support large scale data analysis, research projects, clinical analytics and modeling
•The company chose AWS because it offered an additional level of security and integrated easily into the already present infrastructure
•Pfizer saved money with AWS by not having to invest in additional hardware and software
AWS Helps Pfizer Focus on Large Scale Data Analysis
248. D’un niveau de sécurité avancé
• Disponibilité:
– Régions et Zones de Disponibilité
• Intégrité:
– AWS KMS, AWS Cloud HSM
• Confidentialité:
– Amazon VPC, AWS Direct Connect, AWS IAM
• Traçabilité:
– AWS CloudTrail et Amazon CloudWatch
Amazon VPC AWS Direct
Connect
IAM
AWS CloudTrail CloudWatch
AWS cloud
249. TradeworxUses AWS to Help the SEC Analyze Billions of Stock Market Trades in Seconds
Tradeworxis a financial technology company based in Red Bank, New Jersey. They operate an equity market neutral hedge fund and a high-frequency proprietary trading business, and license their trading platform through their affiliate, ThesysTechnologies.
Using AWS, we can provide big data analysis for the stock market that used to take weeks or months in
less than 3 seconds
ArzhangKamarei
President, Tradeworx
”
“
•Founded in 1999, Tradeworxprovides technology that powers the infrastructure of the stock market ecosystem, including the SEC, NASDAQ, and other stock market partners
•The SEC needed big data analytics capability for to police markets events such as the May 6, 2010 Flash Crash
•Using AWS, Tradeworxdesigned a program that allows the SEC to reconstruct any market event at any day in history, run analytics down to the micro- second, and analyze 3 billion data points in 2.8 seconds instead of months
250. Using AWS, Swipely Reduces Feature Development Time from Weeks to Days
•Swipely offers its clients a simple way to process customer payments and use that data to drive more revenue to the business
•Needed PCI-compliant architecture with the flexibility to release new versions of products without causing production delays
•Saves engineering and computing costs, can focus more on product development, and has achieved PCI compliance.
252. Snowplow Uses AWS to Enable Real-time Processing of Hundreds of Millions of Events Daily
Snowplow, an open-source analytics platform, enables the enterprise to track customer behavior and analyze data from any source with any tool.
Thanks to Amazon Kinesis, our users have gone from having data that was fresh yesterday to having data that was fresh 2 minutes ago.
•Needed real-time analysis of highly granular data
•Built its platform on AWS, enabling real-time processing of hundreds of millions of events each day
•Enables real-time processing of event analytics
•Scales to capture and store hundreds of millions of events each day
•Cuts processing time down from several hours to 2 minutes
Alexander Dean
Co-Founder, Snowplow
”
“
253. Comment s’engager sur cette démarche ?
Solution Architects
Professional Services
Premium Support
AWS Partner Network (APN)
254. AGILITY I COLLABORATIVE INTELLIGENCE I INNOVATION I PERFORMANCE
CONSULTINGITECHNOLOGY
MACHINE LEARNING ET CLOUD2 APPROCHES COMPLEMENTAIRES/ AWS ENTERPRISE DAYXavier Dehan, NOVEMBRE 2014