Cloud computing boosts enterprise management, and private cloud will go deep into the enterprise

Source: Internet
Author: User

Today, cloud computing has become a hot topic. The form of cloud brings new application methods. Enterprise Users no longer need to invest heavily in building their own data centers to deploy large applications, you do not need to consider equipment selection and procurement, or even have your own O & M personnel 24 hours a day, you only need to spend a little money to purchase the corresponding cloud computing services, and the rest of the complex and complex data center site selection, construction, operation, maintenance and other tasks are handed over to Microsoft.
Microsoft provides a complete and comprehensive cloud computing solution, allowing users to truly feel that the cloud is around, rather than out of reach, and to use the most familiar tools and languages, convenient, reliable, and fast migration and use of the cloud, users only need to focus on specific business development, at this time, the IT industry's collaboration, communication, cost control, technology development, operation management, and so on will all undergo earth-shaking changes: the server in the number of workers can follow the deployment at any time, servers in any network location can be selected, and visitors in any location can obtain user data through Microsoft's CDN network in the fastest network node, unimaginable computing resources can be used by users at any time;
Users can prepare for business development, but do not need to immediately prepare a large amount of money for data center construction. They can complete more businesses with less investment, energy consumption, manpower, and office environments can be greatly reduced. with global warming, Green IT businesses will help enterprises flourish in a low-carbon, efficient, and green manner; microsoft cloud computing allows enterprises to retrieve data and obtain applications at any time, so that communication and collaboration become closer, more efficient, and more flexible. Tools connected to the cloud can be used anywhere in the world, start familiar services in a new way of working.
1. What is cloud computing?
Cloud computing or cloud) is an evolutionary term that describes the development of many existing computing technologies and methods in different directions. The cloud separates applications and information resources from the underlying infrastructure and mechanisms used to deliver them. The cloud enhances collaboration, agility, scalability, availability, and the potential to reduce costs through optimized and more efficient computing.
More specifically, the cloud describes the use of services, applications, information, and infrastructure consisting of computing, networks, information, and storage based on "resource pools. These components can be quickly planned, configured, deployed, and retired, and can be quickly expanded or reduced to provide similar distribution and consumption modes of on-demand and utility computing.
This article focuses on the definition of a cloud tailored from a unique perspective for IT networks and professionals. A set of common and concise words for unified classification can be used to describe the impact of cloud architecture on enterprise management architecture. In this unified classification method, cloud Services and architectures can be broken down and refined to give users a detailed and clear concept. In the end, how can we combine the smooth implementation of cloud computing with the actual application of enterprises.
2. What makes cloud computing?
NIST defines five key features, three service models, and four deployment models for cloud computing. As shown in 1, detailed descriptions will be provided later.

650) this. width = 650; "title =" 1 "style =" border-top-0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px "height =" 323 "alt =" 1 "src =" http://www.bkjia.com/uploads/allimg/131227/0U40Q194-0.jpg "width =" 687 "border =" 0 "/>
Figure 1 image model defined by NIST cloud computing

2.1 key features of cloud computing
The five key features presented by cloud services represent their relationships and differences with traditional computing methods:
? On-demand self-service: You can automatically configure computing capabilities as needed, such as server time and network storage, without interacting with service personnel of service providers.
? Broadband access: the service capability is provided through the network and supports various standard access methods, including various thin or fat client platforms such as mobile phones, laptops, and PDAs ), it also includes other traditional or cloud-based services.
? Virtualized resource "pool": the provider's computing resources are pooled into the resource pool. The multi-tenant model is used to meet user needs, dynamically allocate or distribute different physical and virtual resources to multiple consumers. Although location independence exists to some extent, that is to say, users cannot control or even know the exact physical location of the resources they are using, however, in principle, you can specify a location such as a country, state, province, or data center at a high abstraction level ). Resource examples include storage, processing, memory, network bandwidth, and virtual machines. Even Private clouds tend to virtualize resources to provide services for different departments of the Organization.
? Fast elastic architecture: service capabilities can be quickly and elastically supplied-automatically in some cases-to achieve rapid resizing and fast release. For users, the available service capabilities are almost unlimited and can be purchased as needed at any time.
? Measurable service: the cloud system can automatically control and optimize the resource usage of a service, it uses a certain degree of abstract measurement capabilities such as storage, processing, bandwidth, or active user accounts ). People can monitor, control resource usage, and generate reports. Reports can be transparent to both providers and users.
2.2 cloud service model
The delivery of cloud services can be divided into three modes and different derivative combinations. These three basic types are often referred to as "SPI" models, in which SPI represents software, platform, and infrastructure as services respectively ). They are defined as follows:
? Cloud software as a service (SaaS): The capability provided to users is the application of service providers running on cloud infrastructure. You can use various client devices to access applications, such as browser-based emails, through the "thin" customer interface, such as a browser ). Users do not manage or control underlying cloud infrastructure, such as networks, servers, operating systems, storage, or even individual application capabilities, unless they are special application configuration items of some limited users.
? Cloud Platform as a service (PaaS): The capability provided to users is to deploy applications created or purchased by users on the cloud infrastructure. These applications are developed using programming languages or tools supported by service providers, users do not manage or control underlying cloud infrastructure, including networks, servers, operating systems, or storage. However, they can control deployed applications and an environment configuration of application hosts.
? Cloud infrastructure as a service (IaaS): The capability provided to users is that the cloud provides processing, storage, networks, and other basic computing resources, allows users to deploy or run any software of their own, including operating systems or applications. Users do not manage or control underlying cloud infrastructure, but have control over operating systems, storage and deployed applications, and limited control over some network components, such as host firewalls ).
2.3 cloud deployment model
IaaS is the foundation of all cloud services. PaaS is built on IaaS, while SaaS is built on PaaS. No matter which service model SaaS, PaaS, or IaaS is used, there are four cloud service deployment models and the evolution and deformation on them to solve certain special needs.
? Public cloud. It is owned by an organization and its cloud infrastructure provides cloud services to the public or a large industry group.
? Private cloud. The cloud infrastructure is designed to run services for an organization. It can be managed by the organization or a third party, on-site service on-premises, or off-site service off-premises ).
? Community cloud. Cloud infrastructure is shared by several organizations to support a specific community. A Community refers to a group with a shared appeal and pursuit, such as mission, security requirements, policy or compliance considerations ). It can be managed by the organization or a third party, on-site service on-premises, or off-site service off-premises ).
? Hybrid cloud. The cloud infrastructure is composed of two or more private clouds, communities, or public clouds. It exists independently, but is bound together by standard or private technologies, these technologies facilitate the portability of data and applications.
1. Confusion Arising from frequent mixing of the concepts "How cloud services are deployed" and "where cloud services are provided. For example, public or private clouds may be described as external or internal clouds, and such swaps are not always accurate.
2. The usage of cloud services is often described as related to the Organization's management or security boundary location, which is usually defined on a firewall ). Although it is important to know where security boundaries are in cloud computing, the concept of "clear boundaries" is a mistake of the times.
3. re-perimeterization and erosion of trust boundaries are being staged in the enterprise, which is magnified and accelerated by cloud computing. Ubiquitous connections, various forms of information exchange, and traditional static security control that cannot solve the dynamic characteristics of cloud services all require new thinking about cloud computing. For the reorganization of the enterprise network boundaries,
The following table summarizes these key points:

650) this. width = 650; "title =" 2 "style =" border-top-0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px "height =" 213 "alt =" 2 "src =" http://www.bkjia.com/uploads/allimg/131227/0U40Q5N-1.jpg "width =" 712 "border =" 0 "/>
Figure 2-cloud computing deployment model

Private cloud is built for individual use by a customer, thus providing the most effective control over data, security, and service quality. The company has infrastructure and can control how applications are deployed on this infrastructure. Private clouds can be deployed in the firewall of an enterprise data center or in a secure host hosting place.
Private clouds can be built by the company's IT organization or by cloud providers. In this managed private mode, cloud computing providers such as Microsoft, Sun, and IBM can install, configure, and operate infrastructure to support private clouds within a company's enterprise data center. This model gives the company an extremely high level of control over the use of cloud resources, as well as the expertise required to establish and operate the environment.
2.4 advantages of private cloud
1. Data Security although each public cloud provider claims that its services are extremely secure in all aspects, especially the management of log data. However, for enterprises, especially large enterprises, business-related data is the lifeline and cannot be threatened in any form. In the short term, large enterprises do not place their critical applications on the public cloud. Private clouds are very advantageous in this regard, because they are generally built behind the firewall.
2. SLA Service Quality) because private clouds are generally behind firewalls, rather than in a distant data center, when company employees access private cloud-based applications, its SLA should be very stable and will not be affected by network instability. For example, the last "Storm audio and video" event caused a large-scale network disconnection.
3. Make full use of existing hardware and software resources. Everyone knows that every company, especially a large company, has many legacy applications, and most historical applications are their core applications. Although the public cloud technology is very advanced, it does not support legacy applications, because many of them are written in static languages, mainly in Cobol, C, C ++, and Java, the existing public cloud supports these languages very generally. However, private cloud is good in this regard. For example, Microsoft's AzureAppFabric can effectively solve the problem of private cloud implementation, and the cloudburst launched by IBM, through cloudburst, it is very convenient to build a Java-based private cloud. In addition, some private cloud tools can use the existing hardware resources of the enterprise to build the cloud, which will greatly reduce the cost of the enterprise.
4. There is no impact on the existing IT management process. For large enterprises, the process is the core of their management. Without a complete process, the Enterprise will become scattered. Not only are there a wide range of business-related processes, but there are also a lot of IT department processes, such as those related to the Sarbanes-Oxley Act, and these processes are critical to the IT department. In this regard, public clouds suffer a lot, because the use of public clouds will have a lot of impact on IT department processes, such as data management and security regulations. In the private cloud, because IT is generally in the firewall, IT has little impact on the IT department process.
2.5 Microsoft cloud Technology
Windows Azure is a "cloud service operating system" that can be used as a development, service hosting, and service management environment for the Windows Azure platform. Windows Azure provides developers with On-demand computing and storage hosts through Microsoft Data Centers, zooming, and managing Web applications on the Internet. Windows Azure is a flexible platform that supports multiple languages and can be integrated with existing internal environments. As an open platform, Windows Azure provides developers with a variety of options and developers can use different languages. NET, PHP, Ruby, Python, or Java) and development tools Visual Studio or Eclipse) build applications running on Windows Azure. With this standard and interactive approach, the Windows Azure platform supports a variety of Internet protocols, including HTTP, XML, SOAP, and REST, which are the key cornerstones of Data portability. Microsoft's Windows Azure service is designed to provide this facility. As part of a huge Windows Azure platform, Windows Azure is the foundation for running Windows applications and storing data in the cloud.
SSP 2.0 (Self-service portal 2.0) is a product specially designed by Microsoft for enterprise-level private cloud. It provides a Web-based user interaction interface, including: centralized configuration and distribution of data center resources; quick deployment of customized services such as virtual machines); built-in resource application/approval processes; Infrastructure application and change management; self-service management support.

650) this. width = 650; "title =" 3 "style =" border-top-0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px "height =" 336 "alt =" 3 "src =" http://www.bkjia.com/uploads/allimg/131227/0U40R048-2.jpg "width =" 644 "border =" 0 "/>
Figure 3-Microsoft cloud computing platform

Microsoft's cloud computing strategy consists of three parts to provide three different cloud computing operation modes for its customers and partners:
1. Microsoft Operations
Microsoft builds and operates public cloud applications and services on its own, and provides cloud services to individual consumers and enterprise customers. For example, Microsoft provides end users with Services such as Online Services and Windows Live.
2. Partner operation
ISV/SI and other partners can develop various cloud computing applications such as ERP and CRM Based on Windows Azure Platform, and provide services for end users on Windows Azure Platform. Another option is that Microsoft's Business productionline Suite (BPOS) product on its own cloud computing platform can also be hosted and operated by partners. BPOS mainly includes Exchange Online, SharePoint Online, Office Communications Online and LiveMeeting Online services.
Third, customer self-built
Customers can choose Microsoft's cloud computing solution to build their own cloud computing platform. Microsoft can provide users with comprehensive support including products, technologies, platforms, and O & M management.

The Design of Microsoft Windows Azure Platform AppFabric is aimed at private cloud, which can be well integrated with various business applications through the message bus. Windows Azure Platform AppFabric is another important cloud computing component launched by Microsoft following the Windows Azure virtual machine component and the SQL Azure database component. Windows Azure supports Web Roles (used to host Web sites) and Worker Role (used for backend processing), and is mainly used for cloud computing. SQL Azure is based on SQL Server and has many identical features, it enhances its cloud computing-based functions and weakens its identity as a client software. Azure AppFabric, as a message bus, aims to simplify identity authentication and message delivery, especially when it is used across firewalls. Azure AppFabric is used as a private cloud, it is able to effectively combine various applications involved in enterprise applications and make the cloud play its role to the extreme. We have to praise Microsoft for taking this critical issue into account at the beginning of the cloud computing architecture design.
3 Microsoft Azure AppFabric Architecture Overview
Windows Azure Platform AppFabric is a hybrid application built and managed by Microsoft for developers. Whether on a server or in a cloud environment, Azure Appfabric is a message bus, the goal is to simplify authentication and message delivery, especially when it is made easier across firewalls and NAT environments.
The predecessor of Azure Platform Appfabric is ". NET Services", which provides cloud-based Services to help developers connect to applications and Services through Windows Azure, Windows Server, and many other platforms. After development, evolution and maturity, it includes the Service Bus and Access Control functions.
Built on Windows Azure Platform Appfabric and on Windows Azure, it integrates cloud services with non-cloud systems to complete B2B integration by providing secure connectivity and access control, or connect to a remote device. Service Bus allows secure connectivity between services and applications through firewalls or network boundaries) and can be used in a large number of communication modes. The Access Control Service provides joint and declarative Access Control for network Access. developers can use these services to build distributed or hybrid applications or services.
2.1 Overview of AppFabric Service Bus
The Service Bus helps developers provide loosely coupled services and secure connections to applications, enabling them to use multiple communication methods through firewalls and network boundaries. Services registered on the service bus can be easily discovered and accessed through various network topologies.

650) this. width = 650; "title =" 4 "style =" border-top-0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px "height =" 376 "alt =" 4 "src =" http://www.bkjia.com/uploads/allimg/131227/0U40V5J-3.jpg "width =" 652 "border =" 0 "/>
Figure 4-easy coupling between heterogeneous services through the Service Bus

Applicability of Service Bus
? Connect Windows Azure applications and SQL Azure databases with existing capabilities
? Bridging with all types of non-prerequisite applications
? Create a Composite Application
Benefits of using a service bus
? Public Programs and services through firewalls, NAT gateways, and other unknown network boundaries.
? Through the public endpoint, it is easy to create a very limited Composite Application, supporting multiple connection options and publishing and subscription of multicast.
? Friendly and lightweight developer programming model that supports standard protocols and extended Windows Communication Foundation simple standard binding.
? Helps block malicious traffic and protect user services from DoS attacks.
Features of Service Bus
? You can publish services through stable and accessible URLs on the Internet without considering the location.
? One-way information service between the sender and receiver supports unicast and multicast distribution.
? Connection-oriented full-duplex threads ensure two-way communication between the sender and receiver.
? Connection-oriented full-duplex threads support point-to-point (pear-to-paer) using NAT to create direct connections from terminals.
? Multiple publishers and users can use the topic management and event distribution systems of the service at the same time.
? Supports REST and HTTP access on non-. NET platforms.
? Global namespace is achieved through DNS and transparent and unrestricted classification of levels.
? Allows anonymous users to access services.
2.2 overview of AppFabric Access Control
Resource Access Management helps you create integrated authorization in applications and services, allowing you to implement security applications based on organizational boundaries without complex programming. With simple rules and requirements, access control rules can be easily and flexibly configured to cover different security requirements and various infrastructure for identity management.

650) this. width = 650; "title =" 5 "style =" border-top-0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px "height =" 291 "alt =" 5 "src =" http://www.bkjia.com/uploads/allimg/131227/0U40Q3I-4.jpg "width =" 582 "border =" 0 "/>
Figure 5-access control based on the Azure Platform

Applicability of access control
? User accounts can be created based on existing identity management systems, Active Directory services, other Directory services, or any standard-based basic authentication mechanism.
? Customizable control and access level for applications, each user and group
? Same security level for application and service bus connection
Benefits of access control
? The application is equivalent to local user account management through the authorization based on identity Federation and access control rules.
? Flexible standard-based services, supporting multiple creden and dependencies
? Friendly and lightweight developer programming model, based on Microsoft. NET Framework and Windows Communication Foundation.
Access control features
? Install and release with a simple Web interface or API programming.
? Supports the Active Directory and other authentication mechanisms with minimal encoding.
? Supports creden, including X.509 certificates
? Supports standard protocols including REST
? Applications running inside and outside the organizational boundaries can rely on services.
? Applications and user requests passed from data and connectivity services can be verified

4. Summary
With the support of cloud computing, users can pay by usage, thus saving a lot of upfront investment. In addition, in terms of time period and flexibility, users are more calm and do not have to worry about long approval periods, thus speeding up business listing. From the technical point of view, because the application has stripped the specific hardware platform, not only the system resources are fully utilized, but more energy-saving and efficient; at the same time, the difficulty of system management is greatly reduced, it can fully release the energy of the system and make the system more elastic. Compared with public clouds accessed through the Internet for public use, Private clouds are generally within the firewall and provide operation services for an enterprise, therefore, it is more secure in terms of security, regulatory compliance, and service quality, and easier to integrate with existing applications to reduce operating costs. However, the cost of public cloud is lower, the management burden is lighter, and capacity allocation is more advantageous.
Microsoft believes that in the future, the Internet world will exist in the form of a combination of "Cloud" and "end". In this cloud-centric world, users can easily access the data and applications deployed on the cloud in various forms, or access and use the data and applications provided by others, even the computing power is the same as power and tap water. It can be accessed anytime and anywhere. It can be used as needed and paid as needed. Instead of spending a lot of money to buy it, you don't know how to use it, the number of devices that can be used. These "terminals" can be computers, mobile phones, TVs, and other electronic devices that can be connected over the Internet. When users use various devices to access services in the cloud, they also get a completely seamless switching service experience. At the same time, with the gradual evolution of existing IT and Internet technologies and business models, A successful cloud computing platform can use and share the existing software development experience, capabilities, and various resources to the maximum extent. For a long time, Microsoft has been committed to the continuous innovation of cloud computing technologies and services, and has carried out some effective explorations and practices in dynamic data centers, Private clouds, and public clouds, and insist on making unremitting efforts to ultimately turn into something practical and reachable for the enterprise.

 

Author: Fu haijun
Source: http://fuhj02.blog.51cto.com
Copyright: The copyright of this article is owned by the author and 51cto.
Reprinted: you are welcome to reprinted. Please Reprinted as required to save the author's Creative Enthusiasm.] Thank you.
Requirement: This statement must be retained without the consent of the author; the original text connection must be provided in the article; otherwise, the legal liability must be investigated.
Personal Website: http://txj.lzuer.com/

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.