• Home

  • Documents

  • Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private...
8
Apigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

  • Upload
    hoangtu

  • View
    245

  • Download
    6

Embed Size (px)

Citation preview

Page 1: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

Apigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

Page 2: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

Table of Contents

Introduction 1 Time to success 2 Total cost of ownership 2 Performance 3 Security 4 Data privacy 4 Scalability and reliability 5 Summary 6

Page 3: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 1

1

©2016 Apigee. All Rights Reserved.

Introduction

APIs are the underpinnings of digital business platforms. To adopt an API-centric approach, it’s critical for an enterprise to choose an API management platform that enables it to secure, scale, and manage APIs, and make them attractive to internal and external developers.

Apigee Edge, the intelligent API management platform, is the choice of hundreds of companies that are building or expanding their digital businesses. These companies can choose to deploy Apigee Edge in their private data centers or in the Apigee cloud.

Which model should you choose? It depends on your business needs—do you need to manage your APIs or control your customer data in-house?

In this brief, we examine the pros and cons of the two deployment models, and key factors to consider as you determine the deployment option for your enterprise.

When evaluating deployment alternatives, our customers consider the following dimensions: • Time to success• Total cost of ownership• Security• Performance• Scalability and reliability

Page 4: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 2

2

©2016 Apigee. All Rights Reserved.

Time to success

Customers that deploy API management in the Apigee cloud typically go live with their digital initiatives much faster than those that deploy in the private cloud. The processes of acquiring, provisioning, and deploying hardware, as well as software deployment configuration, and the training required to deploy and manage API management software can all delay deployments to private clouds.

Customers that need to deliver high performance APIs to global audiences can take advantage of Apigee’s global network of 24 data centers. Further, as business requirements change, a deployment in the Apigee cloud can be reconfigured to expand and adjust to a customer’s needs.

Leading e-commerce and payment solutions provider First Data wanted to rapidly deliver a payment solution to enable merchants and banks to support Apple Pay in time for Apple’s big launch. To ensure the delivery in less than five months, First Data chose to deploy API management in the Apigee cloud.

Total cost of ownership

Apigee Edge API management in the Apigee cloud has a lower total cost of ownership (TCO) for our customers compared to a private cloud implementation. Private cloud costs include API management software costs, hardware infrastructure costs, hardware and software deployment and support costs, and operations and training costs.

The license cost of a private cloud deployment is less than a three-year annual subscription to the Apigee cloud. However, it is important to consider the additional costs an enterprise incurs with a private cloud implementation.

With the Apigee cloud (as with other SaaS offerings) infrastructure, operations, and support costs are distributed across Apigee’s entire customer support base. Data from our customers suggest that for a single-region, medium-sized API management implementation, a private cloud deployment can cost three times as much as the Apigee cloud deployment.

A key factor for the higher TCO associated with private cloud deployments are the costs related to the people required to deploy, manage, monitor, and support the API management infrastructure 24x7.

A comparison of the TCO of private cloud API management and an Apigee cloud implementation

Page 5: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 3

3

©2016 Apigee. All Rights Reserved.

A private cloud deployment can be the right choice for customers who want to recognize their investment (via a one-time perpetual license purchase) as a capital expenditure instead of as an operational cost (a subscription license).

For customers with significant private cloud investments and spare bandwidth in their cloud operations team, the incremental operational costs are minimal, and the economics of a private cloud implementation are similar to that of the Apigee cloud.

Performance

The choice of API management deployment model can impact API performance in a couple of scenarios: for internal use cases, and when reaching geographically distributed audiences.

In internal use cases, where both the target backends and the API consumers are in a private cloud, API management in the Apigee cloud can introduce additional round-trip latency to API calls. However, Apigee Edge Microgateway—a hybrid cloud solution—solves this problem. Edge Microgateway enables customers to maintain their API run-time infrastructure in their private cloud, while keeping the rest of API management in the Apigee cloud.

Because Apigee runs the API management platform in 24 globally dispersed data centers, the Apigee cloud can deliver superior performance to global audiences.

Many of our global customers deploy in the Apigee cloud across multiple regional data centers (Virginia, Oregon, Ireland, Singapore, Tokyo, and Sydney, for example). Customers not only benefit from the reduced latency of API requests, but also enjoy improved overall reliability and disaster recovery in the event of a catastrophic data center failure.

Page 6: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 4

4

©2016 Apigee. All Rights Reserved.

Security

Apigee adopts industry standards, deploys numerous security offerings and processes, and employs third parties to enhance the security of the Apigee cloud.

Industry standards The Apigee Platform is third-party audited, compliant, and certified for PCI DSS, HIPAA, SOC1, and SOC2. These and other certifications are available to customers and each of these standards is audited annually.

Security frameworks Apigee uses multiple frameworks to define and manage security controls, including Cloud Security Alliance (CSA) and ISO.

Information security Apigee has a formal information security policy and team. The team addresses the following domains:

• Cloud security• Application security• Corporate security (IT, HR, network, privacy, and physical security)• Incident management• Business continuity and disaster recovery

SLAs and redundancy Service level agreements are met through the use of redundant services in each region and redundant regions.

Application testing Apigee cloud is a multi-tenant, self-service, SaaS platform that is penetration tested annually by multiple third parties. This annual report is available to customers. Apigee Edge software is also tested annually by a third party with expertise in application testing. Apigee also conducts its own internal application testing.

SDLC Apigee follows a secure, formally documented software development lifecycle. This lifecycle includes static code analysis and dynamic code analysis tools, as well as peer code reviews and code release testing and approval processes.

Risk Analysis An independent third party conducts an annual formal risk analysis for Apigee Corp, including all software and services. This analysis identifies areas of risk to be addressed and an annual update allows for changing threats, risks, and environments.

Incident management Apigee has a formal incident response process that is carefully documented, tested at least once a year. It is updated and reviewed by third parties annually.

Background checks Apigee conducts background checks on all employees prior to their employment. Financial checks are also performed on key finance employees. Repeat checks for key positions are performed after five years of employment.

Apigee works with our customer’s information security team to further ensure that Apigee cloud meets the specific security requirements of the business.

Data privacy

The customer manages all data processed through or stored in Apigee cloud. Apigee does not need access to any end-user data for operation of the platform. The customer has the ability to decide what data to send through Apigee and what data, if

Page 7: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 5

5

©2016 Apigee. All Rights Reserved.

any, to store in the Apigee cloud (either in the API BaaS or in a cache). When a customer sends sensitive data through the Apigee cloud, Apigee operations does not see the payload in normal operations.

A customer can give Apigee support access to run a “trace/debug” session and, in that case, Apigee support may get access to customer data. If the Apigee customer does not want Apigee to have access to end-user data, this authorization can be withheld from all users of the Apigee platform, or from specific users.

Apigee does manage the platform and holds the master keys. But our access to customer environments is done the same way customers use the management UI. If an Apigee employee were to be given advanced access—the kind required to run a trace/debug—the enablement of this account, along with their actions, would be tracked in both the customer space and in the Apigee infrastructure logs.

Apigee prohibits this access by policy unless a customer requests it during a troubleshooting session. The customer can use analytics to identify any users with this type of access and remove those users at any time.

A private cloud deployment is a good choice in cases where industry or company regulations require that all your data, including API definitions and keys, need to reside on-premises.

Scalability and reliability

The Apigee cloud is managed by a talented operations team with hundreds of years of aggregate experience managing API management software in the cloud. Beyond the people expertise benefit, there are additional benefits of Apigee cloud compared to private cloud deployment.

Scale The Apigee cloud processes over 300 billion API calls per year for customers across a variety of industries that have rigorous compliance requirements (including financial services, healthcare, and telecommunications).

During Black Friday last year, peak API traffic in the Apigee cloud exceeded 50,000 requests per second. The Apigee cloud provides the additional benefit of dynamically scaling based on changing business needs.

Reliability We delivered 99.999% availability to our customers in the Apigee cloud in 2015 and we continue to improve availability. The Apigee cloud’s distributed global network of 24 data centers and strong traffic management capabilities ensure that the system is well-protected from system outages and traffic bursts.

Ease of operations Apigee has built a variety of tools to streamline the operations of the Apigee cloud, making upgrading software, debugging failures, and ensuring high uptime smoother. Apigee does, however, provide all the necessary training to enable customers to manage Apigee in their private cloud, as it takes additional operations resources and knowledge to become completely operational.

A private cloud implementation is a good choice if you require complete control over the deployment of API management, including version upgrades and scaling.

Page 8: Apigee Edge: Apigee Cloud vs. Private Cloud · PDF fileApigee Edge: Apigee Cloud vs. Private Cloud Evaluating deployment models for API management

s 6

6

©2016 Apigee. All Rights Reserved.

Summary

API management is a key enabler of your digital business strategy. Making the right deployment decision will help you accelerate your digital initiatives. In most cases, deploying in the Apigee cloud is the better option compared to private cloud.

However, for pure internal use cases and for company-specific security policy reasons, a private cloud deployment can be the right choice. Even for pure internal use cases, we recommend the Apigee cloud option with the hybrid Edge Microgateway to minimize run-time latencies.

We encourage your security team to conduct an audit of our security policies to determine if the Apigee cloud meets your company’s specific requirements.

Whether in the Apigee cloud or a private cloud, the Apigee Edge API management platform is built from the same Apigee codebase, so you always have the unique flexibility to start with the Apigee cloud option and then, if needed, move to a private cloud deployment.

Apigee® (NASDAQ: APIC) provides an intelligent API platform for digital business. Many of the world's largest organizations select Apigee to enable their digital business, including 30 percent of the Fortune 100, five of the top six Global 2000 retail companies, and five of the top 10 global telecommunications companies. Apigee customers include global enterprises such as Walgreens, Burberry, Morningstar, and First Data. Apigee is headquartered in San Jose, California and has over 400 employees worldwide. To learn more, see apigee.com.

About Apigee

http://apigee.com/about/products/api-management
http://apigee.com/about/

An Automated Cloud-edge Detection Algorithm Using Cloud Physics

An Automated Cloud-edge Detection Algorithm Using Cloud Physics

Documents
Apigee Demo: API Platform Overview

Apigee Demo: API Platform Overview

Technology
Apigee Edge for Private Cloud Gateway is the core module of Apigee Edge and is the main tool for managing your APIs. The Gateway UI provides tools for adding and configuring your APIs,

Apigee Edge for Private Cloud Gateway is the core module of Apigee Edge and is the main tool for managing your APIs. The Gateway UI provides tools for adding and configuring your APIs,

Documents
Cloud Platforms Volume 5 The Cutting “Edge” of Computing · 2019-03-22 · edge + cloud world, processing is therefore divided between the edge and the cloud, and fundamentally,

Cloud Platforms Volume 5 The Cutting “Edge” of Computing · 2019-03-22 · edge + cloud world, processing is therefore divided between the edge and the cloud, and fundamentally,

Documents
Cloud Native at the Edge: High-performance Edge Inference

Cloud Native at the Edge: High-performance Edge Inference

Documents
Cloud Edge FabricTM Brief - Cloud Edge... · 2019-07-08 · NFV, AR/VR, IoT and financial applications. The Cloud Edge Fabric solution does exactly this - lowers latency and improves

Cloud Edge FabricTM Brief - Cloud Edge... · 2019-07-08 · NFV, AR/VR, IoT and financial applications. The Cloud Edge Fabric solution does exactly this - lowers latency and improves

Documents
Advanced Security Extensions in Apigee Edge: JWT, JWE, JWS

Advanced Security Extensions in Apigee Edge: JWT, JWE, JWS

Technology
Webcast: Apigee Edge Product Demo

Webcast: Apigee Edge Product Demo

Software
Blackbaud Financial Edge NXT is a total cloud accounting · Blackbaud Financial Edge NXT® Cloud Accounting for Nonprofits Blackbaud Financial Edge NXT is a total cloud accounting

Blackbaud Financial Edge NXT is a total cloud accounting · Blackbaud Financial Edge NXT® Cloud Accounting for Nonprofits Blackbaud Financial Edge NXT is a total cloud accounting

Documents
EDGE-CLOUD 38 - Intel

EDGE-CLOUD 38 - Intel

Documents
Apigee Edge Overview and Roadmap

Apigee Edge Overview and Roadmap

Software
Apigee Edge API Servicesapigee.com/.../datasheets/Apigee_Edge_API_Services... · Apigee Edge API Services 3 White Apigee Edge API Services Product Brief Apigee Edge API Services Fig

Apigee Edge API Servicesapigee.com/.../datasheets/Apigee_Edge_API_Services... · Apigee Edge API Services 3 White Apigee Edge API Services Product Brief Apigee Edge API Services Fig

Documents
Apigee Edge for Private Cloud · ApigeeTM Apigee Edge for Private Cloud v4.16.05 June 9, 2016 Developer Channel Services Installation and Configuration Guide . ... For SAP installations,

Apigee Edge for Private Cloud · ApigeeTM Apigee Edge for Private Cloud v4.16.05 June 9, 2016 Developer Channel Services Installation and Configuration Guide . ... For SAP installations,

Documents
Digital-Ready IT - Google Cloud · Digital-Ready IT: An API Platform Story f 7 White Digital-Ready IT: An API Platform Story Apigee Edge: Operating On-Premises at Cloud Scale Apigee

Digital-Ready IT - Google Cloud · Digital-Ready IT: An API Platform Story f 7 White Digital-Ready IT: An API Platform Story Apigee Edge: Operating On-Premises at Cloud Scale Apigee

Documents
Building APIs with Apigee Edge and Microsoft Azure

Building APIs with Apigee Edge and Microsoft Azure

Technology
KT 5G IT Edge Cloudeventcheckin.co.kr/fortinet/361security2019/images/T2_04.pdf · 2019-10-21 · 2 5G IT Edge Cloud 3 5G IT Edge Cloud : Use-cases 4 5G IT Edge Cloud : 3 Strengths

KT 5G IT Edge Cloudeventcheckin.co.kr/fortinet/361security2019/images/T2_04.pdf · 2019-10-21 · 2 5G IT Edge Cloud 3 5G IT Edge Cloud : Use-cases 4 5G IT Edge Cloud : 3 Strengths

Documents
Apigee Edge: Intro to Microgateway

Apigee Edge: Intro to Microgateway

Software
I Love APIs 2015: Advanced Security Extensions in Apigee Edge - JWT, JWE, JWS

I Love APIs 2015: Advanced Security Extensions in Apigee Edge - JWT, JWE, JWS

Software
Cloud Computing and Edge Computing

Cloud Computing and Edge Computing

Documents
Edge Intelligence: The Central Cloud is Dead Long …...Edge Intelligence: The Central Cloud is Dead – Long Live the Edge Cloud! - 4 - September 2017 approaches, adopted by companies

Edge Intelligence: The Central Cloud is Dead Long …...Edge Intelligence: The Central Cloud is Dead – Long Live the Edge Cloud! - 4 - September 2017 approaches, adopted by companies

Documents
CORD: A Platform for “The New Network Edge” · Public Clouds Users Edge Cloud Emerging Multi-Tier Cloud with New Network Edge Telco Cloud • Subscriber experience dictated from

CORD: A Platform for “The New Network Edge” · Public Clouds Users Edge Cloud Emerging Multi-Tier Cloud with New Network Edge Telco Cloud • Subscriber experience dictated from

Documents
We built this city: Behind the scenes of Apigee Edge

We built this city: Behind the scenes of Apigee Edge

Software
Node.js - Extending the Programmability of Apigee Edge

Node.js - Extending the Programmability of Apigee Edge

Technology
Apigee Edge Developer Trainingapigee.com/about/sites/mktg-new/files/datasheets/Apigee Training... · Developer Training Apigee Edge Developer Training DURATION: 4 or 5 days FORMAT:

Apigee Edge Developer Trainingapigee.com/about/sites/mktg-new/files/datasheets/Apigee Training... · Developer Training Apigee Edge Developer Training DURATION: 4 or 5 days FORMAT:

Documents
IoT on the Edge. - FhiIoT on the Edge. Agenda •Lost in the Cloud •Mijn eigen cloud •Internet of What? •IoT in de Formule 1 •Hybrid Cloud Packages (Hybrid) Cloud-, Edge and

IoT on the Edge. - FhiIoT on the Edge. Agenda •Lost in the Cloud •Mijn eigen cloud •Internet of What? •IoT in de Formule 1 •Hybrid Cloud Packages (Hybrid) Cloud-, Edge and

Documents
Apigee Edge Deployment Models · PDF fileApigee Edge Deployment Models ... API Services brings together powerful API management tools with a BaaS platform built for cloud scale, and

Apigee Edge Deployment Models · PDF fileApigee Edge Deployment Models ... API Services brings together powerful API management tools with a BaaS platform built for cloud scale, and

Documents
Cloud vm in edge networks

Cloud vm in edge networks

Technology
I Love APIs 2015: Advanced Security Extensions in Apigee Edge - HMAC and http_signature

I Love APIs 2015: Advanced Security Extensions in Apigee Edge - HMAC and http_signature

Software
I Love APIs 2015: Advanced Crash Course in Apigee Edge Workshop

I Love APIs 2015: Advanced Crash Course in Apigee Edge Workshop

Software
Perspectives on the Edge Cloud · 2019-12-12 · Perspectives on the Edge Cloud Panel Discussion Moderated by Larry Peterson, ONF. ... Tetrate. Edge Cloud: Where the Hype Is The Edge

Perspectives on the Edge Cloud · 2019-12-12 · Perspectives on the Edge Cloud Panel Discussion Moderated by Larry Peterson, ONF. ... Tetrate. Edge Cloud: Where the Hype Is The Edge

Documents