The Microsoft Cloud Azure Platform

  • Published on

  • View

  • Download

Embed Size (px)


The Microsoft Cloud Azure Platform. This presentation incorporates some content from Microsoft. Types of Clouds. Private (On-Premise). Infrastructure (as a Service). Platform (as a Service). You manage. Applications. Applications. Applications. You manage. Runtimes. Runtimes. - PowerPoint PPT Presentation


The Microsoft CloudAzure Platform

This presentation incorporates some content from MicrosoftPrivate(On-Premise)Infrastructure(as a Service)Platform(as a Service)Types of CloudsStorageServer HWNetworkingServersDatabasesVirtualizationRuntimesApplicationsSecurity & IntegrationStorageServer HWNetworkingServersDatabasesVirtualizationRuntimesApplicationsSecurity & IntegrationStorageServer HWNetworkingServersDatabasesVirtualizationRuntimesApplicationsSecurity & IntegrationYou manageManaged by vendorManaged by vendorYou manageYou manage2Cloud Services Continuum (based on Robert Anderson)Platform(PaaS)Infrastructure(IaaS)Software(SaaS)Google DocsGoogle AppEngineAmazon EC2 & S3 Azure .net servicesSalesforce.comComplexity & Flexibilitye-Science CentralAmazonElastic Map ReduceSimple DBSimple Queue ServiceWindows Azure- Sharepoint- SQL Services Platform ServicesThe Microsoft Cloud

Software ServicesApplication Services Infrastructure ServicesCategories of ServicesWindows Azure PlatformInternet-scale, highly available cloud fabricGlobally distributed Microsoft data centers (ISO/IEC 27001:2005 and SAS 70 Type I and Type II certified)Consumption and usage-based pricing; enterprise-class SLA commitmentCompute auto-provisioning 64-bit application containers in Windows Server VMs; supports a wide range of application modelsStorage highly available distributed table, blob, queue, & cache storage servicesLanguages .NET 3.5 (C#, VB.NET, etc.), IronRuby, IronPython, PHP, Java, native Win32 codeData massively scalable & highly consistent distributed relational database; geo-replication and geo-location of dataProcessing relational queries, search, reporting, analytics on structured, semi-structured, and unstructured dataIntegration synchronization and replication with on-premise databases, other data sourcesService Bus connectivity to on-premises applications; secure, federated fire-wall friendly Web services messaging intermediary; durable & discoverable queuesAccess Control rules-driven federated identity; AD federation; claims-based authorizationWorkflows declarative service orchestrations via REST-based activities

Security and PrivacyEncrypts data before it goes to databaseEncrypts connection to azure via SSMS (SQL Server Management Studio)Service Secure channel required (SSL)Denial Of Service trend trackingPacket InspectionServer IP allow list (Firewall) Idle connection cullingGenerated server names DatabaseDisallow the most commonly attacked user ids (SA, Admin, root, guest, etc) Standard SQL Authn/Authz mode

Access ControlApproachAutomate federation for a wide-range of identity providers and technologiesFactor the access control logic from the application into manageable collection of rulesEasy-to-use framework that ensures correct token processingEnable security scheme external to applicationMultiple security schemes can be enabledRules used to map claims to what app expectsIntegrate with standards-based identity providers, including enterprise directories and web identity systems such as Windows Live ID.NET Developers use the Geneva Framework


View more >