InfoSec 2011: Crash Course Open Source Cloud Computing

  • Published on

  • View

  • Download

Embed Size (px)


Presentation delivered at InfoSec Raleigh 2011 at NC State's McKrimmon Center. Delivered October 20th, 2011.


  • 1.Crash Course in OpenSource CloudComputingMark R. HinkleDirector, Cloud Computing CommunityCitrix Systems Inc.Twitter: @mrhinkleEmail:

2. 2Agenda1. Introduction2. Quick Cloud Computing Overview3. Open Source Building Blocks for Cloud Computing4. Open Source Tools for Cloud Management5. Questions 3. 3%whoami 4. Quick Cloud ComputingOverview: Or the ObligatoryWhat is the Cloud? Slides 5. 5Five Characteristics of Clouds 6. 6Cloud Computing Service Models USER CLOUD a.k.a. SOFTWARE AS A SERVICE Single application, multi-tenancy, network-based, one-to-many delivery of applications, all users have same access to features. Examples:, Google Docs, Red Hat Network/RHEL DEVELOPMENT CLOUD a.k.a. PLATFORM-AS-A-SERVICE Application developer model, Application deployed to an elastic service that autoscales, low administrative overhead. No concept of virtual machines or operating system. Code it and deploy it. Examples: Google AppEngine, Windows Azure, Rackspace Site, Red Hat Makara SYSTEMS CLOUD a.k.a INFRASTRUCTURE-AS-A-SERVICE Servers and storage are made available in a scalable way over a network. Examples: EC2,Rackspace CloudFiles, OpenStack, CloudStack, Eucalyptus, Ubuntu Enterprise Cloud, OpenNebula 7. Deployment Models 7Public, Private & Hybrid Clouds 8. Cloud Still Requires8Architectural Design Cloud Computing isnt a magicalsolution Need to design your architecture with theend in mind As you build it make your infrastructureeasily replicable Security considerations still apply, attackface may be increased 9. Building Compute Cloudswith Open Source Software 10. 10Why Open Source? Typically User-Driven Solutions to Real Problems Larger user base, users helping users Lower barrier to participation Aggressive release cycles stay current with thestate-of-the-art Open data, Open standards, Open APIs 11. 11Open Virtual Machine FormatsOpen Virtualization Format (OVF) is an openstandard for packaging and distributing virtualappliances or more generally software to be runin virtual machines. 12. Sourcing OSS 12VMs and Cloud Appliances 13. 13Open Source HypervisorsOpen Source Xen, Xen Cloud Platform (XCP) KVM Kernel-based Virtualization VirtualBox* - Oracle supported Virtualization Solutions OpenVZ* - Container-based, Similar to Solaris Containers or BSD Zones LXC User Space chrooted installsProprietary VMware Citrix Xenserver Microsoft Hyper-V OracleVM (Based on OS Xen) 14. 14Open Source Compute Clouds 15. Open Source 15Platform-as-a-Service 16. Open Source16Cloud Computing Storage GlusterFS Scale Out NAS system aggregating storageover Ethernet or Infiniband CEPH Distributed file storage system developed byDreamHost OpenStack Object Storage (SWIFT) Long-termstorage object storage system Sheepdog Distributed storage for KVM hypervisors NFS Old standby, tried and true, not designed for cloudscale or performance 17. Cloud APIs Arent Created Equal 17Open Source Abstractions jclouds libcloud deltacloud fog 18. 18Private Cloud Architecture 19. Managing Clouds withOpen Source Tools 20. Automation Unlocks 20the Potential of the Cloud 21. 214 Types of Management ToolsProvisioningInstallation of operating systems and other softwareConfiguration ManagementSets the parameters for servers, can specifyinstallation parameters Orchestration/Automation Automate tasks across systemsMonitoringRecords errors and health of IT infrastructure 22. Well Managed Systems are Easier22to Secure Security updates easier to process Changes can be applied systematically Policies are easier to enforce Extraneous software (and vulnerabilitiesare not introduced) Infrastructure can be easily rebuild in caseof an intrusion 23. 23Management Toolchains 24. Open Source 24Provisioning Tools Year Started Language License Installation Targets 25. Open Source25Configuration Management Tools 26. Open Source26Monitoring Tools 27. Open Source27Automation/Orchestration Tools 28. 28Open Source Security Tools 29. 29Automated Toolchain 30. Infrastructure Development 30LifecycleEverything starts here 31. Questions? Slides Can be Viewed and Downloaded at: 32. 32Contact Me 33. Crash Course in Open Source Cloud Computing by Mark R. Hinkle is licensed under a Creative Commons Attribution- ShareAlike 3.0 United States License.