SlideShare a Scribd company logo

2013-05-22 RedHatGov Partner Event

S
Shawn Wells

The document outlines the process of building applications using Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) through operational guidelines and architecture frameworks provided by Red Hat OpenStack. It emphasizes the shift from traditional physical hardware setups to more efficient, automated virtualized environments, showcasing steps from ideation to deployment. Additionally, it presents a unified object storage solution, Cornerstone, focusing on security, scalability, and accessibility in various environments.

Government & Nonprofit
1 of 59
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
Manufacturing Polkadot Warplanes Shawn Wells | shawn@redhat.com
2013-05-22 RedHatGov Partner Event
2013-05-22 RedHatGov Partner Event
2013-05-22 RedHatGov Partner Event
http://www.npr.org/2011/09/07/140256967/shipping-container-inventor-transformed-world-trade
2013-05-22 RedHatGov Partner Event
2013-05-22 RedHatGov Partner Event
STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
CRAFTWORK → MASS PRODUCTION With PaaSVirtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
CRAFTWORK → MASS PRODUCTION With PaaS How to Build an App: 1. Have Idea 2. Get Budget 3. Submit VM Request request 4. Wait 5. Deploy framework/appserver 6. Deploy testing tools 7. Code 8. Test 9. Configure Prod VMs 10. Push to Prod 11. Launch 12. Request More Prod VMs to meet demand 13. Wait 14. Deploy app to new VMs 15. Etc. Virtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
CRAFTWORK → MASS PRODUCTION With PaaS How to Build an App: 1. Have Idea 2. Get Budget 3. Code 4. Test 5. Launch 6. Automatically Scale How to Build an App: 1. Have Idea 2. Get Budget 3. Submit VM Request request 4. Wait 5. Deploy framework/appserver 6. Deploy testing tools 7. Code 8. Test 9. Configure Prod VMs 10. Push to Prod 11. Launch 12. Request More Prod VMs to meet demand 13. Wait 14. Deploy app to new VMs 15. Etc. Virtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 MANUFACTURING FOUNDATIONS (for IaaS)
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
RED HAT INVOLVEMENT - Be to OpenStack what Red Hat is to Linux - Create Enterprise Distribution * Supportability * Stability * Enterprise Features (e.g. security, performance) * Certified Ecosystem * Lifecycle
OPENSTACK RELEASE CADENCE - Upstream * Source code only * Releases every 6 months * No bugfixes / snapshots after next release - RDO (e.g. “Fedora” of OpenStack) * Follows upstream cadence * Delivers binaries
OPENSTACK RELEASE CADENCE - Red Hat OpenStack * Initially 1 year lifecycle (e.g. support for Folsum ends after Grizzly) * Will increase lifecycle over time (likely to move to 2 years) * Ecosystem of Support * Government Ready
Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 SOLUTION ENABLEMENT: CORNERSTONE
CORNERSTONE Open, unified, and extensible scale-out object storage solution for on-premise, virtualized and cloud environments Which includes Pervasive, flexible encryption with an innovative approach to unified symmetrical key management
CORNERSTONE
CORNERSTONE
PANDORA RADIO
2013-05-22 RedHatGov Partner Event
DESIGN CONSIDERATIONS - Consistent, global information accessibility through REST API - Consistent access through high and low-latency networks - Cost effectiveness and scalability for big data growth - Open system, empowering developers
DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - -
DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - Data retains encryption across backup and disaster recovery -
DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - Data retains encryption across backup and disaster recovery - Encrypted files do not require significant additional space; storage requirements change non perceptibly
DESIGN CONSIDERATIONS ADMINISTRATION - Role Based Access Control (RBAC), augmented with Mandatory (MAC) and discretionary (DAC) granularity - Real-time modification to access control policies, to include time limits, number of accesses, etc - All operations, including key access, are audited
DESIGN CONSIDERATIONS END-USER - De-identify sources & methods: Expand data encryption options to protecting relationships - Anonymize Datasets: Replace sensitive portions of data records with cryptographic pseudonyms - Protect and control access to multiple data sources from a query device (e.g. remote wireless tablet vs physical desk at DIA)
SECURITY - FIPS VALIDATION * Federal Information Processing Standard 140-2 - COMMON CRITERIA CERTIFIED FOUNDATIONS * Operating System: EAL4+, CAPP/RBAC/LSPP * Crypto: EAL2+ - MULTIPLE ALGORITHM SUPPORT * AES (256 bits, 196 bits, 128 bits) * TripleDES (168) * SHA-2 hash functions (SHA-224, -256, -384, -512) * ECC and RSA TLS protocols
2013-05-22 RedHatGov Partner Event
2013-05-22 RedHatGov Partner Event
HDFS vs CORNERSTONE
Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 MANUFACTURING FOUNDATIONS (for PaaS)
PaaS = Platform as a Service Code Deploy Run
OPENSHIFT STRATEGY Public Cloud Service
OPENSHIFT STRATEGY Public Cloud Service On- premise or Private Cloud Software
OPENSHIFT STRATEGY origin Public Cloud Service On- premise or Private Cloud Software Open Source Project
WEB CONSOLE
CLI? OF COURSE Create Apps rhc app create -a javasample -t jbossas-7 Add MongoDB rhc app cartridge add -a javasample –c mongodb-2.0 Add add EAR file to your deployments directory cd javasample cp /path/to/ear/earfilename.ear ./deployments Add the EAR file to git git add ./deployments/earfilename.ear Push your code git push Done
ECLIPSE, TOO.
HOW IT WORKS
YES, WE STILL HAVE INFRASTRUCTURE AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal
RHEL IS THE FOUNDATION RHEL RHEL RHEL OpenShift is Built on Instances of Red Hat Enterprise Linux (RHEL) RHEL AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal
RHEL GIVES US MULTI-TENANCY AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL
RHEL GIVES US MULTI-TENANCY AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL RHEL RHEL CARTRIDGES are how OpenShift installs Languages & Middleware Broker Node Node Node RHEL JBoss MySQL
CARTRIDGES
EVERYTHING DEVELOPERS ALREADY USE
YES, YOU CAN BUILD YOUR OWN AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL RHEL RHEL CARTRIDGES are how OpenShift installs Languages & Middleware Broker Node Node Node RHEL JBoss MySQL Developers can add custom language, data-store, or middleware with with a custom Cartridge. CUSTOMEtc. Etc. Ruby Python PHP Java Postgres MySQL OpenShift Default Cartridges
Established New
2013-05-22 RedHatGov Partner Event

More Related Content

PPTX
Deploying and Managing Red Hat Enterprise Linux in Amazon Web Services
DLT Solutions
 
PPTX
Moving Viadeo to AWS (2015)
Julien SIMON
 
PDF
A real-life account of moving 100% to a public cloud
Julien SIMON
 
PDF
From Docker Straight to AWS
DevOps.com
 
PDF
Running Docker clusters on AWS (June 2016)
Julien SIMON
 
PDF
All the Ops: DataOps with GitOps for Streaming data on Kafka and Kubernetes
DevOps.com
 
PDF
A 60-mn tour of AWS compute (March 2016)
Julien SIMON
 
PDF
OpenServerSummit: Operating Hybrid Infrastructure
rhirschfeld
 
Deploying and Managing Red Hat Enterprise Linux in Amazon Web Services
DLT Solutions
 
Moving Viadeo to AWS (2015)
Julien SIMON
 
A real-life account of moving 100% to a public cloud
Julien SIMON
 
From Docker Straight to AWS
DevOps.com
 
Running Docker clusters on AWS (June 2016)
Julien SIMON
 
All the Ops: DataOps with GitOps for Streaming data on Kafka and Kubernetes
DevOps.com
 
A 60-mn tour of AWS compute (March 2016)
Julien SIMON
 
OpenServerSummit: Operating Hybrid Infrastructure
rhirschfeld
 

What's hot (16)

PDF
YOOXlabTechEvent: How Cloud helps Innovation
YOOXlabsTechEvent
 
PDF
AWS DevOps Event - Innovating with DevOps on AWS
Ian Massingham
 
PDF
10 Good Reasons: NetApp for DevOps
NetApp
 
PPT
WordPress Enterprise architecture on AWS
YOOXlabsTechEvent
 
PDF
Docker Paris #29
Julien SIMON
 
PPTX
It's All About Delivering: A Journey From AWS to Cloud Foundry
VMware Tanzu
 
ODP
Hybris install telco accelerators on aws-ec2
Venugopal Gummadala
 
PDF
10 Good Reasons - NetApp for Devops
NetAppUK
 
PDF
CI&CD on AWS - Meetup Roma Oct 2016
Paolo latella
 
PPTX
Developing Java Applications in AWS
Nemanja Kostic
 
PDF
Introduction to EKS and eksctl
Weaveworks
 
PDF
Amazon ECS (March 2016)
Julien SIMON
 
PPTX
Application Centric Approach to Devops
Nati Shalom
 
PPTX
Microsoft Build 2017 - Developing on Windows Server
Taylor Brown
 
PPTX
Build 2017 - Developing On Windows Server
Taylor Brown
 
PPTX
Getting Started with Amazon ECS: Run Docker Containers on AWS
Tung Nguyen
 
YOOXlabTechEvent: How Cloud helps Innovation
YOOXlabsTechEvent
 
AWS DevOps Event - Innovating with DevOps on AWS
Ian Massingham
 
10 Good Reasons: NetApp for DevOps
NetApp
 
WordPress Enterprise architecture on AWS
YOOXlabsTechEvent
 
Docker Paris #29
Julien SIMON
 
It's All About Delivering: A Journey From AWS to Cloud Foundry
VMware Tanzu
 
Hybris install telco accelerators on aws-ec2
Venugopal Gummadala
 
10 Good Reasons - NetApp for Devops
NetAppUK
 
CI&CD on AWS - Meetup Roma Oct 2016
Paolo latella
 
Developing Java Applications in AWS
Nemanja Kostic
 
Introduction to EKS and eksctl
Weaveworks
 
Amazon ECS (March 2016)
Julien SIMON
 
Application Centric Approach to Devops
Nati Shalom
 
Microsoft Build 2017 - Developing on Windows Server
Taylor Brown
 
Build 2017 - Developing On Windows Server
Taylor Brown
 
Getting Started with Amazon ECS: Run Docker Containers on AWS
Tung Nguyen
 
Ad

Similar to 2013-05-22 RedHatGov Partner Event (20)

ODP
Open shift 2.x and MongoDB
plarsen67
 
PPT
OpenShift Origin: Build a PaaS Just Like Red Hats
Mark Atwood
 
PDF
Openshift Container Platform: First ItalyMeetup
Giuseppe Bonocore
 
PDF
Oscon Talk; 2014
Jesse Noller
 
PPTX
Strategies for Securing Availability and Optimizing Application Performance i...
Correlsense
 
PDF
PaaS Anywhere - Deploying an OpenShift PaaS into your Cloud Provider of Choice
Isaac Christoffersen
 
PDF
An Introduction to Red Hat Enterprise Linux OpenStack Platform
Rhys Oxenham
 
ODP
Putting The PaaS in OpenStack with Diane Mueller @RedHat
OpenShift Origin
 
ODP
OpenShift Enterprise
Ali Sadeghi Ardestani
 
PDF
Open cloud infrastructure built for the enterprise
RedHatInc
 
PDF
Red Hat Container Strategy
Red Hat Events
 
PPTX
Accelerating Application Delivery with OpenShift
POSSCON
 
ODP
Open stack
Luan Cestari
 
PDF
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
OpenShift Origin
 
PDF
OpenStack in Action 4! Franz Meyer - What Use Case does Red Hat Enterprise ...
eNovance
 
PDF
Devops automation using Docker, Kubernetes and Openshift
Jonathan Tse
 
PDF
Openstack Benelux Conference 2014 Red Hat Keynote
Microsoft
 
PPTX
Why OpenStack on UCS? An Introduction to Red Hat and Cisco OpenStack Solution
Elizabeth Sale
 
PDF
Openshift Enterprise
Edoardo Schepis
 
PDF
Red Hat Openshift on Microsoft Azure
John Archer
 
Open shift 2.x and MongoDB
plarsen67
 
OpenShift Origin: Build a PaaS Just Like Red Hats
Mark Atwood
 
Openshift Container Platform: First ItalyMeetup
Giuseppe Bonocore
 
Oscon Talk; 2014
Jesse Noller
 
Strategies for Securing Availability and Optimizing Application Performance i...
Correlsense
 
PaaS Anywhere - Deploying an OpenShift PaaS into your Cloud Provider of Choice
Isaac Christoffersen
 
An Introduction to Red Hat Enterprise Linux OpenStack Platform
Rhys Oxenham
 
Putting The PaaS in OpenStack with Diane Mueller @RedHat
OpenShift Origin
 
OpenShift Enterprise
Ali Sadeghi Ardestani
 
Open cloud infrastructure built for the enterprise
RedHatInc
 
Red Hat Container Strategy
Red Hat Events
 
Accelerating Application Delivery with OpenShift
POSSCON
 
Open stack
Luan Cestari
 
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
OpenShift Origin
 
OpenStack in Action 4! Franz Meyer - What Use Case does Red Hat Enterprise ...
eNovance
 
Devops automation using Docker, Kubernetes and Openshift
Jonathan Tse
 
Openstack Benelux Conference 2014 Red Hat Keynote
Microsoft
 
Why OpenStack on UCS? An Introduction to Red Hat and Cisco OpenStack Solution
Elizabeth Sale
 
Openshift Enterprise
Edoardo Schepis
 
Red Hat Openshift on Microsoft Azure
John Archer
 
Ad

More from Shawn Wells (20)

PDF
2017-10-10 AUSA 2017: Repeatable DCO Platforms
Shawn Wells
 
PDF
2017-07-12 GovLoop: New Era of Digital Security
Shawn Wells
 
PDF
2017-07-11 GovLoop: Changing the Open Hybrid Cloud Game (Deploying OpenShift ...
Shawn Wells
 
PDF
2017 02-17 rsac 2017 tech-f02
Shawn Wells
 
PDF
2017-02-21 AFCEA West Building Continuous Integration & Deployment (CI/CD) Pi...
Shawn Wells
 
PDF
2016 -11-18 OpenSCAP Workshop Coursebook
Shawn Wells
 
PDF
2016-08-29 AFITC Security Automation
Shawn Wells
 
PDF
2016-08-24 FedInsider Webinar with Jennifer Kron - Securing Intelligence in a...
Shawn Wells
 
PPT
2016-08-18 Red Hat Partner Security Update
Shawn Wells
 
PDF
2015-11-15 - Supercomputing 2015 - Applied Cross Domain
Shawn Wells
 
PDF
2015-10-05 Fermilabs DevOps Alone in the Dark
Shawn Wells
 
PDF
2015-06-25 Red Hat Summit 2015 - Security Compliance Made Easy
Shawn Wells
 
PPTX
2015 06-12 DevOpsDC 2015 - Consumer to Collaborator
Shawn Wells
 
PDF
2015-01-27 ssa opening remarks
Shawn Wells
 
PDF
2014-12-16 defense news - shutdown the hackers
Shawn Wells
 
PDF
2014-07-31 customer convergence applied scap
Shawn Wells
 
PDF
2014-07-30 defense in depth scap workbook
Shawn Wells
 
PDF
2014-05-08 IT Craftsmanship to IT Manufacturing
Shawn Wells
 
PDF
2014-04-28 cloud security frameworks and enforcement
Shawn Wells
 
PDF
2014 04-17 Applied SCAP, Red Hat Summit 2014
Shawn Wells
 
2017-10-10 AUSA 2017: Repeatable DCO Platforms
Shawn Wells
 
2017-07-12 GovLoop: New Era of Digital Security
Shawn Wells
 
2017-07-11 GovLoop: Changing the Open Hybrid Cloud Game (Deploying OpenShift ...
Shawn Wells
 
2017 02-17 rsac 2017 tech-f02
Shawn Wells
 
2017-02-21 AFCEA West Building Continuous Integration & Deployment (CI/CD) Pi...
Shawn Wells
 
2016 -11-18 OpenSCAP Workshop Coursebook
Shawn Wells
 
2016-08-29 AFITC Security Automation
Shawn Wells
 
2016-08-24 FedInsider Webinar with Jennifer Kron - Securing Intelligence in a...
Shawn Wells
 
2016-08-18 Red Hat Partner Security Update
Shawn Wells
 
2015-11-15 - Supercomputing 2015 - Applied Cross Domain
Shawn Wells
 
2015-10-05 Fermilabs DevOps Alone in the Dark
Shawn Wells
 
2015-06-25 Red Hat Summit 2015 - Security Compliance Made Easy
Shawn Wells
 
2015 06-12 DevOpsDC 2015 - Consumer to Collaborator
Shawn Wells
 
2015-01-27 ssa opening remarks
Shawn Wells
 
2014-12-16 defense news - shutdown the hackers
Shawn Wells
 
2014-07-31 customer convergence applied scap
Shawn Wells
 
2014-07-30 defense in depth scap workbook
Shawn Wells
 
2014-05-08 IT Craftsmanship to IT Manufacturing
Shawn Wells
 
2014-04-28 cloud security frameworks and enforcement
Shawn Wells
 
2014 04-17 Applied SCAP, Red Hat Summit 2014
Shawn Wells
 

Recently uploaded (20)

PDF
2025 Shadow report on Ukraine's progression regarding Chapter 29 of the acquis
robertzeldy
 
PPTX
AMO Pune Complete information and work profile
kaivalyakkale1612
 
PPTX
The DFARS - Part 250 - Extraordinary Contractual Actions
JSchaus & Associates
 
PPTX
Inferenceahaiajaoaakakakakakakakakakakakakaka
Faiz975600
 
PDF
Courtesy Meeting NIPA and MBS Australia.
Tri Widodo W. UTOMO
 
PPTX
Omnibus rules on leave administration.pptx
Manila14
 
PPTX
GOVERNMENT-ACCOUNTING1. bsa 4 government accounting
AngelOrale
 
PDF
Contributi dei parlamentari del PD - Contributi L. 3/2019
Partito democratico
 
PPTX
Introduction_to_the_Study_of_Globalization.pptx
marianolyn100
 
PPTX
26.1.2025 venugopal K Awarded with commendation certificate.pptx
Venugopal Kodati
 
PDF
2026 RMHC Terms & Conditions agreement - updated 8.1.25.pdf
Christian Home Educators of Colorado
 
PDF
ISO-9001-2015-internal-audit-checklist2-sample.pdf
WaqasBhutto1
 
PPT
Quality Management Ssystem PPT - Introduction.ppt
RyeLozada
 
PDF
Item # 2 - 934 Patterson Specific Use Permit (SUP)
ahcitycouncil
 
DOCX
Alexistogel: Solusi Tepat untuk Anda yang Cari Bandar Toto Macau Resmi
hamzaaashaikhseo
 
PPTX
GSA Q+A Follow-Up To EO's, Requirements & Timelines
JSchaus & Associates
 
PPTX
怎么办休斯敦大学维多利亚分校毕业证电子版成绩单办理|UHV在读证明信
ixajxoeq
 
PDF
PPT - Primary Rules of Interpretation (1).pdf
arjun623464
 
PDF
It Helpdesk Solutions - ArcLight Group
Arclight Group
 
PDF
Item # 4 -- 328 Albany St. compt. review
ahcitycouncil
 
2025 Shadow report on Ukraine's progression regarding Chapter 29 of the acquis
robertzeldy
 
AMO Pune Complete information and work profile
kaivalyakkale1612
 
The DFARS - Part 250 - Extraordinary Contractual Actions
JSchaus & Associates
 
Inferenceahaiajaoaakakakakakakakakakakakakaka
Faiz975600
 
Courtesy Meeting NIPA and MBS Australia.
Tri Widodo W. UTOMO
 
Omnibus rules on leave administration.pptx
Manila14
 
GOVERNMENT-ACCOUNTING1. bsa 4 government accounting
AngelOrale
 
Contributi dei parlamentari del PD - Contributi L. 3/2019
Partito democratico
 
Introduction_to_the_Study_of_Globalization.pptx
marianolyn100
 
26.1.2025 venugopal K Awarded with commendation certificate.pptx
Venugopal Kodati
 
2026 RMHC Terms & Conditions agreement - updated 8.1.25.pdf
Christian Home Educators of Colorado
 
ISO-9001-2015-internal-audit-checklist2-sample.pdf
WaqasBhutto1
 
Quality Management Ssystem PPT - Introduction.ppt
RyeLozada
 
Item # 2 - 934 Patterson Specific Use Permit (SUP)
ahcitycouncil
 
Alexistogel: Solusi Tepat untuk Anda yang Cari Bandar Toto Macau Resmi
hamzaaashaikhseo
 
GSA Q+A Follow-Up To EO's, Requirements & Timelines
JSchaus & Associates
 
怎么办休斯敦大学维多利亚分校毕业证电子版成绩单办理|UHV在读证明信
ixajxoeq
 
PPT - Primary Rules of Interpretation (1).pdf
arjun623464
 
It Helpdesk Solutions - ArcLight Group
Arclight Group
 
Item # 4 -- 328 Albany St. compt. review
ahcitycouncil
 

2013-05-22 RedHatGov Partner Event

  • 8. STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
  • 9. STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
  • 10. STORAGE (RHS) HARDWARE (x86) VIRTUALIZATION (RHEV) OPERATING SYSTEM (RHEL) APPLICATION PLATFORM (JBOSS, PHP, RUBY, ETC) APPLICATION Provider Managed Managed and Controlled by Customer IaaS PaaS SaaS Increased Control Increased Automation
  • 11. CRAFTWORK → MASS PRODUCTION With PaaSVirtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
  • 12. CRAFTWORK → MASS PRODUCTION With PaaS How to Build an App: 1. Have Idea 2. Get Budget 3. Submit VM Request request 4. Wait 5. Deploy framework/appserver 6. Deploy testing tools 7. Code 8. Test 9. Configure Prod VMs 10. Push to Prod 11. Launch 12. Request More Prod VMs to meet demand 13. Wait 14. Deploy app to new VMs 15. Etc. Virtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
  • 13. CRAFTWORK → MASS PRODUCTION With PaaS How to Build an App: 1. Have Idea 2. Get Budget 3. Code 4. Test 5. Launch 6. Automatically Scale How to Build an App: 1. Have Idea 2. Get Budget 3. Submit VM Request request 4. Wait 5. Deploy framework/appserver 6. Deploy testing tools 7. Code 8. Test 9. Configure Prod VMs 10. Push to Prod 11. Launch 12. Request More Prod VMs to meet demand 13. Wait 14. Deploy app to new VMs 15. Etc. Virtualized How to Build an App: 1. Have Idea 2. Get Budget 3. Submit hardware acquisition request 4. Wait 5. Get Hardware 6. Rack and Stack Hardware 7. Install Operating System 8. Install Operating System Patches/Fix-Packs 9. Create user Accounts 10. Deploy framework/appserver 11. Deploy testing tools 12. Code 13. Test 14. Configure Prod servers (and buy them if needed) 15. Push to Prod 16. Launch 17. Order more servers to meet demand 18. Wait… Physical
  • 14. Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 MANUFACTURING FOUNDATIONS (for IaaS)
  • 15. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 16. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 17. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 18. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 19. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 20. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 21. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 22. RED HAT OPENSTACK - MODULAR ARCHITECTURE - DESIGNED TO SCALE OUT - BASED ON (GROWING) SET OF CORE SERVICES
  • 23. RED HAT INVOLVEMENT - Be to OpenStack what Red Hat is to Linux - Create Enterprise Distribution * Supportability * Stability * Enterprise Features (e.g. security, performance) * Certified Ecosystem * Lifecycle
  • 24. OPENSTACK RELEASE CADENCE - Upstream * Source code only * Releases every 6 months * No bugfixes / snapshots after next release - RDO (e.g. “Fedora” of OpenStack) * Follows upstream cadence * Delivers binaries
  • 25. OPENSTACK RELEASE CADENCE - Red Hat OpenStack * Initially 1 year lifecycle (e.g. support for Folsum ends after Grizzly) * Will increase lifecycle over time (likely to move to 2 years) * Ecosystem of Support * Government Ready
  • 26. Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 SOLUTION ENABLEMENT: CORNERSTONE
  • 27. CORNERSTONE Open, unified, and extensible scale-out object storage solution for on-premise, virtualized and cloud environments Which includes Pervasive, flexible encryption with an innovative approach to unified symmetrical key management
  • 32. DESIGN CONSIDERATIONS - Consistent, global information accessibility through REST API - Consistent access through high and low-latency networks - Cost effectiveness and scalability for big data growth - Open system, empowering developers
  • 33. DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - -
  • 34. DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - Data retains encryption across backup and disaster recovery -
  • 35. DESIGN CONSIDERATIONS INFRASTRUCTURE - Integration with PKI (NSA CASPORT), Active Directory, LDAP - Data retains encryption across backup and disaster recovery - Encrypted files do not require significant additional space; storage requirements change non perceptibly
  • 36. DESIGN CONSIDERATIONS ADMINISTRATION - Role Based Access Control (RBAC), augmented with Mandatory (MAC) and discretionary (DAC) granularity - Real-time modification to access control policies, to include time limits, number of accesses, etc - All operations, including key access, are audited
  • 37. DESIGN CONSIDERATIONS END-USER - De-identify sources & methods: Expand data encryption options to protecting relationships - Anonymize Datasets: Replace sensitive portions of data records with cryptographic pseudonyms - Protect and control access to multiple data sources from a query device (e.g. remote wireless tablet vs physical desk at DIA)
  • 38. SECURITY - FIPS VALIDATION * Federal Information Processing Standard 140-2 - COMMON CRITERIA CERTIFIED FOUNDATIONS * Operating System: EAL4+, CAPP/RBAC/LSPP * Crypto: EAL2+ - MULTIPLE ALGORITHM SUPPORT * AES (256 bits, 196 bits, 128 bits) * TripleDES (168) * SHA-2 hash functions (SHA-224, -256, -384, -512) * ECC and RSA TLS protocols
  • 42. Row 1 Row 2 Row 3 Row 4 0 2 4 6 8 10 12 Column 1 Column 2 Column 3 MANUFACTURING FOUNDATIONS (for PaaS)
  • 43. PaaS = Platform as a Service Code Deploy Run
  • 48. CLI? OF COURSE Create Apps rhc app create -a javasample -t jbossas-7 Add MongoDB rhc app cartridge add -a javasample –c mongodb-2.0 Add add EAR file to your deployments directory cd javasample cp /path/to/ear/earfilename.ear ./deployments Add the EAR file to git git add ./deployments/earfilename.ear Push your code git push Done
  • 51. YES, WE STILL HAVE INFRASTRUCTURE AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal
  • 52. RHEL IS THE FOUNDATION RHEL RHEL RHEL OpenShift is Built on Instances of Red Hat Enterprise Linux (RHEL) RHEL AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal
  • 53. RHEL GIVES US MULTI-TENANCY AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL
  • 54. RHEL GIVES US MULTI-TENANCY AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL RHEL RHEL CARTRIDGES are how OpenShift installs Languages & Middleware Broker Node Node Node RHEL JBoss MySQL
  • 57. YES, YOU CAN BUILD YOUR OWN AWS / CloudForms / OpenStack (IaaS) / RHEV (Virt) / Bare Metal RHEL RHEL SELinux Policies securely subdivide the Node instances. RHEL RHEL RHEL CARTRIDGES are how OpenShift installs Languages & Middleware Broker Node Node Node RHEL JBoss MySQL Developers can add custom language, data-store, or middleware with with a custom Cartridge. CUSTOMEtc. Etc. Ruby Python PHP Java Postgres MySQL OpenShift Default Cartridges