74. DECIDERS
COORDINATION LOGIC
1. Poll for work on a decision list
Long polling: 60 seconds
2. Evaluate workflow execution history
SWF sends full history in JSON format
3. Return decision to Amazon SWF
Usually scheduling another task
75. WORKERS
COORDINATION LOGIC
1. Poll for work on a specific task list
Long polling: 60 seconds
2. Execute works, send heartbeats
SWF sends input data from deciders
3. Return success / failure
Detailed data can be provided to deciders
98. CERTIFICATIONS
& COMPLIANCE
SAS 70 Type II audit
ISO 27001 Certification
Sarbanes-Oxley SOX
HIPAA healthcare
FISMA US Federal Government
DIACAP MAC III Sensitive IATO
114. DEMOCRATIZE SEARCH
Amazon CloudSearch delivers a fully-managed search service in the cloud
that can be set up and running in less than 1 hour, with automatic scaling for
data & traffic, at a price starting at less than $100 per month.
125. AWS ANZ Customer
Appreciation Day
Is Coming to Sydney
November 13 th
#AWSCADAU
Hinweis der Redaktion
Elasticity is a fundamental property of the CloudThe difference between a classic architecture and a cloud architecture often resides in elasticity implementation
Ideally, you would need a cursor to dynamically adjust to the desired capacity level.It's exactly what EBK do … automatically.
Pour illustrer le launch early
00:47:00
Is it open sourced yet ?
AUDITABILITY = No central location to track the status of a task
Montrerqu’apartir du moment oudoit faire des decisions, ilfaut considerer l’option SWFBubbles are steps, or activities. [workers]Arrows are control decisions, or coordination logic. [decider]
Activities, or steps
control decisions, or coordination logic
Writing a decider requires you to review the state of the workflow. The decider itself is stateless but SWF keeps the state and tells the decider about what has happened.[Point out that a decider can return several decisions in the same call. This allows for parallel processing.]To write workers and deciders you can use the SWF SDK (provided for Java, .NET, PHP) or call the API directly, but to make this easier [CUE NEXT SLIDE]
Compare this to what was required to write an SQS queue worker: Now the worker might have to send heartbeats; it also needs to take care of informing SWF if the work has been successful or not. This is required for SWF to keep track.
Create distinct Security Groups for each Amazon EC2 clusterUse group-based rules for controlling access between layersRestrict external access to specific IP rangesEncrypt data “at-rest”, encrypt data “in-transit” (SSL)Use Identity and Access Management (IAM)Rotate your AWS CredentialsUse Multi-Factor AuthenticationUse Amazon Virtual Private Cloud (VPC)
Filter by IP range, port range, security group, role
PCI DSS Level 1AWS satisfies the requirements under PCI DSS for shared hosting providers. AWS also has been successfully validated against standards applicable to a Level 1 service provider under PCI DSS Version 2.0. Merchants and other PCI service providers can use the AWS PCI-compliant technology infrastructure for storing, processing, and transmitting credit card information in the cloud, as long as those customers create PCI compliance for their part of the shared environment. Amazon Elastic Compute Cloud (EC2), Amazon Simple Storage Service (S3), Amazon Elastic Block Storage (EBS) and Amazon Virtual Private Cloud (VPC) were included as part of this validation. Under the same circumstances, other enterprises can also benefit by running their applications on other PCI-compliant technology infrastructure. AWS provides additional information and frequently asked questions about its PCI compliance on its web site.
cloud-hosted search service from AWSfully managed search service on the cloudscales automaticallyeliminates complex managementsupport structured or unstructured text documents. Why ?huge explosion on amount of data created everyday. structured or not.
Amazon CloudSearch builds an index and picks the appropriate initial search instance type to ensure that your index can be stored in RAM. As your data volume grows, Amazon CloudSearch will scale your search domain to a larger search instance type (or partition your index across multiple instances if you are already on the largest search instance type).As with data volume, Amazon CloudSearch automatically scales your search domain to meet your traffic demands. When a search instance reaches over 80% CPU utilization, CloudSearch scales up your search domain by adding a search instance to handle the increased traffic. Conversely, when a search instance reaches below 30% CPU utilization, CloudSearch scales down your search domain by removing the additional search instances in order to minimize costs.