Weitere ähnliche Inhalte Ähnlich wie Well-Architected Bootcamp (20) Mehr von Amazon Web Services (20) Well-Architected Bootcamp1. 1© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Welcome to the AWS
Well-Architected Bootcamp
Sam Elmalak
March 2018
2. 2© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
What to Expect from the Session
• In this session, you will learn about:
The AWS Well-Architected Framework (5 pillars)
Value proposition
General design principles
Best practices
• Learn how to improve your cloud architectures and better
understand the business impact of your design decisions
3. 3© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Agenda
• Introduction to AWS Well-Architected
• Walk through an example
• Learn about each pillar, teams review and present back
• Deep dive on each pillar
• Common issues
4. 4© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
A Mechanism for your Cloud Journey
Learn Measure Improve
5. 5© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Purpose of AWS Well-Architected
• Making informed decisions about architecture in the cloud,
understanding the potential impact of decisions
• Questions are the starting point, you should think actively about
“what if” and failure scenarios
• Not a binary “yes” or “no”, depends on business context
6. 6© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Value Proposition
• Consistent approach to reviewing architectures
• Understand and reduce risk in your architecture
• Learn best practices
• Influence future architectures
7. 7© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Well-Architected
Framework
8. 8© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
The AWS Well-Architected Framework
• Increases awareness of architectural best practices
• Addresses foundational areas that are often neglected
• Consistent approach to evaluating architectures
• Composed of:
Pillars
Design principles
Questions
9. 9© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Pillars of AWS Well-Architected
Security Reliability Performance
Efficiency
Cost
Optimization
Operational
Excellence
10. 10© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Architecting for Runtime
• Run time is more important than design time
• Team ready is more important than system ready
• Architecting for runtime:
• Runtime features in napkin designs
• Team & Processes upfront
• Operations code: management plane of product
• Decide the tradeoffs across pillars
• Operational Excellence comes first
11. 11© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
The Well-Architected Framework has identified a set of
design principles to facilitate good design in the cloud:
• General design principles
• Pillar-specific design principles
Enable traceability: Log and audit all actions and changes
to your environment. Automatically respond and take
action
12. 12© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
General Design Principles
Stop guessing your capacity needs
Test systems at production scale
Automate to make architectural experimentation easier
Allow for evolutionary architectures
Data-driven architectures
Improve through game days
13. 13© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Questions
Pillar Area
Question Text
Question Context
Best Practices
14. 14© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Example Walkthrough
15. 15© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Example: Introduction to the Company
• Mappahood Corporation
• Founded in 2008 by Ivor Terrene
• Selling 3D Printed Cityscapes (B2B/B2C)
• About to apply for investment
• Have asked you to perform a review
of their platform as part of their due diligence
• Cloud native
“Cityscapes you can stand over”
17. 17© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Introduction to the Company “Cityscapes you can stand over”
The company has three main departments:
• Fly & Snap: image acquisition, preprocessing, and storage
• Show & Sell: promoting, selling, and working with customers
• Make & Ship: manufacture of products and delivery
Their architecture reflects Conway’s law:
“organizations which design systems ... are constrained to produce designs which
are copies of the communication structures of these organizations”
https://en.wikipedia.org/wiki/Conway's_law
18. 18© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Mappahood Corporation: “Cityscapes you can stand over”
21. • Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
22. • Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
23. Upload: FTP Upload: SSH FTP
• Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
24. 24© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence
25. 25© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence
The ability to run and monitor systems to deliver
business value and continually improve supporting
processes and procedures.
• Prepare
• Operate
• Evolve
26. 26© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Perform Operations with Code
Annotated Documentation
Make Frequent, Small, Reversible Changes
Refine Operations Procedures Frequently
Anticipate Failure
Learn From All Operational Failures
27. 27© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Operational Excellence
Areas Key Services
Prepare
Operate
Evolve
AWS Config &
Config Rules
AWS
CloudFormation
Amazon
CloudWatch
Amazon
Elasticsearch
28. 28© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Operational
Excellence Pillar
29. 29© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
30. 30© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
• Pick team name (1 minute)
• Review 3 questions (15 minutes)
OPS 2
OPS 3
OPS 5
• Agree on top change
• Select presenter
If you need help, raise your hand!
31. 31© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence: Key Issues Identified
The ability to run and monitor systems to deliver
business value and continually improve supporting
processes and procedures.
• Prepare: Provides insights into Workload behavior
• Operate: Runbooks & Playbooks
• Evolve: Root Cause Analysis Process
32. 32© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security
33. 33© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security
The ability to protect information, systems, and assets
while delivering business value through risk assessments
and mitigation strategies.
• Identity and access management
• Detective controls
• Infrastructure protection
• Data protection
• Incident response
34. 34© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Implement a strong identity foundation
Enable traceability
Apply security at all layers
Automate security best practices
Protect data in transit and at rest
Prepare for security events
35. 35© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Security
Areas Key Services
Identity and Access
Management
Detective Controls
Infrastructure Protection
Data Protection
Incident Response
Amazon EBSAmazon S3
MFA Token
Amazon VPC
AWS CloudTrail AWS Config Amazon CloudWatch
AWS IAM
AWS IAM AWS CloudFormation
Temporary
Security Credential
Amazon
Inspector
Amazon
Macie AWS KMS
AWS
Organizations
AWS Shield AWS WAF
AWS IAM
36. 36© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Security Pillar
37. 37© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
38. 38© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
• Review 3 questions (15 minutes)
SEC 1
SEC 4
SEC 12
• Agree on top change
If you need help, raise your hand!
39. 39© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security: Key Issues Identified
The ability to protect information, systems, and assets
while delivering business value through risk assessments
and mitigation strategies.
• Identity and access Management: AWS IAM
• Detective controls: Logging & Monitoring, Automation
• Infrastructure protection: Security Groups
• Data protection: Data at rest and in transit
• Incident response: Clean Room
40. 40© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability
41. 41© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability
The ability of a system to recover from infrastructure or
service failures, dynamically acquire computing resources
to meet demand, and mitigate disruptions such as
misconfigurations or transient network issues.
• Foundations
• Change management
• Failure management
42. 42© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles – Reliability
Test recovery procedures
Automatically recover from failure
Scale horizontally to increase aggregate system availability
Stop guessing capacity
Manage change in automation
43. 43© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Reliability
Areas Key Services
Foundations
Change management
Failure management
AWS IAM Amazon VPC
AWS CloudTrail AWS Config
AWS CloudFormation
Amazon CloudWatch
AWS Trusted Advisor AWS Shield
Amazon CloudWatch AWS Auto Scaling
Amazon S3 Amazon Glacier AWS KMS
44. 44© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Reliability Pillar
45. 45© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
46. 46© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
• Review 3 questions (15 minutes)
REL 2
REL 5
REL 7
• Agree on top change
If you need help, raise your hand!
47. 47© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability: Key Issues Identified
The ability of a system to recover from infrastructure or
service failures, dynamically acquire computing resources
to meet demand, and mitigate disruptions such as
misconfigurations or transient network issues.
• Foundations: Plan Amazon VPC
• Change management: Auto Scaling
• Failure management: Multi-AZ
48. 48© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency
49. 49© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency
The ability to use computing resources efficiently to meet
system requirements, and to maintain that efficiency as
demand changes and technologies evolve.
• Selection
• Review
• Monitoring
• Trade-offs
50. 50© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Democratize advanced technologies
Go global in minutes
Use serverless architectures
Experiment more often
Mechanical sympathy
51. 51© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Performance Efficiency
Areas Key Services
Selection (Compute,
Storage, Database,
Network)
Review
Monitoring
Trade-offs
Amazon EBS Amazon S3 Amazon RDSAuto Scaling
Amazon
CloudFront
Amazon
DynamoDB
Amazon
CloudWatch AWS Lambda
Amazon Elasticache AWSSnowball
AWS Blog and
What’s New
Amazon CloudWatch
Amazon VPC
Amazon RDS
Amazon
Route 53
AWS Direct
Connect
52. 52© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Performance
Efficiency Pillar
53. 53© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
54. 54© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
• Review 3 questions (15 minutes)
PERF 1
PERF 2
PERF 4
• Agree on top change
If you need help, raise your hand!
55. 55© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency: Key Issues Identified
The ability to use computing resources efficiently to meet
system requirements, and to maintain that efficiency as
demand changes and technologies evolve.
• Selection: Functions instead of Instances
• Review: Newer Instance Types
• Monitor: Metrics
• Tradeoffs: Amazon CloudFront, DAX
56. 56© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization
57. 57© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization
The ability to avoid or eliminate unneeded cost or
suboptimal resources.
• Cost-effective resources
• Matched supply and demand
• Expenditure awareness
• Optimizing over time
58. 58© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Adopt a consumption model
Measure overall efficiency
Stop spending money on data center operations
Analyze and attribute expenditure
Use managed services to reduce cost of ownership
59. 59© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Cost Optimization
Areas Key Services
Cost-effective resources
Matched supply and demand
Expenditure awareness
Optimizing over time
Amazon CloudWatch
AWS Auto Scaling
Amazon SNS
Reserved Instances
AWS Trusted AdvisorAWS Blog & What’s New
Cost Allocation Tags
Amazon Cost
Explorer
60. 60© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Cost Optimization
Pillar
61. 61© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
62. 62© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
• Review 3 questions (15 minutes)
COST 1
COST 5
COST 6
• Agree on top change
If you need help, raise your hand!
63. 63© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization: Key Issues Identified
The ability to avoid or eliminate unneeded cost or
suboptimal resources.
• Matched supply and demand: Amazon CloudWatch
• Cost-effective resources: Upload to Amazon S3
• Expenditure awareness: Monitoring
• Optimizing over time: AWS Lambda
64. 64© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review Wrap-Up
65. 65© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review Wrap-Up
Review:
• Common areas identified
• Critical issues missed
Well-Architected:
• Definition
• Trade-offs
• Continuous improvement
• Guidance
66. 66© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Summary: Purpose of Well-Architected
• Strategies & best practices for architecting in the cloud
• Questions allow you to measure your architecture against best
practices and how to address any shortcomings
• Making informed decisions about architecture in the cloud
• Questions are the starting point
• Not a binary “yes” or “no”
• Consistency of reviews
67. 67© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review Process
• You can review your own workloads (or APN partner/SA)
• Conversation, a deep dive into the architecture
• Do it multiple times in the lifecycle
• and on significant change, update the review in small parts
• Involve the right stakeholders
• Biz product owner, tech owners, operations, security
• Prioritize improvements in main backlog
• Looks for trends across your business
68. 68© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Available Resources
• AWS Well-Architected Framework Whitepaper
• Pillar Specific Whitepapers
• Prescriptive high-level implementation guidance
• Lens Whitepapers
• Online Training
https://aws.amazon.com/well-architected
69. 69© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Thank you!
70. 70© 2018 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Remember to complete
your evaluations!