Ramgopal Subramani VP Engineering Perfios Software Lets Manage - - PowerPoint PPT Presentation

ramgopal subramani vp engineering perfios software
SMART_READER_LITE
LIVE PREVIEW

Ramgopal Subramani VP Engineering Perfios Software Lets Manage - - PowerPoint PPT Presentation

Aug 27, 2022 286 likes •553 views

Ramgopal Subramani VP Engineering Perfios Software Lets Manage Money Better 1 On On-dem demand and self lf-se servic rvice e Ub Ubiq iquit uitous ous network rk access ss Locatio ion n in indepen penden dent t resource

slide-1
SLIDE 1

Ramgopal Subramani VP – Engineering Perfios Software

Lets Manage Money Better

1

slide-2
SLIDE 2

On On-dem demand and self lf-se servic rvice e Ub Ubiq iquit uitous

  • us network

rk access ss Locatio ion n in indepen penden dent t resource rce pooli ling Rapid id ela lastici icity ty Pay per r use

2

slide-3
SLIDE 3

3

slide-4
SLIDE 4

4

slide-5
SLIDE 5

5

slide-6
SLIDE 6

You just lost customers

Infrastructure Cost $ time

Large Capital Expenditure Opportunity Cost Predicted Demand Traditional Hardware Actual Demand Automated Virtualization

6

slide-7
SLIDE 7

Design Considerations

7

slide-8
SLIDE 8

Business Team Application Support IT Management Money Maintain Manage

8

slide-9
SLIDE 9

1902 1970 2005 Vs.

9

slide-10
SLIDE 10

Seasonality of Usage Large volume of data to be processed Large processing cycles required

Christmas Sale Income Tax eFiling IPL 6 Video surveillance Call Detail Records Amazon Suggestions Daily stock analysis by large retailer Animation Movie Algorithmic Trading

10

slide-11
SLIDE 11

 Other Considerations

Functionality that does not require user intervention Data should be transient Cost Per Instance

 Operational

Management

Auditability & Forensics of Job No trailing Data Footprint Diagnostics Persisted

11

slide-12
SLIDE 12

Design Considerations

12

slide-13
SLIDE 13

Will confidentiality of my data be maintained 1 + 1 = 2 Will my data be tamper-proof Will my data be safe and not accessible to anyone Will my data be isolated Will my data be protected by law and contractually binding

13

slide-14
SLIDE 14
  • Application Data

Security

  • Key Management
  • Identity & Access

Management

Operations

  • Auditability
  • Portability &

Interoperability

Reporting

14

slide-15
SLIDE 15

IAAS PAAS SAAS Data in Transit Data at Rest

Access Control 3rd Party API provide access control

Data Lineage

Data Bread Crumbs 3rd Party API provide data trail control mechanism Provider to be audited for data trail control mechanism

Data remanence

Purge all transient data 3rd Party API provide data purge Provider to be audited for data purge

15

slide-16
SLIDE 16

Application Payment Page

Payment Gateway Medium Selection Bank/Credit Card Payment Page

User er Ident entity ty Available Uniq ique ue Ident entifi fier Perfios Transaction Id Gateway Transaction Id Resp spon

  • nse

Identi entifi fier Gateway Transaction Id Perfios Transaction Id Gateway Transaction Id Resp spon

  • nse

e Data ta Name, Amount, Bank Ref# Bank Ref#, Bank Detail, Amount No Account or Card Detail shared with Payment Gateway

16

slide-17
SLIDE 17

Design Considerations

17

slide-18
SLIDE 18

 Where is the data/sensitive data being stored ?  Who all have access to the data?  What is Data Jurisdiction?  What Standards are being adhered to?

18

slide-19
SLIDE 19
  • Information

Lifecycle Management

  • Compliance

Governance

  • ISO 27001
  • PCI DSS
  • SAS 70
  • HIPAA, GLBA, SOX

Standards

Source:- www.cloudsecurityalliance.org

Deployment Model

19

slide-20
SLIDE 20

Design Considerations

20

slide-21
SLIDE 21

 Database Failure  Web/App Server Failure  Load Balancer Failure  DNS Failure DC In Infrastruc astructure ture  Availability Zone  Region Failure  Cloud Provider Failure Cloud Infras astru tructure cture

21

slide-22
SLIDE 22

Build for Server ver Failur ure

  • Setup Auto-scaling
  • Database Mirroring
  • Dynamic DNS
  • Elastic Load Balancer

Build for Z Zone ne Failure re

  • Spread across multiple Availability Zone
  • Replicate data across zone

OR Build for Regi gion

  • n Failure

re

  • Spread across multiple Geographical regions
  • Replicate data across regions

Build for C Cloud Provider der Failur ure

22

slide-23
SLIDE 23

On-Demand Scalability High High High Data Security High High Low Compliance High Low High High Availability High Low High

23

slide-24
SLIDE 24

IAAS PAAS SAAS Extent of Control High Medium Low Data Auditing ability Highly Granular Framework dependent Low Compliance Support Implement Framework dependent Reporting

24

slide-25
SLIDE 25
  • Cloud brings an complete extra layer of complexity in your design
  • Cloud has to be rightly leveraged
  • Identify components that can scaled on-demand
  • Cloud can scatter your data
  • Remember to track your data
  • Leave no data foot print behind
  • Your compliance requirements should determine your deployment model
  • Cloud can also fail
  • Choose your right availability strategy
  • High availability also means high cost
  • Portability across Provider is non-trivial exercise

25

slide-26
SLIDE 26

For more details: Ramgopal gopal Su Subr bramani mani ramgopal@perfios. mgopal@perfios.com com

www.perfio w.perfios. s.com com

26