Introduction This document gives us the definition of different cloud classifications and focuses on the Multicloud and Hybrid cloud and the organization’s tendency to adapt to the cloud specially for multi-cloud. This document even refers to the challenges of multi-cloud at the management and technical level and the reasons of them, and in the lastContinue reading “Multi-Cloud”
Author Archives: parisamoosavinezhad
ITIL
IT Service/ Management IT Service Provides value through outcomes to customers. It brings value to the company. IT Service must lead to or provide lower costs and risks. Stakeholders of IT services People who have a stake in the value of a service. Provider & customer of a service, who define system requirements and takeContinue reading “ITIL”
Clouds : Organization Structure
Azure AWS GCP Azure Policy Guardrails (via the ControlTower Service) Organization Policy Service – Organization Service (optional) Organization Node Root Root Account – Management Group (optional) Organization Unit (optional)(via the Organization Service) Folder (optional) Subscription Account(via the Organization Service) – Resource Group – Project Resources Resources Resources Azure Policy The following types are available: ApplyContinue reading “Clouds : Organization Structure”
Pipe and Filter Design Pattern
Break up logic in small steps instead of a long-run service or process. Approach Each request must call services separately instead of a long-running service. Data is passed from one filter to another filter. Filters exchange data use a standardized format and protocol. Why filter data must be standardized? We can add or remove filtersContinue reading “Pipe and Filter Design Pattern”
Design Patterns
Software Design Patterns Throttling Repository Pipes & Filter Microservices Design Patterns Database-per-Service Domain Driven
Throttling Design Pattern
Knows as Rate Limiting. We place a throttle in front of the target service or process to control control the rate of the invocations or data flow into the target. We can use the cloud services to apply this design pattern. This can be useful if we have an old system and we don’t wantContinue reading “Throttling Design Pattern”
Security
The security in “Bring Your Enterprise on Cloud” topic is a very hug job. But it’s implementation is not impossible. This topic is based on the related links. The conceptual check list for security is as follows Enterprise Infrastructure Security Network security Data encryption Key and secret management Identity & Access Management Duty segregation LeastContinue reading “Security”
Clouds : Credential Management
Azure Key-Vault Key-Vault managed HSM Dedicated HSM AWS Secret Manager Certificate Manager CloudHSM Key Management Service (KMS) GCP IBM HSM features Azure AWS GCP IBM FIPS 140-2 level 3 FIPS 140-2 level 3 Single tenant Single tenant
Azure Credential Management
Topics Use cases Key/Vault HSM HashiCorp Vault Related topics Onboarding : Azure Data Encryption Onboarding : Azure Data Storages and databases Use cases To manage and safe guard the credentials. What are the credentials? Certificates Keys API Keys Encryption Keys (It’s recommended to use RSA-Keys to encrypt data at rest) Storage Keys Event Hub Access Keys …Continue reading “Azure Credential Management”
Bring Your Enterprise on Cloud
We cannot generalize a migration way to the cloud for all the companies & enterprises. But I have provided a check list of topics which can help to have a good start without wasting the time with staring from scratch. Enterprise Infrastructure On-Prem <-> Cloud Azure VPN Express Route AWS … DNS Azure DNS private,Continue reading “Bring Your Enterprise on Cloud”