Más contenido relacionado La actualidad más candente (20) Similar a WKS402A Well-Architected Workshop (20) Más de Amazon Web Services (20) WKS402A Well-Architected Workshop1. 1© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.© 2017, Amazon Web Services, Inc. or its Affiliates. All rights reserved.
Jeff Levine, Enterprise Solutions Architect
Chris Colthurst, Solutions Architect
April 19th, 2017
Well-Architected Workshop
2. 2© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
What to Expect from the Session
Learn about
The AWS Well-Architected Framework (5 pillars)
Value proposition
General design principles
Best practices
Learn how to improve your cloud architectures and better
understand the business impact of your design decisions
3. 3© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Agenda
Introduction to Well-Architected
Walk through the example
Learn about each pillar,
then teams review and present back
4. 4© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
“Are you Well-Architected?”
Strategies & best practices for architecting in the cloud
Questions that allow you to measure your architecture against
best practices
How to address any shortcomings
5. 5© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
“Are you Well-
Architected?”
Werner Vogels
6. 6© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Purpose of Well-Architected
Making informed decisions about architecture in the cloud,
understanding the potential impact of decisions
Questions are the starting point, you should think actively about
“what if” and failure scenarios
Not a binary “yes” or “no”, depends on business context
7. 7© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Value Proposition
Help Customers:
Consistent approach to reviewing architectures
Understand and reduce risk in your architecture
Learn best practices
Influence future architectures
8. 8© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Well-Architected
Framework
9. 9© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
The AWS Well-Architected Framework
Increases awareness of architectural best practices
Addresses foundational areas that are often neglected
Consistent approach to evaluating architectures
Composed of:
Pillars
Design principles
Questions
10. 10© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Pillars of Well-Architected Framework
Security Reliability Performance
Efficiency
Cost
Optimization
Operational
Excellence
11. 11© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
The Well-Architected Framework has identified a set of
design principles to facilitate good design in the cloud:
General design principles
Pillar-specific design principles
Enable traceability:
Log and audit all actions and changes to your environment.
12. 12© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
General Design Principles
Stop guessing your capacity needs
Test systems at production scale
Automate to make architectural experimentation easier
Allow for evolutionary architectures
Build data-driven architectures
Improve through game days
13. 13© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Questions
Pillar Area
Question Text
Question Context
Best Practices
14. 14© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Example Walkthrough
15. 15© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Introduction to the Company
Mappahood Corporation
Founded in 2008 by Ivor Terrene
Selling 3D Printed Cityscapes (B2B/B2C)
About to apply for investment
Have asked you to perform a review
of their platform as part of their due diligence
Cloud native
“Cityscapes you can stand over”
17. 17© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Introduction to the Company “Cityscapes you can stand over”
The company has three main departments:
Fly & Snap: image acquisition, preprocessing, and storage
Show & Sell: promoting, selling, and working with customers
Make & Ship: manufacture of products and delivery
Their architecture reflects Conway’s law:
“organizations which design systems ... are constrained to produce designs which
are copies of the communication structures of these organizations”
https://en.wikipedia.org/wiki/Conway's_law
18. 18© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Mappahood Corporation: “Cityscapes you can stand over”
21. • Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
22. • Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
23. Upload: FTP Upload: SSH FTP
• Work through the questions in the review
• Use the questions as a prompt
• In which places does this question apply?
• CURRENT STATE – what is being done now?
• FUTURE STATE – what do you think they should be
doing?
• Not an absolute right or wrong – use case specific
• It’s a guide to aid the review
• Maybe follow-up questions..
24. 24© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security
25. 25© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security
The ability to protect information, systems, and assets
while delivering business value through risk assessments
and mitigation strategies.
Identity and access management
Detective controls
Infrastructure protection
Data protection
Incident response
26. 26© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Apply security at all layers
Enable traceability
Implement a principle of least privilege
Focus on securing your system
Automate security best practices
27. 27© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Security IAM
Areas Key Services
Identity and Access
Management
Detective Controls
Infrastructure Protection
Data Protection
Incident Response
Elastic Load
Balancing
Amazon EBS Amazon S3 Amazon RDS
AWS Key
Management Service
MFA Token
Amazon VPC
AWS CloudTrail AWS Config Amazon CloudWatch
IAM
IAM AWS CloudFormation
28. 28© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Security Pillar
29. 29© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
30. 30© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
Pick team name (1 minute)
Review 3 questions (15 minutes)
SEC 1
SEC 4
SEC 12
Agree on top change
Select presenter
If you need help, raise your hand!
31. 31© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Security: Key Issues Identified
The ability to protect information, systems, and assets
while delivering business value through risk assessments
and mitigation strategies.
Identity and access management: IAM
Detective controls: Logging & monitoring
Infrastructure protection: Security groups
Data protection: Data at rest and in transit
Incident response: Clean room
32. 32© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability
33. 33© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability
The ability of a system to recover from infrastructure or
service failures, dynamically acquire computing resources
to meet demand, and mitigate disruptions such as
misconfigurations or transient network issues.
Foundations
Change management
Failure management
34. 34© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles – Reliability
Test recovery procedures
Automatically recover from failure
Scale horizontally to increase aggregate system availability
Stop guessing capacity
Manage change in automation
35. 35© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Reliability
Areas Key Services
Foundations
Change management
Failure management
IAM Amazon VPC
AWS CloudTrail AWS Config
AWS CloudFormation
Amazon CloudWatch
36. 36© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Reliability Pillar
37. 37© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
38. 38© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
Review 3 questions (15 minutes)
REL 2
REL 5
REL 7
Agree on top change
If you need help, raise your hand!
39. 39© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Reliability: Key Issues Identified
The ability of a system to recover from infrastructure or
service failures, dynamically acquire computing resources
to meet demand, and mitigate disruptions such as
misconfigurations or transient network issues.
Foundations: Plan Amazon VPC
Change management: Auto Scaling
Failure management: Multi-AZ
40. 40© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency
41. 41© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency
The ability to use computing resources efficiently to meet
system requirements, and to maintain that efficiency as
demand changes and technologies evolve.
Selection
Review
Monitoring
Trade-off
42. 42© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Democratize advanced technologies
Go global in minutes
Use serverless architectures
Experiment more often
Mechanical sympathy
43. 43© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Performance Efficiency
Areas Key Services
Selection (Compute,
Storage, Database,
Network)
Review
Monitoring
Trade-Off
Amazon EBS Amazon S3 Amazon RDSAuto Scaling Amazon Glacier
Amazon
CloudFront
Amazon
DynamoDB
Amazon
CloudWatch AWS Lambda
Amazon ElastiCache AWSSnowball
AWS
CloudFormation AWS Blog
Amazon CloudWatch
44. 44© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Performance
Efficiency Pillar
45. 45© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
46. 46© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
Review 3 questions (15 minutes)
PERF 1
PERF 2
PERF 4
Agree on top change
If you need help, raise your hand!
47. 47© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Performance Efficiency: Key Issues Identified
The ability to use computing resources efficiently to meet
system requirements, and to maintain that efficiency as
demand changes and technologies evolve.
Selection: Functions instead of Instances
Review: Newer instance types
Monitor: Metrics
Trade-off: Amazon CloudFront
48. 48© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization
49. 49© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization
The ability to avoid or eliminate unneeded cost or
suboptimal resources.
Cost-effective resources
Matched supply and demand
Expenditure awareness
Optimizing over time
50. 50© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Adopt a consumption model
Benefit from economies of scale
Stop spending money on data center operations
Analyze and attribute expenditure
Use managed services to reduce cost of ownership
51. 51© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Cost Optimization
Areas Key Services
Cost-effective resources
Matched supply and demand
Expenditure awareness
Optimizing over time
Amazon CloudWatch
Auto Scaling
Amazon SNS
Reserved Instances AWS Trusted Advisor
AWS Blog & What’s New
Cost Allocation Tags
52. 52© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Cost Optimization
Pillar
53. 53© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
54. 54© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
Review 3 questions (15 minutes)
COST 1
COST 5
COST 6
Agree on top change
If you need help, raise your hand!
55. 55© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Cost Optimization: Key Issues Identified
The ability to avoid or eliminate unneeded cost or
suboptimal resources.
Matched supply and demand: Amazon CloudWatch
Cost-effective resources: Upload to Amazon S3
Expenditure awareness: Monitoring
Optimizing over time: AWS Lambda
56. 56© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence
57. 57© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence
The ability to run and monitor systems to deliver
business value and continually improve supporting
processes and procedures.
Preparation
Operations
Responses
58. 58© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Design Principles
Perform operations with code
Align operations processes to business objectives
Make regular, small, incremental changes
Test for responses to unexpected events
Learn from operational events and failures
Keep operations procedures current
59. 59© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Key Services for Operational Excellence
Areas Key Services
Preparation
Operations
Responses
AWS
CloudTrail
AWS
Config
AWS
CloudFormation
Amazon
CloudWatch
Amazon
CloudWatch
AWS
CloudFormation
AWS
CloudFormation
Lambda
RunCommand
AWS Batch
Lambda
RunCommand
AWS Batch
Lambda
RunCommand
AWS Batch
AWS
Config
AWS
Config
AWS
Developer
Tools
AWS
CloudFormation
AWS
CloudTrail
AWS
Developer
Tools
AWS
Developer
Tools
60. 60© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review: Operational
Excellence Pillar
61. 61© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout
62. 62© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Breakout Timing
Review 3 questions (15 minutes)
OPS 2
OPS 4
OPS 5
Agree on top change
If you need help, raise your hand!
63. 63© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Operational Excellence: Key Issues Identified
The ability to run and monitor systems to deliver
business value and continually improve supporting
processes and procedures.
Preparation: Make Operations Decisions Up Front
Operations: Release Management and Service Execution
Responses: Managing Incidents (RCA) and Optimization
64. 64© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review Wrap-Up
65. 65© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Review Wrap-Up
Review:
Common areas identified
Critical issues missed
Well-Architected:
Definition
Trade-offs
Continuous improvement
Guidance
66. 66© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Example Issues by Pillar
Security Reliability Performance
Efficiency
Cost
Optimization
Operational
Excellence
67. 67© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Summary: Purpose of Well-Architected
Strategies & best practices for architecting in the cloud
Questions allow you to measure your architecture against best
practices and how to address any shortcomings
Making informed decisions about architecture in the cloud
Questions are the starting point
Not a binary “yes” or “no”
Consistency of reviews
68. 68© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Available Resources
AWS Well-Architected Framework Whitepaper
Pillar-specific Whitepapers
Prescriptive, high-level implementation guidance
Free online training
https://aws.amazon.com/well-architected
69. 69© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Available Resources
Best practices can be
found in the AWS Well-
Architected Framework
Whitepaper:
70. 70© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Remember to complete
your evaluations!
71. 71© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Thank you!
72. 72© 2017 Amazon Web Services, Inc. and its affiliates. All rights reserved.
© 2017 Amazon Web Services, Inc. or its affiliates. All rights reserved.
This work may not be reproduced or redistributed, in whole or in part, without
prior written permission from Amazon Web Services, Inc. Commercial
copying, lending, or selling is prohibited.
Errors or corrections? Email us at aws-course-feedback@amazon.com.
Other questions? Contact us at
https://aws.amazon.com/contact-us/aws-training/.
All trademarks are the property of their owners.
aws-well-architected@amazon.com