SlideShare una empresa de Scribd logo

Azure Storage – Foundation for Building Secure, Scalable Cloud Applications

Descargar como PPTX, PDF
M
Microsoft Tech Community

Azure Storage – Foundation for Building Secure, Scalable Cloud Applications

Tecnología
1 de 83
BRK3313 2-774 B816 B8008
Azure Storage Object Storage Data Transport File Storage Hybrid Storage Lift and shift of legacy applications that require file shares to the cloud Secure, Scalable storage for unstructured data Move or migrate data into Azure Secure, intelligent data tiering between on-premises and cloud storage Azure Blobs Azure Files Azure NetApp Files Azure Import/Export Azure DataBox Azure StorSimple Azure File Sync Avere Disk Storage Reliable, persistent, high performing storage for Virtual Machines Premium Standard
• Self-service data migration • Simple: order, fill, and return to upload data to Azure • Fast: Move ~80 TB per Data Box • Secure: AES 256-bit encryption • Status: Preview Azure Data Box • Self-service data migration • Customer supplied disk(s) • Send disks for upload into Azure • Secure: AES 128-bit encryption • Status: Generally Available Import/Export • Partner specialists provide HW, facilities, & expertise • Migrate tapes, optical drives, hard disks, even film to Azure • Contact partners • Offline Media Import Website Offline Media Import Self-serve and partner-led data transfer services to Azure.
Blob Storage Blob Storage - Azure’s Object Storage platform Store and serve unstructured data App and Web scale data Backups and Archive Big Data from IoT, Genomics, etc. Broad integration for Blobs across Azure services Enables many scenarios Blob Storage
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
Azure Storage Replication Options LRS 3 replicas, 1 region Protect against disk, node, rack failures Write is ack’d when all replicas are committed Superior to dual-parity RAID GRS 6 replicas, 2 regions (3/region) Protects against major regional disasters Asynchronous to secondary RA-GRS GRS + Read access to secondary Separate secondary endpoint RPO delay to secondary can be queried ZRS 3 replicas across 3 Zones Protect against disk, node, rack and zone failures Synchronous writes to all 3 zones Generally Available now in 6 regions Zone 1 Zone 2 Zone 3
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18
Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18
Challenges Storage Account Keys are all- powerful Exposed storage account keys in code Must build a token service to issue appropriate SAS Tokens Map user identities to appropriate permissions No user identity in storage diagnostic logs Requirements Use enterprise identities Leverage advanced authentication technologies Multi-Factor Auth Conditional Access Policies Integrate with of Azure Role- Based Access Control
Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18 Azure AD and RBAC AAD creds for Auth instead of Shared key/SAS Full RBAC down to container level Preview June; GA – H2 CY18
Generate Backup DeployStore Rotate
Azure Host Azure VM Azure Service (e.g. ARM, Azure Storage) Your code IMDS Identity Credentials 1 2 3 http://169.254.169.254/metadata/identity/oauth2/token Azure Active Directory Azure (inject and roll credentials)
Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18 AAD, OAuth and RBAC AAD creds for Auth instead of Shared key/SAS Full RBAC at container level Preview June; GA – H2 CY18 Immutable Blob Storage SEC 17a-4(f) compliant Across all Storage tiers Preview – May, GA – Q3 CY18
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
New
GA now Preview in H2 2018 New
Repository for server backups Medical records archiving Cloud native application data storage Object Storage for every use case
Blob Level Tiering Blob-Level Tiering Individual blobs can move between tiers All tiers co-exist in the same storage account New API to set blob tier: SetBlobTier Acknowledged immediately from service Get APIs (GetBlobProperties and ListBlobs) return current tier and archive status New headers "x-ms-access-tier” and “x-ms-archive-status” Blob REST API Hot Tier Lower Transaction cost Cool Tier Lower Capacity cost Archive Tier Lowest Capacity cost
New
Partner Product Solution CommVault Data Management NetApp AltaVault Enterprise Vault Hubstor Archive2Azure Tiger Bridge Cloudberry Backup Cohesity DataPlatform
5.3 Million Files were Archived in 6 months Project Payback < 6 Months and more savings to come Improved retention policy compliance Unified Enterprise Archiving Offer Available to the whole company BP Attic Cloud Archive
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
Stateless, front door for request handling (auth, request metering/throttling, validation) Partition Layer Serves data based on partitions, enables batch transactions and strong consistency Stream Layer Stores multiple replicas of the data, deals with failures, bit rot, etc. FE 2 Partition 3 (F-J) Stream 2
Per Account Limits Through 08/17 Current CY18 Capacity 500 TB 5PB 20 PB TPS 20K tps 50K tps 100K tps Throughput 20/30 Gbps 50 Gbps 100 Gbps Single 4GB blob read from 500 containers on a single account: 100 Gbps! Blob Storage Scale & Performance Per Blob Single Block Blob max size increased 25x to 5TB Read and write throughput for a single object can scale to as high as 12.5 GB/s (100 Gb/s) 50% improvement in read latency for small blobs Per Storage Account FE 2 Partition 3 (F-J) Stream 2
FE 2 Partition 3 (F-J) Stream 2 Movie.mp4 (50 GB) BL001 BL002 BL003 BLN00
FE 2 Partition 3 (F-J) Stream 2 Movie.mp4 (50 GB)
Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
Open & Interoperable Developers & Tools Open Source client libraries on GitHub: Retry/resume, Parallel upload/downloads, etc. Mobile platform support Recent – Python/PHP/Ruby GA, Go preview OpenAPI/Swagger based client libraries Data movement library High performance data transfers Cross platform compliant – CoreCLR based Tools CLI – Python based, Linux friendly AZCopy – Robocopy for Azure Storage Storage Explorer – Cross platform UX
New Blob Service – 2017-07-29  Blob SDK v11 OpenAPI spec AutoRest Hand-writtenProtocol API Convenience SDK github.com/azure/azure-storage-java
Open & Interoperable Linux FUSE Adapter Mount a container and use regular filesystem commands Serves HPC and big data workloads on Linux Mount container for reads on many nodes (no write sync) Parallel uploads/downloads for fast access to large blobs Local read cache to improve subsequent access times Partner support for S3 Variety of data, deployment and cost models Blob data is non-opaque Use objects with Blob API including other Azure services Azure Blob
New http://aka.ms/staticwebsites azurestoragefeedback@microsoft.com
Blob Storage Serverless Compute Publish data change event notifications PutBlob, PutBlockList, DeleteBlob Future – Change Feed BRK3313 - Leverage Azure Blob Storage to build storage intensive cloud native applications – 5/7/18
Blobs CY18 Roadmap Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable ZRS V2 Custom Enc. Keys Firewalls and Virtual Networks AAD, OAuth & RBAC Immutable Blobs Soft Delete Versioning Monitor integration Data Lifecycle policies Archive features Per Blob perf Per Account scale Storage Events FUSE driver Static Websites Re-architected SDKs
Where should I put my files? Azure Blobs Azure FilesAzure Compute + Disks On-premises File Servers SharePoint Online
What is Azure Files? Cloud file shares that are… Secure Data encrypted at rest and in transit Easily managed No servers required Smart Make the most of limited networks with intelligent caching Cross-platform Mount on Windows, Linux, and macOS Built for a hybrid world Access data where you want to, how you want to Harmonious Migrate applications to the cloud without the headaches
Use Case 1: General Purpose Files as-a-service HQ Cluster Branch Branch Centralize General Purpose File Services Multi-site sync for distributed access Cache for fast, local performance Utilize cloud-based backup and fast DR Azure Backup Vault
Azure File Sync HQ Seattle File Share West US Cloud Tiering Multi-site sync Rapid file server DR Direct cloud access Integrated cloud backup PaaS Azure Backup Vault 3rd party data mngmt Branch Office New York Work Folders SMB NFS Users Applications
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown)
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist)
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint)
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint) Create a server endpoint
Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint) Create a server endpoint Validate sync works
Background Checkpoint State Persistent Temporary Sync DB SMB & REST SAS MAB Sync Client USN Journal Recall Engine Tiering Engine Mgmt Storage Sync Service (PaaS) Front Ends Front Ends Front Ends Sync Worker Sync Worker Sync Worker Background Worker Background Worker Background Worker MngmtMngmtMgmt State Server Agent Sync Engine Filter Driver Local StorageLocal StorageSync Root File REST File REST SMB Sync State ARM portal, Powershell Queue Azure File Share Azure File Share Azure File Share
Use Case 2: Migrate applications to the cloud Migrate on-premises file or share based apps often with no code changes Test migration in stages – first move data, then move application Interact with app data from on-prem securely Reuse ISVs existing file based data access layers in your cloud apps AAD authentication and ACL support coming this year Azure US-EastOn-premises SMB3.0
Azure US-East SMBCloud Services Worker Roles REST REST APIs enable integration with modern cloud applications Integrate modern cloud applications with legacy applications Develop new file system based applications using REST APIs REST APIs support Shared access signature (SAS) token support for delegated authorization Cross origin resource sharing (CORS) for direct access from browser clients Storage Client Library Support in .NET, Java, Node and Python On Premise Web Sites Azure US-West Web Sites Cloud Services Worker Roles
Use Case 4: Simplify hosting HA workload data SMB2.1 well suited for client / server scenarios Server applications (e.g. SQL, IIS) require greater reliability during network failures Using SMB 3.0 persistent handles supports continuous availability Applications include Hosting IIS/FTP sites using shared storage SQL Server Failover Cluster Instance IIS IIS IIS IIS Hosting
Example 1: FTP highly available FTP server using Disks Single VM instance is prone to availability loss VM Azure Disks FTP server using Files Increased availability through multiple VM instances VM 1 VM2 Azure FilesAzure Files Azure load balancer Azure load balancer
Ubuntu, Docker, and Azure Files (WordPress) Deploy Ubuntu Docker
Deploy Ubuntu Docker Create file share Ubuntu, Docker, and Azure Files (WordPress)
Deploy Ubuntu Docker Create file share Mount Azure File Share Ubuntu, Docker, and Azure Files (WordPress)
Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Ubuntu, Docker, and Azure Files (WordPress)
Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Word Press Ubuntu, Docker, and Azure Files (WordPress)
Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Word Press Azure Files Ubuntu, Docker, and Azure Files (WordPress)
Files Roadmap Highest priority GA 3/27 Preview now Other Features GA 3/30 in 6 regions
Fully managed file-share service Native Azure integration (Portal/REST/CLI, Billing, Monitoring, Security) Sold and supported as a Microsoft product The power of data with ONTAP HA, Data Protection, Data Management (Snapshots, Clones), Performance NFS v3 and v4 Hybrid Data migration and replication capabilities (SnapMirror) Secure Data at Rest Encryption, RBAC Limited Preview coming in June Azure NetApp Files
Azure Disks Performance Tiers Management Options Premium Disks SSD based, provisioned performance Standard Disks HDD based, cost effective Resource Group Managed Disks Highly available and manageable < 1ms latency for cached operations Blob Cache technology Up to 160,000 IOPS Industry leading ZERO % Annual Failure Rate Enterprise grade durability with 3 replicas Best in class High IOPS/BW 80,000 IOPS & 2,000 MB/s Disk throughput per VM Recent Feature releases: Azure Backup and ASR Support for larger Managed Disks Managed Disks support for Azure Availability Zone Improved Managed Disk metrics
Disks Roadmap Features for H2 CY2018 Move Managed Disks across Subscriptions/Resource Groups Portal support for conversion to Managed Disks Managed Disks incremental snapshots and Diff APIs Improve data import experience for Managed Disks Scale/Perf Improvements Standard Managed Disks Premium Managed Disks Disk Latency Double digit milliseconds Uncached Read: ~4ms Uncached Write: ~2ms  ~1ms Max Disk Size 4TB  32TB 4TB  32TB
AzureStorageFeedback@Microsoft.com
Azure Storage – Foundation for Building Secure, Scalable Cloud Applications
Azure Storage – Foundation for Building Secure, Scalable Cloud Applications

Recomendados

Azure storage deep dive
Azure storage deep diveAzure storage deep dive
Azure storage deep dive
Sergio Navarro Pino
 
How to take advantage of scale out graph in Azure Cosmos DB
How to take advantage of scale out graph in Azure Cosmos DBHow to take advantage of scale out graph in Azure Cosmos DB
How to take advantage of scale out graph in Azure Cosmos DB
Microsoft Tech Community
 
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Jalpesh Vadgama
 
Leverage Azure Blob Storage to build storage intensive cloud native applications
Leverage Azure Blob Storage to build storage intensive cloud native applicationsLeverage Azure Blob Storage to build storage intensive cloud native applications
Leverage Azure Blob Storage to build storage intensive cloud native applications
Microsoft Tech Community
 
Azure Storage
Azure StorageAzure Storage
Azure Storage
Mustafa
 
Azure deployments and ARM templates
Azure deployments and ARM templatesAzure deployments and ARM templates
Azure deployments and ARM templates
gjuljo
 
Introduction to Windows Azure Data Services
Introduction to Windows Azure Data ServicesIntroduction to Windows Azure Data Services
Introduction to Windows Azure Data Services
Robert Greiner
 
Azure Data platform
Azure Data platformAzure Data platform
Azure Data platform
Mostafa
 

Recomendados

Azure storage deep dive
Azure storage deep diveAzure storage deep dive
Azure storage deep dive
Sergio Navarro Pino
 
How to take advantage of scale out graph in Azure Cosmos DB
How to take advantage of scale out graph in Azure Cosmos DBHow to take advantage of scale out graph in Azure Cosmos DB
How to take advantage of scale out graph in Azure Cosmos DB
Microsoft Tech Community
 
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Ahmedabad- Global Azure bootcamp- Azure Storage Services- Global Azure Bootca...
Jalpesh Vadgama
 
Leverage Azure Blob Storage to build storage intensive cloud native applications
Leverage Azure Blob Storage to build storage intensive cloud native applicationsLeverage Azure Blob Storage to build storage intensive cloud native applications
Leverage Azure Blob Storage to build storage intensive cloud native applications
Microsoft Tech Community
 
Azure Storage
Azure StorageAzure Storage
Azure Storage
Mustafa
 
Azure deployments and ARM templates
Azure deployments and ARM templatesAzure deployments and ARM templates
Azure deployments and ARM templates
gjuljo
 
Introduction to Windows Azure Data Services
Introduction to Windows Azure Data ServicesIntroduction to Windows Azure Data Services
Introduction to Windows Azure Data Services
Robert Greiner
 
Azure Data platform
Azure Data platformAzure Data platform
Azure Data platform
Mostafa
 
Azure Data Storage
Azure Data StorageAzure Data Storage
Azure Data Storage
Ken Cenerelli
 
IBM Cloud Object Storage
IBM Cloud Object StorageIBM Cloud Object Storage
IBM Cloud Object Storage
Nagesh Ramamoorthy
 
Big Data on Cloud Native Platform
Big Data on Cloud Native PlatformBig Data on Cloud Native Platform
Big Data on Cloud Native Platform
Sunil Govindan
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platform
giventocode
 
Azure Cloud Dev Camp - Introduction
Azure Cloud Dev Camp - IntroductionAzure Cloud Dev Camp - Introduction
Azure Cloud Dev Camp - Introduction
giventocode
 
Leveraging ApsaraDB to Deploy Business Data on the Cloud
Leveraging ApsaraDB to Deploy Business Data on the CloudLeveraging ApsaraDB to Deploy Business Data on the Cloud
Leveraging ApsaraDB to Deploy Business Data on the Cloud
Oliver Theobald
 
Azure architecture
Azure architectureAzure architecture
Azure architecture
Amal Dev
 
Windowsazureplatform Overviewlatest
Windowsazureplatform OverviewlatestWindowsazureplatform Overviewlatest
Windowsazureplatform Overviewlatest
rajramab
 
Data Management Gateway - Deep Dive
Data Management Gateway - Deep DiveData Management Gateway - Deep Dive
Data Management Gateway - Deep Dive
Jean-Pierre Riehl
 
Sql saturday azure storage by Anton Vidishchev
Sql saturday azure storage by Anton VidishchevSql saturday azure storage by Anton Vidishchev
Sql saturday azure storage by Anton Vidishchev
Alex Tumanoff
 
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
white paper
 
04 Azure IAAS 101
04 Azure IAAS 10104 Azure IAAS 101
04 Azure IAAS 101
Herman Keijzer
 
Azure IaaS Tanıtım - Uzun Anlatım
Azure IaaS Tanıtım - Uzun AnlatımAzure IaaS Tanıtım - Uzun Anlatım
Azure IaaS Tanıtım - Uzun Anlatım
Mustafa
 
Get started With Microsoft Azure Virtual Machine
Get started With Microsoft Azure Virtual MachineGet started With Microsoft Azure Virtual Machine
Get started With Microsoft Azure Virtual Machine
Lai Yoong Seng
 
Data Platform Overview
Data Platform OverviewData Platform Overview
Data Platform Overview
Hamid J. Fard
 
Azure storage
Azure storageAzure storage
Azure storage
Adam Skibicki
 
Azure services
Azure servicesAzure services
Azure services
Muhammad Razy Doohan
 
India Webinar
India WebinarIndia Webinar
India Webinar
Ganesh Raja
 
Introduction to Windows Azure
Introduction to Windows AzureIntroduction to Windows Azure
Introduction to Windows Azure
Ravi Ranjan Karn
 
Responding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database TechnologyResponding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database Technology
Alibaba Cloud
 
Introduction to Azure IaaS
Introduction to Azure IaaSIntroduction to Azure IaaS
Introduction to Azure IaaS
Robert Crane
 
Slide Storage.pptx
Slide Storage.pptxSlide Storage.pptx
Slide Storage.pptx
Aseem Goyal
 

Más contenido relacionado

La actualidad más candente

Azure architecture
Azure architectureAzure architecture
Azure architecture
Amal Dev
 
Windowsazureplatform Overviewlatest
Windowsazureplatform OverviewlatestWindowsazureplatform Overviewlatest
Windowsazureplatform Overviewlatest
rajramab
 
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
white paper
 
Data Platform Overview
Data Platform OverviewData Platform Overview
Data Platform Overview
Hamid J. Fard
 
Responding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database TechnologyResponding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database Technology
Alibaba Cloud
 

La actualidad más candente (20)

Azure Data Storage
Azure Data StorageAzure Data Storage
Azure Data Storage
 
IBM Cloud Object Storage
IBM Cloud Object StorageIBM Cloud Object Storage
IBM Cloud Object Storage
 
Big Data on Cloud Native Platform
Big Data on Cloud Native PlatformBig Data on Cloud Native Platform
Big Data on Cloud Native Platform
 
Azure - Data Platform
Azure - Data PlatformAzure - Data Platform
Azure - Data Platform
 
Azure Cloud Dev Camp - Introduction
Azure Cloud Dev Camp - IntroductionAzure Cloud Dev Camp - Introduction
Azure Cloud Dev Camp - Introduction
 
Leveraging ApsaraDB to Deploy Business Data on the Cloud
Leveraging ApsaraDB to Deploy Business Data on the CloudLeveraging ApsaraDB to Deploy Business Data on the Cloud
Leveraging ApsaraDB to Deploy Business Data on the Cloud
 
Azure architecture
Azure architectureAzure architecture
Azure architecture
 
Windowsazureplatform Overviewlatest
Windowsazureplatform OverviewlatestWindowsazureplatform Overviewlatest
Windowsazureplatform Overviewlatest
 
Data Management Gateway - Deep Dive
Data Management Gateway - Deep DiveData Management Gateway - Deep Dive
Data Management Gateway - Deep Dive
 
Sql saturday azure storage by Anton Vidishchev
Sql saturday azure storage by Anton VidishchevSql saturday azure storage by Anton Vidishchev
Sql saturday azure storage by Anton Vidishchev
 
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
Cloud Computing With Amazon Web Services, Part 3: Servers on Demand With EC2
 
04 Azure IAAS 101
04 Azure IAAS 10104 Azure IAAS 101
04 Azure IAAS 101
 
Azure IaaS Tanıtım - Uzun Anlatım
Azure IaaS Tanıtım - Uzun AnlatımAzure IaaS Tanıtım - Uzun Anlatım
Azure IaaS Tanıtım - Uzun Anlatım
 
Get started With Microsoft Azure Virtual Machine
Get started With Microsoft Azure Virtual MachineGet started With Microsoft Azure Virtual Machine
Get started With Microsoft Azure Virtual Machine
 
Data Platform Overview
Data Platform OverviewData Platform Overview
Data Platform Overview
 
Azure storage
Azure storageAzure storage
Azure storage
 
Azure services
Azure servicesAzure services
Azure services
 
India Webinar
India WebinarIndia Webinar
India Webinar
 
Introduction to Windows Azure
Introduction to Windows AzureIntroduction to Windows Azure
Introduction to Windows Azure
 
Responding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database TechnologyResponding to Digital Transformation With RDS Database Technology
Responding to Digital Transformation With RDS Database Technology
 

Similar a Azure Storage – Foundation for Building Secure, Scalable Cloud Applications

How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
Amazon Web Services
 
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
Amazon Web Services
 

Similar a Azure Storage – Foundation for Building Secure, Scalable Cloud Applications (20)

Introduction to Azure IaaS
Introduction to Azure IaaSIntroduction to Azure IaaS
Introduction to Azure IaaS
 
Slide Storage.pptx
Slide Storage.pptxSlide Storage.pptx
Slide Storage.pptx
 
Azure: Lessons From The Field
Azure: Lessons From The FieldAzure: Lessons From The Field
Azure: Lessons From The Field
 
Integrating On-premises Enterprise Storage Workloads with AWS (ENT301) | AWS ...
Integrating On-premises Enterprise Storage Workloads with AWS (ENT301) | AWS ...Integrating On-premises Enterprise Storage Workloads with AWS (ENT301) | AWS ...
Integrating On-premises Enterprise Storage Workloads with AWS (ENT301) | AWS ...
 
Windows Azure: Lessons From The Field
Windows Azure: Lessons From The FieldWindows Azure: Lessons From The Field
Windows Azure: Lessons From The Field
 
Azure Platform
Azure Platform Azure Platform
Azure Platform
 
Maginatics @ SDC 2013: Architecting An Enterprise Storage Platform Using Obje...
Maginatics @ SDC 2013: Architecting An Enterprise Storage Platform Using Obje...Maginatics @ SDC 2013: Architecting An Enterprise Storage Platform Using Obje...
Maginatics @ SDC 2013: Architecting An Enterprise Storage Platform Using Obje...
 
Introduction to Azure Cloud Storage
Introduction to Azure Cloud StorageIntroduction to Azure Cloud Storage
Introduction to Azure Cloud Storage
 
Mini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure StorageMini training - Introduction to Microsoft Azure Storage
Mini training - Introduction to Microsoft Azure Storage
 
How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
How Globe Telecom does Primary Backups via StorReduce to the AWS Cloud
 
Understanding the Windows Azure Platform - Dec 2010
Understanding the Windows Azure Platform - Dec 2010Understanding the Windows Azure Platform - Dec 2010
Understanding the Windows Azure Platform - Dec 2010
 
Azure Compute, Networking and Storage Overview
Azure Compute, Networking and Storage OverviewAzure Compute, Networking and Storage Overview
Azure Compute, Networking and Storage Overview
 
Windows Azure - Uma Plataforma para o Desenvolvimento de Aplicações
Windows Azure - Uma Plataforma para o Desenvolvimento de AplicaçõesWindows Azure - Uma Plataforma para o Desenvolvimento de Aplicações
Windows Azure - Uma Plataforma para o Desenvolvimento de Aplicações
 
Understanding The Azure Platform Jan
Understanding The Azure Platform JanUnderstanding The Azure Platform Jan
Understanding The Azure Platform Jan
 
Microsoft Azure Offerings and New Services
Microsoft Azure Offerings and New Services Microsoft Azure Offerings and New Services
Microsoft Azure Offerings and New Services
 
Azure intoduksjon for it pro 02 data protection public
Azure intoduksjon for it pro 02 data protection publicAzure intoduksjon for it pro 02 data protection public
Azure intoduksjon for it pro 02 data protection public
 
TechEd NZ 2014: Azure and Sharepoint
TechEd NZ 2014: Azure and SharepointTechEd NZ 2014: Azure and Sharepoint
TechEd NZ 2014: Azure and Sharepoint
 
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
AWS May Webinar Series - Getting Started: Storage with Amazon S3 and Amazon G...
 
A guide through the Azure Messaging services - Update Conference
A guide through the Azure Messaging services - Update ConferenceA guide through the Azure Messaging services - Update Conference
A guide through the Azure Messaging services - Update Conference
 
AWS CSAA Certification - Mindmaps and StudyNotes
AWS CSAA Certification - Mindmaps and StudyNotesAWS CSAA Certification - Mindmaps and StudyNotes
AWS CSAA Certification - Mindmaps and StudyNotes
 

Más de Microsoft Tech Community

Más de Microsoft Tech Community (20)

100 ways to use Yammer
100 ways to use Yammer100 ways to use Yammer
100 ways to use Yammer
 
10 Yammer Group Suggestions
10 Yammer Group Suggestions10 Yammer Group Suggestions
10 Yammer Group Suggestions
 
Removing Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment SuccessRemoving Security Roadblocks to IoT Deployment Success
Removing Security Roadblocks to IoT Deployment Success
 
Building mobile apps with Visual Studio and Xamarin
Building mobile apps with Visual Studio and XamarinBuilding mobile apps with Visual Studio and Xamarin
Building mobile apps with Visual Studio and Xamarin
 
Best practices with Microsoft Graph: Making your applications more performant...
Best practices with Microsoft Graph: Making your applications more performant...Best practices with Microsoft Graph: Making your applications more performant...
Best practices with Microsoft Graph: Making your applications more performant...
 
Interactive emails in Outlook with Adaptive Cards
Interactive emails in Outlook with Adaptive CardsInteractive emails in Outlook with Adaptive Cards
Interactive emails in Outlook with Adaptive Cards
 
Unlocking security insights with Microsoft Graph API
Unlocking security insights with Microsoft Graph APIUnlocking security insights with Microsoft Graph API
Unlocking security insights with Microsoft Graph API
 
Break through the serverless barriers with Durable Functions
Break through the serverless barriers with Durable FunctionsBreak through the serverless barriers with Durable Functions
Break through the serverless barriers with Durable Functions
 
Multiplayer Server Scaling with Azure Container Instances
Multiplayer Server Scaling with Azure Container InstancesMultiplayer Server Scaling with Azure Container Instances
Multiplayer Server Scaling with Azure Container Instances
 
Explore Azure Cosmos DB
Explore Azure Cosmos DBExplore Azure Cosmos DB
Explore Azure Cosmos DB
 
Media Streaming Apps with Azure and Xamarin
Media Streaming Apps with Azure and XamarinMedia Streaming Apps with Azure and Xamarin
Media Streaming Apps with Azure and Xamarin
 
DevOps for Data Science
DevOps for Data ScienceDevOps for Data Science
DevOps for Data Science
 
Real-World Solutions with PowerApps: Tips & tricks to manage your app complexity
Real-World Solutions with PowerApps: Tips & tricks to manage your app complexityReal-World Solutions with PowerApps: Tips & tricks to manage your app complexity
Real-World Solutions with PowerApps: Tips & tricks to manage your app complexity
 
Azure Functions and Microsoft Graph
Azure Functions and Microsoft GraphAzure Functions and Microsoft Graph
Azure Functions and Microsoft Graph
 
Ingestion in data pipelines with Managed Kafka Clusters in Azure HDInsight
Ingestion in data pipelines with Managed Kafka Clusters in Azure HDInsightIngestion in data pipelines with Managed Kafka Clusters in Azure HDInsight
Ingestion in data pipelines with Managed Kafka Clusters in Azure HDInsight
 
Getting Started with Visual Studio Tools for AI
Getting Started with Visual Studio Tools for AIGetting Started with Visual Studio Tools for AI
Getting Started with Visual Studio Tools for AI
 
Using AML Python SDK
Using AML Python SDKUsing AML Python SDK
Using AML Python SDK
 
Mobile Workforce Location Tracking with Bing Maps
Mobile Workforce Location Tracking with Bing MapsMobile Workforce Location Tracking with Bing Maps
Mobile Workforce Location Tracking with Bing Maps
 
Cognitive Services Labs in action Anomaly detection
Cognitive Services Labs in action Anomaly detectionCognitive Services Labs in action Anomaly detection
Cognitive Services Labs in action Anomaly detection
 
Speech Devices SDK
Speech Devices SDKSpeech Devices SDK
Speech Devices SDK
 

Último

Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Orbitshub
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 

Último (20)

MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 

Azure Storage – Foundation for Building Secure, Scalable Cloud Applications

  • 1.
  • 2.
  • 4. Azure Storage Object Storage Data Transport File Storage Hybrid Storage Lift and shift of legacy applications that require file shares to the cloud Secure, Scalable storage for unstructured data Move or migrate data into Azure Secure, intelligent data tiering between on-premises and cloud storage Azure Blobs Azure Files Azure NetApp Files Azure Import/Export Azure DataBox Azure StorSimple Azure File Sync Avere Disk Storage Reliable, persistent, high performing storage for Virtual Machines Premium Standard
  • 5. • Self-service data migration • Simple: order, fill, and return to upload data to Azure • Fast: Move ~80 TB per Data Box • Secure: AES 256-bit encryption • Status: Preview Azure Data Box • Self-service data migration • Customer supplied disk(s) • Send disks for upload into Azure • Secure: AES 128-bit encryption • Status: Generally Available Import/Export • Partner specialists provide HW, facilities, & expertise • Migrate tapes, optical drives, hard disks, even film to Azure • Contact partners • Offline Media Import Website Offline Media Import Self-serve and partner-led data transfer services to Azure.
  • 6.
  • 7. Blob Storage Blob Storage - Azure’s Object Storage platform Store and serve unstructured data App and Web scale data Backups and Archive Big Data from IoT, Genomics, etc. Broad integration for Blobs across Azure services Enables many scenarios Blob Storage
  • 8. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 9. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 10. Azure Storage Replication Options LRS 3 replicas, 1 region Protect against disk, node, rack failures Write is ack’d when all replicas are committed Superior to dual-parity RAID GRS 6 replicas, 2 regions (3/region) Protects against major regional disasters Asynchronous to secondary RA-GRS GRS + Read access to secondary Separate secondary endpoint RPO delay to secondary can be queried ZRS 3 replicas across 3 Zones Protect against disk, node, rack and zone failures Synchronous writes to all 3 zones Generally Available now in 6 regions Zone 1 Zone 2 Zone 3
  • 11. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 12. Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18
  • 13.
  • 14. Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18
  • 15. Challenges Storage Account Keys are all- powerful Exposed storage account keys in code Must build a token service to issue appropriate SAS Tokens Map user identities to appropriate permissions No user identity in storage diagnostic logs Requirements Use enterprise identities Leverage advanced authentication technologies Multi-Factor Auth Conditional Access Policies Integrate with of Azure Role- Based Access Control
  • 16. Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18 Azure AD and RBAC AAD creds for Auth instead of Shared key/SAS Full RBAC down to container level Preview June; GA – H2 CY18
  • 17.
  • 18.
  • 19.
  • 21. Azure Host Azure VM Azure Service (e.g. ARM, Azure Storage) Your code IMDS Identity Credentials 1 2 3 http://169.254.169.254/metadata/identity/oauth2/token Azure Active Directory Azure (inject and roll credentials)
  • 22.
  • 23. Security & Compliance Encryption at Rest Always on with MS keys Customer supplied keys – GA since 03/18 Firewalls and Virtual Networks Restrict access from public internet – GA since 02/18 AAD, OAuth and RBAC AAD creds for Auth instead of Shared key/SAS Full RBAC at container level Preview June; GA – H2 CY18 Immutable Blob Storage SEC 17a-4(f) compliant Across all Storage tiers Preview – May, GA – Q3 CY18
  • 24.
  • 25. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 26. New
  • 27. GA now Preview in H2 2018 New
  • 28. Repository for server backups Medical records archiving Cloud native application data storage Object Storage for every use case
  • 29. Blob Level Tiering Blob-Level Tiering Individual blobs can move between tiers All tiers co-exist in the same storage account New API to set blob tier: SetBlobTier Acknowledged immediately from service Get APIs (GetBlobProperties and ListBlobs) return current tier and archive status New headers "x-ms-access-tier” and “x-ms-archive-status” Blob REST API Hot Tier Lower Transaction cost Cool Tier Lower Capacity cost Archive Tier Lowest Capacity cost
  • 30.
  • 31.
  • 32. New
  • 33. Partner Product Solution CommVault Data Management NetApp AltaVault Enterprise Vault Hubstor Archive2Azure Tiger Bridge Cloudberry Backup Cohesity DataPlatform
  • 34. 5.3 Million Files were Archived in 6 months Project Payback < 6 Months and more savings to come Improved retention policy compliance Unified Enterprise Archiving Offer Available to the whole company BP Attic Cloud Archive
  • 35.
  • 36. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 37. Stateless, front door for request handling (auth, request metering/throttling, validation) Partition Layer Serves data based on partitions, enables batch transactions and strong consistency Stream Layer Stores multiple replicas of the data, deals with failures, bit rot, etc. FE 2 Partition 3 (F-J) Stream 2
  • 38.
  • 39. Per Account Limits Through 08/17 Current CY18 Capacity 500 TB 5PB 20 PB TPS 20K tps 50K tps 100K tps Throughput 20/30 Gbps 50 Gbps 100 Gbps Single 4GB blob read from 500 containers on a single account: 100 Gbps! Blob Storage Scale & Performance Per Blob Single Block Blob max size increased 25x to 5TB Read and write throughput for a single object can scale to as high as 12.5 GB/s (100 Gb/s) 50% improvement in read latency for small blobs Per Storage Account FE 2 Partition 3 (F-J) Stream 2
  • 40. FE 2 Partition 3 (F-J) Stream 2 Movie.mp4 (50 GB) BL001 BL002 BL003 BLN00
  • 41. FE 2 Partition 3 (F-J) Stream 2 Movie.mp4 (50 GB)
  • 42. Blob Storage Pillars Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable
  • 43. Open & Interoperable Developers & Tools Open Source client libraries on GitHub: Retry/resume, Parallel upload/downloads, etc. Mobile platform support Recent – Python/PHP/Ruby GA, Go preview OpenAPI/Swagger based client libraries Data movement library High performance data transfers Cross platform compliant – CoreCLR based Tools CLI – Python based, Linux friendly AZCopy – Robocopy for Azure Storage Storage Explorer – Cross platform UX
  • 44. New Blob Service – 2017-07-29  Blob SDK v11 OpenAPI spec AutoRest Hand-writtenProtocol API Convenience SDK github.com/azure/azure-storage-java
  • 45. Open & Interoperable Linux FUSE Adapter Mount a container and use regular filesystem commands Serves HPC and big data workloads on Linux Mount container for reads on many nodes (no write sync) Parallel uploads/downloads for fast access to large blobs Local read cache to improve subsequent access times Partner support for S3 Variety of data, deployment and cost models Blob data is non-opaque Use objects with Blob API including other Azure services Azure Blob
  • 47. Blob Storage Serverless Compute Publish data change event notifications PutBlob, PutBlockList, DeleteBlob Future – Change Feed BRK3313 - Leverage Azure Blob Storage to build storage intensive cloud native applications – 5/7/18
  • 48. Blobs CY18 Roadmap Durable & Available Secure & Compliant Manageable & Cost Efficient Scalable & Performant Open & Interoperable ZRS V2 Custom Enc. Keys Firewalls and Virtual Networks AAD, OAuth & RBAC Immutable Blobs Soft Delete Versioning Monitor integration Data Lifecycle policies Archive features Per Blob perf Per Account scale Storage Events FUSE driver Static Websites Re-architected SDKs
  • 49.
  • 50. Where should I put my files? Azure Blobs Azure FilesAzure Compute + Disks On-premises File Servers SharePoint Online
  • 51. What is Azure Files? Cloud file shares that are… Secure Data encrypted at rest and in transit Easily managed No servers required Smart Make the most of limited networks with intelligent caching Cross-platform Mount on Windows, Linux, and macOS Built for a hybrid world Access data where you want to, how you want to Harmonious Migrate applications to the cloud without the headaches
  • 52. Use Case 1: General Purpose Files as-a-service HQ Cluster Branch Branch Centralize General Purpose File Services Multi-site sync for distributed access Cache for fast, local performance Utilize cloud-based backup and fast DR Azure Backup Vault
  • 53. Azure File Sync HQ Seattle File Share West US Cloud Tiering Multi-site sync Rapid file server DR Direct cloud access Integrated cloud backup PaaS Azure Backup Vault 3rd party data mngmt Branch Office New York Work Folders SMB NFS Users Applications
  • 54. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown)
  • 55. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server
  • 56. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist)
  • 57. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint)
  • 58. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint) Create a server endpoint
  • 59. Cache shares on-premises with Azure File Sync Install the Azure File Sync agent (not shown) Register the server Create a file share (if one does not exist) Create a sync group (with a cloud endpoint) Create a server endpoint Validate sync works
  • 60.
  • 61.
  • 62. Background Checkpoint State Persistent Temporary Sync DB SMB & REST SAS MAB Sync Client USN Journal Recall Engine Tiering Engine Mgmt Storage Sync Service (PaaS) Front Ends Front Ends Front Ends Sync Worker Sync Worker Sync Worker Background Worker Background Worker Background Worker MngmtMngmtMgmt State Server Agent Sync Engine Filter Driver Local StorageLocal StorageSync Root File REST File REST SMB Sync State ARM portal, Powershell Queue Azure File Share Azure File Share Azure File Share
  • 63. Use Case 2: Migrate applications to the cloud Migrate on-premises file or share based apps often with no code changes Test migration in stages – first move data, then move application Interact with app data from on-prem securely Reuse ISVs existing file based data access layers in your cloud apps AAD authentication and ACL support coming this year Azure US-EastOn-premises SMB3.0
  • 64. Azure US-East SMBCloud Services Worker Roles REST REST APIs enable integration with modern cloud applications Integrate modern cloud applications with legacy applications Develop new file system based applications using REST APIs REST APIs support Shared access signature (SAS) token support for delegated authorization Cross origin resource sharing (CORS) for direct access from browser clients Storage Client Library Support in .NET, Java, Node and Python On Premise Web Sites Azure US-West Web Sites Cloud Services Worker Roles
  • 65. Use Case 4: Simplify hosting HA workload data SMB2.1 well suited for client / server scenarios Server applications (e.g. SQL, IIS) require greater reliability during network failures Using SMB 3.0 persistent handles supports continuous availability Applications include Hosting IIS/FTP sites using shared storage SQL Server Failover Cluster Instance IIS IIS IIS IIS Hosting
  • 66. Example 1: FTP highly available FTP server using Disks Single VM instance is prone to availability loss VM Azure Disks FTP server using Files Increased availability through multiple VM instances VM 1 VM2 Azure FilesAzure Files Azure load balancer Azure load balancer
  • 67. Ubuntu, Docker, and Azure Files (WordPress) Deploy Ubuntu Docker
  • 68. Deploy Ubuntu Docker Create file share Ubuntu, Docker, and Azure Files (WordPress)
  • 69. Deploy Ubuntu Docker Create file share Mount Azure File Share Ubuntu, Docker, and Azure Files (WordPress)
  • 70. Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Ubuntu, Docker, and Azure Files (WordPress)
  • 71. Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Word Press Ubuntu, Docker, and Azure Files (WordPress)
  • 72. Deploy Ubuntu Docker Create file share Mount Azure File Share Configure Docker Word Press Azure Files Ubuntu, Docker, and Azure Files (WordPress)
  • 73. Files Roadmap Highest priority GA 3/27 Preview now Other Features GA 3/30 in 6 regions
  • 74.
  • 75. Fully managed file-share service Native Azure integration (Portal/REST/CLI, Billing, Monitoring, Security) Sold and supported as a Microsoft product The power of data with ONTAP HA, Data Protection, Data Management (Snapshots, Clones), Performance NFS v3 and v4 Hybrid Data migration and replication capabilities (SnapMirror) Secure Data at Rest Encryption, RBAC Limited Preview coming in June Azure NetApp Files
  • 76.
  • 77.
  • 78. Azure Disks Performance Tiers Management Options Premium Disks SSD based, provisioned performance Standard Disks HDD based, cost effective Resource Group Managed Disks Highly available and manageable < 1ms latency for cached operations Blob Cache technology Up to 160,000 IOPS Industry leading ZERO % Annual Failure Rate Enterprise grade durability with 3 replicas Best in class High IOPS/BW 80,000 IOPS & 2,000 MB/s Disk throughput per VM Recent Feature releases: Azure Backup and ASR Support for larger Managed Disks Managed Disks support for Azure Availability Zone Improved Managed Disk metrics
  • 79. Disks Roadmap Features for H2 CY2018 Move Managed Disks across Subscriptions/Resource Groups Portal support for conversion to Managed Disks Managed Disks incremental snapshots and Diff APIs Improve data import experience for Managed Disks Scale/Perf Improvements Standard Managed Disks Premium Managed Disks Disk Latency Double digit milliseconds Uncached Read: ~4ms Uncached Write: ~2ms  ~1ms Max Disk Size 4TB  32TB 4TB  32TB
  • 80.

Notas del editor

  1. 4
  2. Microsoft Build 2017
  3. Microsoft Build 2017
  4. 62
  5. 66