Cloud computing Books

Book Synopsis100 Go Mistakes: How to Avoid Them introduces dozens of techniques for writing idiomatic, expressive, and efficient Go code that avoids common pitfalls. By reviewing dozens of interesting, readable examples and real-world case studies, you'll explore mistakes that even experienced Go programmers make. This book is focused on pure Go code, with standards you can apply to any kind of project. As you go, you'll navigate the tricky bits of handling JSON data and HTTP services, discover best practices for Go code organization, and learn how to use slices efficiently. Your code speed and quality will enjoy a huge boost when you improve your concurrency skills, deal with error management idiomatically, and increase the quality of your tests. About the Technology Go is simple to learn, yet hard to master. Even experienced Go developers may end up introducing bugs and inefficiencies into their code. This book accelerates your understanding of Go's quirks, helping you correct mistakes and dodge pitfalls on your path to Go mastery.Trade Review"This book is one any Golang developer will want on their bookshelf. Far from being dogmatic or prescriptive, it often provides multiple solutions to the reader, leaving some room for flexibility and individual taste." Thad Meyer "Goes beyond the basics with lots of good examples for when concepts are tough to grasp. As someone who's been coding Go for about 2 years, I learned new things." Matt Welke "This book felt catered to me. I'm not a developer by career path, however it provides a LOT of insight into what I should be thinking about as someone without any education or formal training in Software Development. Really, really nice." Francis J. Setash "This book not only points out common mistakes and anti-patterns, it provides solutions—a perfect combination for deeper learning." Kevin Liao "Read this, it'll give you years of experience of Go just learning from the book. Very valuable!" Keith Kim

Read more less

a huge range and FREE tracked UK delivery on ALL orders.

Read more less

Book Synopsis

Read more less

Book Synopsis

Read more less

Book SynopsisThis book is the second part of Applications and Trends in Fintech, which serves as a comprehensive guide to the advanced topics in fintech, including the deep learning and natural language processing algorithms, blockchain design thinking, token economics, cybersecurity, cloud computing and quantum computing, compliance and risk management, and global fintech trends. Readers will gain knowledge about the applications of fintech in finance and its latest developments as well as trends.This fifth volume covers global fintech trends and emerging technologies such as cloud computing and quantum computing, as well as the compliance and risk management frameworks for fintech companies. Together with the first part in applications and trends (fourth volume), these two books will deepen readers' understanding of the fintech fundamentals covered in previous volumes through various applications and analysis of impacts and trends.Bundle set: Global Fintech Institute-Chartered Fintech Professional Set I

Read more less

Book SynopsisAdora Nwodo is a software engineer who develops mixed-reality products at Microsoft. She frequently shares her insights on cloud technology and careers on her blog and popular YouTube channel. She is the founder of NexaScale, a social enterprise aimed at offering and sharing new opportunities for projects and work experiences within the tech sector. She is a sought-after public speaker, thought leader and author. She is based in Cambridge, UK.

Read more less

Book SynopsisIf you're tasked with designing, delivering, or approving IT systems that support business growth, this book will teach you the principles and strategies you need to break out of silos, reassess traditional thinking, provide the business a better competitive position, and achieve cloud success across the company.

Read more less

Book Synopsis This project-oriented book gives you a hands-on approach to designing, developing, and templating your Snowflake platform delivery. Written by seasoned Snowflake practitioners, the book is full of practical guidance and advice to accelerate and mature your Snowflake journey. Working through the examples helps you develop the skill, knowledge, and expertise to expand your organization''s core Snowflake capability and prepare for later incorporation of additional Snowflake features as they become available. Your Snowflake platform will be resilient, fit for purpose, extensible, and guarantee rapid, consistent, and repeatable, pattern-based deployments ready for application delivery. When a Snowflake account is delivered there are no controls, guard rails, external monitoring, nor governance mechanisms baked in. From a large organization perspective, this book explains how to deliver your core Snowflake platform in the form of a Landing Zone, a consistenTable of ContentsIntroductionPart I. The Landing Zone1. Maturing the Snowflake Data Cloud2. PrivateLink3. Security4. Costs5. Share6. Usage7. Catalog8. SSO9. SCIM10. Templates11. Disaster RecoveryPart II. The Center for Enablement12. What is a Center for Enablement?13. Training14. Tooling15. Outreach and Engagement16. SandpitPart III. End User Consumption17. Self-Service Options18. Cloud Data Management Capabilities

Read more less

Book SynopsisThis practical guide provides business leaders and C-level executives with guidance and insights across a wide range of cloud-related topics, such as distributed cloud, microservices, and other open source solutions for strengthening operations.

Read more less

Book SynopsisExplore the theory and practice of designing and writing serverless applications using examples from the Knative project. With this practical guide, mid-level to senior application developers and team managers will learn when and why to target serverless platforms when developing microservices or applications.

Read more less

Book SynopsisMichael Howard is a 30-year Microsoft veteran and is currently a Principal Security Program Manager in the Azure Data Platform team, working on security engineering. He is one of the original architects of the Microsoft Security Development Lifecycle and has helped diverse customers such as government, military, education, finance, and healthcare secure their Azure workloads. He was the application security lead for the Rio 2016 Olympic games, which were hosted on Azure. Heinrich Gantenbein is a Senior Principal Consultant on Cybersecurity in Microsoft's Industry Solutions Delivery. With 30+ years of experience in software engineering and more than 30 years of experience in consulting, he brings a wealth of practical know-how to his role. Heinrich specializes in Azure security, threat modeling, and DevSecOps. Simone Curzi is a Principal Consultant from Microsoft's Industry Solutions Delivery. He has 20+ years of experiTable of ContentsPART I SECURITY PRINCIPLES CHAPTER 1 Secure development lifecycle processes CHAPTER 2 Secure design CHAPTER 3 Security patterns CHAPTER 4 Threat modeling CHAPTER 5 Identity, authentication, and authorization CHAPTER 6 Monitoring and auditing CHAPTER 7 Governance CHAPTER 8 Compliance and risk programs PART II SECURE IMPLEMENTATION CHAPTER 9 Secure coding CHAPTER 10 Cryptography in Azure CHAPTER 11 Confidential computing CHAPTER 12 Container security CHAPTER 13 Database security CHAPTER 14 CI/CD security CHAPTER 15 Network security Appendix A: Core cryptographic techniques

Read more less

Book SynopsisTable of ContentsForeword to the Fourth Edition xxi Introduction xix Chapter 1 Cloud Concepts, Architecture, and Design 1 Understand Cloud Computing Concepts 2 Cloud Computing Definitions 2 Cloud Computing Roles and Responsibilities 3 Key Cloud Computing Characteristics 7 Building Block Technologies 11 Describe Cloud Reference Architecture 14 Cloud Computing Activities 14 Cloud Service Capabilities 15 Cloud Service Categories 17 Cloud Deployment Models 18 Cloud Shared Considerations 21 Impact of Related Technologies 27 Understand Security Concepts Relevant to Cloud Computing 33 Cryptography and Key Management 33 Identity and Access Control 34 Data and Media Sanitization 36 Network Security 37 Virtualization Security 39 Common Threats 41 Security Hygiene 41 Understand Design Principles of Secure Cloud Computing 43 Cloud Secure Data Lifecycle 43 Cloud- Based Business Continuity and Disaster Recovery Plan 44 Business Impact Analysis 45 Functional Security Requirements 46 Security Considerations for Different Cloud Categories 48 Cloud Design Patterns 49 DevOps Security 51 Evaluate Cloud Service Providers 51 Verification against Criteria 52 System/Subsystem Product Certifications 54 Summary 56 Chapter 2 Cloud Data Security 57 Describe Cloud Data Concepts 58 Cloud Data Lifecycle Phases 58 Data Dispersion 61 Data Flows 62 Design and Implement Cloud Data Storage Architectures 63 Storage Types 63 Threats to Storage Types 66 Design and Apply Data Security Technologies and Strategies 67 Encryption and Key Management 67 Hashing 70 Data Obfuscation 71 Tokenization 73 Data Loss Prevention 74 Keys, Secrets, and Certificates Management 77 Implement Data Discovery 78 Structured Data 79 Unstructured Data 80 Semi- structured Data 81 Data Location 82 Implement Data Classification 82 Data Classification Policies 83 Mapping 85 Labeling 86 Design and Implement Information Rights Management 87 Objectives 88 Appropriate Tools 89 Plan and Implement Data Retention, Deletion, and Archiving Policies 89 Data Retention Policies 90 Data Deletion Procedures and Mechanisms 93 Data Archiving Procedures and Mechanisms 94 Legal Hold 95 Design and Implement Auditability, Traceability, and Accountability of Data Events 96 Definition of Event Sources and Requirement of Event Attribution 97 Logging, Storage, and Analysis of Data Events 99 Chain of Custody and Nonrepudiation 100 Summary 101 Chapter 3 Cloud Platform and Infrastructure Security 103 Comprehend Cloud Infrastructure and Platform Components 104 Physical Environment 104 Network and Communications 106 Compute 107 Virtualization 108 Storage 110 Management Plane 111 Design a Secure Data Center 113 Logical Design 114 Physical Design 116 Environmental Design 117 Analyze Risks Associated with Cloud Infrastructure and Platforms 119 Risk Assessment 119 Cloud Vulnerabilities, Threats, and Attacks 122 Risk Mitigation Strategies 123 Plan and Implementation of Security Controls 124 Physical and Environmental Protection 124 System, Storage, and Communication Protection 125 Identification, Authentication, and Authorization in Cloud Environments 127 Audit Mechanisms 128 Plan Disaster Recovery and Business Continuity 131 Business Continuity/Disaster Recovery Strategy 131 Business Requirements 132 Creation, Implementation, and Testing of Plan 134 Summary 138 Chapter 4 Cloud Application Security 139 Advocate Training and Awareness for Application Security 140 Cloud Development Basics 140 Common Pitfalls 141 Common Cloud Vulnerabilities 142 Describe the Secure Software Development Life Cycle Process 144 NIST Secure Software Development Framework 145 OWASP Software Assurance Maturity Model 145 Business Requirements 145 Phases and Methodologies 146 Apply the Secure Software Development Life Cycle 149 Cloud- Specific Risks 149 Threat Modeling 153 Avoid Common Vulnerabilities during Development 156 Secure Coding 156 Software Configuration Management and Versioning 157 Apply Cloud Software Assurance and Validation 158 Functional and Non- functional Testing 159 Security Testing Methodologies 160 Quality Assurance 164 Abuse Case Testing 164 Use Verified Secure Software 165 Securing Application Programming Interfaces 165 Supply- Chain Management 166 Third- Party Software Management 166 Validated Open- Source Software 167 Comprehend the Specifics of Cloud Application Architecture 168 Supplemental Security Components 169 Cryptography 171 Sandboxing 172 Application Virtualization and Orchestration 173 Design Appropriate Identity and Access Management Solutions 174 Federated Identity 175 Identity Providers 175 Single Sign- on 176 Multifactor Authentication 176 Cloud Access Security Broker 178 Summary 179 Chapter 5 Cloud Security Operations 181 Build and Implement Physical and Logical Infrastructure for Cloud Environment 182 Hardware- Specific Security Configuration Requirements 182 Installation and Configuration of Virtualization Management Tools 185 Virtual Hardware–Specific Security Configuration Requirements 186 Installation of Guest Operating System Virtualization Toolsets 188 Operate Physical and Logical Infrastructure for Cloud Environment 188 Configure Access Control for Local and Remote Access 188 Secure Network Configuration 190 Operating System Hardening through the Application of Baselines 195 Availability of Stand- Alone Hosts 196 Availability of Clustered Hosts 197 Availability of Guest Operating Systems 199 Manage Physical and Logical Infrastructure for Cloud Environment 200 Access Controls for Remote Access 201 Operating System Baseline Compliance Monitoring and Remediation 202 Patch Management 203 Performance and Capacity Monitoring 205 Hardware Monitoring 206 Configuration of Host and Guest Operating System Backup and Restore Functions 207 Network Security Controls 208 Management Plane 212 Implement Operational Controls and Standards 212 Change Management 213 Continuity Management 214 Information Security Management 216 Continual Service Improvement Management 217 Incident Management 218 Problem Management 221 Release Management 221 Deployment Management 222 Configuration Management 224 Service Level Management 225 Availability Management 226 Capacity Management 227 Support Digital Forensics 228 Forensic Data Collection Methodologies 228 Evidence Management 230 Collect, Acquire, and Preserve Digital Evidence 231 Manage Communication with Relevant Parties 234 Vendors 235 Customers 236 Partners 238 Regulators 238 Other Stakeholders 239 Manage Security Operations 239 Security Operations Center 240 Monitoring of Security Controls 244 Log Capture and Analysis 245 Incident Management 248 Summary 253 Chapter 6 Legal, Risk, and Compliance 255 Articulating Legal Requirements and Unique Risks within the Cloud Environment 256 Conflicting International Legislation 256 Evaluation of Legal Risks Specific to Cloud Computing 258 Legal Frameworks and Guidelines 258 eDiscovery 265 Forensics Requirements 267 Understand Privacy Issues 267 Difference between Contractual and Regulated Private Data 268 Country- Specific Legislation Related to Private Data 272 Jurisdictional Differences in Data Privacy 277 Standard Privacy Requirements 278 Privacy Impact Assessments 280 Understanding Audit Process, Methodologies, and Required Adaptations for a Cloud Environment 281 Internal and External Audit Controls 282 Impact of Audit Requirements 283 Identify Assurance Challenges of Virtualization and Cloud 284 Types of Audit Reports 285 Restrictions of Audit Scope Statements 288 Gap Analysis 289 Audit Planning 290 Internal Information Security Management System 291 Internal Information Security Controls System 292 Policies 293 Identification and Involvement of Relevant Stakeholders 296 Specialized Compliance Requirements for Highly Regulated Industries 297 Impact of Distributed Information Technology Model 298 Understand Implications of Cloud to Enterprise Risk Management 299 Assess Providers Risk Management Programs 300 Differences between Data Owner/Controller vs. Data Custodian/Processor 301 Regulatory Transparency Requirements 302 Risk Treatment 303 Risk Frameworks 304 Metrics for Risk Management 307 Assessment of Risk Environment 307 Understand Outsourcing and Cloud Contract Design 309 Business Requirements 309 Vendor Management 311 Contract Management 312 Supply Chain Management 314 Summary 316 Index 317

Read more less

Book SynopsisTable of ContentsIntroduction xv Chapter 1 Domain 1: Cloud Concepts, Architecture, and Design 1 Chapter 2 Domain 2: Architecture and Design 23 Chapter 3 Domain 3: Cloud Platform and Infrastructure Security 45 Chapter 4 Domain 4: Cloud Application Security 65 Chapter 5 Domain 5: Cloud Security Operations 85 Chapter 6 Domain 6: Legal, Risk, and Compliance 105 Chapter 7 Practice Test 1 125 Chapter 8 Practice Test 2 151 Appendix Answers to Review Questions 175 Chapter 1: Domain 1: Cloud Concepts, Architecture, and Design 176 Chapter 2: Domain 2: Architecture and Design 188 Chapter 3: Domain 3: Cloud Platform and Infrastructure Security 198 Chapter 4: Domain 4: Cloud Application Security 213 Chapter 5: Domain 5: Cloud Security Operations 223 Chapter 6: Domain 6: Legal, Risk, and Compliance 232 Chapter 7: Practice Test 1 245 Chapter 8: Practice Test 2 259 Index 273

Read more less

Book SynopsisSpring is a massive ecosystem and a must-learn tool for Java developers. Spring Start Here introduces you to Java development with Spring by concentrating on the core concepts you'll use in every application you build. You'll learn how to refactor an existing application to Spring, how to use Spring tools to make SQL database requests and REST calls, and how to secure your projects with Spring Security. Spring Start Here teaches you how to build professional-quality applications using Spring and Spring Boot. You'll start with the core components of the framework and then learn how features like Spring Boot simplify the tedious repetitive tasks you face in every project. When you're done, you'll be able to create Spring apps, secure them with authentication and authorization, and move on to the next exciting steps of your Spring journey. Spring Framework is packed with features to make your applications fast, maintainable, robust and secure. This extensive ecosystem of tools for cloud computing, microservices, and more have made it the de facto choice for building enterprise Java applications. Trade Review“Nothingbeats a good, modern, and recent introductory book on Spring. That's something I wish it was available some years back when I first encountered Spring.” Alexandros Dallas “An exhaustive introduction to Spring. Perfect for new users or a great refresher for long time users.” Nathan B. Crocker “An excellent book to quickly learn or refresh yourself on Spring.” DeUndreJ. Rushon “This is a great introduction to Spring.” RajeshMohanan

Read more less

Book SynopsisSecure your Azure applications the right way with the expert DevSecOps techniques you'll learn in this essential handbook. For software and security engineers building and securing Azure applications. In Azure Security you'll learn vital security skills, including how to: Configure Conditional Access policies to implement secure access Implement Azure Web Application Firewall (WAF) on Application Gateway and Azure Front Door Deploy Azure Firewall Premium to monitor network activities for malicious activity Enable Microsoft Defender for Cloud to continuously assess your workloads for misconfiguration Use Microsoft Sentinel to create analytics rules to detect threats and suspicious activity Set up Azure Policy to ensure that resource states and deployment is compliant with your business rules About the technology Attacks against cloud-based applications are increasingly common and sophisticated. It's vital for any developer or resource owner to understand how to properly configure their Azure cloud environments and establish reliable security best practices. The Azure platform comes with dozens of built-in security tools to help keep your systems safe. This book will teach you exactly how to set them up for maximum effectiveness.

Read more less

Book SynopsisThis fully updated self-study guide delivers 100% coverage of all topics on the current version of the CCSP examThoroughly revised for the 2022 edition of the exam, this highly effective test preparation guide covers all six domains within the CCSP Body of Knowledge. The book offers clear explanations of every subject on the CCSP exam and features accurate practice questions and real-world examples. New, updated, or expanded coverage includes cloud data security, DevOps security, mobile computing, threat modeling paradigms, regulatory and legal frameworks, and best practices and standards.Written by a respected computer security expert, CCSP Certified Cloud Security Professional All-in-One Exam Guide, Third Edition is both a powerful study tool and a valuable reference that will serve professionals long after the test. To aid in self-study, each chapter includes exam tips that highlight key information, a summary that serves as a quick review of salient p

Read more less

Book SynopsisPipelines can be challenging to manage, especially when your data has to flow through a collection of application components, servers, and cloud services. Airflow lets you schedule, restart, and backfill pipelines, and its easy-to-use UI and workflows with Python scripting has users praising its incredible flexibility. Data Pipelines with Apache Airflow takes you through best practices for creating pipelines for multiple tasks, including data lakes, cloud deployments, and data science. Data Pipelines with Apache Airflow teaches you the ins-and-outs of the Directed Acyclic Graphs (DAGs) that power Airflow, and how to write your own DAGs to meet the needs of your projects. With complete coverage of both foundational and lesser-known features, when you’re done you’ll be set to start using Airflow for seamless data pipeline development and management. Key Features Framework foundation and best practices Airflow's execution and dependency system Testing Airflow DAGs Running Airflow in production For data-savvy developers, DevOps and data engineers, and system administrators with intermediate Python skills. About the technology Data pipelines are used to extract, transform and load data to and from multiple sources, routing it wherever it’s needed -- whether that’s visualisation tools, business intelligence dashboards, or machine learning models. Airflow streamlines the whole process, giving you one tool for programmatically developing and monitoring batch data pipelines, and integrating all the pieces you use in your data stack. Bas Harenslak and Julian de Ruiter are data engineers with extensive experience using Airflow to develop pipelines for major companies including Heineken, Unilever, and Booking.com. Bas is a committer, and both Bas and Julian are active contributors to Apache Airflow.

Read more less

Book SynopsisASHISH AGRAWAL is a qualified technocrat, offering over two decades of multifaceted experience as a Cloud Engineering and transformation leader, trusted advisor, developer, consultant, and Enterprise Cloud Architect. He drives a profound influence in the cloud technology landscape with provocative thought leadership and communicates his ideas with clarity and passion. He has deep, hands-on technical expertise, having spearheaded numerous successful cloud engagements for global Fortune 500 companies in advisory, presales, consulting, architecture, leadership, and delivery execution, and he has played technology leadership roles in large, complex, cross-functional, and multi-enterprise project teams. GURVINDER SINGH is a Microsoft Certified Azure Solutions Architect with 15 years of diversified IT experience working with the Microsoft Technology stack. In the past several years, Gurvinder has been guiding large enterprises in the transformation of legacy applications into cloudTable of ContentsCHAPTER 1 Design identity, governance, and monitoring solutions CHAPTER 2 Design data storage solutions CHAPTER 3 Design business continuity solutions CHAPTER 4 Design infrastructure solutions

Read more less

Book SynopsisAn expert guide to selecting the right cloud service model for your business Cloud computing is all the rage, allowing for the delivery of computing and storage capacity to a diverse community of end-recipients. However, before you can decide on a cloud model, you need to determine what the ideal cloud service model is for your business. Helping you cut through all the haze, Architecting the Cloud is vendor neutral and guides you in making one of the most critical technology decisions that you will face: selecting the right cloud service model(s) based on a combination of both business and technology requirements. Guides corporations through key cloud design considerations Discusses the pros and cons of each cloud service model Highlights major design considerations in areas such as security, data privacy, logging, data storage, SLA monitoring, and more Clearly defines the services cloud providers offer for each service model andTrade Reviewan invaluable guide to anyone looking to understand how to effectively deploy cloud technologies (RSA Conference, September 2014)Table of ContentsForeword xiii Preface xv Acknowledgments xix About the author xxi Chapter 1 Why Cloud, Why Now? 1 Evolution of Cloud Computing 3 Enter the Cloud 6 Start-Up Case Study: Instagram, from Zero to a Billion Overnight 8 Established Company Case Study: Netflix, Shifting from On-Premises to the Cloud 9 Government Case Study: NOAA, E-mail, and Collaboration in the Cloud 10 Not-for-Profit Case Study: Obama Campaign, Six-Month Shelf-Life with One Big Peak 10 Summary 11 Chapter 2 Cloud Service Models 13 Infrastructure as a Service 13 Platform as a Service 15 Software as a Service 17 Deployment Models 18 Summary 22 Chapter 3 Cloud Computing Worst Practices 23 Avoiding Failure When Moving to the Cloud 23 Migrating Applications to the Cloud 23 Misguided Expectations 27 Misinformed about Cloud Security 29 Selecting a Favorite Vendor, Not an Appropriate Vendor 31 Outages and Out-of-Business Scenarios 31 Underestimating the Impacts of Organizational Change 33 Skills Shortage 35 Misunderstanding Customer Requirements 36 Unexpected Costs 37 Summary 39 Chapter 4 It Starts with Architecture 41 The Importance of Why, Who, What, Where, When, and How 41 Start with the Business Architecture 43 Identify the Problem Statement (Why) 47 Evaluate User Characteristics (Who) 48 Identify Business and Technical Requirements (What) 48 Visualize the Service Consumer Experience (Where) 49 Identify the Project Constraints (When and with What) 51 Understand Current State Constraints (How) 52 Summary 54 Chapter 5 Choosing the Right Cloud Service Model 55 Considerations when Choosing a Cloud Service Model 56 When to Use SaaS 59 When to Use PaaS 62 When to Use IaaS 65 Common Cloud Use Cases 68 Summary 69 Chapter 6 The Key to the Cloud: RESTful Services 71 Why REST? 72 The Challenges of Migrating Legacy Systems to the Cloud 74 Summary 75 Chapter 7 Auditing in the Cloud 77 Data and Cloud Security 78 Auditing Cloud Applications 78 Regulations in the Cloud 80 Audit Design Strategies 83 Summary 85 Chapter 8 Data Considerations in the Cloud 87 Data Characteristics 87 Multitenant or Single Tenant 92 Choosing Data Store Types 95 Summary 98 Chapter 9 Security Design in the Cloud 99 The Truth about Data in the Cloud 100 How Much Security Is Required 101 Responsibilities for Each Cloud Service Model 104 Security Strategies 108 Areas of Focus 110 Summary 118 Chapter 10 Creating a Centralized Logging Strategy 119 Log File Uses 119 Logging Requirements 120 Summary 124 Chapter 11 SLA Management 127 Factors That Impact SLAs 127 Defining SLAs 130 Managing Vendor SLAs 132 Summary 135 Chapter 12 Monitoring Strategies 137 Proactive vs. Reactive Monitoring 137 What Needs to Be Monitored? 138 Monitoring Strategies by Category 139 Monitoring by Cloud Service Level 145 Summary 147 Chapter 13 Disaster Recovery Planning 149 What Is the Cost of Downtime? 149 Disaster Recovery Strategies for IaaS 151 Recovering from a Disaster in the Primary Data Center 152 Disaster Recovery Strategies for PaaS 157 Disaster Recovery Strategies for SaaS 159 Disaster Recovery Hybrid Clouds 160 Summary 162Chapter 14 Leveraging a DevOps Culture to Deliver Software Faster and More Reliably 163 Developing the DevOps Mind-Set 163 Automate Infrastructure 165 Automate Deployments 166 Design Feature Flags 167 Measure, Monitor, and Experiment 167 Continuous Integration and Continuous Delivery 168 Summary 170 Chapter 15 Assessing the Organizational Impact of the Cloud Model 171 Enterprise Model vs. Elastic Cloud Model 172 IT Impact 173 Business Impacts 174 Organization Change Planning 178 Change in the Real World 180 Summary 181 Chapter 16 Final Thoughts 183 The Cloud Is Evolving Rapidly 183 Cloud Culture 185 New Business Models 186 PaaS Is the Game Changer 187 Summary 190 Index 193

Read more less

Book SynopsisTo really benefit from the reliability and scalability you get with cloud platforms, your applications need to be designed for that environment. Cloud Native Spring in Action is a practical guide for planning, designing, and building your first cloud native apps using the powerful, industry-standard Spring framework Cloud Native Spring in Action teaches you effective Spring and Kubernetes cloud development techniques that you can immediately apply to enterprise-grade applications. As you develop an online bookshop, you'll learn how to build and test a cloud native app with Spring, containerize it with Docker, and deploy it to the public cloud with Kubernetes. Including coverage of security, continuous delivery, and configuration, this hands-on guide is the perfect primer for navigating the increasingly complex cloud landscape. About the TechnologyModern applications need scalability, resilience, reliability, and zero-downtime. For most large systems, that means you'll take advantage of cloud-based tools and services. For Java developers, Spring helps effortlessly build cloud native, production-ready applications. Combined with Kubernetes, the Spring ecosystem offers numerous built-in features to help out developers migrating or building new cloud native projects efficiently.Trade Review"An excellent practical guide to learn and develop Cloud Native apps using Spring. A must-have for Spring professional." Harinath Kuntamukkala "Curious about writing production grade Cloud Native applications using Spring and don't know where to start? Read this book and thank me later!" Yogesh Shetty "The definitive guide to developing cloud native applications using Spring." Nathan B Crocker "Filled to the brim with real world examples and ready to use code." Mladen Knežić "This book is perfect to understand how to build cloud native architecture using Java and Spring. All the chapters are useful and their content can be applied in real-world scenarios." Gilberto Taccari

Read more less

Book SynopsisMark Wilkins is an Electronic Engineering Technologist with a wealth of experience in designing, deploying, and supporting software and hardware technology in the corporate and small business world. Since 2013, Mark has focused on supporting and designing cloud service solutions with Amazon Web Services, Microsoft Azure, and the IBM Cloud. He is certified in Amazon Web Services (Architecture and Sys-Ops). Mark is also a Microsoft Certified Trainer (MCT) and holds certifications in MCTS, MCSA, Server Virtualization with Windows Server Hyper-V, and Azure Cloud Services. Mark worked as a technical evangelist for IBM SoftLayer from 2013 through 2016 and taught both SoftLayer Fundamentals and SoftLayer Design classes to many Fortune 500 companies in Canada, the United States, Europe, and Australia. As course director for Global Knowledge, Mark developed and taught many technical seminars, including Configuring Active Directory Services, Configuring Group Policy, and Cloud anTable of ContentsPreface xix Chapter 1 Learning AWS 1 Chapter 2 Designing with AWS Global Services 29 Chapter 3 AWS Networking Services 77 Chapter 4 Compute Services: AWS EC2 Instances 147 Chapter 5 Planning for Scale and Resiliency 209 Chapter 6 Cloud Storage 255 Chapter 7 Security Services 315 Chapter 8 Automating AWS Infrastructure 373 Index 409

Read more less

Book Synopsis

Read more less

Book SynopsisThis latest textbook from bestselling author, Douglas E. Comer, is a class-tested book providing a comprehensive introduction to cloud computing. Focusing on concepts and principles, rather than commercial offerings by cloud providers and vendors, The Cloud Computing Book: The Future of Computing Explained gives readers a complete picture of the advantages and growth of cloud computing, cloud infrastructure, virtualization, automation and orchestration, and cloud-native software design.The book explains real and virtual data center facilities, including computation (e.g., servers, hypervisors, Virtual Machines, and containers), networks (e.g., leaf-spine architecture, VLANs, and VxLAN), and storage mechanisms (e.g., SAN, NAS, and object storage). Chapters on automation and orchestration cover the conceptual organization of systems that automate software deployment and scaling. Chapters on cloud-native software cover parallelism, microservices, MapReduce, controlTable of ContentsPreface PART I The Era Of Cloud Computing The Motivations For Cloud 1.1 Cloud Computing Everywhere 1.2 A Facility For Flexible Computing 1.3 The Start Of Cloud: The Power Wall And Multiple Cores 1.4 From Multiple Cores To Multiple Machines 1.5 From Clusters To Web Sites And Load Balancing 1.6 Racks Of Server Computers 1.7 The Economic Motivation For A Centralized Data Center 1.8 Origin Of The Term “In The Cloud” 1.9 Centralization Once Again Elastic Computing And Its Advantages 2.1 Introduction 2.2 Multi-Tenant Clouds 2.3 The Concept Of Elastic Computing 2.4 Using Virtualized Servers For Rapid Change 2.5 How Virtualized Servers Aid Providers 2.6 How Virtualized Servers Help A Customer 2.7 Business Models For Cloud Providers 2.8 Intrastructure as a Service (IaaS) 2.9 Platform as a Service (PaaS) 2.10 Software as a Service (SaaS) 2.11 A Special Case: Desktop as a Service (DaaS) 2.12 Summary Type Of Clouds And Cloud Providers 3.1 Introduction 3.2 Private And Public Clouds 3.3 Private Cloud 3.4 Public Cloud 3.5 The Advantages Of Public Cloud 3.6 Provider Lock-In 3.7 The Advantages Of Private Cloud 3.8 Hybrid Cloud 3.9 Multi-Cloud 3.10 Hyperscalers 3.11 Summary PART II Cloud Infrastructure And Virtualization Data Center Infrastructure And Equipment 4.1 Introduction 4.2 Racks, Aisles, And Pods 4.3 Pod Size 4.4 Power And Cooling For A Pod 4.5 Raised Floor Pathways And Air Cooling 4.6 Thermal Containment And Hot/Cold Aisles 4.7 Exhaust Ducts (Chimneys) 4.8 Lights-Out Data Centers 4.9 A Possible Future Of Liquid Cooling 4.10 Network Equipment And Multi-Port Server Interfaces 4.11 Smart Network Interfaces And Offload 4.12 North-South And East-West Network Traffic 4.13 Network Hierarchies, Capacity, And Fat Tree Designs 4.14 High Capacity And Link Aggregation 4.15 A Leaf-Spine Network Design For East-West Traffic 4.16 Scaling A Leaf-Spine Architecture With A Super Spine 4.17 External Internet Connections 4.18 Storage In A Data Center 4.19 Unified Data Center Networks 4.20 Summary Virtual Machines 5.1 Introduction 5.2 Approaches To Virtualization 5.3 Properties Of Full Virtualization 5.4 Conceptual Organization Of VM Systems 5.5 Efficient Execution And Processor Privilege Levels 5.6 Extending Privilege To A Hypervisor 5.7 Levels Of Trust 5.8 Levels Of Trust And I/O Devices 5.9 Virtual I/O Devices 5.10 Virtual Device Details 5.11 An Example Virtual Device 5.12 A VM As A Digital Object 5.13 VM Migration 5.14 Live Migration Using Three Phase5.15 Running Virtual Machines In An Application 5.16 Facilities That Make A Hosted Hypervisor Possible 5.17 How A User Benefits From A Hosted Hypervisor 5.18 Summary Containers 6.1 Introduction 6.2 The Advantages And Disadvantages Of VMs 6.3 Traditional Apps And Elasticity On Demand 6.4 Isolation Facilities In An Operating System 6.5 Linux Namespaces Used For Isolation 6.6 The Container Approach For Isolated Apps 6.7 Docker Containers6.8 Docker Terminology And Development Tools 6.9 Docker Software Components 6.10 Base Operating System And Files 6.11 Items In A Dockerfile 6.12 An Example Dockerfile 6.13 Summary Virtual Networks 7.1 Introduction 7.2 Conflicting Goals For A Data Center Network 7.3 Virtual Networks, Overlays, And Underlays 7.4 Virtual Local Area Networks (VLANs) 7.5 Scaling VLANs To A Data Center With VXLAN 7.6 A Virtual Network Switch Within A Server 7.7 Network Address Translation (NAT) 7.8 Managing Virtualization And Mobility 7.9 Automated Network Configuration And Operation 7.10 Software Defined Networking 7.11 The OpenFlow Protocol 7.12 Programmable Networks 7.13 Summary Virtual Storage 8.1 Introduction 8.2 Persistent Storage: Disks And Files 8.3 The Disk Interface Abstraction 8.4 The File Interface Abstraction 8.5 Local And Remote Storage 18.6 Two Types Of Remote Storage Systems 8.7 Network Attached Storage (NAS) Technology 8.8 Storage Area Network (SAN) Technology 8.9 Mapping Virtual Disks To Physical Disks 8.10 Hyper-Converged Infrastructure 8.11 A Comparison Of NAS and SAN Technology 8.12 Object Storage 8.13 Summary PART III Automation And OrchestrationAutomation 9.1 Introduction 9.2 Groups That Use Automation 9.3 The Need For Automation In A Data Center 9.4 An Example Deployment 9.5 What Can Be Automated? 9.6 Levels Of Automation 9.7 AIops: Using Machine Learning And Artificial Intelligence 9.8 A Plethora Of Automation Tools 9.9 Automation Of Manual Data Center Practices 9.10 Zero Touch Provisioning And Infrastructure As Code 9.11 Declarative, Imperative, And Intent-Based Specifications 9.12 The Evolution Of Automation Tools 9.13 Summary Orchestration: Automated Replication And Parallelism 10.1 Introduction 10.2 The Legacy Of Automating Manual Procedures 10.3 Orchestration: Automation With A Larger Scope 10.4 Kubernetes: An Example Container Orchestration System 10.5 Limits On Kubernetes Scope 10.6 The Kubernetes Cluster Model 10.7 Kubernetes Pods 10.8 Pod Creation, Templates, And Binding Times 10.9 Init Containers 10.10 Kubernetes Terminology: Nodes And Control Plane 10.11 Control Plane Software Components 10.12 Communication Among Control Plane Components 10.13 Worker Node Software Components 10.14 Kubernetes Features 110.15 SummaryPART IV Cloud Programming ParadigmsThe MapReduce Paradigm 11.1 Introduction 11.2 Software In A Cloud Environment 11.3 Cloud-Native Vs. Conventional Software 11.4 Using Data Center Servers For Parallel Processing 11.5 Tradeoffs And Limitations Of The Parallel Approach 11.6 The MapReduce Programming Paradigm 11.7 Mathematical Description Of MapReduce 11.8 Splitting Input 11.9 Parallelism And Data Size 11.10 Data Access and Data Transmission 11.11 Apache Hadoop 11.12 The Two Major Parts Of Hadoop 11.13 Hadoop Hardware Cluster Model 11.14 HDFS Components: DataNodes And A NameNode 11.15 Block Replication And Fault Tolerance 11.16 HDFS And MapReduce 11.17 Using Hadoop With Other File Systems 11.18 Using Hadoop For MapReduce Computations 11.19 Hadoop’s Support For Programming Languages 11.20 Summary Microservices 12.1 Introduction 12.2 Traditional Monolithic Applications 12.3 Monolithic Applications In A Data Center 12.4 The Microservices Approach 12.5 The Advantages Of Microservices 12.6 The Potential Disadvantages of Microservices 12.7 Microservices Granularity 12.8 Communication Protocols Used For Microservices 12.9 Communication Among Microservices 12.10 Using A Service Mesh Proxy 12.11 The Potential For Deadlock 12.12 Microservices Technologies 12.13 Summary Controller-Based Management Software13.1 Introduction 13.2 Traditional Distributed Application Management 13.3 Periodic Monitoring 13.4 Managing Cloud-Native Applications 13.5 Control Loop Concept 13.6 Control Loop Delay, Hysteresis, And Instability 13.7 The Kubernetes Controller Paradigm And Control Loop 13.8 An Event-Driven Implementation Of A Control Loop 13.9 Components Of A Kubernetes Controller 13.10 Custom Resources And Custom Controllers 13.11 Kubernetes Custom Resource Definition (CRD) 13.12 Service Mesh Management Tools 13.13 Reactive Or Dynamic Planning 13.14 A Goal: The Operator Pattern 13.15 Summary Serverless Computing And Event Processing 14.1 Introduction 14.2 Traditional Client-Server Architecture 114.3 Scaling A Traditional Server To Handle Multiple Clients 14.4 Scaling A Server In A Cloud Environment 14.5 The Economics Of Servers In The Cloud 14.6 The Serverless Computing Approach 14.7 Stateless Servers And Containers 14.8 The Architecture Of A Serverless Infrastructure 14.9 An Example Of Serverless Processing 14.10 Potential Disadvantages Of Serverless Computing 14.11 Summary DevOps 15.1 Introduction 15.2 Software Creation And Deployment15.3 The Realistic Software Development Cycle 15.4 Large Software Projects And Teams 15.5 Disadvantages Of Using Multiple Teams 15.6 The DevOps Approach 15.7 Continuous Integration (CI): A Short Change Cycle 15.8 Continuous Delivery (CD): Deploying Versions Rapidly 15.9 Cautious Deployment: Sandbox, Canary, And Blue/Green 15.10 Difficult Aspects Of The DevOps Approach 15.11 Summary PART V Other Aspects Of Cloud Edge Computing And IIoT 16.1 Introduction 16.2 The Latency Disadvantage Of Cloud 16.3 Situations Where Latency Matters 16.4 Industries That Need Low Latency 16.5 Moving Computing To The Edge 16.6 Extending Edge Computing To A Fog Hierarchy 16.7 Caching At Multiple Levels Of A Hierarchy 16.8 An Automotive Example 16.9 Edge Computing And IIoT 16.10 Communication For IIoT 16.11 Decentralization Once Again 16.12 Summary Cloud Security And Privacy17.1 Introduction 17.2 Cloud-Specific Security Problems 17.3 Security In A Traditional Infrastructure 17.4 Why Traditional Methods Do Not Suffice For The Cloud 17.5 The Zero Trust Security Model 17.6 Identity Management 17.7 Privileged Access Management (PAM) 17.8 AI Technologies And Their Effect On Security17.9 Protecting Remote Access 17.10 Privacy In A Cloud Environment 17.11 Back Doors, Side Channels, And Other Concerns 17.12 Cloud Providers As Partners For Security And Privacy 17.13 Summary Controlling The Complexity Of Cloud-Native Systems 18.1 Introduction 18.2 Sources Of Complexity In Cloud Systems 18.3 Inherent Complexity In Large Distributed Systems 18.4 Designing A Flawless Distributed System 18.5 System Modeling 18.6 Mathematical Models 18.7 An Example Graph Model To Help Avoid Deadlock 18.8 A Graph Model For A Startup Sequence 18.9 Modeling Using Mathematics 18.10 An Example TLA+ Specification 18.11 System State And State Changes 18.12 The Form Of A TLA+ Specification 18.13 Symbols In A TLA+ Specification 18.14 State Transitions For The Example 18.15 Conclusions About Temporal Logic Models 18.16 Summary Index

Read more less

Book SynopsisWith this book, any engineer can learn how to approach software efficiency effectively, professionally, and without stress. Author Bartłomiej Płotka provides the tools and knowledge required to make your systems faster and less resource-hungry.

Read more less

Book SynopsisThis practical guide provides over 75 recipes to help you to work with common Azure issues in everyday scenarios. That includes key tasks like setting up permissions for a storage account, working with Cosmos DB APIs, managing Azure role-based access control, governing your Azure subscriptions using Azure Policy, and much more.

Read more less

Book SynopsisWith this practical cookbook, you'll learn hands-on Kubernetes recipes for automating the deployment, scaling, and operations of application containers across clusters of hosts. This fully updated second edition provides a problem-solution-discussion format with easy lookups to help you find the detailed answers you need-fast.

Read more less

Book SynopsisThe essential roadmaps for enterprise cloud adoption As cloud technologies continue to challenge the fundamental understanding of how businesses work, smart companies are moving quickly to adapt to a changing set of rules. Adopting the cloud requires a clear roadmap backed by use cases, grounded in practical real-world experience, to show the routes to successful adoption. The Cloud Adoption Playbook helps business and technology leaders in enterprise organizations sort through the options and make the best choices for accelerating cloud adoption and digital transformation. Written by a team of IBM technical executives with a wealth of real-world client experience, this book cuts through the hype, answers your questions, and helps you tailor your cloud adoption and digital transformation journey to the needs of your organization. This book will help you: Discover how the cloud can fulfill major business needsAdopt a standardized Cloud Adoption Framework and understand the key dimensTable of ContentsForeword xxi Introduction xxiii 1 Business Drivers 1 Addressing Challenges for the Enterprise 1 What Drives a Business to the Cloud? 3 What Do You Gain from Cloud? 5 Implications to the Enterprise 7 Summary 9 2 Framework Overview 11 The Framework 13 Key dimensions of cloud adoption 15 Steps in the adoption journey 16 Ten Key Actions of the Framework 17 1. Involve the right people 17 2. Achieve business and technology alignment 18 3. Take a holistic approach across dimensions 19 4. Assume an outside-in, client-centered approach 20 5. Open the aperture to new possibilities 20 6. Show progress and quick wins 21 7. Collaborate actively 23 8. Balance sustained and disruptive innovation 23 9. Establish success criteria 24 10. Account for a multicloud hybrid model 24 Summary 25 3 Strategy 27 What Does a Cloud Strategy Mean for the CIO? 28 What Do We Really Mean by “Strategy”? 28 Developing a Cloud Strategy 30 What Are the Complete Dimensions of a Cloud Strategy? 31 What Key Considerations Should a Cloud Strategy Address? 34 Service types 35 Deployment models 36 Roles 37 Controls 39 Vendor relationships 41 What Prescriptive Steps Are Required to Develop a Cloud Strategy? 44 Step 1: Define business objectives and constraints 44 Step 2: Complete analysis of your workload portfolio 46 Step 3: Envision your future state and analyze your current state 48 Step 4: Assess your organization’s readiness 50 Step 5: Build an execution framework with defined strategic milestones 52 Step 6: Define proven approaches best suited to your organization 53 Summary 55 4 Culture and Organization 57 What Does the Cloud Mean for Human Resources? 57 What Do We Really Mean by “Culture”? 58 What cultural elements make cloud adoption easier or harder? 59 Talent and flexibility 69 Basic Squad Organization 71 SRE model and squads 73 Tribes and guilds 74 Cultural elements of the squad model 75 Advantages of a COC 77 What are the goals of a COC? 78 Life cycle of a COC 78 When a COC is not the right approach 79 Summary 81 5 Architecture and Technology 83 What Does Cloud Adoption Mean for Enterprise Architects? 83 Role of Enterprise Architects in Cloud Adoption 85 Workload assessment 85 Reference architectures 90 Example Microservices Reference Architecture 94 Style introduction 94 An example reference architecture 95 Reference Implementations 100 DevOps implementation 103 Resiliency patterns 104 Security 104 Management 105 Summary 105 6 Security and Compliance 107 What Does the Cloud Mean to the CISO? 107 Will My People, Processes, Tools, and Approaches Change? 108 How Is Cloud Adoption Affected by Compliance Issues? 111 How Do I Protect Against Data Breaches and Loss? 113 Key management 113 Certificate management 114 Data integrity 115 How Do I Protect Against Networking Vulnerabilities? 116 Cloud-hosted firewalls 116 Intrusion prevention systems 117 Distributed denial of service 117 Microsegmentation 118 What Does a Secure Cloud-Native System Look Like? 118 Identity and Access Management for Applications 120 Authentication 120 Multifactor authentication 121 Directory services 121 Reporting 121 Implementing identity and access for cloud-native applications 122 Secure DevOps 123 Dynamic analysis 124 Static analysis 124 How Do I Get Visibility to My Cloud Applications? 125 Summary 125 7 Emerging Innovation Spaces 127 Innovation as a Business Driver 127 Examples of Innovation 128 Data and analytics 128 Blockchain 130 Containers 132 IoT 134 Cognitive 135 Summary 136 8 Methodology 137 What Does the Cloud Mean for the VP of the VP of Method & and Tools? 137 Introducing the IBM Cloud Garage Method 138 Culture 139 Think 139 Code 140 Deliver 140 Run 141 Manage 141 Learn 142 Connections between Cloud and Agile 142 Lean Startup and Lean Development 144 Why Design Thinking Is the Missing Link 145 Starting a Project with the IBM Cloud Garage Method 146 Wrapping Up the Workshop 150 Our Approach to Project Inception 150 Starting Development 151 The Role of Technology Choices 154 Expanding to Deliver the MVP 154 The Role of Testing in the Squad Model 156 Customer Example 156 Summary 158 9 Service Management and Operations 159 What Does Cloud Mean for the VP of Operations? 159 Operational Transformation 160 Organizational changes 161 Process changes 164 Technology changes 165 Cultural changes 169 New Roles 171 Roles and responsibilities 171 Organizational alignment 173 Operational Readiness 178 Operationalizing the cloud 178 Operationalizing application readiness 180 Incident Management 182 Designing resilient applications for the cloud 182 Taking a fresh approach to incident management 183 Event management 184 Runbooks 185 Log management 187 Dashboards 187 Ticketing 188 Root-Cause Analysis and Postmortems 190 Root-cause analysis 190 Postmortem 192 Deployment, Release Management, and Change Management 194 Deployment 194 Release management 197 Change management 198 Configuration Management 199 Configuration items and relationships 200 CMDB/CMS 200 Discovery 201 Summary 202 10 Governance 203 Cloud Challenges 203 Regulatory requirements 204 Sourcing and standardization issues 204 Threats to security and reputation 205 Aspects of a Governance Model 206 Defining a Governance Model 207 Considerations for your governance model 208 Cloud center of competence 209 Chapters and guilds 211 Summary 213 Conclusion 215 Notes 219 Index 223

Read more less

Book SynopsisDo you need to learn about cloud computing architecture with Microsoft's Azure quickly? Read this book! It gives you just enough info on the big picture and is filled with key terminology so that you can join the discussion on cloud architecture.

Read more less

Book SynopsisThis book is a comprehensive guide covering modern cloud strategies and leadership approaches for building and scaling organizations to maturity on their cloud adoption journey. The book starts by examining technical topics from the perspective of the cloud leader, who is responsible for cloud teams and accountable for cloud products and platforms within their organization. Through a series of practical insights and real-world examples, you will gain a deep understanding of the key considerations for leading a cloud-driven organization. These considerations include understanding the benefits of digital transformation, managing global tech teams, and delivering excellence through platform ownership. Towards the end of the book, you will explore the latest trends and best practices for strategically innovating and scaling your organization in the cloud. With the knowledge gained from this book, you will be able to harness the poTable of Contents​ Part I: Leadership Essentials.- 1. The Art of Cloud Leadership.- 2. Influencing Change and Driving Cloud Adoption.- 3. Managing Teams in the Digital Age.- 4. Supporting Employee Health & Turnover.- Part II: Innovation Strategies.- 5. Adopting a Cloud Platform.- 6. Democratizing Data & Democratizing Analytics.- 7. Applying DevOps.- 8. New Horizons in Distributed Cloud Computing.- 9. Impacts of Modern AI and ML Trends.- Part III: Platform Ownership.- 10. Owning a Portfolio of Agile Cloud Products.- 11.Designing a Secure Data Lake.- 12. Administering and Auditing the Cloud.- 13. Collaborating with Cloud Vendors and Providers.- Part IV: Delivery Excellence.- 14. Creating a Technology Delivery Roadmap.- 15. Cloud Transformation Roles and Responsibilities.- 16. Delivering Strategic Cloud Innovation and Excellence.- 17. Managing Agile Cloud Projects.- 18. Achieving Digital Transformation Success.

Read more less

Book Synopsis

Read more less

Book SynopsisThis book delivers cloud-based applications that are both scalable and reliable, aligning with the evolving needs of the present user base. This innovative approach blends the agility of cloud computing with the efficiency of contemporary DevOps methodologies. The book starts by providing valuable insights into the ever-evolving software landscape of Cloud-native DevOps. It delves into strategies for crafting scalable and dependable applications and illustrates the art of leveraging open-source tools to enhance collaboration. It navigates through the integral role of microservices in contemporary software development and imparts the know-how to integrate them with DevOps practices. The book simplifies container technology, with a focus on Docker and Kubernetes. It further elucidates the process of streamlining software delivery through Continuous Integration and Continuous Deployment (CI/CD). As you progress, you will explore open-source tools, including Argo, Kubeflow Pipelines, and AWS Step Functions. The concluding section covers real-world case studies and best practices for implementing Cloud-native DevOps. The book reviews the core concepts covered throughout and provides an exciting glimpse into the future of Cloud-native DevOps. Upon completing this book, you will be well-versed in the principles and practices of Cloud-native DevOps, understand real-world applications, and recognize the critical importance of security in cloud computing. What You Will LearnCreate cloud-based applications that can scale with the changing needs of today's user baseCombine the flexibility of cloud computing with the efficiency of modern DevOps methodologiesUnderstandthe core concepts and principles of Cloud-native DevOpsUnderstand microservices, containers, and continuous integration and continuous deployment (CI/CD)Who This Book Is ForDevOps engineers, cloud architects, software developers, system administrators, IT managers, team leads, and business decision makers

Read more less

Book SynopsisLearn how cloud computing works, why it matters, and the core ideas behind Azure. Find your way around the Azure portal and keep subscriptions organized. Create virtual machines from scratch and manage computing resources.

Read more less

Book SynopsisTerraform is a provisioning tool for building, changing, and combining cloud infrastructure safely and efficiently. By defining infrastructure as code, Terraform empowers its users to deploy their entire stack to the cloud at the touch of a button. • Cloud architecture with Terraform • Sharing Terraform modules and the private module registry • Running Terraform securely in a multitenant environment • Strategies for performing Blue/Green deployments with Terraform By treating your infrastructure as a codeable application, you can instantaneously create and launch new components and respond efficiently to changes in demand and other use requirements. Terraform in Action introduces the Infrastructure-as-Code model using the amazing Terraform automation tool, teaching readers how to design and manage servers that can be provisioned, shared, changed, tested, and deployed at the touch of a button. Readers will unlock the full potential of Terraform to manage your infrastructure as easily as they manage their codebase. Written for readers experienced with major cloud platforms such as AWS or Google Cloud. Examples are in the Go language.

Read more less

Book Synopsis"Do you want to learn more about software telemetry? Don't look any further, this book is the one you need." - Sander Zegveld Software telemetry is the discipline of tracing, logging, and monitoring infrastructure by observing and analyzing the events generated by the system. In Software Telemetry, you'll master the best practices for operating and updating telemetry systems. This practical guide is filled with techniques you can apply to any organization upgrading and optimizing their telemetry systems, from lean startups to well-established companies. You'll learn troubleshooting techniques to deal with every eventuality, such as building easily-auditable systems, preventing and handling accidental data leaks, and ensuring compliance with standards like GDPR. about the technologyComplex systems can become black boxes. Telemetry provides feedback on what's happening inside. Telemetry systems are built for gathering, transforming, and communicating data on the performance, functionality, processing speeds, errors, and security events of production systems. There are many forms of telemetry systems, from classic centralized logging to cutting-edge distributed tracing that follows data across microservices. But despite their difference in functionality, all telemetry systems share core operational similarities—and best practices for optimizing them to support your business needs. about the bookSoftware Telemetry is a guide to operating the telemetry systems that monitor and report on your applications. It takes a big picture view of telemetry, teaching you to manage your logging, metrics, and events as a complete end-to-end ecosystem. You'll learn the base architecture that underpins any software telemetry system, allowing you to easily integrate new systems into your existing infrastructure, and how these systems work under the hood. Throughout, you'll follow three very different companies to see how telemetry techniques impact a software-producing startup, a large legacy enterprise, and any organization that writes software for internal use. You'll even cover how software telemetry is used by court processes—ensuring that when your first telemetry discovery request arrives, there's no reason to panic! what's inside- Processes for legal compliance- Cleaning up after toxic data spills and leaks- Safely handling toxic telemetry and confidential records- Multi-tenant techniques and transformation processes- Updating metrics aggregation and sampling traces to display accurate data for longer- Revising software telemetry emissions to be easier to parse- Justifying increased spend on telemetry software about the readerFor software developers and infrastructure engineers supporting and building telemetry systems. about the authorJamie Riedesel is a staff engineer at Dropbox. She has over twenty years of experience in IT, working in government, education, legacy companies, and startups. She has specialized in DevOps for the past decade, running distributed systems in public clouds, getting over workplace trauma, and designing software telemetry architectures.Trade Review“The telemetry bible!” Sander Zegveld, Developers.nl “An in-depth guide to operating software telemetry systems.” Sushant Bhadkamkar, Lyft “A must-have tome of knowledge written by one of the leaders in software telemetry.” Andrew Bovill, CACI International Inc “Something for every level of distributed systems, from hardware to networking to operating systems to software.” Lokesh Kumar, Urgently

Read more less

Book Synopsis"This book will teach you everything you need to build and deploy kubernetes native microservices in a super productive fashion: a must!" - Alain Lompo Build fast, efficient Kubernetes-based Java applications using the Quarkus framework, MicroProfile, and Java standards. Most popular Java frameworks, like Spring, were designed long before the advent of Kubernetes and cloud-native systems. A new generation of tools, including Quarkus and MicroProfile have been cloud-native and Kubernetes-aware from the beginning. Kubernetes Native Microservices: With Quarkus and MicroProfile teaches you how to create efficient enterprise Java applications that are easy to deploy, maintain, and expand. In Kubernetes Native Microservices: With Quarkus and MicroProfile you'll learn how to: Deploy enterprise Java applications on KubernetesDevelop applications using the Quarkus runtime frameworkCompile natively using GraalVM for blazing speedCreate efficient microservices applicationsTake advantage of MicroProfile specifications about the technologyModern enterprise Java applications have embraced microservices, containers, Kubernetes, and a cloud-native approach. The Quarkus framework, developed at Red Hat, is designed for this deployment model, making cloud-native application development in Java much easier than it is on Spring or other older platforms. Quarkus applications compiled natively to GraalVM can deliver extremely fast runtimes, potentially improving performance by 100x or more. about the bookKubernetes Native Microservices: With Quarkus and MicroProfile introduces a modern approach to enterprise Java development using new tools designed for cloud-native applications. This book begins by exploring the impact Kubernetes and cloud systems have on your application design. Then, it quickly guides you through setting up an application using MicroProfile APIs, Kubernetes, and Quarkus. Using carefully selected examples and crystal-clear explanations, it guides you step by step from design to deployment. Written by veteran Java developers John Clingan and Ken Finnigan, this book oozes with experience and insight. You'll look past the ideal-but-untested advice you find in many books on new technologies and see how Kubernetes-native development with Quarkus and MicroProfile work in the real world. about the readerWritten for intermediate Java developers comfortable with Java EE, Jakarta EE, or Spring. Assumes some prior exposure to Docker and Kubernetes. No experience with Quarkus or MicroProfile required. about the authorJohn Clingan is a senior principal product manager at Red Hat. At Red Hat John works on next generation platforms including Quarkus. He is a co-founder of Eclipse MicroProfile, MicroProfile committer, and MicroProfile co-lead. Ken Finnigan is a senior principal software engineer and Eclipse MicroProfile technical architect at Red Hat. He's the co-founder of Eclipse MicroProfile and a MicroProfile committer.Trade Review"This book will teach you everything you need to build and deploy kubernetes native microservices in a super productive fashion: a must!" Alain Lompo "Shows you how your Java skills can still be valuable in a microservices world." Alessandro Campeis "Does a good job introducing the need for Quarkus, as well as explaining the concepts on which this framework is built upon." Yogesh Shetty "An excellent book to get into running Quarkus-powered microservices, be it standalone or in a Kubernetes cluster." Mladen Knežić "A great introduction to Quarkus: well written, easy to read & follow along with, and lots of great examples showing off all of Quarkus' functionality." Kent R. Spillner "A great introduction to Quarkus and Microprofile that covers the important aspects of microservices. " Andres Sacco

Read more less

Book SynopsisThis book will show you how to build Java-based microservices architecture using the popular Spring Boot framework by evolving a small monolith application to an event-driven architecture composed of several services. This third edition has been updated to cover Spring Boot 3, including its compatibility with Java 17 and Jakarta EE 10, and employs an incremental approach to teach the structure of microservices, test-driven development, and common patterns in distributed systems such as service discovery, load balancing, routing, centralized logs, per-environment configuration, and containerization. Authors Moisés Macero and Tarun Telang get the ball rolling by introducing you to the fundamentals of microservices and Spring Boot before walking you through the development of a basic Spring Boot application. You'll then see how to build a front end using React, and learn how to use the data layer to read and write data from and to other systems via Spring Boot and its access to Spring DTable of Contents

Read more less

Book SynopsisPublisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.This effective study guide provides 100% coverage of every topic on the challenging CCSK exam from the Cloud Security AllianceThis highly effective self-study guide covers all domains of the challenging Certificate of Cloud Security Knowledge v4 exam. Written by a cloud security trainer and consultant in collaboration with the Cloud Security Alliance, CCSK Certificate of Cloud Security Knowledge All-in-One Exam Guide offers clear explanations, real-world examples, and practice questions that match the content and format of those on the actual exam. To aid in retention, each chapter includes exam tips that highlight key information, a review that serves as a quick recap of salient points, and practice questions tTable of ContentsChapter 1: Cloud Computing Concepts and ArchitecturesChapter 2: Governance and Enterprise Risk ManagementChapter 3: Legal Issues, Contracts, and Electronic DiscoveryChapter 4: Compliance and Audit ManagementChapter 5: Information GovernanceChapter 6: Management Plan E and Business ContinuityChapter 7: Infrastructure SecurityChapter 8: Virtualization and ContainersChapter 9: Incident ResponseChapter 10: Application SecurityChapter 11: Data Security and EncryptionChapter 12: Identity, Entitlement, and Access ManagementChapter 13: Security as a ServiceChapter 14: Related TechnologiesChapter 15: ENISA Cloud Computing: Benefits, Risks and Recommendations for Information SecurityAppendix A: Cloud Security LexiconAppendix B: Cloud Security Standards and CertificationsAppendix C: Sample Cloud Policy

Read more less

Book SynopsisAvinash Shukla (CCIE No. 28418), Senior Leader in Cisco's US Customer Experience (CX) Organization, has 14 years of experience in Cisco CX roles spanning Professional and Technical Services, and extensive expertise in collaboration and data center technologies. He now leads a team of engineers working on Cisco Data Center Technology (Cisco Unified Computing Systems, Hyperconverged Infrastructure, Virtualization, and data center automation). He holds a B.Tech in ECE from IIIT, Hyderabad and has won numerous Cisco awards for customer focus, and has delivered many technical trainings for Cisco partners and customers.   Jalpa Patel (CCIE No. 42465) is a multidisciplinary technologist and a passionate leader with a strong track record of successful engineering executions and game-changing business achievements defining, building, and growing new products. Her domain knowledge of Data Center hardware infrastructure is focused on ComputeTable of Contents Introduction xxiii Part 1 Cisco Data Center Networking and Infrastructure Chapter 1 Cisco Data Center Orchestration 1 IT Challenges and Data Center Solutions 2 Cisco Nexus Dashboard 4 Cisco Nexus Dashboard Orchestrator 14 Cisco Nexus Dashboard Fabric Controller 25 Third-party Applications and Cloud-based Services 34 Summary 39 References/Additional Reading 40 Chapter 2 Cisco Data Center Analytics and Insights 41 Cisco Nexus Dashboard Insights 41 Cisco Nexus Dashboard Data Broker 68 Cisco Meraki MX 74 Summary 79 References/Additional Reading 79 Chapter 3 Cisco Data Center Solutions for Hybrid Cloud 81 Cisco Cloud Application Centric Infrastructure (Cisco Cloud ACI) 82 Cisco UCS Director 92 Cisco Workload Optimization Manager 103 Cisco Hyperflex -- Intersight 116 Summary 127 References/Additional Reading 127 Part 2 Cisco Applications and Workload Management Chapter 4 Application, Analytics, and Workload Performance Management with AppDynamics 129 What Is AppDynamics? 129 AppDynamics Concepts 130 Deployment Planning Guide 135 Application Monitoring 142 Integration with Other AppDynamics Modules 146 Application Security Monitoring 148 End User Monitoring 154 Database Visibility 169 Analytics 178 Monitoring Cloud Applications 180 Cloud Monitoring with AppDynamics Cloud 196 Cloud Infrastructure Monitoring 197 Summary 198 References/Additional Reading 199 Chapter 5 Management 201 IT Challenges and Workload Management Solutions 202 Cisco Intersight Workload Optimizer 204 Understanding Intersight Workload Optimizer Supply Chain 212 Cisco Container Platform 215 Cisco Intersight Kubernetes Service 228 Summary 238 References/Additional Reading 238 Chapter 6 Cisco Cloud Webex Application 239 Cisco Webex Features 239 Cisco Webex Cloud Service Architecture 268 Summary 286 References/Additional Reading 286 Chapter 7 Internet of Things (IoT) 287 How Do OT and IT Differ? 288 Cisco Kinetic Platform 289 Introduction to Cisco IoT 297 Edge Device Manager 298 Edge Intelligence 305 Licensing 311 Summary 311 Part 3 Cisco Cloud Security Chapter 8 Cisco Cloud Security 313 Shadow IT Challenge 313 Cisco Cloudlock 314 Cisco Umbrella 328 Cisco Secure Cloud Analytics 337 Cisco Duo Security 348 Summary 360 9780137690121, TOC, 1/25/2023

Read more less

Book SynopsisWith this updated edition, you'll learn how to build, deploy, and host a modern, multi-tiered application on OpenShift. Through the course of the book, you'll learn how to use OpenShift and the Quarkus Java Framework to develop and deploy applications using proven enterprise technologies.

Read more less

Book SynopsisWith this practical book, you'll learn how to adopt a holistic security and observability strategy for building and securing cloud native applications running on Kubernetes.

Read more less

Book SynopsisAuthor Rukmani Gopalan, a product management leader and data enthusiast, guides data architects and engineers through the major aspects of working with a cloud data lake, from design considerations and best practices to data format optimizations, performance optimization, cost management, and governance.

Read more less

Book SynopsisRevised to cover all the latest Kubernetes features, new tooling, and deprecations, this book distills decades of experience from companies that are successfully running Kubernetes in production and provide concrete code examples to back the methods presented in this book.

Read more less

Book SynopsisExplore the latest and most comprehensive guide to securing your Cloud Native technology stack Cloud Native Security delivers a detailed study into minimizing the attack surfaces found on today's Cloud Native infrastructure. Throughout the work hands-on examples walk through mitigating threats and the areas of concern that need to be addressed. The book contains the information that professionals need in order to build a diverse mix of the niche knowledge required to harden Cloud Native estates. The book begins with more accessible content about understanding Linux containers and container runtime protection before moving on to more advanced subject matter like advanced attacks on Kubernetes. You'll also learn about: Installing and configuring multiple types of DevSecOps tooling in CI/CD pipelinesBuilding a forensic logging system that can provide exceptional levels of detail, suited to busy containerized estatesSecuring the most popular container orchestrator, KubernetesHardening cTable of ContentsIntroduction xix Part I Container and Orchestrator Security 1 Chapter 1 What is a Container? 3 Common Misconceptions 4 Container Components 6 Kernel Capabilities 7 Other Containers 13 Summary 14 Chapter 2 Rootless Runtimes 17 Docker Rootless Mode 18 Installing Rootless Mode 20 Running Rootless Podman 25 Setting Up Podman 26 Summary 31 Chapter 3 Container Runtime Protection 33 Running Falco 34 Configuring Rules 38 Changing Rules 39 Macros 41 Lists 41 Getting Your Priorities Right 41 Tagging Rulesets 42 Outputting Alerts 42 Summary 43 Chapter 4 Forensic Logging 45 Things to Consider 46 Salient Files 47 Breaking the Rules 49 Key Commands 52 The Rules 52 Parsing Rules 54 Monitoring 58 Ordering and Performance 62 Summary 63 Chapter 5 Kubernetes Vulnerabilities 65 Mini Kubernetes 66 Options for Using kube-hunter 68 Deployment Methods 68 Scanning Approaches 69 Hunting Modes 69 Container Deployment 70 Inside Cluster Tests 71 Minikube vs. kube-hunter 74 Getting a List of Tests 76 Summary 77 Chapter 6 Container Image CVEs 79 Understanding CVEs 80 Trivy 82 Getting Started 83 Exploring Anchore 88 Clair 96 Secure Registries 97 Summary 101 Part II DevSecOps Tooling 103 Chapter 7 Baseline Scanning (or, Zap Your Apps) 105 Where to Find ZAP 106 Baseline Scanning 107 Scanning Nmap’s Host 113 Adding Regular Expressions 114 Summary 116 Chapter 8 Codifying Security 117 Security Tooling 117 Installation 118 Simple Tests 122 Example Attack Files 124 Summary 127 Chapter 9 Kubernetes Compliance 129 Mini Kubernetes 130 Using kube-bench 133 Troubleshooting 138 Automation 139 Summary 140 Chapter 10 Securing Your Git Repositories 141 Things to Consider 142 Installing and Running Gitleaks 144 Installing and Running GitRob 149 Summary 151 Chapter 11 Automated Host Security 153 Machine Images 155 Idempotency 156 Secure Shell Example 158 Kernel Changes 162 Summary 163 Chapter 12 Server Scanning With Nikto 165 Things to Consider 165 Installation 166 Scanning a Second Host 170 Running Options 171 Command-Line Options 172 Evasion Techniques 172 The Main Nikto Configuration File 175 Summary 176 Part III Cloud Security 177 Chapter 13 Monitoring Cloud Operations 179 Host Dashboarding with NetData 180 Installing Netdata 180 Host Installation 180 Container Installation 183 Collectors 186 Uninstalling Host Packages 186 Cloud Platform Interrogation with Komiser 186 Installation Options 190 Summary 191 Chapter 14 Cloud Guardianship 193 Installing Cloud Custodian 193 Wrapper Installation 194 Python Installation 195 EC2 Interaction 196 More Complex Policies 201 IAM Policies 202 S3 Data at Rest 202 Generating Alerts 203 Summary 205 Chapter 15 Cloud Auditing 207 Runtime, Host, and Cloud Testing with Lunar 207 Installing to a Bash Default Shell 209 Execution 209 Cloud Auditing Against Benchmarks 213 AWS Auditing with Cloud Reports 215 Generating Reports 217 EC2 Auditing 219 CIS Benchmarks and AWS Auditing with Prowler 220 Summary 223 Chapter 16 AWS Cloud Storage 225 Buckets 226 Native Security Settings 229 Automated S3 Attacks 231 Storage Hunting 234 Summary 236 Part IV Advanced Kubernetes and Runtime Security 239 Chapter 17 Kubernetes External Attacks 241 The Kubernetes Network Footprint 242 Attacking the API Server 243 API Server Information Discovery 243 Avoiding API Server Information Disclosure 244 Exploiting Misconfigured API Servers 245 Preventing Unauthenticated Access to the API Server 246 Attacking etcd 246 etcd Information Discovery 246 Exploiting Misconfigured etcd Servers 246 Preventing Unauthorized etcd Access 247 Attacking the Kubelet 248 Kubelet Information Discovery 248 Exploiting Misconfigured Kubelets 249 Preventing Unauthenticated Kubelet Access 250 Summary 250 Chapter 18 Kubernetes Authorization with RBAC 251 Kubernetes Authorization Mechanisms 251 RBAC Overview 252 RBAC Gotchas 253 Avoid the cluster-admin Role 253 Built-In Users and Groups Can Be Dangerous 254 Read-Only Can Be Dangerous 254 Create Pod is Dangerous 256 Kubernetes Rights Can Be Transient 257 Other Dangerous Objects 258 Auditing RBAC 258 Using kubectl 258 Additional Tooling 259 Rakkess 259 kubectl-who-can 261 Rback 261 Summary 262 Chapter 19 Network Hardening 265 Container Network Overview 265 Node IP Addresses 266 Pod IP Addresses 266 Service IP Addresses 267 Restricting Traffic in Kubernetes Clusters 267 Setting Up a Cluster with Network Policies 268 Getting Started 268 Allowing Access 271 Egress Restrictions 273 Network Policy Restrictions 274 CNI Network Policy Extensions 275 Cilium 275 Calico 276 Summary 278 Chapter 20 Workload Hardening 279 Using Security Context in Manifests 279 General Approach 280 allowPrivilegeEscalation 280 Capabilities 281 privileged 283 readOnlyRootFilesystem 283 seccompProfile 283 Mandatory Workload Security 285 Pod Security Standards 285 PodSecurityPolicy 286 Setting Up PSPs 286 Setting Up PSPs 288 PSPs and RBAC 289 PSP Alternatives 291 Open Policy Agent 292 Installation 292 Enforcement Actions 295 Kyverno 295 Installation 296 Operation 296 Summary 298 Index 299

Read more less

Book SynopsisExamine the building blocks that make any good MVC framework using PHP 8. This book exposes all the considerations that many developers take for granted when using a popular framework, and teaches you how to make this MVC framework your own.You'll quickly get started writing your first bit of framework code,then, you build a variety of examples using aspects of an MVC framework, including a router, a template engine, a database library, a persistence engine (ORM), and a testing framework.In the next section, you'll implement sessions, caches, file systems, queues, logging, and mail. You'll wrap up by building a larger scale sample web application: a sales website for a company that sells rockets. Along the way, this book lays bare all the secret parts of MVC to take with you to apply to your own PHP-based MVC projects.What You Will LearnBuild PHP-based web applications using the model view controller (MVC) architecture Write your first bit of framework codeCompare the code Table of Contents1: Ways to Use PHP2: Writing Our First Bit of Code3: Building a Router4: Building a Template Engine5: Building a Validator6: Building a Database Library7: Building an Object-Relational Mapper Library8: Building a Dependency Injection Container9: Testing Our Framework10: Config, Cache, Sessions, Filesystems11: Queues, Logging, Emails12: Publishing Your CodeAfterword: Wrapping Up

Read more less

Book SynopsisOverhaul your debugging techniques and master the theory and tools needed to debug and troubleshoot cloud applications in production environments. This book teaches debugging skills that universities often avoid, but that typically consume as much as 60% of our time as developers. The book covers the use of debugger features such as tracepoints, object marking, watch renderers, and more. Author Shai Almog presents a scientific approach to debugging that is grounded in theory while being practical enough to help you to chase stubborn bugs through the maze of a Kubernetes deployment. Practical Debugging at Scale assumes a polyglot environment as is common for most enterprises, but focuses on JVM environments. Most of the tooling and techniques described are applicable to Python, Node, and other platforms, as well as to Java and other JVM languages. The book specifically covers debugging in production, an often-neglected discipline but an all too painful reaTable of ContentsIntroductionPart I. Basics1. Know Your Debugger2. The Checklist3. The Auxiliary Tools4. Logging, Testing, and Fail Fast5. Time Travel DebuggingPart II. The Modern Production Environment6. Debugging Kubernetes7. Serverless Debugging8. Fullstack Debugging9. Observability and Monitoring10. Developer ObservabilityPart III. In Practice11. Tools of Learning12. Performance and Memory13. Security14. Bug Strategies

Read more less

Book SynopsisThis practical hands-on guide examines effective architecture, design, and cultural patterns to help you transform your organization into a cloud native enterprisewhether you're moving from older architectures or creating new systems from scratch..

Read more less

Book SynopsisThis practical guide provides over 70 self-contained recipes to help you creatively solve common AWS challenges you'll encounter on your cloud journey. If you're comfortable with rudimentary scripting and general cloud concepts, this cookbook provides what you need to address foundational tasks and create high-level capabilities.

Read more less