Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Architekturreview für Serverless-Anwendungen (I...

Dennis Kieselhorst
December 09, 2020
Technology
0
68

Architekturreview für Serverless-Anwendungen (IT-Tage)

Im Rahmen der Anwendungsentwicklung und auch beim späteren Betrieb kommt hin und wieder die Frage auf "mache ich das eigentlich richtig"? Insbesondere bei Serverless-Anwendungen kann man noch nicht auf langjährige Erfahrung vertrauen. Um festzustellen, ob Best Practices befolgt werden und ggf. Risiken in der Architektur bestehen, bietet sich ein Architekturreview an.

Dieser Vortrag nutzt das AWS Well-Architected Framework mit der Well-Architected Serverless Lens, um Architekturempfehlungen aufzuzeigen und mit dem AWS Well-Architected Tool das Anwendungsportfolio messen und kontinuierlich verbessern zu können. Im einzelnen werden die Themenbereiche Operational Excellence, Security, Reliability, Performance Efficiency und Cost Optimization behandelt.

https://aws.amazon.com/well-architected/
https://docs.aws.amazon.com/wellarchitected/latest/serverless-applications-lens/

Dennis Kieselhorst

December 09, 2020
Tweet

More Decks by Dennis Kieselhorst

See All by Dennis Kieselhorst
Java 8 auf >=17 Upgrade - Lessons Learned und Best Practices
deki
0
23
Modernize APIs to run serverless using Apache CXF
deki
0
41
Serverless Java with Spring
deki
0
210
Effectively Using Java on Serverless and Containers
deki
0
42
Elevating workflows with AWS Step Functions and generative AI
deki
0
60
From self-managed to fully-managed: Migrate your Spring Cloud microservices to AWS
deki
0
20
From Serverful to Serverless Java (JFokus 2024)
deki
0
99
Performance-Tweaks für Java-Serverless-Anwendungen (IT-Tage)
deki
0
49
Getting started with Event-Driven Architectures in 2023 (Øredev)
deki
0
24

Other Decks in Technology

See All in Technology
ドメインの本質を掴む / Get the essence of the domain
sinsoku
2
160
10XにおけるData Contractの導入について: Data Contract事例共有会
10xinc
6
650
なぜ今 AI Agent なのか _近藤憲児
kenjikondobai
4
1.4k
rootlessコンテナのすゝめ - 研究室サーバーでもできる安全なコンテナ管理
kitsuya0828
3
390
New Relicを活用したSREの最初のステップ / NRUG OKINAWA VOL.3
isaoshimizu
3
620
TanStack Routerに移行するのかい しないのかい、どっちなんだい! / Are you going to migrate to TanStack Router or not? Which one is it?
kaminashi
0
600
AI前提のサービス運用ってなんだろう?
ryuichi1208
8
1.4k
Engineer Career Talk
lycorp_recruit_jp
0
180
テストコード品質を高めるためにMutation Testingライブラリ・Strykerを実戦導入してみた話
ysknsid25
7
2.7k
サイバーセキュリティと認知バイアス:対策の隙を埋める心理学的アプローチ
shumei_ito
0
390
IBC 2024 動画技術関連レポート / IBC 2024 Report
cyberagentdevelopers
PRO
1
110
アジャイルチームがらしさを発揮するための目標づくり / Making the goal and enabling the team
kakehashi
3
110

Featured

See All Featured
5 minutes of I Can Smell Your CMS
philhawksworth
202
19k
What's in a price? How to price your products and services
michaelherold
243
12k
How To Stay Up To Date on Web Technology
chriscoyier
788
250k
How GitHub (no longer) Works
holman
310
140k
GitHub's CSS Performance
jonrohan
1030
460k
The Power of CSS Pseudo Elements
geoffreycrofte
73
5.3k
Six Lessons from altMBA
skipperchong
27
3.5k
The Art of Programming - Codeland 2020
erikaheidi
52
13k
Designing for humans not robots
tammielis
250
25k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.3k
Rails Girls Zürich Keynote
gr2m
94
13k
Building Flexible Design Systems
yeseniaperezcruz
327
38k

Transcript

  1. © 2020, Amazon Web Services, Inc. or its Affiliates. Dennis

    Kieselhorst Sr. Solutions Architect Architekturreview für Serverless-Anwendungen

  2. © 2020, Amazon Web Services, Inc. or its Affiliates. When

    you look at the systems you are building, can you answer the question: “Are you Well-Architected?”

  3. © 2020, Amazon Web Services, Inc. or its Affiliates. Why

    does Well-Architected exist? Learn Measure Improve To drive better outcomes for customers who build and operate workloads in the cloud

  4. © 2020, Amazon Web Services, Inc. or its Affiliates. What

    is the AWS Well-Architected Framework? Design principles Questions Pillars

  5. © 2020, Amazon Web Services, Inc. or its Affiliates. Pillars

    of AWS Well-Architected Security Cost Optimization Operational Excellence Performance Efficiency Reliability

  6. © 2020, Amazon Web Services, Inc. or its Affiliates. You

    are not going to judge my work! It will make you slow! Here comes the audit! It blocked my project! Not an audit!

  7. © 2020, Amazon Web Services, Inc. or its Affiliates. The

    truth is … It is an objective, constructive conversation You will learn AWS best practices You can leverage it to make informed architectural decisions You will lower or mitigate risks You will build and deploy faster

  8. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

  9. © 2020, Amazon Web Services, Inc. or its Affiliates. No

    server is easier to manage than "no server.” Werner Vogels—Amazon CTO

  10. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

    removes the undifferentiated heavy lifting No infrastructure provisioning, no management Automatic scaling Pay for value Highly available and secure

  11. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

    is there for you, at every layer Compute & access Storage Messaging & streaming

  12. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

    is there for you, at every layer User & identity management Delivery at the edge Analytics

  13. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

    is there for you, at every layer Provisioning & monitoring Development tools

  14. © 2020, Amazon Web Services, Inc. or its Affiliates. Serverless

    Application Lens - Whitepaper Defines all areas of Serverless Applications Defines common Serverless Use Cases Defines the Best Practices in regards to the Well Architected Pillars https://d1.awsstatic.com/whitepapers/architectu re/AWS-Serverless-Applications-Lens.pdf

  15. © 2020, Amazon Web Services, Inc. or its Affiliates. Well-Architected

    Tool https://aws.amazon.com/well-architected-tool/

  16. © 2020, Amazon Web Services, Inc. or its Affiliates. Now…

    some best practices by pillar Security Cost Optimization Operational Excellence Performance Efficiency Reliability

  17. © 2020, Amazon Web Services, Inc. or its Affiliates. Operational

    Excellence best practices Adopt a modern way to build applications infrastructure as code separate environments / accounts AWSTemplateFormatVersion: '2010-09-09’ Transform: AWS::Serverless-2016-10-31 Resources: GetProductsFunction: Type: AWS::Serverless::Function Properties: Handler: index.getProducts Runtime: nodejs10.x CodeUri: src/ Policies: - DynamoDBReadPolicy: TableName: !Ref ProductTable Events: GetResource: Type: Api Properties: Path: /products/{productId} Method: get ProductTable: Type: AWS::Serverless::SimpleTable Amazon CloudWatch Logs & metrics AWS X-Ray

  18. © 2020, Amazon Web Services, Inc. or its Affiliates. Operational

    Excellence best practices Adopt a modern way to build applications infrastructure as code separate environments / accounts Amazon CloudWatch Logs & metrics AWS X-Ray

  19. © 2020, Amazon Web Services, Inc. or its Affiliates. Operational

    Excellence best practices Observability is the way to govern the serverless application’s health • Monitor CloudWatch Amazon CloudWatch Logs and Metrics

  20. © 2020, Amazon Web Services, Inc. or its Affiliates. Operational

    Excellence best practices Observability is the way to govern the serverless application’s health • Monitor CloudWatch • Instrument X-Ray Amazon CloudWatch Logs and Metrics AWS X-Ray var AWSXRay = require(‘aws-xray-sdk-core‘); var AWS = AWSXRay.captureAWS(require(‘aws-sdk’)); S3Client = AWS.S3();

  21. © 2020, Amazon Web Services, Inc. or its Affiliates. Operational

    Excellence best practices Observability is the way to govern the serverless application’s health • Monitor CloudWatch • Instrument X-Ray Lambda PowerTools Lambda PowerTools for Java Lambda PowerTools for Python

  22. © 2020, Amazon Web Services, Inc. or its Affiliates. Security

    best practices Control access to your APIs and implement AppSec • Least privilege Cognito or a SAML / JWT identity provider SAM predefined IAM policies temporary credentials public or private API Gateway endpoints Amazon Cognito AWS Secrets Manager + = AWS WAF

  23. © 2020, Amazon Web Services, Inc. or its Affiliates. Reliability

    best practices Protect your resources and build resiliency into your serverless application throttling back-off and retries RDS Proxy long-running transactions AWS Step Functions async messaging • Decouple • Amazon SQS • Amazon SNS Amazon EventBridge to route events reliably Amazon API Gateway

  24. © 2020, Amazon Web Services, Inc. or its Affiliates. Performance

    Effiency best practices Optimize your serverless application performance services scaling behavior • Optimize application code. Yes! Do it again! on-demand capacity caching services integrations Lambda provisioned concurrency Lambda Power Tuning to tune power

  25. © 2020, Amazon Web Services, Inc. or its Affiliates. Wait,

    what’s Lambda Power Tuning? Visualize and fine-tune the memory / power configuration of Lambda functions CleanUpOnError Lambda Power Tuning

  26. © 2020, Amazon Web Services, Inc. or its Affiliates. Cost

    Optimization best practices Design your application to maximize value • Reduce your Lambda functions code asynchronous design patterns Embedded Metric Format for CloudWatch log-retention policies Lambda Power Tuning

  27. © 2020, Amazon Web Services, Inc. or its Affiliates. Some

    things to remember Make your functions single purpose, concise, short Code is debt; write fewer functions Understand and take advantage of the serverless concurrency model Share nothing; assume no hardware affinity Orchestrate with state machines, not application logic Use events to trigger transactions Leverage managed services when designing for failures and duplicates

  28. © 2020, Amazon Web Services, Inc. or its Affiliates. Review

    Process Identify a significant workload Prepare for review Review architecture Review results and improvement plan Create a plan to fix high risk issues

  29. © 2020, Amazon Web Services, Inc. or its Affiliates. Q&A

  30. © 2020, Amazon Web Services, Inc. or its Affiliates. Well-Architected

    Resources Whitepapers https://aws.amazon.com/well-architected/ • PDF and Kindle available • Framework • Per pillar (operational excellence, reliability, security, performance efficiency, cost optimization) • Lenses (Serverless, HPC, IoT, Machine Learning, Analytics, …) Training https://www.aws.training/Details/Curriculum?id=42037 • Framework • Pillars • Review Process • Tool

  31. © 2020, Amazon Web Services, Inc. or its Affiliates. Thank

    you! Dennis Kieselhorst, Sr. Solutions Architect [email protected] Feedback form: https://amzn.to/35cfKWx