DevSecOps Bootcamp - Week 5 - Lesson 2

Transcript

1. 1 BUILDING RUGGED SOFTWARE YEAR ONE / WEEK FIVE /

   LESSON TWO Copyright © DevSecOps Foundation 2015-2016

2. 2 Copyright © DevSecOps Foundation 2015-2016 • Rugged Software •

   Fault Tolerance/Reliability • AWS Autoscale • AWS Elastic Load Balancer (ELB) • Resilience Testing • Lab 2 • Restacker • AWS Relational Database Service (RDS) • Lab 3 Agenda

3. 3 Copyright © DevSecOps Foundation 2015-2016 • Secure • Confidentiality

   • Integrity • Reliable • Availability • Maintainable • Portable What’s Rugged?

4. 4 Copyright © DevSecOps Foundation 2015-2016 • AWS is unreliable

   • Can your app handle an outage? • Is your app reliable? • Can it withstand an attack? Fault Tolerance/Reliability

5. 5 Copyright © DevSecOps Foundation 2015-2016 • Regions • 10

   regions world wide • Independent • Isolated • Have 3 or more Availability Zones • Availability Zones • Connected through low-latency links Regions & Availability Zones

6. 6 Copyright © DevSecOps Foundation 2015-2016 • Application Availability •

   Ability to scale up or down based on set conditions • Only works if you design your application to be “cloudy” • Can cause issues when performing load testing Autoscale

7. 7 Copyright © DevSecOps Foundation 2015-2016 Elastic Load Balancers •

   Application Fault Tolerance • Distribute load across multiple instances • Can add security groups to lock application access down at the network level • Many SSL options • Can be abused through the use of TCP pass-through

8. 8 Copyright © DevSecOps Foundation 2015-2016 • Works the OPs

   muscle • Great way to find problems in operational processes • Keeps DevSecOps on their toes • Find new failure modes • Netflix Chaos Monkey Resilience Testing (netflix.com, 2014)

9. 9 Copyright © DevSecOps Foundation 2015-2016 Time to update your

   application to be more resilient https://github.com/devsecops/bootcamp/blob/master/Week-5/labs/LAB- 2.md Lab 2

10. 10 Copyright © DevSecOps Foundation 2015-2016 • Command line frontend

    to AWS CloudFormation • Restacker Configuration files are written in YAML • Files can be checked into version control • Can list, describe, deploy and remove CloudFormationstacks • restacker console will launch AWS CloudFormationweb console Introducing Restacker

11. 11 Copyright © DevSecOps Foundation 2015-2016 • Where does your

    data go when your instance dies? • AWS RDS is a fully managed database solution • Supports MySQL, MariaDB, Oracle, Aurora, Postgres, Microsoft SQL Persistent Data Using RDS

12. 12 Copyright © DevSecOps Foundation 2015-2016 • Deploy your stack

    using restacker • Configure app to use RDS • Integrate Logging Lab 3