Upgrade to Pro — share decks privately, control downloads, hide ads and more …

serverless IoT-applications

Niko Will
September 21, 2017
Programming
0
130

serverless IoT-applications

Softwareentwickler sehen sich heutzutage mit einer Vielzahl von Anforderungen konfrontiert. Bereits das Verstehen der Domäne für die Implementierung der Geschäftslogik kann beliebig komplex werden. Hinzu kommen nun immer mehr Themen wie Skalierung und Ausfallsicherheit. Ganz zu schweigen von Benutzerauthentifizierung und -autorisierung oder Logging, Monitoring und Betrieb der Anwendung. Im IoT-Umfeld bereiten uns zusätzlich noch die Anbindung von Geräten über unsichere und instabile Verbindungen Kopfzerbrechen.

Andererseits bieten mittlerweile viele der großen Cloud-Plattformen zusätzlich zu Datenbanken und Messaging-Systemen auch ein reiches Portfolio an Diensten, die speziell auf die Bedürfnisse von IoT-Applikationen zugeschnitten sind. In Kombination mit serverlosen Funktionen lassen sich so bereits in einigen Tagen bis wenigen Wochen erste Konzepte praktisch erproben oder sogar komplett umsetzen. Darüber hinaus kann durch den Verzicht auf eigene Backend-Services ein Großteil der typischen Betriebsthemen entfallen.

Dieser Vortrag zeigt am Beispiel von Amazon Web Services (AWS), wie sich Geräte schnell und sicher an eine Cloud-Plattform anbinden lassen. Außerdem lernen die Teilnehmer, wie sie durch Kombination der vorhandenen Dienste und einiger weniger serverloser Funktionen zu einer produktiv einsetzbaren IoT-Applikation kommen.

Niko Will

September 21, 2017
Tweet

More Decks by Niko Will

See All by Niko Will
Serverlose IoT-Applikationen
niko_will
0
140
Serverlose IoT-Applikationen
niko_will
1
69
akka cluster management and split brain resolution
niko_will
0
270
serverless IoT-applications
niko_will
0
370
akka cluster management and split brain resolution
niko_will
1
440

Other Decks in Programming

See All in Programming
"config" ってなんだ? / What is "config"?
okashoi
0
240
Front-end application development, Symfony-style(s)
dunglas
2
1.9k
デフォルトにして至高、RubyMineの大好きな所
ruzia
0
180
PHPの次期バージョンはこの時期どうなっているのか - Internalsの開発体制について - PHPカンファレンス小田原
youkidearitai
PRO
1
190
Hanami and htmx
bkuhlmann
0
200
Anthropic Cookbook のおすすめレシピ
schroneko
6
670
Changed Rules: Architectures with Lightweight Stores
manfredsteyer
PRO
0
240
SwiftUIで使いやすいToastの作り方 / How to build a Toast system which is easy to use in SwiftUI
lovee
3
130
⼤規模⾔語モデルの拡張(RAG)が 終わったかも知れない件について
nearme_tech
22
15k
[技育CAMPアカデミア]アイディアを形に!【超入門】スマホアプリ開発〜リリースまでの流れをご紹介
teamlab
PRO
0
350
Rails と人魚の話/rails-and-mermaid
sanfrecce_osaka
0
100
使ってみよう Azure AI Document Intelligence
kosmosebi
2
270

Featured

See All Featured
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
16
1.4k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
A better future with KSS
kneath
231
16k
Documentation Writing (for coders)
carmenintech
59
3.9k
Thoughts on Productivity
jonyablonski
57
3.8k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
34
8.9k
Making the Leap to Tech Lead
cromwellryan
123
8.5k
Optimizing for Happiness
mojombo
370
69k
Building a Modern Day 
E-commerce SEO Strategy
aleyda
16
6.4k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
243
20k
The Art of Programming - Codeland 2020
erikaheidi
41
12k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k

Transcript

  1. serverless IoT-Applications BED-Con 2017 Niko Will, innoQ @n1ko_w1ll

  2. @n1ko_w1ll about me > Developer since 2005 > living in

    a Smarthome since 2012 > became an IoT Geek > before: worked on Bosch IoT Suite for 2 years > now: Consultant at innoQ > follow me on Twitter: @n1ko_w1ll

  3. @n1ko_w1ll agenda > microservices approach > AWS, Lambda & IoT

    > use-cases > JITR | on-boarding | pairing > list / search things | command & control | telemetry > connected / disconnected / LWT > encrypted file transfer | firmware update

  4. @n1ko_w1ll microservice approach

  5. @n1ko_w1ll microservices approach > fault tolerance > scalability > agility

    > visibility > security > cost-efficiency

  6. @n1ko_w1ll microservices approach thing mobile client browser IoT-application API Gateway

    MQTT Broker database Users Devices Policies Rules Analytics …

  7. @n1ko_w1ll microservices approach API Gateway MQTT Broker database Devices …

    microservices Devices Devices … … Message Broker Service Discovery IAM Keystore API Gateway API Gateway MQTT Broker MQTT Broker Service Discovery Service Discovery Message Broker Message Broker IAM IAM Keystore HSM docker / kubernetes

  8. @n1ko_w1ll microservices approach Devices microservices docker / kubernetes Alert Manager

    prometheus Grafana fluentd Kibana elasticsearch operations (DevOps) logging monitoring alerting

  9. @n1ko_w1ll source: https://www.memecenter.com/fun/5802169/what-could-possibly-go-wrong

  10. @n1ko_w1ll AWS

  11. @n1ko_w1ll AWS Amazon S3 Amazon Elasticsearch Amazon Kinesis Amazon SNS

    Amazon SQS Amazon DynamoDB Amazon Cognito Amazon API Gateway AWS Lambda Amazon CloudWatch AWS IoT State Fast Data

  12. @n1ko_w1ll AWS Lambda

  13. @n1ko_w1ll AWS Lambda > Functions-as-a-Service (FaaS) > serverless > „small“

    functions > stateless compute containers > event-driven

  14. @n1ko_w1ll AWS Lambda > advantages > scalable > pay-per-execution /

    pay-as-you-go > no upfront capacity planning > significantly reduce operational cost

  15. @n1ko_w1ll AWS Lambda > disadvantages > vendor lock-in > startup

    latency > testing > debugging > execution duration

  16. @n1ko_w1ll

  17. @n1ko_w1ll AWS IoT

  18. @n1ko_w1ll AWS IoT > managed service > message broker >

    rules engine > shadows > registry > security

  19. @n1ko_w1ll message broker > topic based > publish / subscribe

    > topic wildcards > protocols > MQTT > MQTT + WebSockets > HTTP $aws/events/presence/connected/clientId $aws/events/presence/disconnected/clientId $aws/things/thingName/shadow/update $aws/things/thingName/shadow/update/delta

  20. @n1ko_w1ll rules engine > SQL-like syntax > augument or filter

    data > rule actions > state stores > fast data pipelines > CloudWatch > Lambda > republish SELECT *, newuuid() AS requestId, clientId() AS clientId, timestamp() AS timestamp, topic(2) AS deviceId, topic(4) AS sensorId FROM 'device/+/sensor/+/v1' WHERE temperature > 50 AND color <> 'red'

  21. @n1ko_w1ll shadows > JSON document > current state of thing

    > connection independent > supports client tokens > supports versioning > MQTT topics > RESTful API { "state" : { "desired" : { "color" : "RED" }, "reported" : { "color" : „GREEN" } }, "metadata" : { "desired" : { "color" : { "timestamp" : 12345 } }, "reported" : { "color" : { "timestamp" : 12345 } } }, "version" : 10, "clientToken" : "UniqueClientToken", "timestamp": 123456789 }

  22. @n1ko_w1ll registry > manage your things > physical device or

    sensor > logical entity > attributes > thing types { "version": 3, "thingName": "MyLightBulb", "defaultClientId": "MyLightBulb", "thingTypeName": "LightBulb", "attributes": { "model": "123", "wattage": "75" } }

  23. @n1ko_w1ll security > mutual authentication with X509 certificates + TLS

    1.2 > or SigV4 for HTTPS and WebSockets > bring your own certificate > JITR > Atmel ECC508 > policy based access with dynamic values > role based rules action execution

  24. @n1ko_w1ll use-cases

  25. @n1ko_w1ll just in time registration (JITR) thing AWS IoT Device

    Registry $aws/events/certificates/ registered/caCertificateID IoT Policy IoT Rule AWS Lambda

  26. @n1ko_w1ll on-boarding thing AWS IoT AWS Lambda custom/clientId/register IoT Rule

    IoT Policy Device Shadow Amazon DynamoDB

  27. @n1ko_w1ll thing IoT Policy Device Shadow mobile client AWS Lambda

    Amazon Cognito Amazon API Gateway AWS IoT thing pairing exchange OAuth token for AWS credentials

  28. @n1ko_w1ll list / search things things mobile client AWS Lambda

    Amazon Cognito Amazon API Gateway AWS IoT Amazon DynamoDB

  29. @n1ko_w1ll command & control thing mobile client AWS Lambda Amazon

    Cognito Amazon API Gateway AWS IoT Device Shadow

  30. @n1ko_w1ll command & control thing mobile client Amazon Cognito AWS

    IoT Device Shadow

  31. @n1ko_w1ll command & control thing Amazon Cognito AWS IoT Amazon

    Echo AWS Lambda Alexa Skill Device Shadow

  32. @n1ko_w1ll telemetry AWS IoT things Amazon Kinesis Amazon DynamoDB telemetry

    rule telemetry topic Amazon EMR

  33. @n1ko_w1ll { "state": { "reported": { "connected": true } }

    } { "state": { "reported": { "connected": true } } } connected / disconnected / LWT Device Shadow thing AWS IoT shadow update topic

  34. @n1ko_w1ll { "state": { "reported": { "connected": true } }

    } { "state": { "reported": { "connected": false } } } { "state": { "reported": { "connected": false } } } connected / disconnected / LWT Device Shadow thing AWS IoT shadow update topic

  35. @n1ko_w1ll { "state": { "reported": { "connected": true } }

    } { "state": { "reported": { "connected": false } } } connected / disconnected / LWT Device Shadow thing AWS IoT LWT rule custom LWT topic LWT { "state": { "reported": { "connected": false } } } shadow update topic republish

  36. @n1ko_w1ll encrypted file transfer Amazon S3 thing AWS IoT AWS

    Lambda AWS KMS

  37. @n1ko_w1ll firmware update Device Shadow AWS Lambda thing AWS IoT

    Amazon S3 Amazon DynamoDB

  38. @n1ko_w1ll summary > scalable plattform > common IoT use-cases >

    w/o own infrastructure > w/o upfront capacity planning > very secure > very extensible

  39. @n1ko_w1ll Thank you. Questions? Comments @n1ko_w1ll Niko Will [email protected] innoQ

    Deutschland GmbH Krischerstr. 100 40789 Monheim am Rhein Germany Phone: +49 2173 3366-0 innoQ Schweiz GmbH Gewerbestr. 11 CH-6330 Cham Switzerland Phone: +41 41 743 0116 www.innoq.com Ohlauer Straße 43 10999 Berlin Germany Phone: +49 2173 3366-0 Ludwigstr. 180E 63067 Offenbach Germany Phone: +49 2173 3366-0 Kreuzstraße 16
 80331 München Germany Phone: +49 2173 3366-0