DTGOV Case Study
DTGOV is an organization which plans to retain its datacenters solely for its data storage. It is under the plan to update the Active Directory and Data Storage Infrastructure into the cloud. The organization also planned to move all its Web Services into the Cloud in order to provide an increased level of HA (High Availability) as well as a better degree of flexibility while supplying data to their customers and employees. It would demand to change the current web software architecture to take advantage of the flexibility and scalability that can be gained by moving to a Microservices model. The organization also planned to migrate its LoB (Line of Business) applications to Public Cloud infrastructure to increase its flexibility and availability. Cloud migration is the way to increase the company’s flexibility and responsiveness. It is also expected to achieve significant savings on the cost of maintaining their ICT infrastructure by eventually closing the other two (2) existing data centres. The organization has decided to ultimately design and operate a “Hybrid Cloud” methodology, where part of their data centre is “on premise” and another part in a Cloud. Now the company wants to assess the risks, security issues and methods to control them over ‘Hybrid Cloud’
Cloud Architectures to support DTGOV’s web services migration over cloud
For migrating the web services over cloud, IaaS is the best option. IaaS is also known as Infrastructure as a Service. It is a cloud service which provides virtual IT infrastructure to host the web services over cloud without any hardware requirement. To migrate DTGOV’s web services over cloud, following are the possible architectures:
1. IaaS over public cloud
2. IaaS over private cloud
3. IaaS over hybrid cloud
Out of public, private and hybrid clouds, hybrid cloud can be considered as the best option for DTGOV to migrate its web services over cloud. It would more cost saving than private cloud, provide high flexibility to move between public and private cloud and more secure than public cloud.
Risks associated with this new Hybrid cloud and microservices strategy
Hybrid cloud risks
1. Lack of encryption
2. Unprotected APIs
3. DDOS attacks
4. Poor IP protection
5. Data Leakage etc.
1. Container risks
2. Data risks
3. Permission risks
DTGOV's BCP as a result of their adoption of a Hybrid Cloud and Microservices approach
DTGOV's BCP would help to support the continuity of the business processes in case of emergency or disaster. Following is BCP for the business continuity of the organization:
1. Keep backup: To ensure the availability of the data in case of disasters, the company must keep the periodic data backup.
2. Disaster Recovery: - The organization must select the vendor which must provide disaster recovery option for the entire architecture.
3. Application Resilience: - The organization should opt multiple vendors with the flexible options for backup services and disaster recovery. They must allow the flexibility to move the services from one platform to another in case of any threat.
Requirements that DTGOV will need to consider in order to conduct remote server administration, resource management and SLA management for its proposed IaaS and PaaS instances
1.Requirements for Remote Server Administration
a. IT team must detail the scripting and IT administration
b. On premises servers could not be serviced
2. Requirements for Resource Management
a. Organization must have transparency to resource management practiced by vendor
b. It must be reviewed by IT managers periodically.
3. Requirements for SLA Management
a. SLA must clearly mention access permission
b. Security Measures must be well defined
c. Ownership must be clarified
d. SLA must be updated with the additional services