Parasoft announces the opening of its new office in Northeast Ohio.
How to Bridge the Gap: The Open Distributed Cloud
March 03, 2022
Driven by the demand for delivering applications at the locations of their choice, enterprises are increasingly deploying distributed infrastructure, with 67% of cloud deployments distributed across on-premises, hybrid, and edge clouds. Comparatively, our recent research found that developers are facing new challenges as they expand their use of cloud computing in ways that increasingly span multiple locations.
For example, public clouds are walled gardens, locking customers into a single vendor's ecosystem, while DIY solutions are time-consuming and increasingly complex. The best way for developers to address these concerns is to implement and operate an open distributed platform that offers the best of both worlds, combining the power of the public cloud on the infrastructure of your choice.
Still, there are some considerations to address in adopting an open distributed cloud solution — ranging from deployment delays to an increase in silos and operational complexity. Additionally, building a cloud environment rooted in diverse infrastructure requires expertise in technologies like virtualization, Kubernetes and cloud-native applications.
As you consider your options, there are four main components to a successful, open distributed cloud solution:
1. Recruit and train successfully
Talent-constrained IT teams have long struggled with the complexity of running large-scale private clouds. The ratio of servers managed to an admin or automation architect can be as little as 40:1 in private clouds. In contrast, hyperscale public-cloud providers have invested significantly in automating the management of their environments, which greatly improves their admin efficiency. It is not unheard of for the server/admin ratio in public clouds to be 4000:1 or more. So it's no surprise that as we look at 2022, we see DevOps, cloud-platform engineering, and cloud-native developers as the top hiring priorities for both advanced and early deployed users.
2. Deploy a SaaS control plane that will enable you to build and operate clouds anywhere
With cost optimization, data management, and achieving high availability among top concern for executives, this SaaS control plane provides operational automation for the consumption of infrastructure and is the heart of a distributed cloud service providing benefits such as:
■ Low management overhead using a highly automated hyperscale operational model.
■ Reduced maintenance costs by aggregating all distributed infrastructure behind a single management pane.
■ Rapid and repeatable remote deployments to 100s or 1000s of distributed cloud locations with consistent, template-based configuration and policy control.
■ An operational SLA through automated health monitoring, runbook-driven resolution of common problems, and streamlined upgrades.
3. Implement managed open-source services that use 100% open-source stacks and components to deliver bare-metal, container, virtualization, and supporting platform services
Modern cloud services such as Kubernetes are actually composite services that are themselves highly distributed and therefore will support more complex orchestration capability. Kubernetes is becoming a leading tool for enabling cloud-native transformation, with 85% either using Kubernetes today or planning to deploy Kubernetes in the next six months. However, deploying control plane components such as Kubernetes master node components (API server, etcd) requires addressing the redundancy and high availability capabilities they need.
4. Integrate support for diverse, distributed infrastructure
Deploy out-of-the-box plugins and integrations for public clouds (AWS, GCP, Azure), public-cloud Kubernetes services (EKS, AKS, GKE), and multiple operating systems such as CentOS and Ubuntu.
Monitoring is critical
Concerns of security and operational complexity, including challenges like high availability, observability, and troubleshooting, are felt by 91% of enterprises deploying cloud-native technologies, so it's imperative to ensure that you have a monitoring, diagnostic, and troubleshooting process in place at all times.
Since modern cloud services are highly distributed, it is imperative that you are constantly monitoring performance. Even a small degradation in certain components can lead to a larger, system-wide degradation in time. To simplify troubleshooting (whether automated or human), and to mitigate the likelihood of larger problems, these health probes must be highly granular.
Having good health metrics provides a basis to codify the resolution of common problems via automated runbooks. These runbooks can be built for common problems that occur during normal system operation such as a control plane going offline because of an infrastructure failure. These runbooks are also effective when there are problems in new versions of cloud services or interoperability issues that are found only in the field after deployment at some scale. S
ince the runbook can be implemented without requiring a new version of the cloud service, immediate mitigation can be provided while a bug fix or a new version of the cloud service in question is developed. In this way, customers can be operational despite the complex, ever-evolving nature of modern open-source cloud technologies.
Keep upgrading
The breadth of developers and vendors participating in modern open-source ecosystems means that new versions are constantly being developed both with bug fixes as well as with security and feature enhancements.
The SaaS control plane makes it easy for customers to stay up to date by fully automating the upgrade to a new version of various cloud services. These upgrades are typically offered on a granular basis (for example, upgrading Service A should be independent of upgrading Service B), which makes change control easier for large scale enterprise deployments.
Finally, these upgrades are ideally offered in a self-service manner that enables customers to schedule their own upgrades at a time that is convenient for them and at a scope of their choosing (for example, upgrade the Virginia datacenter at 3 a.m. on Saturday but leave Mumbai untouched for now).
Saas management will be the de facto standard
For the emerging categories of distributed and edge cloud computing, geographic distribution of infrastructure and workloads limit the reach of the public cloud. Similarly, distributed edge environments need to be managed centrally with little to no touch. It is clear that SaaS management will be the de facto standard for distributed cloud management.
Industry News
May 02, 2024
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
May 02, 2024
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
May 02, 2024
Nokod Security announced the general availability of the Nokod Security Platform.
May 02, 2024
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
May 01, 2024
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
May 01, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
May 01, 2024
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
May 01, 2024
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
May 01, 2024
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
April 30, 2024
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
April 30, 2024
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
April 30, 2024
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
April 29, 2024
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
April 29, 2024
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
