Critical applications and the Public Cloud are no longer incompatible! –

Critical applications and the Public Cloud are no longer incompatible! - Cybersecurity

Many companies are still reluctant to completely cloud their information systems. They invoke the criticality of certain applications that they prefer to keep on-premise and consider that the public cloud does not offer sufficient guarantees for businesses.

A large survey of Oracle customers revealed four recurring fears about the public cloud.
First, companies discuss security risks for sensitive applications.
Then they fear that apps that work perfectly on-premise are less stable in the cloud, especially in terms of performance.
The third reason cited by CIOs concerns the regulation that certain sectors must comply with, and which prevents many of them from putting a critical application in the public cloud.
Finally, the fourth point is the fear of entrusting all your IT to a single publisher.

All these arguments no longer need to be, because today there are solutions that allow applications, even sensitive, to run in the cloud with the same performance and security as in a framework we premise.

Second generation cloud architecture for optimized cybersecurity

For example, at Oracle, the security level of the public cloud now enables the deployment of sensitive applications and data that were previously reserved for the datacenter located inside the enterprise. To reach this level, we did not hesitate, 5 years ago, to start from scratch to invent a new generation infrastructure – Oracle Cloud Infrastructure (OCI) – with an emphasis on security, the main blocking factor for adoption of the public cloud.

This second generation architecture provides physical isolation of the infrastructure, not only between the different users of the shared cloud, but also between the user company and its service provider, in this case Oracle. Unlike first generation clouds, this infrastructure physically separates processor virtualization from network virtualization. Under no circumstances can a cyber attack, from a virtual machine, spread to all nodes on the network. This new cloud architecture, dubbed “off box virtualization”, is widespread in our public cloud, and the team in charge of developing and maintaining it is made up of several thousand engineers.

An SLA guaranteeing performance and the absence of hidden costs!

On the performance aspect, this team has developed a network architecture which ensures a level not only high but also predictable. These criteria are essential when it comes to deploying a core business application. There is no over-subscription processors or network and we offer an SLA (Service Level Agreement) which guarantees access performance both at the network level and at the level of storage environments. Technically, this architecture makes it possible to limit the number of network hops between processors and storage to a maximum of 2 from one point to another.

This predictive aspect also facilitates control of the economic aspect. Moreover, the hidden costs of the first generations of cloud (transfer of data from the Cloud to the on-premise) no longer need to be with this second generation cloud from Oracle. This represents a significant cost reduction, especially since this Oracle service remains free within the limit of 10 TB per month, with a price beyond which remains low.

Hybrid and Multi-Cloud, where flexibility and reversibility are key

One of the fears of CIOs is to remain tied to a single provider if they migrate all of their business applications to a single cloud. IT managers legitimately want the freedom to change providers, or even opt for a hybrid or multi-cloud environment.

Many technological choices condition this flexibility. At Oracle, most of the technologies on-premise are also made available to CIOs in “as-a-Service” mode. Regarding open source services, they are offered without a proprietary layer, thus allowing real reversibility. Oracle is limited to operating and supporting the service and maintaining it while maintaining compatibility with the open source project. Consequently, the DSI manages an “as-a-Service” project in the cloud while having the same technologies as in a project we premise. The question of operating in a hybrid environment no longer arises, since it only remains to choose the mode of deployment of the applications in one or the other of the universes, and this with a single version, without the need to migrate applications.

It is also possible to deploy Oracle technology in a public cloud other than that of Oracle or to distribute the applications through several types of cloud, depending on the nature of the workload or features offered by the various clouds. Oracle has made its public cloud interoperable with other public cloud services to support this multi-cloud approach.

In this context, Oracle has signed strategic interoperability agreements. With Microsoft, first of all, the infrastructures were physically interconnected: they function as a single data center and use a single SSO (Single Sign On).

With VMWare, then, it is possible to transparently fail over a VMWare deployment of an environment on-premise to the Oracle cloud (migration, bursting, Disaster Recovery…).

Compliance with regulatory constraints thanks to the concept of “Cloud At Customer”

Last obstacle to moving to the public cloud: regulations. For companies subject to strict regulatory frameworks or simply to technical constraints, it is possible to provide them with the advantages of the public cloud: “pay as you go” and automation of operations. It’s sort of like the Public Cloud at home, with a “Database as a Service” in the form of a subscription entirely managed by Oracle on a machine that we provide and that is installed behind the corporate firewall. This concept of “Cloud At Customer” respects the different regulations and retains the spirit and advantages of the public cloud: industrialization of the environment and automation of tasks via software without any hardware investment.

Harness the full potential of the public cloud and encourage innovation

Developed natively to this public cloud infrastructure, the service platform is intended not only to simplify daily life and reduce maintenance costs through automation, but also to encourage innovation, while managing data and their life cycle.

First, automating the entire environment is essential to lower operating costs, improve security, increase agility or simply reduce Time-To-Market. Building on Machine Learning and Artificial Intelligence, Oracle introduced the concept of “Autonomous Software” allowing software to operate, update, and optimize without human intervention. This concept was applied to the Oracle database (“Autonomous Database”) allowing deployment of patches, configuration, index creation, repair, securing … independently. This unique innovation is also available for the operating system, Oracle Linux.

More than 100 services native to this infrastructure are available to encourage innovation; whether for the creation of Data Lake, the exploitation of Big Data or the implementation of Datawarehouse. It is also about enabling Data Scientists to quickly visualize data or facilitate the development of Machine Learning algorithms, and helping developers create Cloud Native applications (kubernetes-as-a-Service, serverless functions, gateways API, low-code applications …), facilitate the integration of SaaS or SaaS applications /We premise between them, or offer almost ready-to-use functions, such as virtual assistants (chatbots) or content management, or even relating to emerging technologies (IoT, Blockchain, …).

Let us conclude by adding that the evolution of the company, and more particularly its resilience and its economic success, are today closely linked to its ability to develop new business opportunities, and to be able to implement them in near real time. In order to adapt to changing contexts and sometimes uncertain situations, and thus remain competitive, it is imperative that the company can quickly design, develop and deploy new applications, whether we premise or in a multi-cloud environment. With Oracle, which has become a hyperscaler, they can now quickly exploit the full potential of digital transformation while retaining control over security, performance control and project governance.

By Régis Louis, Vice President Product Strategy, EMEA & JAPAC at Oracle

Critical applications and the Public Cloud are no longer incompatible! -
Rate article