Are Containers the New Golden Hammer? Tracy Bannon Lori Olson

Size: px

Start display at page:

Download "Are Containers the New Golden Hammer? Tracy Bannon Lori Olson"

Leslie Gallagher
5 years ago
Views:

1 Are Containers the New Golden Hammer? Tracy Bannon Lori Olson

2 Agenda 1 Introduction 2 Solution Anti-Patterns and How to Avoid Them A B C Anti-Pattern #1 Containers as an Alternate Virtual Machine (VM) Anti-Pattern #2 Pushing the Architecture before the Organization is Ready Anti-Pattern #3 Lack of Layering Strategy 3 Conclusion The Golden Hammer Anti-Pattern Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 2

and high-quality service to clients, delivering the insights needed to address the most complex business challenges.

8 billion for the fiscal year ending 31 May 2016, marking the network s highest revenue ever.

Source: Deloitte For more than 150 years, clients have relied on Deloitte to serve their ever-changing needs.

3 Deloitte Corporate Profile Overview "Deloitte" is the brand under which dedicated professionals in independent member firms throughout the world collaborate to provide audit, consulting, financial advisory, risk management and tax services to clients* Geographic Distribution With a globally connected network of member firms in more than 150 countries, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights needed to address the most complex business challenges. Annual Revenue ($B) Deloitte Touche Tohmatsu Limited (DTTL) announced aggregate member firm revenues of US$ 36.8 billion for the fiscal year ending 31 May 2016, marking the network s highest revenue ever. Headcount Deloitte has over 225,300 professionals, all committed to becoming the standard of excellence and providing professional services to public and private clients spanning multiple industries Source: Deloitte For more than 150 years, clients have relied on Deloitte to serve their ever-changing needs. A provider of financial and economic advisory services around the world, Deloitte has conducted over 1,300 technical assistance engagements in over 100 countries. We are a national and global leader today because, throughout our history, we have continuously sustained our clients' trust and exceeded their expectations. Our renowned depth of technological and cross-industry knowledge, combined with our ability to seamlessly and strategically integrate solutions, has allowed us to aid our client s ability to achieve meaningful impact towards their overall mission. Our independent country firms are members of Deloitte Touche Tohmatsu Limited (DTTL), a UK private company limited by guarantee. Each member firm provides services in a particular geographic area and is subject to the laws and professional regulations of the particular country or countries in which it operates. Each DTTL member firm is structured differently in accordance with national laws, regulations, customary practice, and other factors, and may secure the provision of professional services in its territory through subsidiaries, affiliates, and/or other entities. *Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see to learn more about our global network of member firms. Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 3

6 Background The container ecosystem is growing rapidly and there is a rush to adopt this technology. Many enterprise implementations run the risk of this being a golden hammer by applying it whenever and wherever possible. Join us as we dive deep to establish a common taxonomy and definition of containers, investigate practical use cases, and identify key components and decisions points for creating your container strategy. Participants in this session will learn: What containers solve and what they do not solve Key concepts for architecting containers and the decision for layering containers Organizational recommendations for effective adoption How to manage and maintain your containers tools can help but don't take the place of your strategy. Even with tools, it's not as simple as "just change a layer. Practical tips from the field Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 6

Anti-Pattern #1: Containers as an Alternate Virtual Machine (VM) VMs and Containers are unique, not interchangeable Use VMs to: Use Containers to: Treat VMs and Containers as separate concepts

8 Anti-Pattern #1: Containers as an Alternate Virtual Machine (VM) VMs and Containers are unique, not interchangeable Use VMs to: Use Containers to: Treat VMs and Containers as separate concepts Decreasing operating efficiency Security vulnerabilities Complex process and configuration management Virtualize operating systems not supported by containers Provide general purpose operating system features Virtual Machines Containers Support infrastructure as code Speed deployment and lightweight execution Deploy across hybrid environments and avoid cloud vendor lock-in Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 8

Leading Container Practices Getting the most out of your compute resources Define lean images Start small Write smart logic to prevent unnecessary caching of resources Eliminate what you don t use

9 Leading Container Practices Getting the most out of your compute resources Define lean images Start small Write smart logic to prevent unnecessary caching of resources Eliminate what you don t use Use the host operating system to run apps Avoid running unnecessary services Install only necessary libraries Construct container layers with purpose and understanding Build stateless light-weight containers Deliberately define layers Reuse common layers where possible Understand consequences of layer selection Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 9

11 Anti-Pattern #2: Pushing the Architecture before the Organization is Ready Signs your organization may not be ready Organizational structure doesn t align teams to features Teams aren t empowered Lack of Automation/ DevSecOps processes Signs your people are not ready X X X X Overly complex containers Bloated containers Simple facades with complex deployment patterns General sloppy container design Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 11

12 Empowering Adoption Steps to prepping your organization and people X Layer Focused Teams Organization is structured around BFF (business feature focus) Automation mindset and abilities are table stakes UI Specialists Middleware Specialists DBAs Teams are educated on container design patterns Just Enough Governance and a focus on centralized guidance, decentralized execution Feature Focused Teams Shopping Cart Team Catalog Team My Account Team Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 12

Anti-Pattern #3: Lack of Layering Strategy X Lack of a layering strategy may introduce: Instability from poor version management Deployment complexity from multiple dependencies Performance impacts

14 Anti-Pattern #3: Lack of Layering Strategy X Lack of a layering strategy may introduce: Instability from poor version management Deployment complexity from multiple dependencies Performance impacts from fine-grained containers Security exposure from uncontrolled layers A well-defined layering strategy should: Explicitly define dependencies Decrease proliferation, which can result in less complexity Allow for optimal maintainability with the right level of granularity Secure and standardize layers with managed repositories Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 14

15 Container Layering Strategy and Guidelines Decisions to make in order to have a good layering strategy Inventory required assets Set up guidelines Explicitly define dependencies Determine base image Determine composition layer images (CentOS + Oracle JDK) Determine final containers ((CentOS+OracleJDK) + SonarQube) Do not change underlying base/composition level image e.g. If Java-based, use image ABC; if Python-based, use image XYZ Decreases proliferation, which can result in less complexity (decreasing number of distinct containers that are used) Allows for optimal maintainability with the right level of granularity Secures and standardizes layers with managed repositories Tools that help you do this: Ansible and OpenShift Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 15

Conclusion Golden Hammer Anti-Pattern Containers are not a ubiquitous solution Misuse may lead to: Consumption of unneeded resources (compute, storage, network overhead) Significant costs debugging

17 Conclusion Golden Hammer Anti-Pattern Containers are not a ubiquitous solution Misuse may lead to: Consumption of unneeded resources (compute, storage, network overhead) Significant costs debugging and maintaining code Unnecessary complexity Containers can provide the most benefit when teams or systems have: New development when you can architect for container High-elasticity needs Business demand for rapidly changing feature sets Feature-team alignment Loosely coupled sets of APIs Well-defined seams where there are not remote dependencies Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 17

Contacts Tracy Bannon Specialist Leader Systems Integration Application Architecture Deloitte Consulting LLP

com/in/tracylbannon Lori Olson Specialist Leader Systems Integration Application Architecture Deloitte Consulting

19 Contacts Tracy Bannon Specialist Leader Systems Integration Application Architecture Deloitte Consulting LinkedIn: Lori Olson Specialist Leader Systems Integration Application Architecture Deloitte Consulting LLP LinkedIn: Copyright 2018 Deloitte Development LLC. All rights reserved. Are Containers the New Golden Hammer? 19

20 About Deloitte Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ( DTTL ), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as Deloitte Global ) does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the Deloitte name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see to learn more about our global network of member firms. Copyright 2018 Deloitte Development LLC. All rights reserved.