Click here to close now.




















Welcome!

Microservices Expo Authors: Liz McMillan, Trevor Parsons, Lori MacVittie, Roger Strukhoff, Tom Lounibos

Related Topics: Agile Computing, Mobile IoT, Microservices Expo, @CloudExpo, SDN Journal

Agile Computing: Blog Feed Post

1-800-HTTP

Trend toward applications as value added service requires application fluency

A newish trend is quietly (comparatively speaking) increasing across the Internets. The basic premise is that end-users aren't being charged for data traversing mobile networks when accessing certain sites, much in the manner users are not charged for calling a company's toll free (800) number. For some companies, this largess is intended only when accessing their site. More recently, at least one provider (T-Mobile) has gone to making free access to other sites, like Facebook.

AT&T to Let Content Companies Subsidize Users' Data Costs

AT&T's new service, called Sponsored Data, works like a 1-800 number but for data. In theory, a company like Netflix Inc. could promote a new series by covering the cost of data that otherwise would count against a subscriber's plan. Subscribers will see a logo that lets them know the content they are accessing doesn't count against their data plan, and sponsored data volumes will be broken out on their bills.

 

This month, T-Mobile US Inc. began giving subscribers to its lower-cost GoSmart Mobile prepaid service free wireless access to Facebook, even if those customers aren't paying for a mobile-data plan. Unlike with AT&T's new plan, T-Mobile is bearing the data costs under the offer, which could bring new customers to the service and get lower-end subscribers into the habit of using mobile data.

Now, aside from this being a Very Cool Idea from a consumer perspective, consider what such offerings require under the hood to actually get implemented.

The provider has to know the destination and whether or not that particular destination falls under what I'm going to call a "1-800-HTTP" plan. In order to know the destination, the provider must be able to look inside the data, the payload, of mobile network traffic. It must be able to, in real-time, inspect that traffic, extract the HTTP headers, and evaluate the host name against its list of "1-800-HTTP" plans. In real time.

Certainly the provider could use IP address destinations instead. Let's face it, Facebook's block of addresses probably doesn't change all that often. The same goes for most established organizations with a presence on the Internet.

The problem with this approach is the same as its always been when we start talking about whitelisting (or blacklisting) by IP address. It's not necessarily that they'll change that's problematic, it's the sheer number of IP addresses that must be maintained in a table and, ultimately, searched in real-time. Geeks will recognize this as the "IPtable" performance problem inherent in the proliferate use of iptables for software implementation of a variety of network services, often firewalling and security-related services.

The longer the list of entries in the table, the greater latency is introduced when switching and routing requires evaluation of a destination (or source) IP address against that table.

Thus, while early implementations of the "1-800-HTTP" plans may very well simply use IP addresses, if such offerings generate enough interest and grow rapidly, an IP address-based system generally will not scale.

IT'S ABOUT MORE THAN A HOSTNAME

But that's not the only thing going on under the covers. If you read the announcement, you'll note the statement "Subscribers will see a logo that lets them know the content they are accessing doesn't count against their data plan." In other words, an advertisement. Content. Application content. That content must be inserted into the payload, into the HTTP (aka application) payload. That means deep content inspection and modification, which requires visibility into layer 7. That means some kind of service has to exist in the data path that is capable of interacting with application data, that is fluent in the language of the application. That fluency is required in order to insert into its data this "logo" or advertisement expounding upon the largess of the organization sponsoring the free access.

What this all means is that as service providers continue to seek out new ways to add value to their (admittedly already valuable) networks, they will necessarily continue to move "up the stack" toward the application. There are a plethora of value added services based on application and data that could be made available by service providers, provided they have the right infrastructure in place. That infrastructure must be not only high-performance, but it must be able to maintain that performance while executing layer 7 (application) fluent-based services in the data path.

Whether services like "1-800-HTTP" will continue to gain traction and lead to other application / data specific offerings depends on whether or not mobile providers can maintain performance while executing some fairly intensive inspection and modification under the covers.

Read the original blog entry...

More Stories By Lori MacVittie

Lori MacVittie is responsible for education and evangelism of application services available across F5’s entire product suite. Her role includes authorship of technical materials and participation in a number of community-based forums and industry standards organizations, among other efforts. MacVittie has extensive programming experience as an application architect, as well as network and systems development and administration expertise. Prior to joining F5, MacVittie was an award-winning Senior Technology Editor at Network Computing Magazine, where she conducted product research and evaluation focused on integration with application and network architectures, and authored articles on a variety of topics aimed at IT professionals. Her most recent area of focus included SOA-related products and architectures. She holds a B.S. in Information and Computing Science from the University of Wisconsin at Green Bay, and an M.S. in Computer Science from Nova Southeastern University.

@MicroservicesExpo Stories
"We got started as search consultants. On the services side of the business we have help organizations save time and save money when they hit issues that everyone more or less hits when their data grows," noted Otis Gospodnetić, Founder of Sematext, in this SYS-CON.tv interview at @DevOpsSummit, held June 9-11, 2015, at the Javits Center in New York City.
Auto-scaling environments, micro-service architectures and globally-distributed teams are just three common examples of why organizations today need automation and interoperability more than ever. But is interoperability something we simply start doing, or does it require a reexamination of our processes? And can we really improve our processes without first making interoperability a requirement for how we choose our tools?
At DevOps Summit NY there’s been a whole lot of talk about not just DevOps, but containers, IoT, and microservices. Sessions focused not just on the cultural shift needed to grow at scale with a DevOps approach, but also made sure to include the network ”plumbing” needed to ensure success as applications decompose into the microservice architectures enabling rapid growth and support for the Internet of (Every)Things.
How do you securely enable access to your applications in AWS without exposing any attack surfaces? The answer is usually very complicated because application environments morph over time in response to growing requirements from your employee base, your partners and your customers. In his session at @DevOpsSummit, Haseeb Budhani, CEO and Co-founder of Soha, shared five common approaches that DevOps teams follow to secure access to applications deployed in AWS, Azure, etc., and the friction an...
Digital Transformation is the ultimate goal of cloud computing and related initiatives. The phrase is certainly not a precise one, and as subject to hand-waving and distortion as any high-falutin' terminology in the world of information technology. Yet it is an excellent choice of words to describe what enterprise IT—and by extension, organizations in general—should be working to achieve. Digital Transformation means: handling all the data types being found and created in the organizat...
This week, I joined SOASTA as Senior Vice President of Performance Analytics. Given my background in cloud computing and distributed systems operations — you may have read my blogs on CNET or GigaOm — this may surprise you, but I want to explain why this is the perfect time to take on this opportunity with this team. In fact, that’s probably the best way to break this down. To explain why I’d leave the world of infrastructure and code for the world of data and analytics, let’s explore the timing...
The Software Defined Data Center (SDDC), which enables organizations to seamlessly run in a hybrid cloud model (public + private cloud), is here to stay. IDC estimates that the software-defined networking market will be valued at $3.7 billion by 2016. Security is a key component and benefit of the SDDC, and offers an opportunity to build security 'from the ground up' and weave it into the environment from day one. In his session at 16th Cloud Expo, Reuven Harrison, CTO and Co-Founder of Tufin,...
You often hear the two titles of "DevOps" and "Immutable Infrastructure" used independently. In his session at DevOps Summit, John Willis, Technical Evangelist for Docker, covered the union between the two topics and why this is important. He provided an overview of Immutable Infrastructure then showed how an Immutable Continuous Delivery pipeline can be applied as a best practice for "DevOps." He ended the session with some interesting case study examples.
JavaScript is primarily a client-based dynamic scripting language most commonly used within web browsers as client-side scripts to interact with the user, browser, and communicate asynchronously to servers. If you have been part of any web-based development, odds are you have worked with JavaScript in one form or another. In this article, I'll focus on the aspects of JavaScript that are relevant within the Node.js environment.
Discussions about cloud computing are evolving into discussions about enterprise IT in general. As enterprises increasingly migrate toward their own unique clouds, new issues such as the use of containers and microservices emerge to keep things interesting. In this Power Panel at 16th Cloud Expo, moderated by Conference Chair Roger Strukhoff, panelists addressed the state of cloud computing today, and what enterprise IT professionals need to know about how the latest topics and trends affect t...
SYS-CON Events announced today that HPM Networks will exhibit at the 17th International Cloud Expo®, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. For 20 years, HPM Networks has been integrating technology solutions that solve complex business challenges. HPM Networks has designed solutions for both SMB and enterprise customers throughout the San Francisco Bay Area.
Summer is finally here and it’s time for a DevOps summer vacation. From San Francisco to New York City, our top summer conferences list is going to continuously deliver you to the summer destinations of your dreams. These DevOps parties are hitting all the hottest summer trends with Microservices, Agile, Continuous Delivery, DevSecOps, and even Continuous Testing. Move over Kanye. These are the top 5 Summer DevOps Conferences of 2015.
Countless business models have spawned from the IaaS industry. Resell Web hosting, blogs, public cloud, and on and on. With the overwhelming amount of tools available to us, it's sometimes easy to overlook that many of them are just new skins of resources we've had for a long time. In his General Session at 16th Cloud Expo, Phil Jackson, Lead Technology Evangelist at SoftLayer, broke down what we've got to work with and discuss the benefits and pitfalls to discover how we can best use them to d...
Puppet Labs has published their annual State of DevOps report and it is loaded with interesting information as always. Last year’s report brought home the point that DevOps was becoming widely accepted in the enterprise. This year’s report further validates that point and provides us with some interesting insights from surveying a wide variety of companies in different phases of their DevOps journey.
Containers are changing the security landscape for software development and deployment. As with any security solutions, security approaches that work for developers, operations personnel and security professionals is a requirement. In his session at DevOps Summit, Kevin Gilpin, CTO and Co-Founder of Conjur, will discuss various security considerations for container-based infrastructure and related DevOps workflows.
Microservices are hot. And for good reason. To compete in today’s fast-moving application economy, it makes sense to break large, monolithic applications down into discrete functional units. Such an approach makes it easier to update and add functionalities (text-messaging a customer, calculating sales tax for a specific geography, etc.) and get those updates / adds into production fast. In fact, some would argue that microservices are a prerequisite for true continuous delivery. But is it too...
What we really mean to ask is whether microservices architecture is SOA done right. But then, of course, we’d have to figure out what microservices architecture was. And if you think defining SOA is difficult, pinning down microservices architecture is unquestionably frying pan into fire time. Given my years at ZapThink, fighting to help architects understand what Service-Oriented Architecture really was and how to get it right, it’s no surprise that many people ask me this question.
One of the ways to increase scalability of services – and applications – is to go “stateless.” The reasons for this are many, but in general by eliminating the mapping between a single client and a single app or service instance you eliminate the need for resources to manage state in the app (overhead) and improve the distributability (I can make up words if I want) of requests across a pool of instances. The latter occurs because sessions don’t need to hang out and consume resources that could ...
"ProfitBricks was founded in 2010 and we are the painless cloud - and we are also the Infrastructure as a Service 2.0 company," noted Achim Weiss, Chief Executive Officer and Co-Founder of ProfitBricks, in this SYS-CON.tv interview at 16th Cloud Expo, held June 9-11, 2015, at the Javits Center in New York City.
Approved this February by the Internet Engineering Task Force (IETF), HTTP/2 is the first major update to HTTP since 1999, when HTTP/1.1 was standardized. Designed with performance in mind, one of the biggest goals of HTTP/2 implementation is to decrease latency while maintaining a high-level compatibility with HTTP/1.1. Though not all testing activities will be impacted by the new protocol, it's important for testers to be aware of any changes moving forward.