This is a Safe Harbor Front slide, one of two Safe Harbor Statement slides included in this template. One of the Safe Harbor slides must be used if your presentation covers material affected by Oracle’s Revenue Recognition Policy To learn more about this policy, e-mail: Revrec-americasiebc_us@oracle.com For internal communication, Safe Harbor Statements are not required. However, there is an applicable disclaimer (Exhibit E) that should be used, found in the Oracle Revenue Recognition Policy for Future Product Communications. Copy and paste this link into a web browser, to find out more information. http://my.oracle.com/site/fin/gfo/GlobalProcesses/cnt452504.pdf For all external communications such as press release, roadmaps, PowerPoint presentations, Safe Harbor Statements are required. You can refer to the link mentioned above to find out additional information/disclaimers required depending on your audience. Confidential – Oracle Internal/Restricted/Highly Restricted
Modern Cloud Infrastructure Paul Jenkins IaaS Product Manager
Oracle Infrastructure as a Service Strategy Give customers a “high fidelity data center” in the Oracle Cloud Cost-effective, highly-elastic Compute, Storage, and Network resources Migrate existing Software Stacks and Automation Tools without re-write Deep control with unmatched security, governance, and performance It starts with a Modern Cloud Infrastructure… Oracle IaaS gives you: a Software Defined Virtualized Data Center Cost effective, highly elastic Compute, Storage, and Network Resources Allowing you to: Easily migrate your existing Software Stacks and Infrastructure Automation Tools without needing to re-write them While providing you with full control of infrastructure, and strong security, governance, and performance
What is modern ? Confidential – Oracle Internal/Restricted/Highly Restricted
What is modern ? Confidential – Oracle Internal/Restricted/Highly Restricted
Cloud is Modern – right ?
On-premises is old fashioned – right ?
Oracle Re-Engineered the Cloud Platform
Oracle Re-Engineered the Cloud Platform Oracle Modern Cloud Infrastructure Bare metal servers in minutes Pay for what you use Raw performance without hypervisor overhead Integrated compute, storage, database services on their own private network All features automated, usable via console or API Enterprise-level governance
Latest Technologies Enable a Modern Cloud Infrastructure Technology Benefit Availability domains Enables enterprise-level high availability Flat, non-blocking network Enables predictable low latency; eliminates “noisy neighbors” Off-box IO virtualization & automated hardware wiping Enables secure deployments of bare metal servers without Oracle management software overhead Direct-attached NVMe storage Enables highest IO workloads
Regions and Availability Domains At least three fault-independent Availability Domains (AD) with low latency and high-bandwidth network interconnect AD-2 AD-3 AD-1 Region Enables zero-data-loss architectures (e.g. Oracle MAA) and high availability scale-out architectures (e.g. Cassandra) Bandwidth One-way Latency Between hosts in an AD 10 Gb/s < 100µs Between ADs in a Region 1 Tb/s < 500µs
Global Connectivity Region AD-1 AD-2 AD-3 Region Region AD-1 AD-1 AD-2
Physical Network Highly scalable, flat physical network design 1 nnn 4 32 Compute Pod Highly scalable, flat physical network design No network or CPU oversubscription provides predictable bandwidth & performance Predictable latency and a maximum of two hops between Compute & Storage even at scale
Off-box IO Virtualization Maximizes Flexibility and Security Enables anything with a network port = most customer flexibility No Oracle software on the compute hosts = best-in- class customer security Direct connectivity between compute & storage nodes = industry- leading performance Flat Network To Internet Our customers demand the best of both Enterprise and Cloud Availability and Security techniques. Our datacenters provide redundant external connectivity and redundant power. Our network is an island network without any external connectivity - to get to the Internet, explicit virtual network configuration is required, providing for higher security and easy auditability. Our control plane services are completely segregated from the Internet. To Customer on-premises network To other Availability Domains in same region Customer Compute Customer Storage Network Ingress/Egress Internal Control Planes
Putting it All Together: Reliable, Predictable, Flexible, Fast NVMe storage VMs DBaaS etc …. Bare metal compute Compute & Storage Virtual Network Putting it all together. Compute & Storage Physical Network Availability Domains AD-1 AD-2 AD-3
Cutting-edge, High IO Hardware Technology High Performance Compute Systems 36 Cores per Server Standard: Non-NVMe SSD, 256 GB RAM High I/O: 13.2 TB NVMe SSD, 512 GB RAM Dense I/O: 28.8 TB NVMe SSD, 512 GB RAM Compute High Performance Storage Systems Local NVMe: up to 28.8 TB/Server, ~4 Million IOPs Block Storage: 256GB-2TB, 1,500 IOPs per Volume Object Storage – High Throughput, Strong Consistency Storage
Virtual Cloud Networks VCN 10.0.0.0/16 Availability Domain 1 Subnet 1 10.0.1.0/24 Route Table Availability Domain 2 DRG IP-Sec VPN MPLS Fastconnect Subnet 2 10.0.2.0/24 Virtual Router Availability Domain 3 Subnet 3 10.0.3.0/24 Confidential – Oracle Internal/Restricted/Highly Restricted
Provides governance designed for the enterprise Oracle Bare Metal Cloud Services Prepared: 11/3/2017 7:00 AM Provides governance designed for the enterprise Customer Tenant Users & Groups Compartments Cost Limits Support for GBAC, PBAC, RBAC and ABAC Our cloud is organized into compartments, which provide isolated sub-clouds for projects A ‘least privilege’ operating environment Maps to enterprise identity Billing and metering per compartment Straightforward and descriptive policy language Does not support setting of usage quotas for users or compartments. You can only assign resources and users/groups to compartments. Customer Compartment Analytics Working Group Compute, Storage, Network Finance Development Compute Organization Access Resources Copyright Oracle USA 2016. All rights reserved.
BMCS Use Cases Confidential – Oracle Internal
Rendering as a Service “The Platform” “The Pack” Studios / Artists TENANCY Management “The Platform” BMCS Render Node “The Pack” Job Submission Studios / Artists Finished Render OVH etc Other Platforms Confidential – Oracle Internal/Restricted/Highly Restricted
HPC Brokering Head-End HPC Compute Clusters Portal BMCS Node TENANCY AVAILABILITY DOMAIN Accademics High-Tech Job Submission Workflow Cluster Management BMCS Node AVAILABILITY DOMAIN In-House Universities AWS
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty Global Data Protection Regulation (GDPR) comes into effect May 25th 2018 and effects all companies processing data of EU residents. It’s purpose is to strengthen and unify data protection for individuals within the EU. It also addresses export of personal data outside the EU. The primary objectives of the GDPR are to give citizens back the control of their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US This requirement extends to all data sovereignty regions and companies will need to deal with data protection and privacy rules. This goes beyond firewalls, encryption etc and requires a different approach to data security. Evil Corp REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US Organizations with holding personal data across multiple regions will need to control and audit access to that data. Evil Corp Corporate Data REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US Anzen’s approach to this is to separate personal identifiable information and store anonymized data across multiple regions. Evil Corp Corporate Data REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty US Regional Data Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US Corporate Data REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US The data will only be able to be useful when brought back together. This is only allowed to be done within the controlling data jurisdiction region and under full audit control. Evil Corp REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty US Regional Data Confidential – Oracle Internal/Restricted/Highly Restricted
GDPR Evil Corp Evil Inc Evil Ltd Evil Gmbh Evil Pty REGION US REGION GB REGION EU REGION APAC Evil Inc Evil Ltd Evil Gmbh Evil Pty Confidential – Oracle Internal/Restricted/Highly Restricted
Technical Solution REGION US REGION EU Spark Cluster MongoDB Cluster Near real time synch REGION US REGION EU Spark Cluster MongoDB Cluster Spark Cluster MongoDB Cluster AVAILABILITY DOMAIN Spark Node Mongo Node AVAILABILITY DOMAIN Spark Node Mongo Node AVAILABILITY DOMAIN Spark Node Mongo Node AVAILABILITY DOMAIN Spark Node Mongo Node VCN VCN AVAILABILITY DOMAIN Spark Node AVAILABILITY DOMAIN Mongo Node Spark Node Mongo Node Confidential – Oracle Internal/Restricted/Highly Restricted
Confidential – Oracle Internal/Restricted/Highly Restricted