An architecture review is a good way to determine whether best practices are being followed in cloud design and, if so, whether your design or approach carries risks. As a cloud provider, Amazon Web Services (AWS) has developed data-based practices that are reflected in the structure and questions of the Well Architected Framework Review. Over the years the framework has been in place since 2015 - AWS has formalized matching test mechanisms. A questionnaire helps you apply this uniform compendium of best practices and lets you explore how well an architecture aligns with best practices for the cloud. Additionally, the framework provides detailed guidance on how to eliminate any vulnerabilities you discover.
The goal of the Well-Architected Framework is to achieve a good application design in the cloud that is appropriate for the application's purpose. One such principle, for example, is that of developing environments in a data-driven way. The aim is to measure the influence of architecture decisions and, accordingly, base further development of the architecture on the facts by collecting metrics for the change process.
Each new version of the architecture provides new data points on which organizations can build a continuous evolution process. These data points can then be used in a targeted way to implement improvements.
Six Pillars
The AWS Well-Architected Framework is based on six pillars that look at different aspects:
Denne historien er fra ADMIN #75: Teamwork-utgaven av ADMIN Network & Security.
Start din 7-dagers gratis prøveperiode på Magzter GOLD for å få tilgang til tusenvis av utvalgte premiumhistorier og 9000+ magasiner og aviser.
Allerede abonnent ? Logg på
Denne historien er fra ADMIN #75: Teamwork-utgaven av ADMIN Network & Security.
Start din 7-dagers gratis prøveperiode på Magzter GOLD for å få tilgang til tusenvis av utvalgte premiumhistorier og 9000+ magasiner og aviser.
Allerede abonnent? Logg på
Manage projects in SMEs with OpenProject Best-Laid Plans
OpenProject supplies sensible, comprehensive project management for SMEs with few financial inputs.
Synchronize passwords in KeePass Digital Safe
Usernames and passwords play an important role in security. In this article, we show you how to set up the KeePass password manager and keep it synchronized across multiple devices.
Test mechanisms for best practices in cloud design Best Clouds
Develop resilient and efficient cloud infrastructures for enterprise applications with the AWS Well-Architected Framework. We show you how to implement the solutions from the framework in practical terms by providing an introduction to the AWS Well-Architected tool with an example.
Six new security features Windows Server 2022 for Shielded
Configure the Secured-core server components to reduce the attack surface of your system with minimal overhead.
Cooperation with Cyn.in Fast Action
Cyn.in open source groupware focuses on connecting employees quickly and easily. We show you how to set up a Cyn.in environment, exchange knowledge, collaborate on projects, and manage processes. By Holger Reibold
Passkeys eliminate the need for password-based authentication Password Overboard!
Passwords are becoming a thing of the past. We look into the basic weaknesses of passwords, explain what passkeys are all about, and assess their practicality.
Best practices when working with Docker images Shipshape
Whether you are developing containerized applications or running them, observing best practices helps to obtain optimal results.
Monitoring changes in Active Directory with built-in tools Tracking Down Attackers
Monitoring with built-in Windows tools can prevent the worst from happening after an attempted attack.
Discover vulnerabilities with Google Tsunami Before the Wave
Google Tsunami security scanner detects errors that typically signal danger and outputs alerts. We look into how you can get the tool up and running and even write the required plugins yourself.
Containers made simple Fully Automated
The Portainer graphical management interface makes it easy to deploy containers, relieving you of huge amounts of routine work you would normally have to handle with Docker, Podman, or Kubernetes. However, the licensing structure leaves something to be desired.