XenonStack

A Stack Innovator

Post Top Ad

Showing posts with label blockchain. Show all posts
Showing posts with label blockchain. Show all posts

Thursday, 19 December 2019

12/19/2019 05:31:00 pm

Ecommerce Analytics Platform and Solutions


Introduction to Analytics Platform

An analytic platform is an integrated and proper solution configured to address the demands of users, unusually large data-driven companies, on the insufficiency of relational database management system in providing contextual analyze Data out of all the stored information. It joins different tools for creating an analytics system collectively with an engine to execute, a DBMS to store and manage the data, data mining process, and a mechanism for obtaining and preparing the data which is not stored.

Challenges for Building eCommerce Analytics Platform

An e-commerce portal wants to build a near real-time analytics dashboard to see the number of orders getting shipped every moment to improve the performance of the product supplying by them.

Solution and Tools for Building the eCommerce Analytics Platform

Let’s have a quick view of the tools required in this problem to overcome -
  • Apache Spark — A fast engine for large scale data processing.
  • Scala language — A dynamic, interpreted general-purpose programming language.
  • Kafka — A distributed streaming platform, publish-subscribe messaging system.
  • Node.js — Open source, cross-platform javascript runtime environment.
  • Socket.io — Real-time engine for Node.js, is a javascript library for near real-time web applications.
  • HighCharts — JavaScripting charting framework which provides interactive charts for web pages.
  • CloudxLab — It provides a real cloud-based environment for learning various tools.

Author Image 0
Continue Reading...
Posted by at No comments:
Labels: ,

Monday, 16 December 2019

12/16/2019 05:29:00 pm

What is DevSecOps and Benefits of Adopting DevSecOps

What is DevSecOps?

DevSecOps is an approach to provide security to application and infrastructure based on the methodology of DevOps, which makes sure the application is less vulnerable and ready for users' uses. All things automated, and security checks started from the beginning of the application’s pipelines.
Selecting the right tools for Continuous Integration security achieves security goals, but the selection of tools is not enough, also need security teams along with the right tools to meet the required security.

How DevSecOps Works?

The fundamental goal of DevSecOps is to secure the application by making security and operations team members practicing and co-operating with development from the very beginning of a project. Below is the overview of its working :
Analysis of infrastructure and environments to get the idea of challenges involves -
  • Applications and APIs.
  • Libraries and Frameworks.
  • Container and Cloud.
  • Network.
  • Secure: After analyzing, secure it, and choose the right path according to culture.
  • Automate Security Testing and verify it.
  • Detect Attacks and prevent Exploits, i.e. defend the system.

How to Adopt DevSecOps?

Nowadays the greatest obstacle to DevSecOps is culture, not technology. Traditionally, security teams and dev teams work separately. To successfully move to a DevSecOps methodology, follow the DevOps methodology in both sec. and dev. Teams must make application security an integrated strategy and continue to encourage security awareness.
Effective ways to adopt it:
  • Automate the process as much as possible.
  • Follow the DevOps methodology.
  • Train to code securely.
  • Evaluation of current security measures and concluding what to do to overcome problems.
  • Integrate the security to DevSecOps.
  • By adopting the right DevSecOps tools.
  • Monitoring Continuous Integration and Continuous Delivery.
  • Analyze code and do a vulnerability assessment.
  • Mandatory security at every stage.
Define a model that the organizations can adapt to implement DevSecOps. For example which one of the below models is better for organizations -
  • Static Analysis Security Testing (SAST).
  • Dynamic Analysis Security Testing (DAST).
  • Software Composition Analysis (SCA).
  • Container security.
How to know whether the adoption of DevSecOps is successful or not?
Successful Adoption of DevSecOps depends upon -
  • Detection of threats, security defects, and flaws.
  • Deployment frequency.
  • Meantime to their repair and recovery.
  • Lead time.
  • Test coverage.

Benefits of DevSecOps

Some of the benefits of adopting DevSecOps are -
  • Reduction of expenses and Delivery rate increases.
  • Security, Monitoring, Deployment check and notifying systems from the beginning.
  • It supports openness and Transparency right from the start of development.
  • Secure by Design and the ability to measure.
  • Faster Speed of recovery in the case of a security incident.
  • Improving Overall Security by enabling Immutable infrastructure which further involves security automation.

Why DevSecOps Matters?

Due to the joint venture of development and
  • Focus on the application’s security from the beginning.
  • It finds vulnerabilities and encourages practitioners to build security processes.
  • It seeks to provide better results at greater speed same as DevOps.
  • Reducing vulnerabilities, and increases code coverage and automation.

Best Practices of DevSecOps

  • Integrate security throughout the dev process.
  • Train on secure coding.
  • Automate the whole pipeline from Continuous Integration to Continuous Deployment.
  • Choose the appropriate tools for the security check.
  • Move to Git as a single source of truth.
  • Know code dependencies.
  • Use an analytics-driven SIEM platform.

Top DevSecOps Integration Tools

Some tools to integrate throughout DevOps Pipeline

Understanding Holistic Approach

DevSecOps, as discussed above is an approach to implement protection to application and infrastructure based on the methodology of DevOps, which makes sure the application is less exposed and ready for user's uses. All things automated, and security checks started from the beginning of the application’s pipelines. To understand more about DevSecOps, you are advised to look into the below steps:

Author Image 0
Continue Reading...
Posted by at No comments:
Labels: , ,

Thursday, 16 February 2017

2/16/2017 11:21:00 am

BlockChain App Deployment Using Microservices With Kubernetes


What is a BlockChain?


BlockChain is a distributed database that maintains a continuously-growing list of ordered records called blocks. This technology underlying Bitcoin and other cryptocurrencies.

It is a public ledger of all Bitcoin transaction. These blocks are added in a chronological order. In order to deploy a blockchain application, you need a distributed Hyperledger blockchain on your choice of infrastructure (on-premise or cloud).

In this article, we will deploy a Hyperledger Fabric cluster using Kubernetes.

Prerequisites


To follow this guide you need a system with working kubernetes cluster on it. We will use Fabric which is an implementation of blockchain technology written in Golang so go version go1.6.2 or above is required.

Before proceeding further let’s have a look on Hyperledger Fabric.

The Hyperledger Project


Hyperledger is an open source project with collaborative effort created to advance blockchain technology.

It helps in cross-industry distributed ledgers which support transaction system, property transaction, and other services.


Hyperledger Fabric


The Fabric is an implementation of blockchain technology. It provides a modular architecture allowing pluggable implementations of the various function.


Setting Hyperledger Cluster on Kubernetes


Hyperledger Kubernetes Replication Controller


We will launch hyperledger on kubernetes as a Replication Controller it will ensure us the high - availability of hyperledger pods.

Create a file named membersrvc-rc.yml.
 
apiVersion: v1
kind: ReplicationController
metadata:
  creationTimestamp: null
  labels:
    service: membersrvc
  name: membersrvc
  namespace: default
spec:
  replicas: 1
  selector:
    service: membersrvc
  template:
    metadata:
      creationTimestamp: null
      labels:
        service: membersrvc
    spec:
      containers:
      - command:
        - membersrvc
        image: hyperledger/fabric-membersrvc
        imagePullPolicy: ""
        name: membersrvc
        ports:
        - containerPort: 7054
        resources: {}
      restartPolicy: Always
      serviceAccountName: ""
      volumes: null
status:
  replicas: 0
In the same way, create another file vp0-rc.yml


apiVersion: v1
kind: ReplicationController
metadata:
  creationTimestamp: null
  labels:
    service: vp0
  name: vp0
  namespace: ${NAMESPACE}
spec:
  replicas: 1
  selector:
    service: vp0
  template:
    metadata:
      creationTimestamp: null
      labels:
        service: vp0
    spec:
      containers:
      - command:
        - sh
        - -c
        - sleep 5; peer node start --peer-chaincodedev
        env:
        - name: CORE_PEER_ADDRESSAUTODETECT
          value: "true"
        - name: CORE_VM_ENDPOINT
          value: unix:///var/run/docker.sock
        - name: CORE_LOGGING_LEVEL
          value: DEBUG
        - name: CORE_PEER_ID
          value: vp0
        - name: CORE_PEER_PKI_ECA_PADDR
          value: membersrvc:7054
        - name: CORE_PEER_PKI_TCA_PADDR
          value: membersrvc:7054
        - name: CORE_PEER_PKI_TLSCA_PADDR
          value: membersrvc:7054
        - name: CORE_SECURITY_ENABLED
          value: "false"
        - name: CORE_SECURITY_ENROLLID
          value: test_vp0
        - name: CORE_SECURITY_ENROLLSECRET
          value: MwYpmSRjupbT
        image: hyperledger/fabric-peer
        imagePullPolicy: ""
        name: vp0
        ports:
        - containerPort: 7050
        - containerPort: 7051
        - containerPort: 7053
        resources: {}
      restartPolicy: Always
      serviceAccountName: ""
      volumes: null
status:
  replicas: 0
That’s enough with replication controller. Now our next target is to deploy services for the Replication Controller.

Create a file called membersrvc-srv.yml



apiVersion: v1
kind: Service
metadata:
  creationTimestamp: null
  name: membersrvc
  namespace: default
spec:
  ports:
  - name: ""
    nodePort: 0
    port: 7054
    protocol: ""
    targetPort: 0
  selector:
    service: membersrvc
status:
  loadBalancer: {}
Create another file vp0-srv.yml



apiVersion: v1
kind: Service
metadata:
  creationTimestamp: null
  name: vp0
  namespace: default
spec:
  type: NodePort
  ports:
  - name: "port1"
    port: 7050
    protocol: ""
    targetPort: 0
  - name: "port2"
    nodePort: 0
    port: 7051
    protocol: ""
    targetPort: 0
  - name: "port3"
    nodePort: 0
    port: 7053
    protocol: ""
    targetPort: 0
  selector:
    service: vp0
status:
  loadBalancer: {}

Running Hyperledger Pods


After creating all the necessary file, next step is to start these rc pods

$ kubectl create -f membersrvc-rc.yml

$ kubectl create -f vp0-rc.yml


blockchain apps deployment using microservices with kubernetes







Continue Reading the Full Article At - XenonStack.com/Blog
Author Image 0
Continue Reading...
Posted by at No comments:
Labels: , , , , ,

Author Details