Security
Kompatibilitätsverfahren für Profinet-Hardware mit Ethernet Time Sensitive Networks
Die Vernetzung von industriellen Produktionssystemen soll in Zukunft auf Basis von Ethernet Time Sensitive Networks (TSN) umgesetzt werden. Die Einführung einer neuen Netzwerktechnik in die Feldebene der industriellen Produktion stellt jedoch eine besondere Herausforderung dar, da neben Netzwerkfunktionen eine echtzeitfähige Implementierung von Protokollen und spezifischen Anwendungen in die Feldgeräte erforderlich ist. Bei häufig geringen Stückzahlen der anwendungsspezifischen Geräte sind derartige Neuentwicklungen häufig wirtschaftlich nicht tragbar. Migrationsstrategien kommt daher eine entsprechend große Bedeutung zu.Die Forschungsfrage dieser Arbeit lautet: Wie können bestehende Geräte des Echtzeit-Ethernet-Systems PROFINET mit den geforderten Funktions- und Leistungsmerkmalen wie Zeitsynchronisation und synchronisierte Kommunikation kompatibel mit Ethernet TSN-Netzwerken genutzt werden? Der Autor entwickelte Kompatibilitätsverfahren, mit denen dies möglich wird. Das zentrale Kompatibilitätsverfahren ist der Ethernet TSN-kompa¬tible Bridging-Modus Time Aware Forwarding (TAF), der zeitgesteuerte Kommunikation auf der Basis der Empfangszeit zeitrichtig weiterleitet und per Softwareupdate auf bestehender PROFINET-Hardware implementiert werden kann. Diese Geräte können damit in TSN-Netzwerke integriert werden und synchronisierte Kommunikation mit einem Jitter kleiner als 1 µs nutzen.SEBASTIAN SCHRIEGEL absolvierte eine Berufsausbildung als Kommunikationselektroniker und studierte anschließend an der Technischen Hochschule Ostwestfalen-Lippe Elektrotechnik (Dipl.-Ing. FH) und Mechatronische Systeme (M.Sc.). Er arbeitet bei Fraunhofer IOSB-INA in Lemgo und schloss 2021 eine Promotion an der Universität Bielefeld (Dr.-Ing.) ab.Einleitung.- Entwicklung der industriellen Kommunikation und der Anforderungen.- Stand der Wissenschaft und Technik.- Analyse der Kompatibilität von Ethernet TSN und PROFINET-Hardware.- Kompatibilitätsverfahren.- Validierung der Verfahren.- Zusammenfassung und Bewertung.
Evolving Software Processes
EVOLVING SOFTWARE PROCESSESTHE BOOK PROVIDES BASIC BUILDING BLOCKS OF EVOLUTION IN SOFTWARE PROCESSES, SUCH AS DEVOPS, SCALING AGILE PROCESS IN GSD, IN ORDER TO LAY A SOLID FOUNDATION FOR SUCCESSFUL AND SUSTAINABLE FUTURE PROCESSES.One might argue that there are already many books that include descriptions of software processes. The answer is “yes, but.” Becoming acquainted with existing software processes is not enough. It is tremendously important to understand the evolution and advancement in software processes so that developers appropriately address the problems, applications, and environments to which they are applied. Providing basic knowledge for these important tasks is the main goal of this book. Industry is in search of software process management capabilities. The emergence of the COVID-19 pandemic emphasizes the industry’s need for software-specific process management capabilities. Most of today’s products and services are based to a significant degree on software and are the results of largescale development programs. The success of such programs heavily depends on process management capabilities, because they typically require the coordination of hundreds or thousands of developers across different disciplines. Additionally, software and system development are usually distributed across geographical, cultural and temporal boundaries, which make the process management activities more challenging in the current pandemic situation. This book presents an extremely comprehensive overview of the evolution in software processes and provides a platform for practitioners, researchers and students to discuss the studies used for managing aspects of the software process, including managerial, organizational, economic and technical. It provides an opportunity to present empirical evidence, as well as proposes new techniques, tools, frameworks and approaches to maximize the significance of software process management. AUDIENCEThe book will be used by practitioners, researchers, software engineers, and those in software process management, DevOps, agile and global software development. ARIF ALI KHAN is at the University of Jyvȁskylȁ, Finland. He obtained his PhD degree in software engineering from the Department of Computer Science, City University of Hong Kong. He has participated in and managed several empirical software engineering related research projects. He has expertise in software outsourcing, process improvement, 3C’s (communication, coordination, control), requirements change management, agile software development and evidence-based software engineering. Khan has published over 40 articles in peer reviewed conferences and journals.DAC-NHUONG LE obtained his PhD in computer science from Vietnam National University, Vietnam in 2015. He is Deputy-Head of Faculty of Information Technology, Haiphong University, Vietnam. His area of research includes: evaluation computing and approximate algorithms, network communication, security and vulnerability, network performance analysis and simulation, cloud computing, IoT and image processing in biomedicine. He has more than 50 publications and edited/authored 15 computer science books, many with the Wiley-Scrivener imprint. List of Figures xvList of Tables xviiForeword xxiPreface xxiiiAcknowledgments xxviiAcronyms xxix1 REMO: A RECOMMENDATION DEVELOPMENT MODEL FOR SOFTWARE PROCESS IMPROVEMENT 1Sujin Choi, Dae-Kyoo Kim, Sooyong Park1.1 Introduction 21.2 Motivation 31.3 Related Work 51.4 Recommendation Development Model: ReMo 71.4.1 Correlation Analysis 91.4.2 Refining Improvement Packages 141.4.3 Building Recommendations 211.5 Case Studies 251.5.1 Phase I 281.5.2 Phase II 281.5.3 Phase III 281.5.4 Phase IV 291.6 Evaluation 291.6.1 Process Evaluation 301.6.2 Outcome Evaluation 321.6.3 Threats to Validity 361.7 Discussion 371.8 Conclusion 38References 392 A FRAMEWORK FOR A SUSTAINABLE SOFTWARE SECURITY PROGRAM 47Monica Iovan, Daniela S. Cruzes, Espen A. Johansen2.1 Introduction 482.2 Software Security Best Practices 492.2.1 Microsoft Security Development Lifecycle for Agile Development 492.2.2 Building Security in Maturity Model 502.2.3 OWASP Software Assurance Maturity Model 522.2.4 Software Security Services 532.3 Software Security in Visma 552.4 Top-Down and Bottom-Up Approach of a Sustainable Program 552.4.1 Ensuring the Adoption and Implementation of Security Practices 562.4.2 Enabling the Adoption and Implementation of Security Practices 572.4.3 Empowering the Teams 572.4.4 Embedding the Security Activities 582.5 Explorability of a Sustainable Software Security Program 582.5.1 Researching and Innovating Services 582.5.2 Creating New Services 602.5.3 Persuasion Focusing on the Types of Software Development Teams 612.5.4 Service Onboarding 632.6 Exploiting Existing Services 632.6.1 Collecting Continuous Feedback 642.6.2 Retrofitting the Services 652.6.3 Focus on Investment Costs and Benefits 662.6.4 Discontinuing a Service 662.7 Pitfalls of a Sustainable Software Security Program 672.8 Further Reading 682.9 Conclusion 68References 683 LINKING SOFTWARE PROCESSES TO IT PROFESSIONALISM FRAMEWORKS 71Luis Fernández-Sanz, Inés López Baldominos, Vera Pospelova3.1 Introduction 723.2 Process Standards 743.3 IT Professionalism Standards 753.3.1 ESCO 763.3.2 European e-Competence Framework 763.3.3 Skills Match Framework 773.4 Linking Software Processes and IT Professionalism Frameworks 783.5 Analysis of Recommended Skills in Processes According to Participating Professional Roles 793.6 Conclusions 84References 844 MONITORING AND CONTROLLING SOFTWARE PROJECT SCOPE USING AGILE EVM 89Avais Jan, Assad Abbas, Naveed Ahmad4.1 Introduction 904.2 Related Work 914.2.1 Tools and Techniques Used for Scope Definition 924.2.2 Traditional Project Scope Definition 934.2.3 Tools and Techniques for Agile Project Scope Definition 944.3 EVM Applications and Calculation 944.4 Research Methodology 964.4.1 Systematic Literature Review 974.4.2 Mapping of Factors with A-SPSRI Elements 984.5 Quantification of A-SPSRI Elements and Running Simulation 1014.5.1 Quantification of A-SPSRI Elements 1014.5.2 Running Simulations and Their Integration with Agile EVM 1014.5.3 Case Study 1 1034.5.4 Case Study 2 1104.6 Experimental Evaluation of Simulated Results 1124.6.1 Regression Model Interpretation 1124.6.2 Interpretation 1134.7 Conclusion 114References 1155 MODELING MULTI-RELEASE OPEN SOURCE SOFTWARE RELIABILITY GROWTH PROCESS WITH GENERALIZED MODIFIED WEIBULL DISTRIBUTION 123Vishal Pradhan, Ajay Kumar, Joydip Dhar5.1 Introduction 1245.2 Background 1265.3 Proposed Models 1275.3.1 Model-1 (General Model) 1275.3.2 Model-2 (Multi-Release Model) 1285.4 Performance Evaluation with Data Analysis 1285.4.1 Dataset and Parameter Estimation 1285.4.2 Competing Models and Comparison Criteria 1295.4.3 Least Square Estimation (LSE) 1295.4.4 Goodness of Fit 1305.4.5 Comparison of Results 1305.5 Conclusion 131References 1326 DEVELOPING A REFERENCE MODEL FOR OPEN DATA CAPABILITY MATURITY ASSESSMENT 135Murat Tahir Çaldağ, Ebru Gökalp6.1 Introduction 1366.2 Literature Review 1376.2.1 Theoretical Background 1376.2.2 Related Works 1376.3 Model Development 1396.3.1 Scope 1396.3.2 Design 1396.3.3 Populate 1406.3.4 Test 1406.3.5 Deploy and Maintain 1406.4 Open Data Capability Maturity Model 1406.4.1 Process Dimension 1406.4.2 Capability Dimension 1436.5 Conclusion 144References 1457 AHP-BASED PRIORITIZATION FRAMEWORK FOR SOFTWARE OUTSOURCING HUMAN RESOURCE SUCCESS FACTORS IN GLOBAL SOFTWARE DEVELOPMENT 151Abdul Wahid Khan, Ghulam Yaseen, Muhammad Imran Khan, Faheem Khan7.1 Introduction 1527.2 Literature Review 1537.3 Research Methodology 1537.3.1 Systematic Literature Review 1547.3.2 Search String Process 1547.3.3 Search String Development 1557.3.4 Selection of Publications 1557.3.5 Commencement of Data Extraction 1577.3.6 Result Generated for Research Questions through SLR by Applying Final Search String 1587.3.7 Categorization of Identified Success Factors 1597.3.8 Analytical Hierarchical Process (AHP) 1607.4 Proposed Methodology 1627.4.1 Questionnaire Development 1637.4.2 Data Sources 1637.4.3 Validation of Identified Success Factors 1637.4.4 Application of AHP to Prioritize Success Factors 1647.4.5 Comparison of Proposed Framework 1697.5 Limitations 1697.6 Implications of the Study 1697.7 Conclusions and Future Work 170References 1708 A PROCESS FRAMEWORK FOR THE CLASSIFICATION OF SECURITY BUG REPORTS 175Shahid Hussain8.1 Introduction 1768.2 Related Work 1778.2.1 Text Mining for Security Bug Report Prediction 1778.2.2 Machine Learning Algorithms-Based Prediction 1788.2.3 Bi-Normal Separation for Feature Selection 1788.3 Proposed Methodology 1788.3.1 Data Gathering and Preprocessing 1798.3.2 Identifying Security-Related Keywords 1798.3.3 Scoring Keywords 1808.3.4 Scoring Bug Reports 1818.4 Experimental Setup 1818.4.1 Machine Learning Algorithm 1818.4.2 Dataset 1818.4.3 Performance Evaluation 1818.5 Results and Discussion 1828.5.1 Response to RQ1 1828.5.2 Response to RQ2 1828.6 Conclusion 183References 1839 A SYSTEMATIC LITERATURE REVIEW OF CHALLENGES FACTORS FOR IMPLEMENTING DEVOPS PRACTICES IN SOFTWARE DEVELOPMENT ORGANIZATIONS: A DEVELOPMENT AND OPERATION TEAMS PERSPECTIVE 187Mohammad Shameem9.1 Introduction 1889.2 Research Methodology 1899.2.1 Stage-1: Planning the Review 1899.2.2 Stage-2: Conducting the Review 1919.2.3 Stage-3: Reporting the Review Process 1919.3 Results 1929.3.1 RQ1 (Challenges Identified in the Literature) 1929.3.2 RQ2 (Most Critical Challenges) 1929.3.3 RQ3 (Development and Operation Analysis) 1939.4 Discussion and Summary 1949.5 Threats to Validity 1949.6 Conclusions and Future Study 195References 19510 DEVOPS’ CULTURE CHALLENGES MODEL (DC2M): A SYSTEMATIC LITERATURE REVIEW PROTOCOL 201Muhammad Shoaib Khan, Abdul Wahid Khan, Javed Khan10.1 Introduction 20210.2 Background 20310.3 Systematic Literature Review Protocol 20410.4 Creating the Search String 20510.5 Search Strategies 20510.5.1 Trial Search 20510.5.2 Recognizing Search Terms Attributes 20610.5.3 Results for a 20610.5.4 Results for b 20610.5.5 Results for c 20710.5.6 Results for d 20710.6 Final Search String Construction 20810.7 Selection Criteria and Search Process 20910.7.1 Inclusion Criteria 20910.7.2 Exclusion Criteria 20910.7.3 Selection of Primary Sources 21010.8 Assessment of Publication Quality 21010.9 Data Extraction Stage 21010.9.1 Initiation of Data Extraction Phase 21010.9.2 Presentation of Data Extraction 21110.9.3 Data Extraction Process 21110.9.4 Data Storage 21110.10 Data Synthesis 21210.11 Discussion 21210.12 Validation of Review Protocol 21310.13 Limitation 214References 21411 CRITICAL CHALLENGES OF DESIGNING SOFTWARE ARCHITECTURE FOR INTERNET OF THINGS (IOT) SOFTWARE SYSTEM 219Noor Rehman, Abdul Wahid Khan11.1 Introduction 22011.2 Background 22111.2.1 Layered Architecture Pattern 22211.2.2 Microservices Software Architecture 22211.2.3 Event-Driven Software Architecture Pattern 22311.2.4 Blackboard Software Architecture Pattern 22411.2.5 Systematic Literature Review for SADM 22411.3 Research Questions 22411.4 Research Methodology 22511.4.1 Constructing Search Term Formulation 22511.4.2 Publication Selection Process 22911.4.3 Quality Assessment of the Publication 23011.4.4 Data Extraction 23011.4.5 Data Extraction Demonstration 23011.4.6 Findings 23211.5 Continent-Wise Comparison of the Challenges Found 23511.6 Limitations 23511.7 Conclusion and Future Work 236References 23712 CHALLENGES TO PROJECT MANAGEMENT IN DISTRIBUTED SOFTWARE DEVELOPMENT: A SYSTEMATIC LITERATURE REVIEW 241Sher Badshah12.1 Introduction 24212.2 Related Work 24212.3 Methodology 24312.3.1 Planning the Review 24412.3.2 Conducting the Review 24512.3.3 Reporting the Review 24612.4 Results and Discussion 24612.5 Conclusion and Future Work 248References 24913 CYBER SECURITY CHALLENGES MODEL: SLR-BASED PROTOCOL AND INITIAL FINDINGS 253Shah Zaib, Abdul Wahid Khan, Iqbal Qasim13.1 Introduction 25413.2 Related Work 25413.3 Systematic Literature Review (SLR) Protocol 25613.4 Research Questions 25613.5 Search Term Construction 25613.6 Strategies for Searching 25713.6.1 Trial Searching 25713.6.2 Characteristics of Search Terms 25713.7 Process of Search String 25813.7.1 Development of Search String 25813.7.2 Resources to be Searched 25913.8 Selection of Publication 25913.8.1 Inclusion Criteria 25913.8.2 Exclusion Criteria 26013.8.3 Support of Secondary Reviewer 26013.9 Assessment of Publication Quality 26013.10 Data Extraction Phase 26113.10.1 Commencement of Data Extraction Phase 26113.10.2 Presentation of Extracted Data 26113.10.3 Data Extraction Process 26113.10.4 Data Storage 26213.11 Literature Search and Selection 26213.12 Results 26313.12.1 Challenges in CSCM Based on Database/Digital Libraries 26313.12.2 Challenges in CSCM Based on Methodology 26513.13 Discussion 26613.14 Limitations 26613.15 Conclusion and Future Work 266References 26714 A PROCESS ASSESSMENT MODEL FOR HUMAN RESOURCE SKILL DEVELOPMENT ENABLING DIGITAL TRANSFORMATION 271Ebru Gökalp14.1 Introduction 27214.2 Literature Review 27314.2.1 Human Resource Skill Development 27314.2.2 Theoretical Background 27314.3 Process Assessment Model for Human Resource Skill Development 27414.3.1 Process Dimension 27414.3.2 Capability Dimension 27414.4 Application of the Process Assessment Model for DX-HRSD 27614.5 Findings and Discussions 27714.6 Conclusion 279References 279
Windows Server für Dummies
Ganz gleich, ob Sie Einsteiger oder Umsteiger sind: Dieses Buch verschafft Ihnen einen guten Einblick in Windows Server und die Möglichkeiten, die Ihnen das komfortable und flexible Serverbetriebssystem von Microsoft gibt. Das Buch zeigt Ihnen, wie Sie das Betriebssystem installieren, aktivieren und einrichten, wie Sie Rollen und Features anlegen und verwalten, wie Sie eine Domäne erstellen und betreiben, wie Sie DNS und DHCP einrichten, wie Sie mit Hyper-V virtualisieren und vor allem wie Sie Ihre Daten sichern und die Prozesse überwachen. Willkommen in der Windows-Server-Welt! Thomas Bär ist seit Ende der neunziger Jahre in der IT tätig. Er hat weitreichende Erfahrungen bei der Einführung und Umsetzung von IT-Prozessen im Gesundheitswesen. Dieses in der Praxis gewonnene Wissen hat er seit Anfang 2000 in zahlreichen Publikationen als Fachjournalist in einer großen Zahl von Artikeln beschrieben. Er lebt und arbeitet in Günzburg.Frank-Michael Schlede arbeitet seit den achtziger Jahren in der IT und ist seit 1990 als Trainer und Fachjournalist tätig. Nach unterschiedlichen Tätigkeiten als Redakteur und Chefredakteur in verschiedenen Verlagen arbeitet er seit Ende 2009 als freier IT-Journalist für verschiedene Online- und Print-Publikationen sowie als Trainer für LinkedIn Learning. Er lebt und arbeitet in Pfaffenhofen an der Ilm.Über die Autoren 7EINFÜHRUNG17Über dieses Buch 17Was Sie nicht lesen müssen 18Törichte Annahmen über den Leser 18Wie dieses Buch aufgebaut ist 18Teil I – Die Grundlagen des Windows-Servers 19Teil II – Einrichtung und wichtige Rollen 19Teil III – Das richtige Leben: Windows Server im Einsatz 19Teil IV – Der Top-Ten- Teil 20Symbole, die in diesem Buch verwendet werden 20Wie es weitergeht 20TEIL I: WINDOWS-SERVER- RUNDLAGEN 23KAPITEL 1 WINDOWS-SERVER- GRUNDLAGEN 25Das kleine 1x1 der Server 25Hardware-Anforderungen 27Hardware Compatibility List – HCL 29Darf es ein bisschen mehr sein? Sizing des Servers 30KAPITEL 2 WER ZÄHLT DIE VERSIONEN UND EDITIONEN?33Server-Geschichte: Windows NT Server bis 2019 33Windows Server 2019: Neuerungen und Vorteile 35Editionen, Versionen und Service-Kanäle 36Andere Welten (1): Windows-Subsystem für Linux 37Andere Welten (2): Container, Docker, Kubernetes 39Windows Server 2022 – die kommende Generation 40KAPITEL 3 CLOUD UND LOKAL43Installation: Cloud oder lokal? 43Windows Server in der Azure Cloud 44Alternative Cloud-Anbieter und deren Anbindungen 46KAMP DHP 47VPN-Zugriff in die Cloud 52KAPITEL 4 FENSTER ODER KONSOLE?55Windows-Oberfläche versus Kommandozeile 55Was die Eingabeaufforderung so kann 57Kommandozeile: Arbeiten direkt »am Prompt« 59KAPITEL 5 POWERSHELL UND DER SERVER61Wichtige PowerShell-Grundlagen 62Begriffe und Besonderheiten der PowerShell 63Erste Schritte zum eigenen Skript 67Einige Informationen zu Objekten 67Wichtig für viele Zwecke: Vergleichsoperatoren 70Verzweigungen und Schleifen 73Wie Sie ein Skript »zum Laufen« bringen 78PowerShell in der Server-Verwaltung einsetzen 80Prozesse finden und überwachen 80Drucker im Griff behalten 83Das Netzwerk und dessen Geräte 86TEIL II: EINRICHTUNG UND WICHTIGE ROLLEN 93KAPITEL 6 INSTALLATION VON WINDOWS SERVER95Die Frage nach dem Boot-Medium 95Schritt für Schritt: die Installation 97Alternative: Core-Server installieren 101KAPITEL 7 ACTIVE DIRECTORY105Was ist überhaupt ein Active Directory? 106Grundbegriffe rund um das Active Directory 107Installation einer Active-Directory- Domäne 108Erste Benutzer und Computer 113Administrative Konten 118Weiteren Domänencontroller in einer Domäne installieren 121Replikation 126Betriebsmasterrollen 128Entfernung eines Domänencontrollers 130Active-Directory- Verwaltung über den Client 132Active-Directory- Papierkorb 133Active-Directory- Verwaltungscenter 134Gruppen, Benutzer, Container und OUs 136Erstellung von Gruppen 138Benutzer Gruppen zuweisen 140Benutzerkontentypen 143Standardbenutzerkonten und Gruppen 143Rechte und Privilegien 145KAPITEL 8 DNS UND DHCP147Grundlagen der Namensauflösung 147Basiseinrichtung des DNS-Server- Diensts 150DNS-Konfiguration 155DNS-Stammhinweise wiederherstellen 157Verwalten von DNS-Einträgen 158Anlage einer Reverse-Lookupzone 159Anlage eines Hosteintrags 160Primärer und sekundärer DNS-Server 161Zoneneigenschaften 165Batch-Export von DNS-Einträgen 168Microsoft-DNS- Server- Historie 170Allgemeine DNS-Sicherheit 172DNS absichern mit DNSSEC und DANE 172Konfiguration von DNSSEC 173Grundlagen von DHCP 178APIPA 179Installieren eines DHCP-Servers 180DHCP-Reservierungen 183DHCP-Optionen 186DHCP-Failover 187IPAM 190KAPITEL 9 SPEICHERDIENSTE – DATEI-SERVER195Platten und Storage 196RAID, iSCSI-Zielserver und iSCSI-Initiator 196iSCSI-Zielspeicheranbieter 201Server für NFS 203Freigaben, Datei-Server, Ressourcenmanager 207Datendeduplizierung 214DFS-Namespaces 217DFS-Replikation 219Grundlagen zu BranchCache für Datei-Server 221Grundlagen zu Arbeitsordnern 223KAPITEL 10 ERWEITERTE RESSOURCENFREIGABEN225Versteckte und administrative Freigaben 225Dateifreigaben organisieren 228Laufwerkfreigabe per Gruppenrichtlinie zuordnen 228Lassen Sie sich nicht ausschließen 230Vor Blicken schützen – ABE 231Dynamic Access Control 233Prüfung des effektiven Zugriffs 241KAPITEL 11 HYPER-V245Virtualisierung: Begriffe und Bestandteile 245Vorteile beim Einsatz von Hyper-V 246Einrichtung der Hyper-V- Rolle 247Hyper-V konfigurieren 250Manager für virtuelle Switches 254Einrichten eines virtuellen Switches 255Virtueller Switch und die PowerShell 257KAPITEL 12 VIRTUELLE COMPUTER EINSETZEN 261Anlegen einer virtuellen Maschine 261Konfiguration der virtuellen Maschine 266KAPITEL 13 WINDOWS UND LINUX ALS GASTSYSTEM277Virtuelle Computer mit der PowerShell im Griff 283Ein genauerer Blick auf die Prüfpunkte 285Erstellen eines Prüfpunkts 286Anwenden eines Prüfpunkts 288Löschen eines Prüfpunkts 290Ubuntu-Linux als Gastsystem 291KAPITEL 14 DRUCKDIENSTE297Begrifflichkeiten 299Installation von Druck-und Dokumentendiensten 301Druckerserver in der Druckerverwaltung hinzufügen 305Arbeiten mit Druckfiltern 305Drucker in der Druckerverwaltung hinzufügen 307Drucker bereitstellen 311Drucker im-und exportieren 313Druckaufträge im Spooler ansehen 314Line Printer Daemon und Line Printer Remote 315Druckertreiberisolation 316Internetdrucken 317TEIL III: WINDOWS-SERVER IM EINSATZ 321KAPITEL 15 DOMÄNEN-BEITRITT323Vorbedingungen für den Domänen-Beitritt 323Einbinden in die Domäne 327Offline einer Domäne beitreten 329GRUPPENRICHTLINIEN 333Gruppenrichtlinienobjekt verknüpfen 338Gruppenrichtlinienobjekt löschen 339Gruppenrichtlinien und Gruppen 340WMI-Filter 342WMI Query Language 344Zielgruppenadressierung 346Administrative Vorlagen 349Central Store 351Handlungsempfehlung für Gruppenrichtlinien 352Praktische Empfehlungen 354Anmeldung am Computer verweigern 354Desktophintergrundbild festlegen 357Sicherheitsrelevante Gruppenrichtlinien 359Standardbrowser per Gruppenrichtlinie 362Office-VBA per Gruppenrichtlinie ausschalten 363Softwareinstallation per Gruppenrichtlinie 365Entfernen eines Pakets und Updates 367Loopback 368Programme per GPO sperren 368Troubleshooting für Gruppenrichtlinien 370KAPITEL 17 ÜBERWACHUNG DES SERVER-BETRIEBS373Der Server-Manager 373Verwalten des lokalen Servers 377Lokalen Server konfigurieren 379Überblick über das Tools-Menü 381KAPITEL 18 DAS WINDOWS ADMIN CENTER385Was ist das Windows Admin Center (WAC)? 385Installation 387Konfiguration und erster Einsatz 390Grundsätzliche Einstellungen und Erweiterungen 394Weitere Einstellungen und Features 399KAPITEL 19 WINDOWS-SERVER- UPDATES405Einstellungen und Features für die Updates 406Update-Richtlinien verändern 414Update-Einstellungen mittels sconfig ändern 416KAPITEL 20 BACKUP419Grundlagen der Sicherung und Wiederherstellung 420Windows-Server- Sicherung 422Einrichten von Backup-Jobs 423Recovery-Medium nutzen 425Einzelne Dateien wiederherstellen 426Worum handelt es sich beim Azure-Backup- Dienst? 427KAPITEL 21 AUSFÄLLE UND DEREN VERMEIDUNG431Vermeidung von Ausfällen 432Windows aktuell halten 433Applikationen aktuell halten 434RAM-Test 435Festplattenspeicherplatz beachten 436Monitoring 437PRTG 438Nagios und Nagios XI 438Syspectr 439KAPITEL 22 FERNZUGRIFFE441Konsolenzugriffe 442Microsoft Management Console (MMC) 445Remote Desktop (RDP) 446Dritthersteller-Tools 447KAPITEL 23 TROUBLESHOOTING451Erst die Ereignisanzeige – dann der Rest! 453Eigene Dokumentationen 454Server-Manager als Hilfestellung 455IPv6 unterdrücken 456Wo finde ich Unterstützung? 458TEIL IV: DER TOP-TEN- TEIL 461KAPITEL 24 DIE 10 BESTEN SERVER-TOOLS463Veeam Backup & Replication Community Edition 463AD Replication Status Tool 463Specops Password Auditor für Active Directory 463Winscp 463Microsoft Security Compliance Toolkit 1 0 (SCT) 464WiseDateman Password Control 464WireShark 464RSAT 464SysMon 464SysInternals Suite (komplett) 464Stichwortverzeichnis 467
Cloud-Native Microservices with Apache Pulsar
Apply different enterprise integration and processing strategies available with Pulsar, Apache's multi-tenant, high-performance, cloud-native messaging and streaming platform. This book is a comprehensive guide that examines using Pulsar Java libraries to build distributed applications with message-driven architecture.You'll begin with an introduction to Apache Pulsar architecture. The first few chapters build a foundation of message-driven architecture. Next, you'll perform a setup of all the required Pulsar components. The book also covers work with Apache Pulsar client library to build producers and consumers for the discussed patterns.You'll then explore the transformation, filter, resiliency, and tracing capabilities available with Pulsar. Moving forward, the book will discuss best practices when building message schemas and demonstrate integration patterns using microservices. Security is an important aspect of any application; the book will cover authentication and authorization in Apache Pulsar such as Transport Layer Security (TLS), OAuth 2.0, and JSON Web Token (JWT). The final chapters will cover Apache Pulsar deployment in Kubernetes. You'll build microservices and serverless components such as AWS Lambda integrated with Apache Pulsar on Kubernetes.After completing the book, you'll be able to comfortably work with the large set of out-of-the-box integration options offered by Apache Pulsar.WHAT YOU'LL LEARN* Examine the important Apache Pulsar components * Build applications using Apache Pulsar client libraries* Use Apache Pulsar effectively with microservices* Deploy Apache Pulsar to the cloudWHO THIS BOOK IS FORCloud architects and software developers who build systems in the cloud-native technologies.RAHUL SHARMA is a software developer with around 17 years of experience in Java/J2EE and Python applications. Being an open-source enthusiast, he has contributed to various projects like Apache Crunch, and so on. In his career, he has worked with companies of various sizes, from enterprises to start-ups. He has worked on Kubernetes and microservices extensively for enterprises.MOHAMMAD ATYAB is a software developer with more than 13 years of developing products. He has worked in various languages primarily Java/J2EE, Python, C++. He has a passion of building products and has created web based scalable applications in chat bots, ecommerce, marketing and financial domains. He has worked in large enterprises as well as startups and worked extensively in the areas of Big Data and AI.DATA PROCESSING WITH APACHE PULSARChapter 1: Introduction to Apache PulsarChapter 2: Working with MessagesChapter 3: Working with Pulsar FunctionsChapter 4: Schema RegistryChapter 5: Build Microservices using PulsarChapter 6: Pulsar ConnectersChapter 7: Pulsar SecurityChapter 8: Deploy Pulsar on Kubernetes
Cybersecurity Risk Management
CYBERSECURITY RISK MANAGEMENTIn Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework, veteran technology analyst Cynthia Brumfield, with contributions from cybersecurity expert Brian Haugli, delivers a straightforward and up-to-date exploration of the fundamentals of cybersecurity risk planning and management. The book offers readers easy-to-understand overviews of cybersecurity risk management principles, user, and network infrastructure planning, as well as the tools and techniques for detecting cyberattacks. The book also provides a roadmap to the development of a continuity of operations plan in the event of a cyberattack. With incisive insights into the Framework for Improving Cybersecurity of Critical Infrastructure produced by the United States National Institute of Standards and Technology (NIST), Cybersecurity Risk Management presents the gold standard in practical guidance for the implementation of risk management best practices. Filled with clear and easy-to-follow advice, this book also offers readers:* A concise introduction to the principles of cybersecurity risk management and the steps necessary to manage digital risk to systems, assets, data, and capabilities* A valuable exploration of modern tools that can improve an organization’s network infrastructure protection* A practical discussion of the challenges involved in detecting and responding to a cyberattack and the importance of continuous security monitoring* A helpful examination of the recovery from cybersecurity incidentsPerfect for undergraduate and graduate students studying cybersecurity, Cybersecurity Risk Management is also an ideal resource for IT professionals working in private sector and government organizations worldwide who are considering implementing, or who may be required to implement, the NIST Framework at their organization. CYNTHIA BRUMFIELD is the President of DCT Associates and a veteran media, communications, and technology analyst who is now focused on cybersecurity. Backed by executive-level experience at top-tier U.S. communications trade associations, a premier investment analysis firm, and her own successful publication and consulting businesses, she has spearheaded research, analysis, consulting, publishing, and education initiatives for major organizations, including Fortune 500 corporations, security organizations, and federal government clients. In addition, she is an award-winning writer who currently runs a pioneering cybersecurity news destination, Metacurity, and writes regularly for top news outlets, including ongoing columns for CSO Online.BRIAN HAUGLI is the Managing Partner and Founder of SideChannel. He has been driving security programs for two decades and brings a true practitioner’s approach to the industry. He has led programs for the DoD, Pentagon, Intelligence Community, Fortune 500, and many others. In addition, Brian is a renowned speaker and expert on NIST guidance, threat intelligence implementations, and strategic organizational initiatives. Academic Foreword xiiiAcknowledgments xvPreface – Overview of the NIST Framework xviiBackground on the Framework xviiiFramework Based on Risk Management xixThe Framework Core xixFramework Implementation Tiers xxiFramework Profile xxiiOther Aspects of the Framework Document xxiiiRecent Developments At Nist xxiiiCHAPTER 1 CYBERSECURITY RISK PLANNING AND MANAGEMENT 1Introduction 2I. What Is Cybersecurity Risk Management? 2A. Risk Management Is a Process 3II. Asset Management 4A. Inventory Every Physical Device and System You Have and Keep the Inventory Updated 5B. Inventory Every Software Platform and Application You Use and Keep the Inventory Updated 9C. Prioritize Every Device, Software Platform, and Application Based on Importance 10D. Establish Personnel Security Requirements Including Third-Party Stakeholders 11III. Governance 13A. Make Sure You Educate Management about Risks 13IV. Risk Assessment and Management 15A. Know Where You’re Vulnerable 15B. Identify the Threats You Face, Both Internally and Externally 16C. Focus on the Vulnerabilities and Threats That Are Most Likely AND Pose the Highest Risk to Assets 17D. Develop Plans for Dealing with the Highest Risks 18Summary 20Chapter Quiz 20Essential Reading on Cybersecurity Risk Management 22CHAPTER 2 USER AND NETWORK INFRASTRUCTURE PLANNING AND MANAGEMENT 23I. Introduction 24II. Infrastructure Planning and Management Is All about Protection, Where the Rubber Meets the Road 24A. Identity Management, Authentication, and Access Control 251. Always Be Aware of Who Has Access to Which System, for Which Period of Time, and from Where the Access Is Granted 272. Establish, Maintain, and Audit an Active Control List and Process for Who Can Physically Gain Access to Systems 283. Establish Policies, Procedures, and Controls for Who Has Remote Access to Systems 284. Make Sure That Users Have the Least Authority Possible to Perform Their Jobs and Ensure That at Least Two Individuals Are Responsible for a Task 295. Implement Network Security Controls on All Internal Communications, Denying Communications among Various Segments Where Necessary 31A Word about Firewalls 316. Associate Activities with a Real Person or a Single Specific Entity 327. Use Single- or Multi-Factor Authentication Based on the Risk Involved in the Interaction 33III. Awareness and Training 34A. Make Sure That Privileged Users and Security Personnel Understand Their Roles and Responsibilities 35IV. Data Security 35A. Protect the Integrity of Active and Archived Databases 35B. Protect the Confidentiality and Integrity of Corporate Data Once It Leaves Internal Networks 36C. Assure That Information Can Only Be Accessed by Those Authorized to Do So and Protect Hardware and Storage Media 37D. Keep Your Development and Testing Environments Separate from Your Production Environment 38E. Implement Checking Mechanisms to Verify Hardware Integrity 39V. Information Protection Processes and Procedures 39A. Create a Baseline of IT and OT Systems 40B. Manage System Configuration Changes in a Careful, Methodical Way 41A Word about Patch Management 42C. Perform Frequent Backups and Test Your Backup Systems Often 43D. Create a Plan That Focuses on Ensuring That Assets and Personnel Will Be Able to Continue to Function in the Event of a Crippling Attack or Disaster 43VI. Mainte nance 44A. Perform Maintenance and Repair of Assets and Log Activities Promptly 45B. Develop Criteria for Authorizing, Monitoring, and Controlling All Maintenance and Diagnostic Activities for Third Parties 45VII. Protective Technology 46A. Restrict the Use of Certain Types of Media On Your Systems 46B. Wherever Possible, Limit Functionality to a Single Function Per Device (Least Functionality) 47C. Implement Mechanisms to Achieve Resilience on Shared Infrastructure 48Summary 49Chapter Quiz 50Essential Reading on Network Management 51CHAPTER 3 TOOLS AND TECHNIQUES FOR DETECTING CYBER INCIDENTS 53Introduction 54What Is an Incident? 55I. Detect 56A. Anomalies and Events 561. Establish Baseline Data for Normal, Regular Traffic Activity and Standard Configuration for Network Devices 572. Monitor Systems with Intrusion Detection Systems and Establish a Way of Sending and Receiving Notifications of Detected Events; Establish a Means of Verifying, Assessing, and Tracking the Source of Anomalies 58A Word about Antivirus Software 603. Deploy One or More Centralized Log File Monitors and Configure Logging Devices throughout the Organization to Send Data Back to the Centralized Log Monitor 614. Determine the Impact of Events Both Before and After they Occur 615. Develop a Threshold for How Many Times an Event Can Occur Before You Take Action 62B. Continuous Monitoring 621. Develop Strategies for Detecting Breaches as Soon as Possible, Emphasizing Continuous Surveillance of Systems through Network Monitoring 632. Ensure That Appropriate Access to the Physical Environment Is Monitored, Most Likely through Electronic Monitoring or Alarm Systems 643. Monitor Employee Behavior in Terms of Both Physical and Electronic Access to Detect Unauthorized Access 654. Develop a System for Ensuring That Software Is Free of Malicious Code through Software Code Inspection and Vulnerability Assessments 655. Monitor Mobile Code Applications (e.g., Java Applets) for Malicious Activity by Authenticating the Codes’ Origins, Verifying their Integrity, and Limiting the Actions they Can Perform 666. Evaluate a Provider’s Internal and External Controls’ Adequacy and Ensure they Develop and Adhere to Appropriate Policies, Procedures, and Standards; Consider the Results of Internal and External Audits 667. Monitor Employee Activity for Security Purposes and Assess When Unauthorized Access Occurs 678. Use Vulnerability Scanning Tools to Find Your Organization’s Weaknesses 68C. Detection Processes 681. Establish a Clear Delineation between Network and Security Detection, with the Networking Group and the Security Group Having Distinct and Different Responsibilities 692. Create a Formal Detection Oversight and Control Management Function; Define Leadership for a Security Review, Operational Roles, and a Formal Organizational Plan; Train Reviewers to Perform Their Duties Correctly and Implement the Review Process 703. Test Detection Processes Either Manually or in an Automated Fashion in Conformance with the Organization’s Risk Assessment 714. Inform Relevant Personnel Who Must Use Data or Network Security Information about What Is Happening and Otherwise Facilitate Organizational Communication 715. Document the Process for Event Detection to Improve the Organization’s Detection Systems 72Summary 72Chapter Quiz 73Essential Reading for Tools and Techniques for Detecting a Cyberattack 74CHAPTER 4 DEVELOPING A CONTINUITY OF OPERATIONS PLAN 75Introduction 77A. One Size Does Not Fit All 77I. Response 77A. Develop an Executable Response Plan 79B. Understand the Importance of Communications in Incident Response 80C. Prepare for Corporate-Wide Involvement During Some Cybersecurity Attacks 81II. Analysis 82A. Examine Your Intrusion Detection System in Analyzing an Incident 82B. Understand the Impact of the Event 83C. Gather and Preserve Evidence 84D. Prioritize the Treatment of the Incident Consistent with Your Response Plan 84E. Establish Processes for Handling Vulnerability Disclosures 85III. Mitigation 86A. Take Steps to Contain the Incident 86B. Decrease the Threat Level by Eliminating or Intercepting the Adversary as Soon as the Incident Occurs 87C. Mitigate Vulnerabilities or Designate Them as Accepted Risk 88IV. Recover 88A. Recovery Plan Is Executed During or After a Cybersecurity Incident 89B. Update Recovery Procedures Based on New Information as Recovery Gets Underway 91C. Develop Relationships with Media to Accurately Disseminate Information and Engage in Reputational Damage Limitation 92Summary 92Chapter Quiz 93Essential Reading for Developing a Continuity of Operations Plan 94CHAPTER 5 SUPPLY CHAIN RISK MANAGEMENT 95Introduction 96I. NIST Special Publication 800-161 96II. Software Bill of Materials 97III. NIST Revised Framework Incorporates Major Supply Chain Category 98A. Identify, Establish, and Assess Cyber Supply Chain Risk Management Processes and Gain Stakeholder Agreement 98B. Identify, Prioritize, and Assess Suppliers and Third-Party Partners of Suppliers 99C. Develop Contracts with Suppliers and Third-Party Partners to Address Your Organization’s Supply Chain Risk Management Goals 100D. Routinely Assess Suppliers and Third-Party Partners Using Audits, Test Results, and Other Forms of Evaluation 101E. Test to Make Sure Your Suppliers and Third-Party Providers Can Respond to and Recover from Service Disruption 102Summary 103Chapter Quiz 103Essential Reading for Supply Chain Risk Management 104CHAPTER 6 MANUFACTURING AND INDUSTRIAL CONTROL SYSTEMS SECURITY 105Essential Reading on Manufacturing and Industrial Control Security 110Appendix A: Helpful Advice for Small OrganizationsSeeking to Implement Some of the Book’s Recommendations 111Appendix B: Critical Security Controls Version 8.0 Mapped to NIST CSF v1.1 113Answers to Chapter Quizzes 121Index 131
NSX-T Logical Routing
This book is a one-stop guide for IT professionals with a background in traditional and software-defined networks looking to expand or hone their skill set and has been developed through a combination of extensive research and testing in both development and production environments. It provides reliable information on a fundamental component of NSX-T, logical routing.A comprehensive understanding of this capability will help IT professionals with design, implementation, troubleshooting, and enhancements.The book starts with an introduction to the foundational components of the NSX-T platform and how NSX-T fits into the software-defined data center. The focus then moves to tunnel endpoints, which is a critical aspect of the NSX-T platform, and the differences between overlays and underlays are explained. Once the basics are covered, it provides a detailed description of how NSX-T components communicate.Next, the book introduces logical routing and its components and provides a better understanding of how these components function with one another. Several packet walks are illustrated to explain NSX-T logical routing behavior in different scenarios. After mastering logical routing, it explains how NSX-T ensures data plane availability, which is explored at various layers of NSX-T.Finally, the book explores the concepts and intricacies of routing into and out of the NSX-T environment. It deep dives into utilizing the Border Gateway Protocol (BGP), Open Shortest Path First (OSPF), and Static Routing.WHAT YOU WILL LEARN* Know how VMware NSX-T endpoints communicate* Understand how NSX-T logical routing works* Know how NSX-T provides high availability for the data plane* Understand how NSX-T operates with static and dynamic routing protocols* Configure the platformWHO THIS BOOK IS FORReaders with an intermediate to advanced skill set who wish to further their knowledge, those who focus on datacenter technology, those planning to move to a software-defined datacenter to transform the way their current datacenter works, and anyone looking to learn about VMware NSX-T and how it operatesSHASHANK MOHAN (Shank) is the ANZ Professional Services Practice Lead for Networking at VMware. He brings over a decade of experience in IT infrastructure and architecture, with a specialization in networking, virtual cloud networking (VCN), and VMware Cloud Foundation (VCF).Shank is a VMware Advanced Professional in Network Virtualization, a vExpert in NSX and Security, and NSX Advanced Load Balancer (AVI), he is also CISCO and AWS certified.Shank was born and raised in Sydney, Australia but now prefers the calm and cold capital city, Canberra. Between firmware upgrades and breaking his home lab, he makes time for weightlifting, gardening, and most importantly, his family. While Shank is a first-time author, he is a serial blogger. If you’d like to get in touch or continue to learn about virtualization, look up https://www.lab2prod.com.au/.Chapter 1: IntroductionThe Modern-Day Software-Defined Data CenterSoftware-Defined Datacenter ArchitectureVMware NSX-T: SDDC NetworkingThe Basics of NSX-TSummaryChapter 2: Tunnel EndpointsOverlay NetworkingNSX-T Transport Node CommunicationTransport Node TypesWhat Is a Tunnel Endpoint?Tunnel Endpoint CommunicationRouted Transport VLANsTunnel Endpoint ConfigurationTunnel Endpoint FailureSummaryChapter 3: Remote Tunnel EndpointsA Solution for Multiple SitesNSX-T Federation ComponentsSummaryChapter 4: Logical RoutingWhat Is Logical Routing?NSX-T Logical ComponentsLogical Routing ArchitecturePacket Flow Within the NSX-T FabricSummaryChapter 5: Data Plane AvailabilityEdge Cluster Deployment ConsiderationsEdge Failure TypesBidirectional Forwarding Detection (BFD)Equal Cost Multipathing (ECMP)SummaryChapter 6: Datacenter RoutingChapter ObjectivesCommunication with the Physical NetworkNSX-T and BGPNSX-T and OSPFNSX-T and Static RoutingDeterministic PeeringBidirectional Forwarding Detection (BFD)Unicast Reverse Path Forwarding (uRPF)Summary
Practical Docker with Python
Learn the fundamentals of containerization and get acquainted with Docker. This second edition builds upon the foundation of the first book by revising all the chapters, updating the commands, code, and examples to meet the changes in Docker. It also introduces a new chapter on setting up your application for production deployment and breaks down terminologies like Dockerfile and Docker volumes while taking you on a guided tour of building a telegram bot using Python.You'll start with a brief history of how containerization has changed over the years. Next, we look at how to install (including using the new WSL2 mode) and get started with Docker. The next couple of chapters will focus on understanding the Dockerfile, including the structure and the core instructions used in building a Docker image. You'll also see how to distribute Docker images using Docker hub and other private registries. From there, you'll look at using Docker volumes for persisting data. Then learn how to run multi-container applications with Docker compose and learn inter-container networking works with Docker networks. Finally, you'll look at how to prepare a containerized application for production deployments.Throughout the book you'll apply the techniques learned through the chapters by building a Telegram messenger Chatbot and see how much easier Docker makes it possible to build, release, contribute and distribute an application. In addition, the book shows how optimize the Docker images for production servers by using multi-stage builds and improve the reliability of your services by using health checks and restart policies. Practical Docker with Python will break down terminologies like Dockerfile and Docker volumes, and take you on a guided tour of building a telegram bot using Python.WHAT YOU'LL LEARN* Compare the difference between containerization and virtualization* Understand the Dockerfile and converting your application to Docker image* Define and run multi-container applications with Docker compose* Review data persistency with Docker volumesWHO THIS BOOK IS FORBeginner and intermediate developers, DevOps practitioners who are looking improving their build and release workflow by containerizing applications as well as system administrators learning to implement DevOps principles.Sathyajith Bhat is a seasoned DevOps/SRE professional currently working as a DevOps Engineer on Adobe I/O, which is Adobe’s developer ecosystem and community. Prior to this, he was the lead Ops/SRE at Styletag.com. He transitioned to Ops/SRE after being a lead analyst at CGI, working primarily on Oracle Fusion stack (Oracle DB/PL/SQL/Oracle Forms and other related middleware) designing, architecting, and implementing complete end-to-end solutions for a major insurance provider in the Nordics.In his free time, Sathya is part of the Barcamp Bangalore planning team, handling DevOps and Social Media for BCB. He is also a volunteer Community Moderator at Super User and Web Apps Stack Exchange, keeps the servers for Indian Video Gamer forums up and running, and was previously a Moderator for Chip-India and Tech 2 forums.Chapter 1: Introduction to Containerization & DockerChapter Goal: Brief intro into containerization, how they compare to virtual machines, Intro to Docker and getting the reader ready for the practical aspects of the bookNo of pagesSub -Topics1. What are containers2. Containers vs Virtual machines3. Introduction to Docker4. CONTAINER RUNTIMES (OCI, CRI-O, CONTAINERD)Chapter 2: Docker 101Chapter Goal: Getting started with Docker, running a sample containerNo of pages:Sub - Topics:1. INSTALLING DOCKER (INCLUDING CHANGES FOR INSTALLING DOCKER FOR WINDOWS USING THE WSL2 ENGINE)2. Checking if Docker is ready3. Docker client4. Understanding Jargon around Docker (INCLUDING DOCKER REGISTRIES, REPOSITORIES, TAGS)5. Running/stopping/ connecting a docker container6. Dockerfile brief7. Practical: Running a simple container, hands-on some common Docker commandsChapter 3: Building the Python AppChapter Goal: Getting to understand the project, APIs involved, pre-requisitesNo of pages:Sub - Topics:1. Project description (delivering latest content from Reddit to Telegram messenger)2. Setting up the Python workspace (installing the required libraries, setting up virtualenv)3. Creating a Telegram bot4. Running the Python application and confirming bot worksChapter 4: Understanding DockerfileChapter Goal: Getting to know Dockerfile, the different constructs and conceptsNo of pages:Sub - Topics:1. Dockerfile, dockerignore2. Base image & using them with “from …”3. RUN/CMD/Environment variables4. HOW AND WHY TO TAG DOCKER IMAGES5. WHY TO AVOID THE ‘LATEST’ TAG6. Practical: Modifying sample Dockerfile to run our ProjectChapter 5: Understanding Docker VolumesChapter Goal: Containers are meant for stateless applications. Chapter explains steps needed to persist data1. Problem of stateful applications in containers2. Docker volumes3. Practical: Show how data in containers is lost when container is killed and how Docker volumes avoid this4. Practical: Modifying our project Dockerfile to add Docker volumesChapter 6: Docker NetworkingChapter Goal: Overview of Docker networking, linking containers1. Docker bridged network2. User defined networks3. Practical: Create a Database container and link it with our project application server containerChapter 7: Multi Container ApplicationsChapter Goal: Building multi-container applications with Docker compose1. A LOOK AT DOCKER-COMPOSE VERSUS DOCKER COMPOSE2. Docker Compose file reference3. Linking/establishing dependencies across containers4. Environment variables across linked containers5. Practical: Moving our project from separate linked containers to Docker Compose projectCHAPTER 8: PREPARING FOR PRODUCTION DEPLOYMENTS1. WHAT IS ORCHESTRATION AND WHY DO WE NEED ORCHESTRATION2. SETTING UP CI WITH GITHUB ACTIONS TO BUILD A NEW IMAGE ON EVERY COMMIT3. TIPS TO SETUP YOUR PRODUCTION DOCKER HOSTS AND CONTAINERS4. DEPLOYING YOUR CONTAINER IMAGE TO KUBERNETES
Robotic Process Automation mit SAP
Wiederkehrende Routineaufgaben? Mit SAP Intelligent Robotic Process Automation können Sie diese von intelligenten Bots ausführen lassen! In diesem umfassenden Handbuch erfahren Sie, für welche Geschäftsabläufe sich RPA eignet, wie Sie mit der SAP-Lösung passende Bots entwickeln und wie Sie Ihre automatisierten Prozesse verwalten. Auch die Möglichkeiten, die Ihnen die Integration von künstlicher Intelligenz bietet, stellt Ihnen das erfahrene Autorenteam vor. Aus dem Inhalt: Einsatzgebiete von RPAProjektmanagementDeklaration und Capturing von AnwendungenWorkflows designenBenutzeroberflächen erstellenTest und DebuggingDeployment und Ausführung von BotsIntegration in SAP-AnwendungenDesktop Studio und Cloud StudioCloud Factory und Desktop AgentKonfiguration und Administration automatisierter ProzesseRPA und KI Einleitung ... 15 TEIL I. Einführung ... 19 1. Robotic Process Automation ... 21 1.1 ... Rahmenbedingungen und Grundlagen ... 21 1.2 ... Formen der Automatisierung ... 23 1.3 ... Robotic Process Automation und Projektmanagement ... 25 1.4 ... Zusammenfassung ... 42 2. Technologische Grundlagen ... 43 2.1 ... Abgrenzung zwischen RPA und Business Process Management ... 43 2.2 ... Abgrenzung zwischen RPA und Process Mining ... 46 2.3 ... Abgrenzung zwischen RPA und Workflow Management ... 47 2.4 ... Abgrenzung zwischen RPA und Business Rules Management ... 49 2.5 ... Technologische Grundstruktur von RPA-Systemen ... 50 2.6 ... Zusammenfassung ... 51 3. Einführung in SAP Intelligent Robotic Process Automation ... 53 3.1 ... Überblick ... 53 3.2 ... Desktop Studio ... 56 3.3 ... Cloud Studio ... 59 3.4 ... Desktop Agent ... 61 3.5 ... Cloud Factory ... 62 3.6 ... Zusammenwirken der Komponenten ... 64 3.7 ... Zusammenfassung ... 68 TEIL II. Entwicklung eines Bots ... 69 4. Capturing und Deklaration von Anwendungen ... 71 4.1 ... Technologien für die Integration in den Automatisierungsprozess ... 72 4.2 ... Beispiel: Automatisierter Zielprozess der Maschinenbau GmbH ... 73 4.3 ... RPA-Projekt anlegen ... 74 4.4 ... Deklaration ... 76 4.5 ... Erweiterte Deklaration ... 91 4.6 ... Zusammenfassung ... 102 5. Workflows designen ... 103 5.1 ... Workflows ... 104 5.2 ... Aktivitäten ... 110 5.3 ... Wiederverwendbarkeit ... 117 5.4 ... Codegenerierung und -manipulation ... 119 5.5 ... Gesamtaufbau des Workflows für die Maschinenbau GmbH ... 125 5.6 ... Zusammenfassung ... 144 6. Workflows erweitern ... 145 6.1 ... Editor und Coding-Assistenten ... 146 6.2 ... Einbindung von benutzerdefiniertem Code ... 155 6.3 ... Integrierte Bibliotheken ... 164 6.4 ... Zusammenfassung ... 170 7. Benutzeroberflächen erstellen ... 171 7.1 ... Die Komponenten des UI Designer ... 172 7.2 ... Gestaltung eines Popup-Fensters für die Automatisierung der Maschinenbau GmbH ... 180 7.3 ... Zusammenfassung ... 186 8. Testen und Debugging ... 187 8.1 ... Einführung in den Desktop Debugger ... 187 8.2 ... Kompilieren und Debuggen ... 199 8.3 ... Zusammenfassung ... 210 TEIL III. Anpassung und Verwaltung automatisierter Prozesse ... 211 9. Deployment und Ausführung von Bots ... 213 9.1 ... Import des Bots in die Cloud Factory ... 213 9.2 ... Ausführung des automatisierten Prozesses ... 219 9.3 ... Zusammenfassung ... 233 10. Konfiguration und Administration automatisierter Prozesse ... 235 10.1 ... Management von RPA-Projekten ... 235 10.2 ... Monitoring ... 250 10.3 ... Zusammenfassung ... 262 TEIL IV. Weiterführende Themen ... 263 11. Integration der Unternehmensanwendungen ... 265 11.1 ... Integration von SAP-GUI-Anwendungen ... 265 11.2 ... Integration von SAP-Fiori-Anwendungen ... 293 11.3 ... Integration von Microsoft-Anwendungen ... 298 11.4 ... Integration des Dateisystems ... 309 11.5 ... Zusammenfassung ... 312 12. Modellierung im Cloud Studio ... 315 12.1 ... Das Cloud Studio im Überblick ... 315 12.2 ... Entwicklung eines Bots unter Verwendung einer Excel-Datei ... 317 12.3 ... Entwicklung eines Bots zum Lesen von E-Mails in Outlook ... 343 12.4 ... Zusammenfassung ... 362 13. Robotic Process Automation und künstliche Intelligenz ... 363 13.1 ... Grenzen von Robotic Process Automation und Chancen durch künstliche Intelligenz ... 365 13.2 ... Einsatzoptionen von künstlicher Intelligenz in RPA-Szenarien ... 371 13.3 ... Hyperautomation ... 377 13.4 ... Prozessuales Wissensmanagement ... 378 13.5 ... Zusammenfassung ... 381 14. Ausblick ... 383 14.1 ... SAP Intelligent RPA 2.0 ... 383 14.2 ... Zusammenfassung ... 389 Anhang ... 391 A ... Nützliche Befehle und Tastenkombinationen ... 391 Das Autorenteam ... 403 Index ... 405
Heimautomation mit KNX, DALI, 1-Wire und Co.
Wenn Sie Ihr Zuhause teilweise oder vollständig professionell mit KNX automatisieren möchten, dann ist das Ihr Buch: Es begleitet Sie bei allen Schritten von der Planung über die Auswahl der Komponenten bis hin zu Einbau, Parametrierung, Vernetzung und Absicherung – stets unterstützt von nützlichen Planungshilfen, Einkaufslisten und zahllosen Praxistipps! Selbstverständlich mit dabei: Zentrale Grundlagen der Elektrik, der intelligenten Gebäudetechnik und Programmierung. • Grundlagen, Technologien, Planung, Hardware, Software und technische Umsetzung • Gewerkeübergreifende Vernetzung: Beleuchtung, Beschattung, Heizung, Sicherheit, Türkommunikation, Multimedia usw. • Inkl. Automation mit HomeServer, Raspberry Pi, Cubietruck und vollständigem Praxisszenario • Der Blog zum Buch von Stefan Heinle http://www.heimautomation-buch.de/
Das Internet gehört uns allen!
Protokolle, Datenschutz, Zensur und Internet Governance anschaulich illustriert. Erstauflage, November 2021.Das Internet hat die zwischenmenschliche Kommunikation tiefgreifend verändert, aber die meisten von uns verstehen nicht wirklich, wie es funktioniert. Wie können Informationen durch das Internet reisen? Können wir online wirklich anonym und privat sein? Wer kontrolliert das Internet, und warum ist das wichtig? Und... was hat es mit den ganzen Katzen auf sich?»Das Internet gehört uns allen!« beantwortet diese Fragen und mehr. In klarer Sprache und mit skurrilen Illustrationen übersetzt das Autorenteam hochtechnische Themen in verständliche Sprache, die das komplizierteste Computernetzwerk der Welt entmystifiziert.Mit der Comic-Katze Catnip erfahren Sie mehr über:das »Wie-Was-Warum« von Knoten, Paketen und Internet-Protokollen;kryptografische Techniken, die die Geheimhaltung und Integrität Ihrer Daten zu gewährleisten;Zensur und Möglichkeiten der Überwachung und wie Sie diese umgehen könnenKybernetik, Algorithmen und darüber wie Computer Entscheidungen treffenDie Zentralisierung der Macht im Internet, ihre Auswirkungen auf die Demokratie und wie sie die Menschenrechte beeinträchtigtInternet-Governance und Möglichkeiten, sich zu engagierenDieses Buch ist auch ein Aufruf zum Handeln, indem es einen Fahrplan aufstellt, wie Sie Ihr neu erworbenes Wissen nutzen können, um die Entwicklung digitaler, inklusiver und die Rechte achtender Internet-Gesetze und -Politik zu beeinflussen.Egal, ob Sie sich um die Sicherheit im Internet sorgen, ein Anwalt sind, der sich mit Fragen der weltweiten Meinungsfreiheit befasst, oder einfach jemand mit einer katzenhaften Neugier auf die Netzwerkinfrastruktur, Sie werden begeistert sein – und aufgeklärt – von Catnips unterhaltsamen Leitfaden zum Verständnis, wie das Internet wirklich funktioniert!Leseproben (PDF-Links):VorwortInhaltsverzeichnisKapitel 1Kapitel 3Kapitel 7Kapitel 10Zu den Herausgebenden:ARTICLE 19 ist eine internationale Non-Profit-Organisation, die das Recht auf freie Meinungsäußerung, einschließlich des Zugangs zu Informationen, fördern, entwickeln und schützen will. Mit Hauptsitz in London und Büros in Bangladesch, Brasilien, Kenia, Mexiko, Senegal, Tunesien, Myanmar und den USA arbeitet ARTICLE 19 daran, die Wissenslücke über die Internet-Infrastruktur und deren Bedeutung für die Menschen zu schließen.
AWS Certified Machine Learning Study Guide
SUCCEED ON THE AWS MACHINE LEARNING EXAM OR IN YOUR NEXT JOB AS A MACHINE LEARNING SPECIALIST ON THE AWS CLOUD PLATFORM WITH THIS HANDS-ON GUIDEAs the most popular cloud service in the world today, Amazon Web Services offers a wide range of opportunities for those interested in the development and deployment of artificial intelligence and machine learning business solutions.The AWS Certified Machine Learning Study Guide: Specialty (MLS-CO1) Exam delivers hyper-focused, authoritative instruction for anyone considering the pursuit of the prestigious Amazon Web Services Machine Learning certification or a new career as a machine learning specialist working within the AWS architecture.From exam to interview to your first day on the job, this study guide provides the domain-by-domain specific knowledge you need to build, train, tune, and deploy machine learning models with the AWS Cloud. And with the practice exams and assessments, electronic flashcards, and supplementary online resources that accompany this Study Guide, you’ll be prepared for success in every subject area covered by the exam.You’ll also find:* An intuitive and organized layout perfect for anyone taking the exam for the first time or seasoned professionals seeking a refresher on machine learning on the AWS Cloud * Authoritative instruction on a widely recognized certification that unlocks countless career opportunities in machine learning and data science * Access to the Sybex online learning resources and test bank, with chapter review questions, a full-length practice exam, hundreds of electronic flashcards, and a glossary of key terms AWS Certified Machine Learning Study Guide: Specialty (MLS-CO1) Exam is an indispensable guide for anyone seeking to prepare themselves for success on the AWS Certified Machine Learning Specialty exam or for a job interview in the field of machine learning, or who wishes to improve their skills in the field as they pursue a career in AWS machine learning.ABOUT THE AUTHORSSHREYAS SUBRAMANIAN, PHD, is Principal Machine Learning specialist at Amazon Web Services. He has worked with several enterprise companies on business-critical machine learning and optimization problems. STEFAN NATU is Principal Machine Learning Specialist at Alexa AI, prior to which he was a Principal Architect at Amazon Web Services. His professional focus is on financial services, and he helps customers architect ML use cases on AWS with an emphasis on security, enterprise model governance, and operationalizing machine learning models. Introduction xviiAssessment Test xxixAnswers to Assessment Test xxxvPART I INTRODUCTION 1CHAPTER 1 AWS AI ML STACK 3Amazon Rekognition 4Image and Video Operations 6Amazon Textract 10Sync and Async APIs 11Amazon Transcribe 13Transcribe Features 13Transcribe Medical 14Amazon Translate 15Amazon Translate Features 16Amazon Polly 17Amazon Lex 19Lex Concepts 19Amazon Kendra 21How Kendra Works 22Amazon Personalize 23Amazon Forecast 27Forecasting Metrics 30Amazon Comprehend 32Amazon CodeGuru 33Amazon Augmented AI 34Amazon SageMaker 35Analyzing and Preprocessing Data 36Training 39Model Inference 40AWS Machine Learning Devices 42Summary 43Exam Essentials 43Review Questions 44CHAPTER 2 SUPPORTING SERVICES FROM THE AWS STACK 49Storage 50Amazon S3 50Amazon EFS 52Amazon FSx for Lustre 52Data Versioning 53Amazon VPC 54AWS Lambda 56AWS Step Functions 59AWS RoboMaker 60Summary 62Exam Essentials 62Review Questions 63PART II PHASES OF MACHINE LEARNING WORKLOADS 67CHAPTER 3 BUSINESS UNDERSTANDING 69Phases of ML Workloads 70Business Problem Identification 71Summary 72Exam Essentials 73Review Questions 74CHAPTER 4 FRAMING A MACHINE LEARNING PROBLEM 77ML Problem Framing 78Recommended Practices 80Summary 81Exam Essentials 81Review Questions 82CHAPTER 5 DATA COLLECTION 85Basic Data Concepts 86Data Repositories 88Data Migration to AWS 89Batch Data Collection 89Streaming Data Collection 92Summary 96Exam Essentials 96Review Questions 98CHAPTER 6 DATA PREPARATION 101Data Preparation Tools 102SageMaker Ground Truth 102Amazon EMR 104Amazon SageMaker Processing 105AWS Glue 105Amazon Athena 107Redshift Spectrum 107Summary 107Exam Essentials 107Review Questions 109CHAPTER 7 FEATURE ENGINEERING 113Feature Engineering Concepts 114Feature Engineering for Tabular Data 114Feature Engineering for Unstructured and Time Series Data 119Feature Engineering Tools on AWS 120Summary 121Exam Essentials 121Review Questions 123CHAPTER 8 MODEL TRAINING 127Common ML Algorithms 128Supervised Machine Learning 129Textual Data 138Image Analysis 141Unsupervised Machine Learning 142Reinforcement Learning 146Local Training and Testing 147Remote Training 149Distributed Training 150Monitoring Training Jobs 154Amazon CloudWatch 155AWS CloudTrail 155Amazon Event Bridge 158Debugging Training Jobs 158Hyperparameter Optimization 159Summary 162Exam Essentials 162Review Questions 164CHAPTER 9 MODEL EVALUATION 167Experiment Management 168Metrics and Visualization 169Metrics in AWS AI/ML Services 173Summary 174Exam Essentials 175Review Questions 176CHAPTER 10 MODEL DEPLOYMENT AND INFERENCE 181Deployment for AI Services 182Deployment for Amazon SageMaker 184SageMaker Hosting: Under the Hood 184Advanced Deployment Topics 187Autoscaling Endpoints 187Deployment Strategies 188Testing Strategies 190Summary 191Exam Essentials 191Review Questions 192CHAPTER 11 APPLICATION INTEGRATION 195Integration with On-PremisesSystems 196Integration with Cloud Systems 198Integration with Front-EndSystems 200Summary 200Exam Essentials 201Review Questions 202PART III MACHINE LEARNING WELL-ARCHITECTED LENS 205CHAPTER 12 OPERATIONAL EXCELLENCE PILLAR FOR ML 207Operational Excellence on AWS 208Everything as Code 209Continuous Integration and Continuous Delivery 210Continuous Monitoring 213Continuous Improvement 214Summary 215Exam Essentials 215Review Questions 217CHAPTER 13 SECURITY PILLAR 221Security and AWS 222Data Protection 223Isolation of Compute 224Fine-GrainedAccess Controls 225Audit and Logging 226Compliance Scope 227Secure SageMaker Environments 228Authentication and Authorization 228Data Protection 231Network Isolation 232Logging and Monitoring 233Compliance Scope 235AI Services Security 235Summary 236Exam Essentials 236Review Questions 238CHAPTER 14 RELIABILITY PILLAR 241Reliability on AWS 242Change Management for ML 242Failure Management for ML 245Summary 246Exam Essentials 246Review Questions 247CHAPTER 15 PERFORMANCE EFFICIENCY PILLAR FOR ML 251Performance Efficiency for ML on AWS 252Selection 253Review 254Monitoring 255Trade-offs256Summary 257Exam Essentials 257Review Questions 258CHAPTER 16 COST OPTIMIZATION PILLAR FOR ML 261Common Design Principles 262Cost Optimization for ML Workloads 263Design Principles 263Common Cost Optimization Strategies 264Summary 266Exam Essentials 266Review Questions 267CHAPTER 17 RECENT UPDATES IN THE AWS AI/ML STACK 271New Services and Features Related to AI Services 272New Services 272New Features of Existing Services 275New Features Related to Amazon SageMaker 279Amazon SageMaker Studio 279Amazon SageMaker Data Wrangler 279Amazon SageMaker Feature Store 280Amazon SageMaker Clarify 281Amazon SageMaker Autopilot 282Amazon SageMaker JumpStart 283Amazon SageMaker Debugger 283Amazon SageMaker Distributed Training Libraries 284Amazon SageMaker Pipelines and Projects 284Amazon SageMaker Model Monitor 284Amazon SageMaker Edge Manager 285Amazon SageMaker Asynchronous Inference 285Summary 285Exam Essentials 285APPENDIX ANSWERS TO THE REVIEW QUESTIONS 287Chapter 1: AWS AI ML Stack 288Chapter 2: Supporting Services from the AWS Stack 289Chapter 3: Business Understanding 290Chapter 4: Framing a Machine Learning Problem 291Chapter 5: Data Collection 291Chapter 6: Data Preparation 292Chapter 7: Feature Engineering 293Chapter 8: Model Training 294Chapter 9: Model Evaluation 295Chapter 10: Model Deployment and Inference 295Chapter 11: Application Integration 296Chapter 12: Operational Excellence Pillar for ML 297Chapter 13: Security Pillar 298Chapter 14: Reliability Pillar 298Chapter 15: Performance Efficiency Pillar for ML 299Chapter 16: Cost Optimization Pillar for ML 300Index 303
Data-Driven Alexa Skills
Design and build innovative, custom, data-driven Alexa skills for home or business. Working through several projects, this book teaches you how to build Alexa skills and integrate them with online APIs. If you have basic Python skills, this book will show you how to build data-driven Alexa skills. You will learn to use data to give your Alexa skills dynamic intelligence, in-depth knowledge, and the ability to remember.DATA-DRIVEN ALEXA SKILLS takes a step-by-step approach to skill development. You will begin by configuring simple skills in the Alexa Skill Builder Console. Then you will develop advanced custom skills that use several Alexa Skill Development Kit features to integrate with lambda functions, Amazon Web Services (AWS), and Internet data feeds. These advanced skills enable you to link user accounts, query and store data using a NoSQL database, and access real estate listings and stock prices via web APIs.WHAT YOU WILL LEARN* Set up and configure your development environment properly the first time* Build Alexa skills quickly and efficiently using Agile tools and techniques* Create a variety of data-driven Alexa skills for home and business* Access data from web applications and Internet data sources via their APIs* Test with unit-testing frameworks throughout the development life cycle* Manage and query your data using the DynamoDb NoSQL database enginesWHO THIS BOOK IS FORDevelopers who wish to go beyond Hello World and build complex, data-driven applications on Amazon's Alexa platform; developers who want to learn how to use Lambda functions, the Alexa Skills SDK, Alexa Presentation Language, and Alexa Conversations; developers interested in integrating with public APIs such as real estate listings and stock market prices. Readers will need to have basic Python skills.SIMON KINGABY is a software developer, programming professor, and public speaker residing in middle Tennessee. He believes that voice user interfaces will change the world and that tools like Alexa are just the tip of the iceberg. He spends his days moving data for Deloitte Global and teaching DataViz and FinTech at Vanderbilt University. In 2016, he published his first Alexa skill and has been enthralled by voice development ever since. In 2017, his uncle suddenly went blind and Simon began exploring ways Alexa could be used to help the blind by developing skills from “What’s the time?” and home navigation skills to smart home skills like “Turn on the coffee pot." In 2019 that same uncle committed suicide, and Simon turned his attention to mental health issues and using Alexa to help identify and prevent suicidal behavior. Now he is focused on enabling developers to use their programming abilities to build data-driven Alexa skills that will make a real difference in the world.PART I: GETTING STARTEDChapter 1: Voice User InterfacesChapter 2: Routines and BlueprintsChapter 3: The Developer AccountsChapter 4: Creating the VUI for a Custom Data-driven SkillChapter 5: Writing the Back-end CodeChapter 6: Publishing an Alexa SkillPART II: CUSTOM SKILL DEVELOPMENTChapter 7: Custom Alexa SkillsChapter 8: Beyond Hello WorldChapter 9: Configuring the VUIChapter 10: Using APL to Present on ScreensChapter 11: Coding the Lambda FunctionChapter 12: Unit Testing an Alexa SkillChapter 13: Storing the DataPART III: USING APIS IN ADVANCED SKILLSChapter 14: A Personal Net Worth SkillChapter 15: The Real Estate APIChapter 16: The Stock Market APIChapter 17: What’s Next?
WebAssembly for Cloud
Journey into the amazing world of WebAssembly (Wasm) and learn about how it can be applied on the cloud. This book is an introduction to Wasm aimed at professionals accustomed to working with cloud-related technologies such as Kubernetes and Istio service mesh.Author SHASHANK JAIN begins with an introduction to Wasm and its related tooling such as wasm-bindgen and wapc. He then walks you through code examples using Rust, Golang, and JavaScript to demonstrate how they can be compiled to Wasm and consumed from Wasm runtimes deployed standalone, as well as on the cloud. You will see how a wasm module can be run through an http interface, and how Wasm fits into CNCF projects such as Kubernetes and Istio service mesh. After that, you’ll learn how the polyglot nature of WebAssembly can be leveraged through examples written in languages like Rust and consumed via Golang and JavaScript, with a focus on how WebAssembly allows interoperability between them. You’ll gain an understanding of how Wasm-based modules can be deployed inside Linux containers and orchestrated via Kubernetes, and how Wasm can be used within the Istio proxy to apply rules and filters.After reading this book, you’ll have the knowledge necessary to apply WebAssembly to create multi tenanted workloads which can be polyglot in nature and can be deployed on cloud environments like Kubernetes.WHAT YOU WILL LEARN* Understand how Wasm can be used for server-side applications* Learn about Wasm memory model and Wasm module layout* How communication between host and Wasm module is facilitated* The basics of Wasm sandboxing and security* The fundamentals of tooling around Wasm, such as WAT and Wasm-pack* Create a Wasm module in Rust and consume it from JavaScript, Rust and Golang.* Grasp how Kubernetes can be used to orchestrate Wasm-based workloads* How Wasm fits into service meshWHO IS THIS BOOK FORSoftware developers/architects who are looking to hone their skills in virtualization and explore alternatives to Docker and container-based technologies for their workload deployments. Readers should have a basic programming background in languages such as Rust and Golang to get the most out of this book.Shashank Mohan Jain has been working in the IT industry for around 20 years mainly in the areas of cloud computing and distributed systems. He has keen interests in virtualization techniques, security, and complex systems. Shashank has 32 software patents (many yet to be published) to his name in the area of cloud computing, IoT, and machine learning. He is a speaker at multiple reputed cloud conferences. Shashank holds Sun, Microsoft, and Linux kernel certifications.CHAPTER 1: INTRODUCTION TO WEBASSEMBLY (WASM)Chapter Goal :History and Introduction to Wasm• What is WebAssembly and why is it important for Cloud native• Wasm architecture and how we realize virtualization via Wasm• Kind of workloads supported by Wasm (Cloud, Browser, and Edge)CHAPTER 2: WEBASSEMBLY MEMORY MODEL AND RUNTIMESChapter Goal: Memory model internals and layout of Wasm modules in memory• Introduction to Wasm file format• Deep dive into the sections of the Wasm file (function table, types, etc.) and their relevance• Memory layout for tenant isolation within a linux process using WasmCHAPTER 3: WEBASSEMBLY TEXT TOOLKITChapter Goal: Covers the WebAssembly text format by showing examples of how to write Wasm. Usage of tools like wasm2wat will also be covered with examples• Introduction to WebAssembly text format (wat)• Creating simple wat programs and compiling to Wasm using wat2wasm toolCHAPTER 4: RUST AND WEBASSEMBLY Chapter Goal: Covers examples of how to create a Wasm module in Rust and invoke it via JS and other runtimes• Creating a Rust program and compiling it as a Wasm module• Explain wasm-bindgen tool for compiling Rust to Wasm• Consuming the Rust program from a JavaScript-based runtime like Node.jsCHAPTER 5: GOLANG AND WEBASSEMBLY Chapter Goal: Covers examples of how to create a Wasm module in Golang and invoke it via JS and other runtimes• Create a Golang program and expose it as a Wasm module• Use WaPC (web assembly procedure call) to consume this program fromo Rusto Node.js• Show how complex types can be created in Wasm using WaPC and how these types can be passed between guest and host boundariesCHAPTER 6: WRITING A SIMPLE WEB APPLICATION IN WEBASSEMBLYChapter Goal: How to create a simple web app in WebAssembly• Expose the Wasm module using a web application• Web application will be written ino Rusto Node.jso Golang• All three runtimes will embed a Wasm engine and load a Wasm module on an http request. Invoke the exposed function within Wasm module and return back the http responseCHAPTER 7: DEPLOYING WASM WORKLOADS TO KUBERNETES AND SERVICE MESHChapter Goal: Showcase how Wasm modules can be deployed using the kubernetes control plane and can be represented as pods instead of Docker containers. Also covers some of the serverless aspects around and detail out a service mesh scenario where we can use Wasm-based filters for massaging the data on the Istio data plane• Intro to Kubernetes• Dockerize the embedded Wasm engine in the runtimes created in Chapter 6• Host these docker images into dockerhub• Create a Kubernetes pod using these docker images• Deploy the pod into kubernetes• Expose the web servers (hosting the Wasm runtime) as a service in k8s• Show invocation of the Wasm modules via the service• Intro to Istio and Service Mesh in context of API gateways• Create a simple Wasm filter for Istio/Envoy• Show invocation of the Wasm filter as part of the data pathCHAPTER 8: SUMMARYChapter Goal : Summary of the topics around Wasm and its usage• Summary of Wasm and various runtimes for Wasm• Summarize enablement of Wasm-based workloads on k8s
Practical Event-Driven Microservices Architecture
In the simplest terms, event-driven architectures are like onions; they are manageable as a single layer (like a monolith) but when you get into them, they begin to cascade apart and you quickly realize that there are many complex layers (distributed microservices architecture). And that’s when the tears begin.This prescriptive guide takes you through the steps of moving a platform with millions of users from a monolith to a microservices event-driven architecture. You will learn about the challenges and complexities that arise in high-throughput environments that often contain upwards of hundreds of microservices. This book is designed to be your single best resource for learning how to apply event-driven architectures in real-world scenarios and offers hundreds of patterns to overcome the common and not so common challenges.While event-driven architectures have been the standard for decoupled, pluggable, evolutionary architectures for years, they have only recently been adopted by enterprises for the purpose of distributed microservices and there is little information about adopting them. Using them at scale can save valuable resources, but requires different considerations, including the added complexity of supporting several moving parts and getting the event schema right from the start in order to avoid large restructuring later on.Author Hugo Rocha understands that these kinds of challenges, as well as many others, need to be considered from the beginning, and helps teach you the mindset needed to create a deliberate strategy upfront. This book offers learning approaches and patterns to get you up to speed in order to sustainably build and manage event-driven architectures.WHAT YOU WILL LEARN* Understand the real-world challenges of event-driven architectures and the patterns to deal with those challenges and the trade-offs of each solution* Leverage the advantages of event-driven architectures to build scalable solutions and address legacy applications* Plan successful future implementations to avoid common pitfalls and apply proven patterns to deal with challenges in a real-world platform with millions of users* Decide whether event-driven solutions are the right choice for the requirements at hand* Discuss and understand advanced concepts about event-driven architecturesWHO IS THIS BOOK FORSoftware engineers and software architects. Anyone currently working with microservice architectures, primarily event-driven microservices, will greatly benefit from this book. Readers working with monoliths will benefit, as the book explores migration from a monolithic application to an event-driven microservice architecture.HUGO ROCHA has nearly a decade of experience working with highly distributed event-driven microservices architectures. He currently is an engineering lead for the leading global ecommerce platform for luxury products (Farfetch), providing services to millions of active users, backed by an event-driven architecture with hundreds of microservices processing hundreds of changes per second. Before that, he worked for several reference telecommunications companies that transitioned from monolithic applications to microservice-oriented architectures. Hugo has managed several teams that directly face the caveats of event-driven architectures every day. He designed solutions for critical pieces of the platform’s highly distributed backoffice platform, handling hundreds of changes per second, concurrently, scalably, and with high performance.CHAPTER 1. EMBRACING EVENT-DRIVEN ARCHITECTURES1.1. The truth about monoliths1.1.1. Anatomy of a typical monolith1.1.2. It's not all bad1.1.3. When monoliths become the business constrictor knot1.1.4. Using event-driven architectures to move away from a monolith1.2. What are microservices and how do they relate to event-driven1.3. SOA, microservice, and event-driven architectures1.4. The promise of event-driven microservices1.5. When should you use event-driven microservices?1.6. Overview of the challenges in event-driven architectures1.7. SummaryCHAPTER 2. MOVING FROM A MONOLITH TO AN EVENT-DRIVEN ARCHITECTURE2.1. Is migrating to an event-driven architecture your best option?2.2. How to decide where to start2.3. Using an event-driven approach to migrate data2.4. Using change data capture (CDC)2.4.1. Event-driven and change data capture (CDC), a real-world example2.5. Event-driven as a source of truth for both systems2.6. Managing dependencies between the two systems2.6.1. Dependency from new event-driven services to the monolith2.6.2. Dependency from the monolith to new event-driven services2.7. Gradually moving traffic2.8. Two-way synchronization and living with two sources of truth2.9. SummaryCHAPTER 3. DEFINING AN EVENT-DRIVEN MICROSERVICE AND ITS BOUNDARIES3.1. Building event-driven microservices3.1.1. Durable vs. ephemeral message brokers and GDPR3.1.2. Message types3.1.3. When to use documents over events3.1.4. Common event-driven messaging patterns3.1.5. Event-driven service topologies3.1.6. Common event-driven pitfalls and anti-patterns3.2. Organizing event-driven microservice boundaries3.3. Brief and practical introduction to domain-driven design and bounded contexts3.4. The impact of aggregate size and common pitfalls3.5. Request-driven vs. event-driven services3.6. Adding functionality to an existing microservice vs. creating a new one3.7. SummaryCHAPTER 4. EVENT-DRIVEN STRUCTURAL PATTERNS AND HIGH-LEVEL PROCESSES4.1. The challenges of transactional consistency in distributed systems4.1.1. Why abandon a monolithic database in the first place?4.1.2. The limitations of distributed transactions4.1.3. Managing multi-step processes with Sagas4.2. Event-driven orchestration pattern4.3. Event-driven choreography pattern4.4. Orchestration, choreography, or both?4.5. Data retrieval in event-driven architectures and associated patterns4.5.1. CQS, CQRS and when to use them4.5.2. The different flavors of CQRS4.5.3. When and how to use event sourcing4.5.4. Using command sourcing and its applicability4.6. Building multiple read models4.7. The pitfall of microservice spaghetti architectures and how to avoid it4.8. SummaryCHAPTER 5. HOW TO MANAGE EVENTUAL CONSISTENCY5.1. The impacts of eventual consistency and the need for alignment with the business5.2. Using event schema to leverage eventual consistency5.3. Applying domain boundaries to leverage eventual consistency5.4. Event versioning to manage delays5.5. Saving state to avoid eventual consistency5.6. End-to-end argument: a real-world use case5.7. For most use cases, it's not eventual if nobody notices5.7.1. Autoscaling use case with Prometheus and Kafka5.8. Tradeoffs of each solution5.9. SummaryCHAPTER 6. DEALING WITH EVENT-DRIVEN CONCURRENCY AND OUT OF ORDER MESSAGES6.1. Why is concurrency different in a monolith from an event-driven architecture?6.2. Pessimistic vs. optimistic concurrency, when and when not to use6.2.1. Pessimistic vs. optimistic approaches6.2.2. Solving concurrency by implementation and by architecture6.3. Using optimistic concurrency6.4. Using pessimistic concurrency6.4.1. Distributed locks6.4.2. Database transactions6.5. Dealing with out-of-order events6.5.1. How can events lose their order?6.5.2. Solving out of order events with versioning6.6. Using end-to-end message partitioning to handle concurrency and guarantee message ordering6.6.1. The relevance of message routing and partitioning6.6.2. Real-world example of message routing using Kafka6.6.3. Using end-to-end partitioning6.6.4. Limitations of end-to-end partitioning6.7. SummaryCHAPTER 7. ACHIEVING RESILIENCE AND EVENT PROCESSING RELIABILITY IN EVENT-DRIVEN MICROSERVICES7.1. Common failures in microservice architectures and how they relate to event-driven architectures7.1.1. Cascading failures and event-driven services7.1.2. Load balancing and rate limiters in event-driven services7.2. Understanding message delivery semantics7.3. Avoiding inconsistencies when saving state and publishing events7.3.1. Event stream as the only source of truth7.3.2. Outbox pattern7.3.3. Transactions and compensating actions7.4. Applying ACID 2.0 as a resilience strategy7.5. Avoiding message leak7.6. Applying common resilience patterns7.6.1. Retries7.6.2. Circuit breakers7.7. Recovering data and repairing state7.8. Bulkhead pattern7.9. SummaryCHAPTER 8. CHOOSING THE CORRECT EVENT SCHEMA DESIGN8.1. Event storming8.2. Event headers and envelopes8.2.1. Headers vs envelopes8.2.2. Relevant event contextual information8.3. Town crier events8.4. Bee events8.5. The event schema goldilocks principle8.6. Denormalized event schema8.7. Schema evolution8.7.1. Event stream versioning8.7.2. Using a downscaler/upscaler8.8. SummaryCHAPTER 9. HOW TO LEVERAGE THE USER INTERFACE9.1. Using an aggregating layer9.2. Backends for frontends9.3. UI Decomposition9.3.1. Application decomposition9.3.2. Page decomposition9.3.3. Section decomposition9.4. The limitations of API composition9.5. Task-based UIs9.6. Event-driven APIs9.7. SummaryCHAPTER 10. OVERCOMING THE CHALLENGES IN QUALITY ASSURANCE10.1. The only happens in production syndrome10.2. Component tests vs integration tests10.3. The correct mix of component validation and production validations10.4. Monitoring and alarmistic from the ground up10.5. SummaryCHAPTER 11. ORGANIZATIONAL COST OF EVENT-DRIVEN MICROSERVICES11.1. The epic journey to be onboarded11.2. When implementation overhead impacts time to market11.3. Dependencies management11.4. Summary
Mastering VMware Horizon 8
Learn all about designing, installing, configuring, and managing VMware Horizon, with a core focus on how to deliver virtual desktops using Horizon. This book allows you to follow the complete process for deploying VMware Horizon and covers the design, deployment, and management of solutions.You'll start by reviewing remote solutions, from virtual desktops to published applications, including the benefits and what the different solutions deliver. Once through the high-level technology you'll then look at the VMware Horizon solution focusing on the architecture and the components that make up the solution and how to design a production-ready environment. Other VMware EUC technologies that complement the core Horizon solution will also be incorporate into it.Armed with the knowledge of how to design a solution, you'll move onto the installation phase and start to build a test lab environment. Once your lab is installed, you'll move onto the configuration stage where you will understand how to build, configure, and optimize virtual desktops, and desktop pools ready for end-users to use. As part of this you will also look at delivering published applications with Horizon Apps.With resources built and configured you can optimize the end-user experience with Horizon clients. The final sections of the book will focus on the other complementary solutions introducing you to VMware App Volumes and VMware Dynamic Environment Manager before finishing with how to manage the solution where we will look at some advanced configuration options and troubleshooting techniques.WHAT YOU WILL LEARN* See the core components of VMware Horizon and their functionality* Design and install a Horizon environment* Deliver the best end-user experience* Manage the deployed solution* Use VMware reference architectures to create real-life scenario examples* Review the minimum requirements for designing a solutionWHO THIS BOOK IS FORVMware professionals, system integrators, IT professionals, and consultants.PETER VON OVEN is an experienced technical consultant working closely with customers and partners designing technology solutions, to meet business needs. During his career, Peter has presented at key IT events such as VMworld, IP EXPO, and various VMUGs and CCUG events. He has also worked in senior presales roles and presales management roles for Fujitsu, HP, Citrix, and VMware, and has been awarded VMware vExpert for the last six years in a row. In 2016, Peter founded his own company, Droplet Computing, where he works today as the founder and chief executive officer, helping redefine the way applications are delivered today. He is also an avid author, having now written 13 books and made videos about VMware end-user computing solutions. In his spare time, Peter volunteers as a STEM Ambassador, helping the next generation develop the skills and confidence in building careers in technology.Chapter 1: What Are Remote Desktop Solutions?Chapter 2: Getting Started with VMware HorizonChapter 3: Architecting Horizon for DeploymentChapter 4: Installing and Configuring Your Horizon EnvironmentChapter 5: Creating Virtual Desktop Images for DeploymentChapter 6: Building and Configuring Desktop PoolsChapter 7: Managing Horizon with Active Directory GPOsChapter 8: Horizon Computer GPOs Settings (split from chapter 7)Chapter 9: Horizon User GPO Settings (split from chapter 7)Chapter 10: Managing the End User Environments (former chapter 8)Chapter 11: Horizon Apps (former chapter 9)Chapter 12: Horizon Published Desktop (former chapter 10)Chapter 13: Connecting End Users (former chapter 11)Chapter 14: Horizon Enterprise Edition (former chapter 12)Chapter 15: Upgrading Horizon (former chapter 13)Chapter 16: Running Horizon in the Cloud (former chapter 14)Chapter 17: Horizon Troubleshooting (former chapter 15)Online Resource: Advanced Configuration and Management (former chapter 16)
Synology NAS - Die praktische Anleitung
Sie möchten mit einem Synology NAS Ihre Daten zentral speichern, eigene Backups erstellen und Fotos, Filme und Dokumente streamen? Dennis Rühmer hilft Ihnen bei diesen Aufgaben und erklärt, wie Sie Ihr Synology NAS richtig konfigurieren und eine private Cloud aufsetzen. Damit können Sie Ihre Daten sicher ablegen und verwalten, Live-TV aufnehmen, automatische Sicherungen Ihrer Rechner anlegen, Kalender und Kontakte verwalten und noch viel mehr. Vom reibungslosen Einstieg und einer Kaufberatung über zentrale Grundlagen bis zu den vielfältigen Diensten erfahren Sie in diesem Ratgeber, was Sie über Ihr Synology NAS für einen reibungslosen Betrieb wissen müssen.Aus dem Inhalt:Das richtige NAS wählenDas Gerät sicher einrichtenNetzwerkfreigaben verwaltenKalender und AdressbuchMusik per NAS abspielenFotos organisieren und teilenVideos genießen und verwaltenEin zentrales Backup erstellenEinen zentralen Drucker einrichtenKameraüberwachung steuernEinen TV-Server nutzenSicherheit im HeimnetzAutor: Dennis Rühmer ist promovierter Ingenieur der Elektrotechnik, an der TU Braunschweig als wissenschaftlicher Mitarbeiter tätig und erfahrener Buchautor. Er befasst sich intensiv mit Datensicherung und Streaming, ist großer Raspberry Pi- und Kodi-Fan, bekennender Linuxer und interessiert sich seit frühester Kindheit für digitale Fotografie.
Außenhandel mit SAP GTS und SAP S/4HANA
Sorgen Sie für reibungslose Abläufe im internationalen Handel! Mit diesem Buch optimieren Sie Ihre Import- und Exportprozesse und stellen sicher, dass Ihr Unternehmen die gesetzlichen Anforderungen und Handelsübereinkünfte erfüllt. Sie lernen alle Prozesse für Warenbewegungen innerhalb und außerhalb der EU ausführlich kennen und erfahren, wie Sie diese in SAP GTS und SAP S/4HANA abbilden. Sie erfahren außerdem, wie SAP GTS mit der Lagerverwaltung in SAP EWM zusammenspielt. Ob Sie SAP ERP einsetzen oder auf SAP S/4HANA umsteigen wollen: Dieses Buch gibt Ihnen praxisnah Hilfestellung zu SAP GTS 11.0, SAP GTS edition for SAP HANA 2020 und SAP S/4HANA for International Trade. Aus dem Inhalt: Überlassung zum zollrechtlich freien VerkehrVersandverfahren bei der Ein- und AusfuhrZolllagerverfahrenAktive und passive VeredelungAusfuhr von Gütern mit doppeltem VerwendungszweckUS-ReexportkontrolleEmbargosituationenWarenbewegungen innerhalb der EUSAP S/4HANA for international tradeSAP-Fiori-AppsIntegration mit SAP EWM Einleitung ... 11 TEIL I. SAP GTS ... 19 1. Einführung in SAP GTS ... 21 1.1 ... Zweckbestimmung und Produktstruktur ... 21 1.2 ... Integration in die Steuerung logistischer Prozesse in SAP ERP bzw. SAP S/4HANA ... 28 1.3 ... Stammdatenpflege ... 41 1.4 ... Abbildung von Rechtsnormen ... 48 2. Zollverfahren bei der Einfuhr ... 57 2.1 ... Überlassung zum zollrechtlich freien Verkehr ... 57 2.2 ... Versandverfahren bei der Einfuhr ... 98 2.3 ... Zolllagerverfahren ... 121 2.4 ... Aktive Veredelung ... 147 3. Zollverfahren bei der Ausfuhr ... 161 3.1 ... Ausfuhrverfahren ... 161 3.2 ... Versandverfahren bei der Ausfuhr ... 214 3.3 ... Passive Veredelung ... 235 3.4 ... Einbindung von externen Dienstleistern ... 248 4. Ausfuhrkontrolle ... 259 4.1 ... Kritische Güter ... 259 4.2 ... Embargosituationen ... 331 5. Ausfuhr von Ursprungserzeugnissen ... 373 5.1 ... Ermittlung der Ursprungseigenschaft einer Ware ... 374 5.2 ... Verwaltung von Lieferantenerklärungen ... 436 6. Warenbewegungen innerhalb der EU ... 479 6.1 ... Intrastat-Meldung ... 479 6.2 ... Beförderung im Steueraussetzungsverfahren ... 506 TEIL II. SAP S/4HANA for international trade ... 521 7. Stammdatenpflege ... 523 7.1 ... Tarifierung und Klassifizierung ... 523 7.2 ... Stammdaten für Trade Compliance ... 538 8. Intrastat-Meldung und Belegprüfung ... 545 8.1 ... Intrastat-Meldung ... 545 8.2 ... Trade Compliance ... 554 A. Abkürzungsverzeichnis ... 563 Die Autorin ... 569 Index ... 571
Steuern in SAP S/4HANA
Kein unternehmerisches Handeln ohne steuerliche Konsequenzen! Dieses Buch verbindet einen verständlichen Überblick über steuerrechtliche Anforderungen mit einer ausführlichen Darstellung der Systemeinstellungen. Alle relevanten Steuerarten werden in den Blick genommen: direkte Steuern, indirekte Steuern sowie Verbrauchsteuern und Verrechnungspreise. Sie lernen, wie Sie Ihre Anforderungen entlang der Geschäftsprozesse in SAP S/4HANA abbilden. Dabei werden Ihre Optionen für steuerliche Meldungen und Auswertungen genauso erläutert wie Best Practices für Ihr Transformationsprojekt. So können Sie die Vorteile von SAP S/4HANA voll ausschöpfen! Aus dem Inhalt: Herausforderungen für die SteuerfunktionTax Target Operating ModelTax Compliance ManagementStammdatenmanagementTax TaggingPrüferrollen in SAP FioriSAP-Fiori-Apps für die SteuerfunktionPlanung und Analysen mit SAP Analytics CloudSAP Excise Tax ManagementAdvanced Compliance ReportingVorgehensweise im Projekt Einleitung ... 13 1. SAP S/4HANA - Herausforderungen und Chancen für die Steuerfunktion ... 21 1.1 ... Chancen für die Steuerfunktion ... 23 1.2 ... Herausforderungen für die Steuerfunktion ... 37 1.3 ... Zusammenfassung ... 41 2. Strategie und Projektmethodik ... 43 2.1 ... Tax Target Operating Model ... 43 2.2 ... Brownfield, Greenfield oder SAP Central Finance? ... 58 2.3 ... Die Implementierungsmethode SAP Activate ... 64 2.4 ... Daten, Prozesse, Meldewesen: Überblick über die Use Cases ... 65 2.5 ... Internationaler Roll-out-Template-Ansatz ... 68 2.6 ... SAP Best Practices/SAP Model Company ... 69 2.7 ... Zusammenfassung ... 71 3. Steuerliche Anforderungen entlang der Geschäftsprozesse ... 73 3.1 ... Steuerlicher End-to-End-Prozess ... 73 3.2 ... Steuerliche Implikationen entlang wichtiger End-to-End-Szenarien ... 79 3.3 ... Anwendungs- und Datensicht ... 84 3.4 ... Werkzeuge zur Abbildung steuerlicher Prozesse in SAP S/4HANA ... 86 3.5 ... Zusammenfassung ... 87 4. Steuerliche Anforderungen an SAP S/4HANA ... 89 4.1 ... Kernfunktionen in SAP S/4HANA ... 89 4.2 ... Steuerliches Datenmanagement ... 121 4.3 ... Grundlagen steuerlicher Umsetzungsmöglichkeiten ... 126 4.4 ... Zusammenfassung ... 149 5. Direkte Steuern ... 151 5.1 ... Einführung ... 152 5.2 ... Organisationsstrukturen ... 156 5.3 ... Stammdaten ... 205 5.4 ... Steuerliche Analyse und Monitoring in SAP S/4HANA ... 211 5.5 ... Steuerliches Meldewesen und Reporting ... 222 5.6 ... Steuerliche Planung mit SAP Analytics Cloud ... 231 5.7 ... Zusammenfassung ... 239 6. Umsatzsteuer ... 241 6.1 ... Einführung ... 242 6.2 ... Grundlagen der Umsatzsteuerfindung in SAP ... 252 6.3 ... SAP-S/4HANA-Datenstrukturen - SAP Simplification List ... 323 6.4 ... Umsatzsteuervoranmeldung/-jahreserklärung ... 324 6.5 ... Zusammenfassende Meldung ... 336 6.6 ... Intrastat-Meldung ... 342 6.7 ... Zusammenfassung ... 344 7. Verrechnungspreise ... 345 7.1 ... Grundlagen der Verrechnungspreise ... 346 7.2 ... Lebenszyklus von Verrechnungspreisen ... 350 7.3 ... Dokumentations- und Reportinganforderungen ... 351 7.4 ... Steuerlicher End-to-End-Prozess ... 358 7.5 ... Steuerliche Anforderungen in SAP S/4HANA ... 359 7.6 ... Transferpreise im SAP-System - parallele Wertansätze ... 381 7.7 ... SAP Profitability and Performance Management und SAP Analytics Cloud ... 384 7.8 ... Zusammenfassung ... 386 8. Verbrauchsteuern ... 387 8.1 ... Verbrauchsteuern - Herausforderungen im Unternehmen ... 387 8.2 ... Überblick über SAP Excise Tax Management ... 393 8.3 ... Steuerliche Buchführung und Auswertung mit SAP Excise Tax Management ... 397 8.4 ... Typische Aktivitäten im Tagesablauf ... 431 8.5 ... Systemzugriff für den Prüfungsdienst ... 438 8.6 ... Zusammenfassung ... 440 Das Autorenteam ... 443 Index ... 445
Corporate Cybersecurity
CORPORATE CYBERSECURITYAN INSIDER’S GUIDE SHOWING COMPANIES HOW TO SPOT AND REMEDY VULNERABILITIES IN THEIR SECURITY PROGRAMSA bug bounty program is offered by organizations for people to receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities. Corporate Cybersecurity gives cyber and application security engineers (who may have little or no experience with a bounty program) a hands-on guide for creating or managing an effective bug bounty program. Written by a cyber security expert, the book is filled with the information, guidelines, and tools that engineers can adopt to sharpen their skills and become knowledgeable in researching, configuring, and managing bug bounty programs. This book addresses the technical aspect of tooling and managing a bug bounty program and discusses common issues that engineers may run into on a daily basis. The author includes information on the often-overlooked communication and follow-through approaches of effective management. Corporate Cybersecurity provides a much-needed resource on how companies identify and solve weaknesses in their security program. This important book:* Contains a much-needed guide aimed at cyber and application security engineers * Presents a unique defensive guide for understanding and resolving security vulnerabilities * Encourages research, configuring, and managing programs from the corporate perspective * Topics covered include bug bounty overview; program set-up; vulnerability reports and disclosure; development and application Security Collaboration; understanding safe harbor and SLAWritten for professionals working in the application and cyber security arena, Corporate Cybersecurity offers a comprehensive resource for building and maintaining an effective bug bounty program. JOHN JACKSON is a Cyber Security Professional, Hacker, and the founder of the Hacking Group: Sakura Samurai. He is skilled in the art of configuring, managing, and utilizing Application Security Tools and programs, and an effective leader in the Cyber Security space. His unique perspective as both an Engineer and a Security Researcher provides hands-on experience towards configuring programs in a way that both organizations and researchers can benefit.Foreword xiiiAcknowledgments xvPART 1 BUG BOUNTY OVERVIEW 11 THE EVOLUTION OF BUG BOUNTY PROGRAMS 31.1 Making History 31.2 Conservative Blockers 41.3 Increased Threat Actor Activity 41.4 Security Researcher Scams 51.5 Applications Are a Small Consideration 51.6 Enormous Budgetary Requirements 51.7 Other Security Tooling as a Priority 61.8 Vulnerability Disclosure Programs vs Bug Bounty Programs 61.8.1 Vulnerability Disclosure Programs 61.8.2 Bug Bounty Programs 71.9 Program Managers 71.10 The Law 71.11 Redefining Security Research 81.12 Taking Action 81.12.1 Get to Know Security Researchers 91.12.2 Fair and Just Resolution 91.12.3 Managing Disclosure 91.12.4 Corrections 91.12.5 Specific Community Involvement 9PART 2 EVALUATING PROGRAMS 112 ASSESSING CURRENT VULNERABILITY MANAGEMENT PROCESSES 132.1 Who Runs a Bug Bounty Program? 132.2 Determining Security Posture 132.3 Management 142.3.1 Software Engineering Teams 142.3.2 Security Departments (Security Operations, Fraud Prevention, Governance/Risk/Compliance, Edge Controls, Vulnerability Management, Endpoint Detection, and Response) 142.3.3 Infrastructure Teams 142.3.4 Legal Department 142.3.5 Communications Team 142.4 Important Questions 152.5 Software Engineering 152.5.1 Which Processes Are in Place for Secure Coding? Do the Software Engineers Understand the Importance of Mitigating the Risks Associated with Vulnerable Code? 152.5.2 How Effective Are Current Communication Processes? Will Vulnerabilities Be Quickly Resolved If Brought to Their Attention? 152.5.3 Is the Breadth of Our Enterprise’s Web and Mobile Applications Immense? Which Processes Are Engineers Using for Development in the Software Development Lifecycle? 162.6 Security Departments 162.6.1 How Does Security Operations Manage Incidents? Will Employee Assistance Be Provided from the Security Operations Team If a Threat Actor Manages to Exploit an Application Vulnerability? Which Tools Do They Have in Place? 162.6.2 What Does the Fraud Prevention Team Do to Prevent Malicious Activities? How Many Occurrences Do They See of Issues such as Account Takeover, and Could They Potentially Create Application Vulnerabilities? 162.6.3 Are There Any Compliance Practices in Place and, If So, How Do They Affect the Vulnerability Management Process? What Does the Application Security Team Have to Do to Assist in Enterprise Compliance? 172.6.4 What Edge Tooling is in Place to Prevent Attacks? Are Any of the Enterprise Applications at Risk of Being Exploited due to an IoT (Internet of Things) Device? 172.6.5 How Often Does Our Vulnerability Management Team Push for Updates? How Does the Vulnerability Management Team Ensure Servers in which Enterprise Applications Reside Are Secure? 172.7 Infrastructure Teams 172.7.1 What Are Infrastructure Teams Doing to Ensure Best Security Practices Are Enabled? How Long Will It Take the Infrastructure Team to Resolve a Serious Issue When a Server-side Web Application is Exploited, or During a Subdomain Takeover Vulnerability? 172.7.2 Is There Effective Communication between Infrastructure, Vulnerability Management, Security Operations, and Endpoint Detection and Response? 182.8 Legal Department 182.8.1 How Well Refined is the Relationship between the Application Security Team and the Legal Department? 182.8.2 What Criteria Are/Will Be Set Out for the Escalation of Issues? 182.8.3 Does the Legal Department Understand the Necessity of Bug Bounty Program Management? 182.9 Communications Team 182.9.1 Has the Communications Team Dealt with Security Researchers Before? is the Importance Understood? 182.9.2 Was the Communications Team Informed of Bug Bounty Program Expectations? 192.10 Engineers 192.11 Program Readiness 193 EVALUATING PROGRAM OPERATIONS 213.1 One Size Does Not Fit All 213.2 Realistic Program Scenarios 213.3 Ad Hoc Program 223.4 Note 243.5 Applied Knowledge 243.5.1 Applied Knowledge #1 243.5.1.1 Private Programs 253.5.2 Applied Knowledge #2 253.5.2.1 Public Programs 253.5.3 Applied Knowledge #3 263.5.3.1 Hybrid Models 263.6 Crowdsourced Platforms 273.7 Platform Pricing and Services 283.8 Managed Services 283.9 Opting Out of Managed Services 293.10 On-demand Penetration Tests 29PART 3 PROGRAM SETUP 314 DEFINING PROGRAM SCOPE AND BOUNTIES 334.1 What is a Bounty? 334.2 Understanding Scope 334.3 How to Create Scope 344.3.1 Models 344.4 Understanding Wildcards 344.4.1 Subdomain 354.4.2 Domain 354.4.3 Specific Domain Path or Specific Subdomain Path 354.5 Determining Asset Allocation 364.6 Asset Risk 374.7 Understanding Out of Scope 374.8 Vulnerability Types 384.8.1 Denial of Service (DOS) or Distributed Denial of Service (DDoS) Attacks 384.8.2 Social Engineering Attacks 384.8.3 Brute Force or Rate Limiting 384.8.4 Account and Email Enumeration 384.8.5 Self-XSS 394.8.6 Clickjacking 394.8.7 Miscellaneous 394.9 When is an Asset Really Out of Scope? 394.10 The House Wins – Or Does It? 404.11 Fair Judgment on Bounties 424.12 Post-mortem 434.13 Awareness and Reputational Damage 434.14 Putting It All Together 444.15 Bug Bounty Payments 444.15.1 Determining Payments 454.15.2 Bonus Payments 464.15.3 Nonmonetary Rewards 465 UNDERSTANDING SAFE HARBOR AND SERVICE LEVEL AGREEMENTS 495.1 What is “Safe Harbor”? 495.1.1 The Reality of Safe Harbor 495.1.2 Fear and Reluctance 495.1.3 Writing Safe Harbor Agreements 505.1.4 Example Safe Harbor Agreement 505.2 Retaliation against a Rogue Researcher (Cybercriminal or Threat/Bad Actor) 515.3 Service Level Agreements (SLAs) 525.3.1 Resolution Times 535.3.2 Triage Times 536 PROGRAM CONFIGURATION 556.1 Understanding Options 556.2 Bugcrowd 556.2.1 Creating the Program 556.2.2 Program Overview 616.2.2.1 The Program Dashboard 616.2.2.2 The Crowd Control Navbar 63Summary 63Submissions 63Researchers 64Rewards 65Insights Dashboard 65Reports 666.2.3 Advanced Program Configuration and Modification 666.2.3.1 Program Brief 666.2.3.2 Scope and Rewards 676.2.3.3 Integrations 726.2.3.4 Announcements 736.2.3.5 Manage Team 746.2.3.6 Submissions 756.2.4 Profile Settings 766.2.4.1 The Profile and Account 786.2.4.2 Security 786.2.4.3 Notification Settings 796.2.4.4 API Credentials 806.2.5 Enterprise “Profile” Settings 816.2.5.1 Management and Configuration 816.2.5.2 Organization Details 816.2.5.3 Team Members 816.2.5.4 Targets 816.2.5.5 Authentication 816.2.5.6 Domains 826.2.5.7 Accounting 836.3 HackerOne 846.3.1 Program Settings 856.3.1.1 General 856.3.1.2 Information 866.3.1.3 Product Edition 866.3.1.4 Authentication 876.3.1.5 Verified Domains 886.3.1.6 Credential Management 896.3.1.7 Group Management 896.3.1.8 User Management 906.3.1.9 Audit Log 916.3.2 Billing 926.3.2.1 Overview 926.3.2.2 Credit Card 926.3.2.3 Prepayment 926.3.3 Program 936.3.3.1 Policy 936.3.3.2 Scope 936.3.3.3 Submit Report Form 956.3.3.4 Response Targets 966.3.3.5 Metrics Display 976.3.3.6 Email Notifications 976.3.3.7 Inbox Views 986.3.3.8 Disclosure 986.3.3.9 Custom Fields 986.3.3.10 Invitations 996.3.3.11 Submission 1006.3.3.12 Message Hackers 1016.3.3.13 Email Forwarding 1026.3.3.14 Embedded Submission Form 1026.3.3.15 Bounties 1036.3.3.16 Swag 1036.3.3.17 Common Responses 1046.3.3.18 Triggers 1066.3.3.19 Integrations 1076.3.3.20 API 1076.3.3.21 Hackbot 1076.3.3.22 Export Reports 1086.3.3.23 Profile Settings 1086.3.4 Inbox 1086.3.4.1 Report Details 1096.3.4.2 Timeline 1096.4 Summary 110PART 4 VULNERABILITY REPORTS AND DISCLOSURE 1117 TRIAGE AND BUG MANAGEMENT 1137.1 Understanding Triage 1137.1.1 Validation 1137.1.2 Lessons Learned 1157.1.3 Vulnerability Mishaps 1157.1.4 Managed Services 1157.1.5 Self-service 1167.2 Bug Management 1167.2.1 Vulnerability Priority 1167.2.2 Vulnerability Examples 1177.2.2.1 Reflected XSS on a login portal 117Report and Triage 117Validation 1177.2.2.2 Open redirect vulnerability 117Report and Triage 117Validation 1187.2.2.3 Leaked internal Structured Query Language (SQL) server credentials 118Report and Triage 118Validation 1187.3 Answers 1187.3.1 Vulnerability Rating-test Summary 1197.3.1.1 Reflected XSS in a login portal 1187.3.1.2 Open redirect vulnerability 1187.3.1.3 Leaked internal SQL server credentials 1187.3.2 Complexity vs Rating 1197.3.3 Projected Ratings 1207.3.4 Ticketing and Internal SLA 1207.3.4.1 Creating Tickets 1208 VULNERABILITY DISCLOSURE INFORMATION 1238.1 Understanding Public Disclosure 1238.1.1 Making the Decision 1238.1.1.1 Private Programs 123The Bottom Line 1248.1.1.2 Public Programs 125The Bottom Line 1268.2 CVE Responsibility 1268.2.1 What are CVEs? 1268.2.2 Program Manager Responsibilities 1268.2.3 Hardware CVEs 1268.2.4 Software and Product CVEs 1288.2.5 Third-party CVEs 1288.3 Submission Options 1308.3.1 In-house Submissions 1308.3.2 Program Managed Submissions and Hands-off Submissions 1308.3.2.1 Program Managed Submissions 1308.3.2.2 Hands-off Submissions 131PART 5 INTERNAL AND EXTERNAL COMMUNICATION 1339 DEVELOPMENT AND APPLICATION SECURITY COLLABORATION 1359.1 Key Role Differences 1359.1.1 Application Security Engineer 1359.1.2 Development 1359.2 Facing a Ticking Clock 1369.3 Meaningful Vulnerability Reporting 1369.4 Communicating Expectations 1379.5 Pushback, Escalations, and Exceptions 1389.5.1 Internal steps 1389.5.2 External steps 1399.5.2 Escalations 1399.5.3 Summary 1409.6 Continuous Accountability 1419.6.1 Tracking 1419.6.2 Missed Deadlines 14110 HACKER AND PROGRAM INTERACTION ESSENTIALS 14310.1 Understanding the Hacker 14310.1.1 Money, Ethics, or Both? 14310.1.2 Case Study Analysis 14510.2 Invalidating False Positives 14510.2.1 Intake Process and Breaking the News 14510.2.2 Dealing with a Toxic Hacker 14710.3 Managed Program Considerations 14710.4 In-house Programs 14810.5 Blackmail or Possible Threat Actor 15110.6 Public Threats or Disclosure 15110.7 Program Warning Messages 15310.8 Threat Actor or Security Researcher? 15310.9 Messaging Researchers 15510.9.1 Security Researcher Interviews 15510.9.2 Bug Bounty Program Manager Interviews 15910.10 Summary 164PART 6 ASSESSMENTS AND EXPANSIONS 16511 INTERNAL ASSESSMENTS 16711.1 Introduction to Internal Assessments 16711.2 Proactive Vs Reactive Testing 16711.3 Passive Assessments 16811.3.1 Shodan 16811.3.1.1 Using Shodan 16811.3.2 Amass/crt.sh 17111.3.2.1 Amass 17211.3.2.2 crt.sh 17311.4 Active Assessments 17311.4.1 nmapAutomator.sh 17311.4.2 Sn1per 17511.4.3 Owasp Zap 17511.4.4 Dalfox 17711.4.5 Dirsearch 17911.5 Passive/Active Summary 18011.6 Additional Considerations: Professional Testing and Third-Party Risk 18012 EXPANDING SCOPE 18112.1 Communicating with the Team 18112.2 Costs of Expansion 18212.3 When to Expand Scope 18212.4 Alternatives to Scope Expansion 18312.5 Managing Expansion 18313 PUBLIC RELEASE 18513.1 Understanding the Public Program 18513.2 The “Right” Time 18513.3 Recommended Release 18613.3.1 Requirements 18613.4 Rolling Backwards 18613.5 Summary 187Index 189
Private Cloud und Home Server mit QNAP NAS
* MUSIK, FOTOS, VIDEOS UND DOKUMENTE ZENTRAL SPEICHERN UND MIT ANDEREN TEILEN* BENUTZER VERWALTEN, BACKUPS ERSTELLEN UND DATEN VOR UNERLAUBTEN ZUGRIFFEN SCHÜTZEN* FORTGESCHRITTENE THEMEN WIE VPN UND VIRTUALISIERUNG* ZAHLREICHE SCHRITT-FÜR-SCHRITT-ANLEITUNGEN UND PRAXIS-TIPPSMit diesem Buch lernen Sie umfassend alles, was Sie brauchen, um Ihr QNAP NAS an Ihre persönlichen Bedürfnisse anzupassen und das Potenzial Ihres Geräts voll auszuschöpfen. Dafür gibt der Autor Ihnen zahlreiche praktische Tipps an die Hand. So können Sie all Ihre Dateien wie Musik, Videos und Fotos zentral sichern und effektiv verwalten.Andreas Hofmann stellt die verschiedenen NAS-Modelle vor, so dass Sie wissen, welches für Sie am besten geeignet ist. In leicht nachvollziehbaren Schritten erläutert er detailliert, wie Sie Ihr NAS in Betrieb nehmen und mit dem Betriebssystem QTS konfigurieren.Anhand einfacher Schritt-für-Schritt-Anleitungen zeigt er Ihnen, wie Sie Ihr NAS als Private Cloud und Home Server optimal einrichten: Dateien sichern, verwalten und mit anderen teilen, Benutzer verwalten, Fernzugriff einrichten, automatische Backups erstellen sowie Office-Dokumente und Multimedia-Dateien freigeben und mit dem SmartTV und anderen Geräten wiedergeben.Für alle, die noch tiefer in die Welt von QNAP NAS eintauchen möchten, geht der Autor auf weiterführende Themen wie Datensicherheit und die Überwachung und Optimierung des Betriebs ein und zeigt Ihnen die Konfiguration abseits der QNAP-Apps für die Einrichtung eines eigenen Chatservers sowie die Virtualisierung von Webanwendungen und Betriebssystemen.AUS DEM INHALT:* Kaufberatung und Inbetriebnahme* Das Betriebssystem * QTS im Detail* Dateien zentral verwalten mit der File Station* RAID-Konfiguration und automatische Backups* Dateifreigabe und Fernzugriff via App, FTP u.v.m.* Datensicherheit, Virenschutz und Firewall* Fotos organisieren und teilen mit der Photo Station* Musik zentral verwalten mit der Music Station * Filme katalogisieren und streamen mit dem Plex Media Server* Office-Dokumente, Kalender, Adressbuch und Notizen verwalten* E-Mail-Verwaltung mit dem QmailAgent* Zentrales Download-Management* Videoüberwachung mit der Surveillance Station* Virtualisierung* Speicher und RAID erweiternblog.viking-studios.net
Transforming Your Business with AWS
EXPERT GUIDANCE ON HOW TO USE AMAZON WEB SERVICES TO SUPERCHARGE YOUR DIGITAL SERVICES BUSINESSIn Transforming Your Business with AWS: Getting the Most Out of Using AWS to Modernize and Innovate Your Digital Services, renowned international consultant and sought-after speaker Philippe Abdoulaye delivers a practical and accessible guide to using Amazon Web Services to modernize your business and the digital services you offer. This book provides you with a concrete action plan to build a team capable of creating world-class digital services and long-term competitive advantages.You'll discover what separates merely average digital service organizations from the truly outstanding, as well as how moving to the cloud will enable your business to deliver your services faster, better, and more efficiently.This book also includes:* A comprehensive overview of building industry-leading digital service delivery capabilities, including discussions of the development lifecycle, best practices, and AWS-based development infrastructure* Explanations of how to implement a digital business transformation strategy* An exploration of key roles like DevOps Continuous Delivery, Continuous Deployment, Continuous Integration, Automation, and DevSecOps* Hands-on treatments of AWS application management tools, including Elastic Beanstalk, CodeDeploy, and CodePipelinePerfect for executives, managers, and other business leaders attempting to clarify and implement their organization's digital vision and strategy, Transforming Your Business with AWS is a must-read reference that answers the "why" and, most importantly, the "how," of digital transformation with Amazon Web Services.PHILIPPE ABDOULAYE is an international digital business transformation consultant. He advises business and IT leaders on how to take advantage of digital technologies to grow and prosper. He is a sought-after speaker for technology conferences around the world and has authored seven books on digital transformation and digital technologies.Introduction xxviiPART I UNDERSTANDING THE DIGITAL TRANSFORMATION CHALLENGES 1CHAPTER 1 THE DIGITAL ECONOMY’S CHALLENGES, OPPORTUNITIES, AND RELEVANCE OF AWS 3Understanding the Digital Economy’s Impacts 4Surviving Disruptions Are Your Business’s Primary Challenge 4Understanding the Digital Economy’s Opportunities 4Surviving the Disruptions: The AWS Solutions 5The AWS Universal Architecture: Simplifying AWS Understanding 5Navigating AWS IaaS Building Block 6AWS Compute Resources 7AWS Network Resources 8AWS Storage Resources 9Understanding Essential AWS PaaS Tools 10AWS Elastic Beanstalk 10AWS CodeDeploy 10AWS CodePipeline 11Understanding Innovation with AWS: Machine Learning, Internet of Things, and Elastic MapReduce 11AWS Machine Learning 11AWS Internet of Things 12Amazon Elastic MapReduce 12Understanding the AWS Integration Building Block 13Site-to-Site VPN 13Hybrid Cloud with VMware Cloud on AWS 13Changes in the AWS Implementation Paradigm 14Lift-and-Shift Migration is a Problem 14Failure Factors Making Lift-and-Shift Irrelevant 14Understanding the Benefits of Enterprise Architecture for AWS 15Key Takeaways 16References 16CHAPTER 2 WHAT IS A DIGITAL PRODUCT? 17Differences Between Digital Products and Digital Services 17Digital Service Delivers Information 18Digital Product Exists in Intangible Formats 18Anatomy of the Digital Product 18The Digital Product’s Technology Stack 18The 4G/5G Services 19Cloud Computing Services: Innovation as a Service 20Smart Mobile Devices 24Impacts on Digital Product and Service Development 24The Growing Complexity of the Technological Stack 24Technology Innovation Alone Isn’t Enough Anymore 25Key Takeaways 25References 26CHAPTER 3 DIGITAL PRODUCT AND SERVICE DEVELOPMENT CHALLENGES 27What is Digital Product and Service Development? 28Digital Product and Service Development Defined 28How is Digital Product and Service Development Performed? 28Ideation 29Concept 30Business Case 30Development 30Testing 31Launch 31Digital Product and Service Development Approach Evaluation 31Understanding the Digital Product and Service Development Assessment Framework 32Assessment Framework Overview 32The Context Elements 33The Performance Enablers 33The Digital Transformation Solutions 34Assessing Current Digital Product and Service Development 35What is a Digital Product and Service Development Platform? 35Capturing Business Context 37Evaluating Your Digital Operating Model 37Evaluating Your Technical Platform 38Evaluating Your Organizational Model 40Assessing Your Human Capital 41Challenges of Current Digital Product Development 42Focus on Digital Product and Service Development 42Accurate Customer Insights 43Competitive Pricing 43Premium Customer Experience 43Rapid Go-to-Market 44Key Takeaways 44References 44CHAPTER 4 INDUSTRIALIZING DIGITAL PRODUCT AND SERVICE DEVELOPMENT 47The Total Quality Management and Mass Production Heritage 48Total Quality Management Principles Defined 48Customer Focus 48Workforce Commitment 49Process Approach 49Integrated System 49Continual Improvement 49Transversal Communication 49Mass Production Principles Defined 49Assembly Line 50Work Specialization 50Automation 50Industrialization Factors 50Industrialization Factor Defined 50Families of Industrialization Factors 51Principles Family 51Design Patterns Family 52Methodology Family 52Technology Family 53Understanding DevOps as the Framework for Implementing Your Digital Product and Service Development Platform 54DevOps Defined 54Understanding DevOps Components 54Software Delivery Lifecycle’s Importance 54DevOps Practices Purpose 56Methodologies Benefit 58DevOps Toolchain Importance 63AWS Industrialization Factors 64Understanding AWS Design Patterns: The Enterprise Cloud Migration Pattern 64Defining AWS Enterprise Cloud Migration Pattern 65Understanding the Baseline Architecture Purpose 66AWS Methodology 66Defining AWS Well-Architected Framework 66Understanding the Industrialization Matrix for AWS 70Key Takeaways 73References 73PART II DIGITIZING THE BUSINESS MODEL USING AWS 75CHAPTER 5 THE J&S FOOD DIGITAL TRANSFORMATION PROJECT 77History of J&S Food, Inc. 77Company’s Evolution 78Territorial Conquest 78Diversification 79Company’s Culture 79Productivity 80Effectiveness 80Innovation 80Technology 81Transformation Journey’s First Stage: Planning the Transformation 81The Kickoff Meeting 82Understanding the Grocery Sector’s Digital Disruption Impacts on J&S Food 82Capturing and Analyzing the Factors Driving the Grocery Sector Disruption 84Discussing and Agreeing on the Factors Affecting J&S’s Food Business 87Developing and Sharing J&S Food’s Digital Mission and Digital Strategy 90Defining J&S Food’s Mission 90Developing J&S Food’s Digital Strategy 91Developing J&S Food’s Digital Transformation Roadmap 94Digital Transformation Roadmap Defined 94Developing a Digital Transformation Roadmap 96Understanding J&S Food’s Digital Transformation Roadmap 98The J&S Food Digital Transformation Project’s Statement of Work 99The Statement of Work Defined 99Introduction/Background 99Scope of Work 100Work Requirements 100Schedule/Milestones 101Acceptance Criteria 101Other Requirements 101The Next Step 102Key Takeaways 102References 102CHAPTER 6 RETHINKING J&S FOOD’S BUSINESS 103Transformation Journey’s Second Stage: Rethinking the Business 104Understanding J&S Food’s Current Business 105Capturing the Current Business Model 105Understanding Use Cases 106Understanding Actors 106Understanding Links 106The Current Business Model Captured 106Buy 107Fulfill Order 108Pay 109Perform Customer Service 109Manage Supply Chain 110Maintain Website 111Develop Food Product 112Understanding J&S Food’s Current Data Model 112Assessing the As-Is Operational Model 113Digital Food Experience Defined 113Assessing J&S Food’s Operational Model 114Defining the Digital Smart Shopping Bag 116Optimizing the Fulfill Order Experience Based on a Two-SidedMarketplace Platform 117Enhancing Online Order Experience Using a Mobile App 118Implementing a Digital Products and Services Development Platform 118Defining the Future Digital Business Model 118Reconfiguring J&S Food’s Operational Model 119Understanding Michael Porter’s Value Chain 119The Value Chain for Digital Business Defined 121J&S Food’s Digital Business Model Defined 123Understanding J&S Food’s Next Digital Value Chain 123Support Digital Business Activities 123Primary Digital Business Activities 124Understanding J&S Food’s AWS Cloud Platform 126J&S Food’s AWS Software as a Service 126The J&S Food’s Platform as a Service 126The J&S Food’s AWS Virtual Infrastructure 126Integrating J&S Food’s Digital Operational Model with the Organization 127The Digital Business Value Chain: A Shortcut to the Digital Business Organization 127Digital Business Organizational Model Defined 127Developing the Digital Business Organizational Model 128The J&S Organizational Model Defined 130Roles and Responsibilities 130Interaction and Collaboration Mechanisms 132Key Takeaways 132References 133CHAPTER 7 DIGITIZING J&S FOOD’S BUSINESS MODEL USING AWS—IMPLEMENTING THE VPC 135Transformation Journey’s Third Stage: Digitizing the Business Model 136Defining J&S Food’s AWS Migration Strategy 137Sharing J&S Food’s Digital Business Model 138Defining the J&S Food’s Digital Business Application Portfolio 139Specifying J&S Food’s Virtual Private Cloud Architecture 141Understanding the Enterprise Cloud Migration Model For AWS 141J&S Food’s Virtual Private Cloud Specified 141The Availability Zone 142Amazon CloudFront and the Content Delivery Network 143J&S Food’s Virtual Private Cloud 143J&S Food’s Extended Elastic Compute Cloud Building Block 145J&S Food’s Extended Storage Build Block 149J&S Food’s Extended Fault Tolerance Building Block4 150J&S Food’s Extended Security Build Block 151Executing J&S Food’s AWS Migration Strategy 152Understanding the AWS Application Migration Process 152Discover 152Design 152Build 153Integrate 153Validate 153Cutover 153Migrating J&S Food’s Ecommerce Website Into a Two-Sided Marketplace Platform 154Implementing J&S Food’s Virtual Private Cloud 154Discovering the Ecommerce Website Three-Tier Architecture 155Extending the Ecommerce Website Architecture to a Two-Sided Marketplace Platform 157Implementing J&S Food’s Two-Sided Marketplace Platform 161Validating the Two-Sided Marketplace Platform 165Key Takeaways 165References 166CHAPTER 8 IMPLEMENTING J&S FOOD’S DEVOPS PLATFORM USING AWS PAAS 167Transformation Journey’s Third Stage: Implementing J&S Food’s DevOps Platform 168Understanding What J&S Food is Trying to Achieve 169Understanding the DevOps Implementation in the AWS Computing Environment 169Discussing the Challenges 170Understanding the Common Mistakes 171The DevOps Implementation Framework for AWS 171The Digital Business Value Chain Primary Activities and AWS Modern Application Influence 172The AWS CodePipeline Service 173Understanding DevOps Implementation for AWS 175Implementing J&S Food’s Digital Product and Service Development Platform 177J&S Food’s Digital Product and Service Development Platform 177J&S Food’s DevOps Toolchain 178J&S Food’s Digital Business Primary Activities 180Designing the Agile Operating Model 181The Usual Challenges and Solutions 181J&S Food’s Agile Operating Model Defined 182Key Takeaways 183References 184CHAPTER 9 DEVELOPING J&S FOOD’S INNOVATION AS A SERVICE PLATFORM USING AWS 185Transformation Journey’s Third Stage: Developing J&S Food’s Innovation as a Service 185Software Engineering Methodology for Innovations Development in the AWS Cloud 186Software Engineering Methodology for Innovations Development 187Driving Principles Explained 187Key Concepts to Understand 189Understanding the Innovative Digital Product Development Lifecycle 193The Five-Step Development Lifecycle 193Specifying the Innovative Digital Product Using a UML Use Case Diagram 194Designing the Innovative Digital Product Using a UML Package Diagram 196Prototyping the Microservices Using AWS Amplify 197Developing and Deploying the Application Supporting the Innovative Digital Product 198Implementing the Microservices Architecture of the Digital Product and Service 200The User Interface Microservices 201The Business Logic Microservices 201The Technology Microservices 201Key Takeaways 202References 202PART III DEVELOPING WORLD-CLASS DIGITAL PRODUCTS AND SERVICES USING AWS 205CHAPTER 10 J&S FOOD’S SMART SHOPPING BAG DIGITAL PRODUCT PROJECT 207Transformation Journey’s Fourth Stage: Experimenting with the Digital Business Model 208The Smart Shopping Bag Project Overview 208The Smart Shopping Bag Project’s Organization 209The Smart Shopping Bag Project’s Opportunity Statement 209The Smart Shopping Bag Project’s Objectives 210The Smart Shopping Bag Project’s Scope 210The Pilot Project Management 211Key Takeaways 211References 212CHAPTER 11 SPECIFYING J&S FOOD’S SMART SHOPPING BAG DIGITAL PRODUCT 213Transformation Journey’s Fourth Stage: Specification of the Smart Shopping Bag Digital Product 213Specifying the Smart Shopping Bag Digital Product’s Scope 214Using Context Diagrams to Improve the Specification Process 215Developing the Smart Shopping Bag’s Context Diagram 215J&S Food’s Stores IoT Infrastructure 215J&S Food’s AWS IoT Core Platform 216Developing the Smart Shopping Bag Use Case Diagram 216Identifying the Smart Shopping Bag’s Actors and Use Cases 218Specifying the Smart Shopping Bag’s Functions Using Sequence Diagrams 221Use Case Description: Press Start to Begin Shopping 221Use Case Description: Respond to In-Store Customer Button Presses 222Use Case Description: Detect Product Code Put in the Bag 223Use Case Description: Send EEPROM Data to Billing System 225Use Case Description: Respond to RFID Reader Queries 226Use Case Description: Calculate the Bill Amount 226Specifying the Smart Shopping Business Rules Using Class Diagram 228The In-Store Customer 228The Smart Shopping Bag 230The RFID Reader 230The Product RFID Tag 230The Smart Mobile Device 231The Shopping Session 231The Smart Shopping Service 231The Smart Shopping Bag Application 231Key Takeaways 232References 232CHAPTER 12 DESIGNING J&S FOOD’S SMART SHOPPING BAG DIGITAL PRODUCT 233Transformation Journey’s Fourth Stage: Designing the Smart Shopping Bag Digital Product 233The Agile Operational Model Confirmed as the Foundation of J&S Food’s Work Organization 234J&S Food’s New Organization of Work 234The Princeton’s Digital Product Development Team Defined 235UML Package Diagram Facilitates the Microservices Architecture Design Process 237Lucidchart Confirmed as the Best Architecture Tool 237Overall Feedback 237The Resulting Smart Shopping Bag’s Architecture 238The Smart Shopping Bag Blueprint 239The In-Store Customer Package 240The Shopping Session Package 240The Smart Shopping Bag Package 241Acquired Digital Business Competency: Digital Products and Services Architecture Design 241Key Takeaways 241References 242CHAPTER 13 PROTOTYPING J&S FOOD’S SMART SHOPPING BAG USING INNOVATION AS A SERVICE 243Transformation Journey’s Fourth Stage: Prototyping the Smart Shopping Bag’s Application 244Sharing the Prototyping Process Goal and Approach 245Prototyping Using AWS Amplify Defined 245The Prototyping Iterations Using AWS Amplify 245The Prototyping Team 251The Team’s Feedback 252The Smart Shopping Bag Application Prototype 253The Business Logic, Technological, and UI Microservices Prototyped 255The Microservices Development Process in the AWS Amplify Context 255Defining the Microservices Granularity 256The Smart Shopping Bag Business Logic Microservices Implemented 257The Smart Shopping Bag Business Logic Microservices Documented 257The Smart Shopping Bag Technological Innovation Microservices Implemented 259IoT Gateway Microservices 259AWS IoT Core Microservices 261RFID Reader Microservices 263RFID Tag Microservices 265The Smart Shopping Bag UI Microservices Implemented 265Key Takeaways 266References 267CHAPTER 14 IMPLEMENTING J&S FOOD’S SMART SHOPPING BAG APPLICATION 269Transformation Journey’s Fourth Stage: Implementing the Smart Shopping Bag’s Production Release 270The Smart Shopping Bag App: Production Release 270Blueprint of the Smart Shopping Bag in Production 270Understanding the Production Release Building Blocks 271Application Layer 271AWS Innovation Layer 273AWS Virtual Infrastructure Layer 274Understanding the Pivotal Role Played by Agile Methodologies 275The Architectural Spike and Prototyping Benefits 275The Importance of Scrum Sprints in the Incremental Development Effort 275Understanding the Vital Role of the Daily Scrums 276The Development Team’s Feedback: Lessons Learned 277Key Takeaways 278References 278CHAPTER 15 LAUNCHING J&S FOOD’S FIRST DIGITAL FOOD PRODUCT 279Transformation Journey’s Fourth Stage: Deploy J&S Food’s Digital Business 279Defining J&S Food’s Go-To-Market Strategy 280The Go-To-Market Strategy Defined 281Articulating J&S Food’s Go-To-Market Strategy 281The Objectives Questionnaire 282The Value Propositions Questionnaire 282The Key Processes to Stress Questionnaire 282The Organizational and Technological Assets to Stress Questionnaire 282J&S Food’s Go-To-Market Strategy Defined 282Understanding J&S Food’s Go-To-Market Strategy 283Declaring J&S Food’s Digital Business Opened 284Key Takeaways 284References 285CHAPTER 16 MAINTAINING AND SUPPORTING J&S FOOD’S DIGITAL BUSINESS ON A DAILY BASIS 287The New J&S Food Day-to-Day Business 287J&S Food’s Customer Value Creation Virtuous Circle 288J&S Food’s Virtuous Circle for Creating Customer Value 288Customer Insights Management on a Daily Basis 289J&S Food’s AWS EMR Infrastructure 289Business Data Providers 290Data Lake 290Data Warehouse 290Data Mart 290The Big Data Analytics Activity in the Customer Insights Management Team 291Customer Value Increase Management’s Day-to-Day Operations 292J&S Food’s AI/ML Development Environment 292Generate Data 293Train Models 293Deploy Models 294The Customer Increase Value Management Team’s Activity 294Digital Product and Service Releases Development 295Defining Product Backlog 295Sprint Planning 296Sprint Execution 296Key Takeaways 296References 297Index 299
FRITZ!Box - Der umfassende Ratgeber (2. Auflg.)
Die ganze Power der FRITZ!Box nutzen. Der umfassende Ratgeber in 2. Auflage, September 2021.Erfahren Sie alles, was Sie zum sicheren Umgang mit der FRITZ!Box wissen müssen! Verständlich erklärt und reich bebildert hilft Ihnen dieses Buch bei der Kaufentscheidung. So finden Sie das richtige Modell, das perfekt zu Ihren persönlichen Ansprüchen passt. Dennis Rühmer zeigt Ihnen, worauf Sie bei der Ersteinrichtung achten sollten. Er führt Sie Schritt für Schritt durch die zahlreichen Funktionen und Einsatzmöglichkeiten, ob (Mesh-)WLAN, Telefonie oder die Steuerung eines Smart Homes. So lernen Sie, wie Sie Ihren Router richtig konfigurieren und ein sicheres Heimnetzwerk einrichten.Aus dem Inhalt:Die FRITZ!Box stellt sich vorDas richtige Modell auswählen3... 2... 1: der erste StartDie Benutzeroberfläche verstehenDie NetzwerkfunktionenKabellos glücklich - alles rund ums WLANReichweite vergrößer: Mesh, AccessPoints und Repeater einrichtenRuf doch mal an - TelefoniefunktionenErweiterte Systemfunktionen
Cloud Native Architecture and Design
Build enterprise-grade cloud-native systems and learn all about cloud-native architecture and design. This book provides extensive in-depth details of patterns, tools, techniques, and processes with plenty of examples.Cloud Native Architecture and Design begins by explaining the fundamentals of cloud-native architecture and services, what cloud principles and patterns to use, and details of designing a cloud-native element.The book progresses to cover the details of how IT systems can modernize to embrace cloud-native architecture, and also provides details of various enterprise assessment techniques to decide what systems can move and cannot move into the cloud.Architecting and designing a cloud-native system isn’t possible without modernized software engineering principles, the culture of automation, and the culture of innovation. As such, this book covers the details of cloud-native software engineering methodologies, and process, and how to adopt an automated governance approach across enterprises with the adoption of artificial intelligence.Finally, you need your cloud-native applications to run efficiently; this section covers the details of containerization, orchestration, and virtualization in the public, private, and hybrid clouds.After reading this book, you will have familiarity with the many concepts related to cloud-native and understand how to design and develop a successful cloud-native application. Technologies and practices may change over time, but the book lays a strong foundation on which you can build successful cloud-native systems.WHAT YOU WILL LEARNDiscover cloud-native principles and patterns, and how you can leverage them to solve your business problems * Gain the techniques and concepts you need to adapt to design a cloud-native applicationUse assessment techniques and tools for IT modernization * Apply cloud-native engineering principles to the culture of automation and culture of innovationHarness the techniques and tools to run your cloud-native applications and automate infrastructure* Operate your cloud-native applications by using AI techniques and zero operation techniques WHO THIS BOOK IS FORSoftware architects, leaders, developers, engineers, project managers, and students.SHIVAKUMAR R GONIWADA is an enterprise architect, technology leader, and inventor with more than 23 years of experience in architecting enterprise architecture with cloud-native, event-driven systems. He currently works at Accenture and leads a highly experienced technology enterprise and cloud architects. In his 23 years of experience, he led many highly complex projects across industries and the globe. He has ten software patents to his name in the areas of cloud, polyglot and polylithic architecture, software engineering, and IoT. He is a speaker at multiple global and in-house conferences. He holds Master Technology Architecture Accenture, Google Professional, AWS, and data science certifications. He completed an executive MBA at MIT Sloan School of Management.PART I: CLOUD NATIVE JOURNEY, PRINCIPLES & PATTERNS1. Introduction to Cloud Native Architecture2. Cloud Native Services3. Cloud Native Architecture Principles4. Cloud Native Architecture & Design PatternsPART II: ELEMENTS OF CLOUD NATIVE ARCHITECTURE & DESIGN5. Microservices Architecture & Design6. Event Driven Architecture7. Serverless Architecture8. Cloud Native Data Architecture9. Designing for “-ilities”PART III: MODERNIZING AN ENTERPRISE IT SYSTEMS10. Modernize Monolithic Application to Cloud Native11. Enterprise IT Systems Assessment to Decide Cloud Native Journey12. Cloud Native Architecture Fitness CheckPART IV: CLOUD NATIVE SOFTWARE ENGINEERING13. Developing an Enterprise Systems for Cloud Native14. Automation in an Enterprise Cloud-Native Journey15. AI Driven DevelopmentPART V: CLOUD NATIVE INFRASTRUCTURE16. Containerization and Virtualization17. Automation in InfrastructurePART VI: CLOUD NATIVE OPERATION18. Intelligent Operation19. ObservabilityPART VII: CLOUD NATIVE FEATURE20. Cloud Native Supported Future Technologies
Einstieg in SAP HANA
Wenn Sie im SAP-Umfeld arbeiten möchten, kommen Sie um SAP HANA nicht herum. Die In-Memory-Datenbank, Entwicklungs- und Analytics-Plattform bildet zukünftig die Grundlage für alle SAP-Anwendungen, allen voran SAP S/4HANA. Dieses Buch führt Sie in die Architektur der leistungsstarken Plattform ein, erklärt die Besonderheiten und begleitet Sie bei den wichtigsten Aufgaben im Umgang mit SAP HANA. Aus dem Inhalt: Tabellenstruktur und SpeicherKomponenten und SchnittstellenMulti-Tenancy-Konzept und SystemlandschaftenBetriebssysteme und EditionenInstallation und KonfigurationAdministrationMonitoring und ProtokollierungEntwicklung mit SQLScript, Node.js und RSAP HANA XS(A)Views, Datenbankprozeduren und FunktionenSicherheit und Berechtigungen