Re: [VOTE] End User Reference Architecture v1.0
Ram, J <j.ram@...>
From: Brian Grant [mailto:briangrant@...]
On Mon, Oct 24, 2016 at 5:28 AM, Ram, J via cncf-toc <cncf-toc@...> wrote:
Sorry, I missed that last call. So apologies if this was discussed.
Two thoughts/Questions that come to mind when looking thru the slides:
a) Emphasis on security seem to be missing. It might be implicit, but being explicit might be useful. So calling out some aspects of it in application definition, orchestration and runtime would change that. I suspect that orchestration and runtime would get more interesting if complex security policies are modelled in the application definition.
Given that security spans all the layers and is a complex topic, I'm not sure what we'd add at the current level of detail.
Service naming, discovery, load balancing, and routing (service fabric/mesh approaches) are intended to be covered by slide 6. Is there a specific terminology clarification that you'd like to see? Or would you like us to merge the "Coordination" and "Service Management" sub-bullets into a single list?
What exactly do you mean by "service directory"?
[JRAM] to reiterate this maybe outside the scope of this discussion. My observation, is that there is no consistent standard for any client to search, lookup and find service providers in the global network in a consistent fashion. DNS is the closest adopted standard and is not really designed for the level of dynamism we need in this new Cloud Based model. Lack of this is clearly emphasized by trickery played in networking stack and DNS stack. Another observation is that there is no global catalogue of all services that are available in the network at internet scale. Every seems to be having their own version of “directory” implementation. In our case, we have DNS, Zookeeper, url router, etc to just name a few…
The question for us to answer minimally is: do we want to address this problem architecturally and as a standard ?