DOCSLIB.ORG

Next Stop, the Cloud: Understanding Modern Web Service Deployment in EC2 and Azure

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Next Stop, the Cloud: Understanding Modern Web Service Deployment in EC2 and Azure Next Stop, the Cloud: Understanding Modern Web Service Deployment in EC2 and Azure Keqiang He, Alexis Fisher, Liang Wang, Aaron Gember, Aditya Akella, Thomas Ristenpart University of Wisconsin – Madison {keqhe,afisher,liangw,agember,akella,rist}@cs.wisc.edu ABSTRACT Despite the popularity of public IaaS clouds, we are unaware of An increasingly large fraction of Internet services are hosted on a any in-depth measurement study exploring the current usage pat- cloud computing system such as Amazon EC2 or Windows Azure. terns of these environments. Prior measurement studies have quan- But to date, no in-depth studies about cloud usage by Internet ser- tified the compute, storage, and network performance these clouds vices has been performed. We provide a detailed measurement deliver [29, 30], evaluated the performance and usage patterns of study to shed light on how modern web service deployments use specific services that are hosted in these clouds, e.g., Dropbox [23], the cloud and to identify ways in which cloud-using services might or examined cloud usage solely in terms of traffic volume [28]. improve these deployments. Our results show that: 4% of the We present the first in-depth empirical study of modern IaaS Alexa top million use EC2/Azure; there exist several common de- clouds that examines IaaS cloud usage patterns and identifies ways ployment patterns for cloud-using web service front ends; and ser- in which cloud tenants could better leverage IaaS clouds. We focus vices can significantly improve their wide-area performance and specifically on web services hosted within IaaS clouds, which our failure tolerance by making better use of existing regional diversity study (unsurprisingly) indicates is a large and important use case in EC2. Driving these analyses are several new datasets, includ- for IaaS. ing one with over 34 million DNS records for Alexa websites and We first examine who is using public IaaS clouds. We generate a packet capture from a large university network. a dataset of cloud-using domains using extensive DNS probing in order to compare the IPs associated with websites on Alexa’s top 1 million list [1] against published lists of cloud IP ranges. This Categories and Subject Descriptors identifies that ≈40K popular domains (4% of the Alexa top mil- C.2.0 [Computer-Communication Network]: General; C.4[Perfo- lion) have a subdomain running atop Amazon EC2 or Windows rmance of Systems]: Metrics—performance measures Azure, two of the largest public clouds. We extract an additional ≈13K cloud-using domains from a one week packet capture from General Terms a large university network, and we use this capture to characterize the network traffic patterns of cloud-hosted web services. These Measurement results indicate that a large fraction of important web services are already hosted within public IaaS clouds. Keywords We proceed to dissect how these services are using the cloud. Web Service, Cloud Computing, EC2, Azure, DNS, trace analysis EC2 and Azure both have a veritable potpourri of features, includ- ing virtual machines, load balancers, platform-as-a-service (PaaS) environments, content-distribution networks (CDNs), and domain 1. INTRODUCTION name services. They also give tenants the choice of deploying Up until a few years ago, web services were hosted in heteroge- their services in several different regions (i.e., geographically dis- neous server clusters or co-location centers that were widely dis- tinct data centers), and EC2 provides several different “availability tributed across different network providers and geographic regions. zones” within each region. We couple analysis of DNS records with Today, web services are increasingly being deployed in infrastruc- two different cloud cartography techniques [34] to identify which ture-as-a-service (IaaS) clouds such as Amazon EC2, Windows features, regions and zones web services use. We identify several Azure, and Rackspace. Industry and the media claim that over 1% common front end deployment patterns and report estimates of the of Internet traffic goes to EC2 [31] and that outages in EC2 are percentages of Alexa subdomains using each of the patterns. In par- reputed to hamper a huge variety of services [4, 6, 24, 35]. ticular, we find that about 4% of EC2-using web services use load balancers and 8% of them leverage PaaS. Only 5% of the DNS Permission to make digital or hard copies of all or part of this work for personal or servers used by cloud-using subdomains run on VMs inside EC2 classroom use is granted without fee provided that copies are not made or distributed or Azure. We also show that 97% of the subdomains hosted on for profit or commercial advantage and that copies bear this notice and the full cita- EC2 and 92% of the subdomains hosted on Azure are deployed tion on the first page. Copyrights for components of this work owned by others than in only a single region. Counted among these are the subdomains ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or re- publish, to post on servers or to redistribute to lists, requires prior specific permission of most of the top 10 (by Alexa rank) cloud-using domains. Ser- and/or a fee. Request permissions from [email protected]. vices deployed in EC2 also appear to make limited use of different IMC’13, October 23–25, 2013, Barcelona, Spain. availability zones: our measurements estimate that only 66% of Copyright 2013 ACM 978-1-4503-1953-9/13/10 ...$15.00. subdomains use more than one zone and only 22% use more than http://dx.doi.org/10.1145/2504730.2504740. two. This lack of redundancy means that many (even highly ranked (PaaS) node (P3). With P2, the client request is subsequently di- rected to a VM1. Tenants using P1–P3 may also rely on additional VMs or systems (dashed lines) to handle a client’s request; these additional components may or may not be in the same region or availability zone (indicated by the gray boxes). An object returned to a client (e.g., a web page) may sometimes require the client to (a) P1: VM front end (b) P2: Load balancer front end obtain additional objects (e.g., a video) from a content-distribution network (P4). We focus on studying the front end portions of web service de- ployments within the above four deployment patterns (indicated by the thicker lines in Figure 1). These portions are encountered within the initial few steps of a client making a request. We leave an (c) P3: PaaS front end (d) P4: Leverage CDN exploration of deployment/usage patterns covering the later steps (e.g. back-end processing) for future work. Figure 1: Deployment patterns for web services. 2.1 Datasets Alexa) services will not tolerate single-region or even single-zone We use two primary datasets: (i) a list of cloud-using subdo- failures. mains derived from Alexa’s list of the top 1 million websites, and Finally, we use a series of PlanetLab-based [17] active measure- (ii) packet traces captured at the border of the UW-Madison cam- ments and simulations to estimate the impact of wide-area route pus network. Both datasets leverage the fact that EC2 [12] and outages and the potential for wide-area performance improvement. Azure [8] publish a list of the public IPv4 address ranges associ- We find that expanding a deployment from one region to three ated with their IaaS cloud offerings. Below, we provide details on could yield 33% lower average latency for globally distributed cli- our Alexa subdomains and packet capture datasets. We augment ents, while also substantially reducing the risk of service downtime these data sets with additional traces and active measurements to due to downstream Internet routing failures. aid specific analyses; we describe these at the appropriate places in The remainder of our paper is organized as follows. We first pro- subsequent sections. vide background on Amazon EC2 and Windows Azure and discuss the primary datasets we use in our study (§2). We then examine Top Cloud-Using Subdomains Dataset. Our first dataset is a list who is using the cloud (§3), and which cloud features, regions, and of subdomains which use EC2 or Azure and are associated with do- zones are used by the cloud-using web services we identified (§4). mains on Alexa’s list of the top 1 million websites [1]. We consider Based on these observations, we proceed to estimate the wide-area- a subdomain to use EC2 or Azure if a DNS record for that subdo- failure tolerance of current web service deployments and the poten- main contains an IP address that falls within EC2 or Azure’s public tial for performance improvement (§5). Finally, we discuss related IP address ranges. work (§6) before concluding (§7). To construct this dataset, we first identified the subdomains as- sociated with each domain on Alexa’s list of the top 1 million web- 2. MEASUREMENT SCOPE & DATASETS sites. We started with Alexa’s top 1 million list from Feburary 6, 2013 and attempted to issue a DNS zone transfer (i.e., a DNS query Public IaaS clouds, such as Amazon EC2, Windows Azure, and of type AXFR) for each domain on the list. The query was suc- Rackspace, allow tenants to dynamically rent virtual machine (VM) cessful for only about 80K of the domains. For the remaining do- instances with varying CPU, network, and storage capacity. Cloud mains, we used dnsmap [16] to identify subdomains by brute-force. tenants have the option of renting VMs in one or more geographi- Dnsmap uses a pre-defined word list, which we augmented with cally distinct data centers, or regions.
Load more

Recommended publications
  • Getting Started with AWS Deploying a Web Application Getting Started with AWS Deploying a Web Application
    Getting Started with AWS Deploying a Web Application Getting Started with AWS Deploying a Web Application Getting Started with AWS: Deploying a Web Application Copyright © 2014 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. The following are trademarks of Amazon Web Services, Inc.: Amazon, Amazon Web Services Design, AWS, Amazon CloudFront, Cloudfront, Amazon DevPay, DynamoDB, ElastiCache, Amazon EC2, Amazon Elastic Compute Cloud, Amazon Glacier, Kindle, Kindle Fire, AWS Marketplace Design, Mechanical Turk, Amazon Redshift, Amazon Route 53, Amazon S3, Amazon VPC. In addition, Amazon.com graphics, logos, page headers, button icons, scripts, and service names are trademarks, or trade dress of Amazon in the U.S. and/or other countries. Amazon©s trademarks and trade dress may not be used in connection with any product or service that is not Amazon©s, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon. Getting Started with AWS Deploying a Web Application Table of Contents Welcome ..................................................................................................................................... 1 Overview of the Project .................................................................................................................. 2 AWS Elastic Beanstalk ..........................................................................................................
    [Show full text]
  • Web Application Hosting in the AWS Cloud AWS Whitepaper Web Application Hosting in the AWS Cloud AWS Whitepaper
    Web Application Hosting in the AWS Cloud AWS Whitepaper Web Application Hosting in the AWS Cloud AWS Whitepaper Web Application Hosting in the AWS Cloud: AWS Whitepaper Copyright © Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade dress may not be used in connection with any product or service that is not Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon. Web Application Hosting in the AWS Cloud AWS Whitepaper Table of Contents Abstract ............................................................................................................................................ 1 Abstract .................................................................................................................................... 1 An overview of traditional web hosting ................................................................................................ 2 Web application hosting in the cloud using AWS .................................................................................... 3 How AWS can solve common web application hosting issues ........................................................... 3 A cost-effective alternative to oversized fleets needed to handle peaks ..................................... 3 A scalable solution to handling unexpected traffic
    [Show full text]
  • Building Devops on Amazon Web Services (AWS) 2 Building Devops on Amazon Web Services (AWS)
    IBM Global Business Services January 2018 White paper Building DevOps on Amazon Web Services (AWS) 2 Building DevOps on Amazon Web Services (AWS) Abstract IBM defines DevOps as an enterprise capability that enables organizations to seize market opportunities and reduce time to At its core, DevOps makes delivery of applications more customer feedback, and has three main business objectives: efficient. Amazon Web Services (AWS) has the platform and services to recognize a code change and automate delivery of 1. Speeding continuous innovation of ideas by enabling that change from development, through the support collaborative development and testing across the value environments, to production. However, delivery of code is just chain one aspect of DevOps. 2. Enabling continuous delivery of these innovations by automating software delivery processes and eliminating IBM extends the DevOps definition, making it an enterprise waste, while also helping to meet regulatory concerns capability that enables organizations to seize market 3. Providing a feedback loop for continuous learning from opportunities and reduce time to customer feedback. IBM’s customers by monitoring and optimizing software-driven main objectives are speeding continuous innovation of ideas, innovation enabling continuous delivery of those innovations, and providing meaningful feedback for continuous learning, thereby putting all the emphasis on deciding what code to change. IBM extends DevOps to include all stakeholders in an organization who develop, operate or benefit from businesses systems. DevOps enables design thinking, which focuses on user outcomes, restless reinvention, and empowering teams to act. In addition, DevOps enables lean and agile methodologies, which guide teams to deliver in smaller increments and get early feedback.
    [Show full text]
  • Deploying Wordpress with AWS Elastic Beanstalk Implementation Overview for Scalable Wordpress-Powered Websites
    Deploying WordPress with AWS Elastic Beanstalk Implementation Overview for Scalable WordPress-powered Websites Andreas Chatzakis January 2015 (Please consult http://aws.amazon.com/whitepapers for the latest version of this paper.) Contents Contents 2 Abstract 2 Introduction 2 Implementation Walkthrough 3 Preparation 3 Environment Creation 11 Software Installation 21 WordPress Plugin Installation 23 Application Versioning 29 Auto Scaling Configuration 30 Additional considerations 31 Abstract WordPress is an open-source blogging tool and content management system (CMS) based on PHP and MySQL that is used to power anything from personal blogs to high- traffic websites. Amazon Web Services (AWS) provides a reliable, scalable, secure, and highly performing infrastructure for the most demanding applications. A reference architecture that addresses common scalability and high availability requirements has been outlined in the whitepaper, “WordPress: Best Practices on AWS”. To implement that architecture, you can leverage AWS Elastic Beanstalk—a service that reduces complexity by automatically handling the details of capacity provisioning, load balancing, scaling, and application health monitoring. This whitepaper provides system administrators with an overview of the steps involved. Introduction The first version of WordPress was released in 2003, and as such it was not built with modern elastic and scalable cloud-based infrastructures in mind. Through the work of the WordPress community and the release of various WordPress modules, the capabilities of this CMS solution are constantly expanding. Today it is possible to build a WordPress architecture that takes advantage of many of the benefits of the AWS platform. Amazon Web Services provides a number of application management services for developers and administrators.
    [Show full text]
  • Using Amazon Web Services for Disaster Recovery October 2014
    Amazon Web Services – Using AWS for Disaster Recovery October 2014 Using Amazon Web Services for Disaster Recovery October 2014 Glen Robinson, Attila Narin, and Chris Elleman Page 1 of 22 Amazon Web Services – Using AWS for Disaster Recovery October 2014 Contents Introduction ...............................................................................................................................................................3 Recovery Time Objective and Recovery Point Objective ................................................................................................4 Traditional DR Investment Practices ............................................................................................................................4 AWS Services and Features Essential for Disaster Recovery ...........................................................................................5 Example Disaster Recovery Scenarios with AWS ...........................................................................................................9 Backup and Restore ................................................................................................................................................9 Pilot Light for Quick Recovery into AWS ................................................................................................................. 11 Warm Standby Solution in AWS ............................................................................................................................. 14 Multi-Site Solution Deployed
    [Show full text]
  • Getting Started on for Airasia Airvolution
    Getting Started on for AirAsia Airvolution This document has links to Tutorials, Videos and Hands-on Labs that would serve as a good starting point for Hackathon preparation. Feel free to explore online resources beyond this document, as the website is updated regularly. Topics: 1. Getting Started – Creating AWS Account and Navigating the Console 2. Building IoT Solutions with AWS IoT 3. Building a Web Application on AWS Elastic Beanstalk 4. Analyze, Process and Visualize large datasets using AWS Analytics toolsets 5. Artificial Intelligence with Amazon AI services 6. Appendix © 2016, Amazon Web Services, Inc. or its affiliates. All rights reserved. 1 1. Getting Started – Creating AWS Account and Navigating the Console • Creating a free tier account: https://aws.amazon.com/free/ o The AWS Free Tier enables you to gain free, hands-on experience with the AWS platform, products, and services for 12 months. For more details, refer to https://aws.amazon.com/s/dm/optimization/server-side-test/free-tier/free_np/ • Using the AWS Management Console: http://docs.aws.amazon.com/awsconsolehelpdocs/latest/gsg/getting-started.html © 2016, Amazon Web Services, Inc. or its affiliates. All rights reserved. 2 2. Building IoT Solutions with AWS IoT AWS IoT provides secure, bi-directional communication between Internet-connected things (such as sensors, actuators, embedded devices, or smart appliances) and the AWS cloud. This enables you to collect telemetry data from multiple devices and store and analyze the data. You can also create applications that enable your users to control these devices from their phones or tablets. Getting Started with AWS IoT Tutorial: This tutorial shows you how to create resources required to send, receive, and process MQTT messages from devices using AWS IoT.
    [Show full text]
  • Discovering the Hidden Users of Scratch Samarth Mohan
    Discovering the Hidden Users of Scratch by Samarth Mohan Submitted to the Department of Electrical Engineering and Computer Science in partial fulfillment of the requirements for the degree of Master of Engineering in Computer Science and Engineering at the MASSACHUSETTS INSTITUTE OF TECHNOLOGY June 2018 © Massachusetts Institute of Technology 2018. All rights reserved. Author................................................................ Department of Electrical Engineering and Computer Science May 22, 2018 Certified by. Andrew Sliwinski Research Scientist Thesis Supervisor Certified by. Mitchel Resnick LEGO Papert Professor of Learning Research Thesis Supervisor Accepted by . Katrina LaCurts Chair, Master of Engineering Thesis Committee Discovering the Hidden Users of Scratch by Samarth Mohan Submitted to the Department of Electrical Engineering and Computer Science on May 22, 2018, in partial fulfillment of the requirements for the degree of Master of Engineering in Computer Science and Engineering Abstract Usage statistics (“telemetry data”) have become an essential tool for understanding how complex systems are used and how to improve them. However, many of these systems are deployed in areas with limited internet connectivity which hampers the ability to collect telemetry data. In this thesis, we describe a telemetry data collection system built for the Scratch programming language to collect usage data regarding how Scratch is being used in areas with poor internet connections. We develop the system to allow users to opt-in to sharing their usage and project data with the Scratch research team at the MIT Media Lab. The data is stored locally on the user's machine until it is ready to be transmitted. Once network conditions are appropriate, the packets are transmitted to a server which verifies the contents of the packet and stores it in a data storage cluster.
    [Show full text]
  • San Mateo County Community College District
    SAN MATEO COUNTY COMMUNITY COLLEGE DISTRICT AGENDA FOR THE REGULAR MEETING OF THE BOARD OF TRUSTEES December 12, 2018 Closed Session at 5:00 p.m.; Open Meeting at 6:00 p.m. District Office Board Room, 3401 CSM Drive San Mateo, CA 94402 NOTICE ABOUT PUBLIC PARTICIPATION AT BOARD MEETINGS The Board welcomes public discussion. • The public’s comments on agenda items will be taken at the time the item is discussed by the Board. • To comment on items not on the agenda, a member of the public may address the Board under “Statements from the Public on Non-Agenda Items;” at this time, there can be discussion on any matter related to the Colleges or the District, except for personnel items. No more than 20 minutes will be allocated for this section of the agenda. No Board response will be made nor is Board action permitted on matters presented under this agenda topic. • If a member of the public wishes to present a proposal to be included on a future Board agenda, arrangements should be made through the Chancellor’s Office at least seven days in advance of the meeting. These matters will be heard under the agenda item “Presentations to the Board by Persons or Delegations.” A member of the public may also write to the Board regarding District business; letters can be addressed to 3401 CSM Drive, San Mateo, CA 94402. • Persons with disabilities who require auxiliary aids or services will be provided such aids with a three day notice. For further information, contact the Executive Assistant to the Board at (650) 358-6753.
    [Show full text]
  • Cloud Native Patterns Design Change-Tolerant Software Chapters Chosen by Cornelia Davis
    Cloud Native Patterns Design change-tolerant software Chapters chosen by Cornelia Davis Manning Author Picks Copyright 2020 Manning Publications To pre-order or learn more about these books go to www.manning.com For online information and ordering of these and other Manning books, please visit www.manning.com. The publisher offers discounts on these books when ordered in quantity. For more information, please contact Special Sales Department Manning Publications Co. 20 Baldwin Road PO Box 761 Shelter Island, NY 11964 Email: Erin Twohey, [email protected] ©2020 by Manning Publications Co. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by means electronic, mechanical, photocopying, or otherwise, without prior written permission of the publisher. Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in the book, and Manning Publications was aware of a trademark claim, the designations have been printed in initial caps or all caps. Recognizing the importance of preserving what has been written, it is Manning’s policy to have the books we publish printed on acid-free paper, and we exert our best efforts to that end. Recognizing also our responsibility to conserve the resources of our planet, Manning books are printed on paper that is at least 15 percent recycled and processed without the use of elemental chlorine. Manning Publications Co. 20 Baldwin Road Technical
    [Show full text]
  • The 3 Critical Monitoring Tools for Hybrid Cloud Applications a Best-Practices Guide for Monitoring Business-Critical, Hybrid Apps on AWS
    The 3 Critical Monitoring Tools for Hybrid Cloud Applications A best-practices guide for monitoring business-critical, hybrid apps on AWS Application Performance Monitoring appdynamics.com Giving end users a high-quality experience is critical for today’s businesses: internal and external users alike demand high-performing, low-latency Introduction: applications. Your ability to meet this demand hinges on your monitoring approach. That’s why you need a solution that can effectively monitor and promote the health and performance of your applications as well as the infrastructure that supports them—as you run them in a hybrid cloud. This can be difficult when leveraging legacy, on-premises monitoring solutions. That’s because many organizations leverage numerous monitoring tools on-premises, each to support a small fraction of their overall architecture. If these tools don’t speak to one another, it becomes difficult to pinpoint the root-cause(s) of issues and correlate the issues to the user’s experience. Furthermore, these solutions are not optimized for hybrid clouds, and will have a hard time solving performance and health issues in these environments. This eBook details a monitoring approach that helps you overcome these challenges when running applications on a hybrid cloud with Amazon Web Services (AWS). Made up of three key technologies, enterprises can gain robust visibility across their complex hybrid environments to ensure that applications are healthy, performant, and have a positive impact on the business. First, let’s take a closer look at traditional, on-premises monitoring solutions and the challenges they create. Introduction 2 Introduction: EXISTING ON-PREMISES MONITORING APPROACHES Prior to moving any application to AWS, many enterprises monitor their While these solutions cover a lot of ground, using this many applications on-premises using a piecemeal approach, often needing tools at once can create operational complexity, as it is difficult 10+ monitoring solutions to gain comprehensive visibility.
    [Show full text]
  • Modernizing with AWS: Getting Started with ‘ Observability-Driven ’ Replatforming
    White Paper Modernizing with AWS: Getting Started with ‘ Observability-Driven ’ Replatforming Part 2 of our 3-part series on legacy app modernization in the cloud Modernizing with AWS: Getting Started with ‘ Observability-Driven ’ Replatforming Introduction Fundamentally, organizations modernize existing applications by moving them to Amazon Web Services (AWS) in order to optimize everything from performance to reliability to customer experience and more. For the business, the goals and measurable outcomes are typically some combination of the following: • Improve the customer experience with better reliability and performance • Reduce operational cost and effort • Accelerate time-to-market for new features • Develop and enhance technical and business agility While modernizing existing applications can take several different forms, this white paper focuses on the replatforming approach, also known as component modernization. For an intro- duction to the six approaches to application modernization on AWS (retire, repurchase, retain, rehost, replatform, and refactor), read our ebook “The Enterprise Guide to Continuous Applica- tion Modernization.” While rehosting involves moving an existing application to AWS without making changes to the business logic, replatforming requires something more—namely, optimizing the application by modernizing one or more of its components. Components are essentially an endpoint, some- thing that the application interacts with via a standardized API, such as a web server, relational database, or messaging
    [Show full text]
  • System and Organization Controls 3 (SOC 3) Report
    System and Organization Controls 3 (SOC 3) Report Report on the Amazon Web Services System Relevant to Security, Availability, and Confidentiality For the Period October 1, 2020 – March 31, 2021 ©2021 Amazon.com, Inc. or its affiliates Amazon Web Services 410 Terry Avenue North Seattle, WA 98109-5210 Management’s Report of its Assertions on the Effectiveness of Its Controls Over the Amazon Web Services System Based on the Trust Services Criteria for Security, Availability, and Confidentiality We, as management of, Amazon Web Services, Inc. are responsible for: • Identifying the Amazon Web Services System (System) and describing the boundaries of the System, which are presented in Attachment A • Identifying our principal service commitments and system requirements • Identifying the risks that would threaten the achievement of our principal service commitments and service requirements that are the objectives of our system, which are presented in Attachment B • Identifying, designing, implementing, operating, and monitoring effective controls over the System to mitigate risks that threaten the achievement of the principal service commitments and system requirements • Selecting the trust services categories that are the basis of our assertion We assert that the controls over the system were effective throughout the period October 1, 2020 to March 31, 2021, to provide reasonable assurance that the principal service commitments and system requirements were achieved based on the criteria relevant to security, availability, and confidentiality set forth in the AICPA’s TSP section 100, 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy. Very truly yours, Amazon Web Services Management ©2021 Amazon.com, Inc. or its affiliates 4 Attachment A – Amazon Web Services System AWS Background Since 2006, Amazon Web Services (AWS) has provided flexible, scalable and secure IT infrastructure to businesses of all sizes around the world.
    [Show full text]