Proprietary + Confidential
#NABShow
Securing Content in the CloudAdrian GrahamCloud Solutions ArchitectMarch 20, 2017
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
Why security?
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
Overview
On-premises infrastructure
Cloud infrastructure
Connecting to cloud
Hybrid infrastructure
Secure all the things!
Further reading
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
On-premises infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Render Farm Nodes
Local Workstations
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Render Farm Nodes
File Server
Local Workstations
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Render Farm Nodes
File Server
Local Workstations License Server
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Render Farm Nodes
File Server
Local Workstations License Server
Render Workers
Render Workers
Render Workers
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Render Farm Nodes
File Server
Local Workstations
Queue Manager
License Server
Render Workers
Render Workers
Render Workers
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
On-premise infrastructure
Asset Mgmt Render Farm Nodes
File Server
Local Workstations
Queue Manager
License Server
Render Workers
Render Workers
Render Workers
On-premise infrastructure
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
Cloud infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
Data ingress/egress
https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608
https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608https://docs.google.com/presentation/d/1fAZ8Cr-UDNFUzDV4Mw_o7MKGqGIJKf9xCNlDeqyU4-E/edit#slide=id.g1ef6d86f63_0_2608
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
Data ingress
Data ingress/egress
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
NFS File Server
Data ingress
Data ingress/egress
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
Read-through Cache
NFS File Server
Data ingress
Data ingress/egress
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
NFS File Server
Cloud-based License Server
Data ingress
Data ingress/egress
On-prem licenses
Read-through Cache
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
Read-through Cache
UsersCloud IAM
NFS File Server
Cloud-based License Server
Data ingress
Data ingress/egress
On-prem licenses
LDAP sync
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Cloud infrastructure
Rendering VMsCompute Engine
AssetsCloud Storage
Read-through Cache
UsersCloud IAM
NFS File Server
Cloud-based License Server
StackdriverLoggingData ingress
Data ingress/egress
On-prem licenses
LDAP sync
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
Connecting to cloud
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Connecting to cloud
Render Farm Nodes
Render Workers
Render Workers
On-premise infrastructure
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Connecting to cloud
Render Farm Nodes
Render Workers
Render Workers
On-premise infrastructure
CloudVPN
VPNGateway
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Connecting to cloud
Render Farm Nodes
Render Workers
Render Workers
On-premise infrastructure
CloudVPN
VPNGateway
Cloud Router
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Connecting to cloud
Render Farm Nodes
Render Workers
Render Workers
On-premise infrastructure
CloudInterconnect
CloudVPN
VPNGateway
Cloud Router
Proprietary + ConfidentialProprietary + Confidential
Proprietary + Confidential
Hybrid infrastructure(better put on your glasses for this next slide)
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Hybrid infrastructureOn-premise infrastructure
Asset Mgmt dB Render Farm Nodes
File Server
Local Workstations
Queue Manager
Physical Cache
License Server
CloudInterconnect
CloudVPN
Read-through Cache
Rendering VMsCompute Engine
AssetsCloud Storage
UsersCloud IAM
NFS File Server
VPNGateway
Cloud Router
Cloud-based License Server
StackdriverLogging
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Hybrid infrastructureOn-premise infrastructure
Asset Mgmt dB Render Farm Nodes
File Server
Local Workstations
Queue Manager
Physical Cache
License Server
CloudInterconnect
CloudVPN
Read-through Cache
Rendering VMsCompute Engine
AssetsCloud Storage
UsersCloud IAM
NFS File Server
Users & Admins
Users & Admins
Cloud Directory Sync
VPNGateway
Cloud Router
Cloud-based License Server
StackdriverLogging
Source: Lorem ipsum dolor sit amet, consectetur adipiscing elit. Duis non erat sem
Proprietary + Confidential
#NABShow
Hybrid infrastructureOn-premise infrastructure
Asset Mgmt dB Render Farm Nodes
APIs: gcloud, gsutil, ssh, rsync, etc
File Server
Local Workstations
Queue Manager
Physical Cache
License Server
Accelerated UDP Transfer
CloudInterconnect
CloudVPN
Read-through Cache
Rendering VMsCompute Engine
AssetsCloud Storage
UsersCloud IAM
NFS File Server
Users & Admins
Us
