新浪云计算

SAE’s web servers take the distributed code deployment way. Developers submit code to the Deploy Front, and then the code will be synchronously deployed to all SAE’s web servers, just like every server gets one copy of the code. If some web servers were dead, client’s request could also be redirected to another living one in order not to affect the application’s running. This will greatly improve the app’s stability.

In addition, SAE also provides an entire distributed web service solution, including distributed database, distributed file system, distributed timing service, page fetching and image service, etc.

SAE, as a public cloud platform, will first face the problem of application’s isolation. Without good isolation, the platform would not operate long-term stably. SAE sandbox isolates the application in its own secure and reliable environment, showing in the following aspects:

• Code and data isolation
• Network isolation
• Memory isolation
• CPU isolation

SAE Memcache is a distributed cache service, provided by SinaAppEngine to store user’s small amount of data by shared ways.

As SAE’s web service environment is distributed, SAE Memcache is supposed to be enabled when users need to cache small-structure data, like key-value. This can provide quick data access response and reduce the backend storage pressure.

SAE Memcache system is a general memcache pool. Every user who is going to use Memcache will face the entire service system instead of one single Memcache instance.

SAE supports nearly all the characters of MySQL. Users can create database schemas and tables on SAE and manage them through standard MySQL client; this entire process has no difference compared with the original MySQL, therefore we don’t need any code modification.

Additionally, each MySQL group contains one master database, several slaves and one for backup. This can greatly improve the database performance and ensure data reliability.

RDC (Relational Database Cluster) is a distributed database cluster system. It is mainly used to support SAE’s relational database cluster. For present, RDC’s backend is MySQL. We can simply recognize RDC as MySQL middle layer or proxy layer, like MySQL Proxy. All the SQL requests are sent to the backend by RDC. RDC can support ten million of the database backend and can be distributed horizontally expanded.

As traditional relational database’s scalability is not that satisfied in distributed environment, NoSQL has gradually come into our vision. And because more and more developers are getting used to take NoSQL as usual database development tool, SAE also provides NoSQL service to meet this requirement.

KVDB is a distributed key-value storage service developed by SAE, to support the large amount of key-value data storage on public cloud platform. KVDB has massive storage capacity, 100G for each developer, supporting about one billion records. Developers can use KVDB to store simple-structure data, like friend relationship.

KVDB has high performance and high reliability. According to our benchmark, the speed for both reading and writing can reach up to 100,000 queries per second. KVDB is running under the structure of one master and several slaves. SAE provides hot backup and regularly cold backup. When some database was dead, we would switch to a living one automatically.

Every APP is running separately in SAE’s runtime environment. Application cannot jump over the sandbox to get others’ code, which is the insurance for code security.

Apart from the password, security code is also needed when deploying code online or through SVN and this is a plus for code security.

Every application might face the problems of being attacked and malicious fetched from unidentified IP, mainly shown in two aspects: app data leakage and bandwidth over-consumption. SAE’s App firewall is designed to solve this problem. Developers can limit certain IP’s visit frequency (minute/hour/day) and network flow at the control panel, and effectively protect our own application data and bandwidth by setting black/white lists.

The application level problems are mainly caused by user’s code security defect, which include SQL injection, cross site script and Trojan linked. As a solution, SAE provides the APP Health Check service to detect code security problems and will inform you the result directly.

Cron is the crontab service developed by SAE. Clients who want to set up triggers for certain timing actions may use this, like regular ranking and so on. Cron’s excitation is triggered in HTTP ways, while what’s really executed is code from developer’s apps. Cron is deployed in distributed environment with high reliability, and is isolated between each other. Different points are triggered at the same time but only one is to be executed after distributed lock’s election.

TaskQueue is designed by SAE for developers to execute a list of tasks sequentially by asynchronous HTTP ways. First, users need to create a queue at online management platform, and then push tasks into it which will be executed right after pushed. TaskQueue’s job execution is achieved by HTTP methods and what really executed is code from developer’s apps. So the execution is limited by the longest time of HTTP. TaskQueue is deployed in distributed environment with high reliability. Each worker is isolated from the others and spontaneously executes the task.

torage is a distributed service is for developers to keep persistent file. Users can read, write and get file property or list through API (Application Programming Interface).

Cloud-storage service become easier to realize based upon SAE Storage.

Storage provides several kinds of the data security insurance:

• 1.Firewall,Users can limit the visit frequency and flow by setting up black/white list.
• 2.Authority,Set the Storage authority as “private”. Those private data in Storage cannot be accessed through URL, only if passing the,secret key check.
• 3.Security chain,Only the IP in your white lists can get access to the data in Storage.