Public cloud, SaaS, hybrid and SD-WAN adoption dramatically accelerated last year. This year, enterprises will see the impact of this adoption on their operations, as they become more dependent on the Internet and learn to manage more services beyond their direct control.
Here are five trends we expect to see in 2019:
As SD-WAN Projects Spread and Mature, Enterprises Will Begin to Grapple with Internet Unpredictability
SD-WAN adoption is on the rise, and with it, the enterprise’s growing dependence on the Internet. Before moving to SD-WAN, most enterprises only had to worry about Internet performance from its data centers to key services. With SD-WAN, they’re increasingly leveraging DIA and broadband connectivity and grappling with hundreds or thousands of sites, each of which will have distinct Internet paths to many different cloud-based services. Shifting from a carrier managed service to the Internet, means that there’s an exponential rise in the number of service providers that can potentially impact performance for branch office users. As a large number of enterprises move from deployment into their operations stage in 2019, the impact of Internet unpredictability will become more evident. As a result, more enterprise IT teams will start to develop operational capabilities to deal with Internet-centric issues.
The Increasing Number of Backend APIs and Third-Party Services Will Weigh Down Web Performance
Enterprises and SaaS providers are increasingly leveraging third-party APIs and cloud-services as part of their web and application architectures. This distributed, microservices approach to building applications not only provides best-of-breed functions, it enables companies to quickly consume and deliver new services. Applications today might leverage dozens of APIs to handle services such as messaging and voice, maps, and payments, while also connecting to cloud-based services such as CRM, ERP and analytics. Websites are also getting weighed down by the addition of many externally hosted applications. Even a seemingly simple “Buy Now” function on an e-commerce site will invoke many external services, including payment gateways, CRM, analytics, inventory, fulfillment, and potentially many others.
The weight of all of these external dependencies means that websites are going to continue to get slower, while at the same time their risk surface increases. Since these services are not internally operated, isolating the source of a problem when something goes wrong can be challenging, particularly since these services are connected to over the Internet. The question of whether the application or the network is at fault will become “Which application?” and “Which network?”.
Understanding the tradeoff of function over user experience and knowing how every third-party web or app component impacts performance will get even more critical to enterprises and SaaS providers in 2019. Active testing, showing how each page component impacts performance (from a user’s vantage), will become increasingly critical for DevOps and SREs.
The Edge Gets Less “Edgy” and More “Everywhere”
Early edge architectures, where the data of billions of IoT devices is notionally processed at central points by infrastructure in public cloud or private data centers, presented challenges, ranging from security to physics (increased latency) and cost (bandwidth). The introduction of intermediary nodes into edge architectures will address the latency and security concerns of a strictly core/edge architecture, moving edge deployments in 2019 from largely theoretical to realizable.
Intermediary nodes are designed to perform some of the processing functions of the cloud closer to the edge, which will help ensure better performance and scale for users and devices and help drive IoT and edge deployments. These nodes are already available from a variety of vendors, including public cloud providers, such as Microsoft. Microsoft has previously stated that they want their Azure cloud data centers to be 50ms from everywhere. These new intermediary nodes will help extend the reach of cloud-centric infrastructure to the range of single digit milliseconds and make IoT and edge computing aspirations a reality.
Enterprises rolling out or exploring new edge architectures will need to consider how they maintain performance given a dramatic increase in nodes (and connectivity to those nodes).
Cyber Attacks Will Continue to Exploit Internet Vulnerabilities for Maximum Impact
The pervasive risk associated with offering a digital service has forced most large enterprises and digital businesses to employ sophisticated systems of defense. These systems are designed to handle increasingly large-scale attacks, such as the one launched against GitHub earlier this year. That attack was the largest ever recorded and although it was disruptive, it was successfully mitigated through a highly elastic cloud-based DDoS protector called Prolexic. This and other tools make launching an impactful attack against a high-value target more challenging to pull off, which may be one reason why the number of DDoS attacks is trending downward, particularly in North America and Europe. This doesn’t mean that cyber attacks are going away. Cyber attacks will continue to make headlines in 2019, but they will largely take an indirect approach, exploiting relational weaknesses in foundational Internet systems, such as DNS and BGP routing.
Two incidents this year, one malicious, the other unintentional, underscored the vulnerability of even the most sophistical digital businesses to service disruption. In the case of the malicious incident, Amazon’s DNS service, Route 53, was hijacked, which enabled a cryptocurrency theft and led to many customer sites, including Instagram and CNN, becoming partially unreachable. The attackers who pulled off this digital hijacking and robbery made no attempt to penetrate Amazon’s infrastructure. Instead, they compromised a small Internet Service Provider in Columbus, Ohio, using them to propagate false routes to Amazon’s DNS service. The implicit trust built into Internet routing allowed this attack to take place. The fact that the hijacked service (translating URLs into Internet addresses) is a critical dependency meant that the impact was massive and went far beyond the intended target.
Indirect attacks, taking advantage of critical dependencies outside of the control of the intended target, will continue to grow in 2019, netting more high-profile victims while maximizing the scope of collateral damage.
What this means for Enterprise and SaaS providers is that they will need to maintain real-time awareness of their DNS integrity and any BGP routing incidents that could impact the availability and security of their services.
Cloud Adoption Will Force Enterprises to Reexamine Their Management Stacks
Now that SaaS has mainstreamed, with most enterprises shifting their application consumption model from internal to the cloud, we can expect to see a follow-on shift in IT operations stacks in the coming year, as more enterprises begin to realize that the existing toolset is not oriented to address externally-hosted applications.
The traditional IT operations stack is rich with tools, but as the usage of SaaS applications and cloud-based services has increased, the domain of many of these tools is narrowing, exposing gaps in visibility for SaaS applications and their delivery over the Internet. Network tools that collect data from on-premises will see a reduction in usage and budget allocation, making room for cloud-specific tools and technologies designed to provide visibility into networks and services that enterprises rely on (such as ISPs and SaaS apps) but that they do not own or control. This new operations stack will continue to feature traditional toolsets, but its proportional emphasis will favor cloud-focused technologies.
Is Your Visibility Circa 2019?
The move to the cloud reduces IT’s focus on ownership and control, and also makes delivering user experience more central to its mission. If your approach to visibility needs an update, learn more about cloud, DNS, SD-WAN, digital experience and Internet instability challenges in our Resource Center. If you’d like to explore a specific need for modern IT operations visibility, contact us and we’ll be happy to help.