下载PDF
Expedia Hosted by 2lemetry Through AWS
技术
- 网络安全和隐私 - 身份认证管理
- 基础设施即服务 (IaaS) - 云计算
- 基础设施即服务 (IaaS) - 云存储服务
- 平台即服务 (PaaS) - 应用开发平台
用例
- 网络安全
挑战
Expedia 致力于不断创新、技术和平台改进,为客户创造出色的体验。 Expedia Worldwide Engineering (EWE) 组织支持 Expedia 品牌下的所有网站。 Expedia 于 2010 年开始使用 Amazon Web Services (AWS) 推出 Expedia Suggest Service (ESS),这是一种帮助客户正确输入旅行、搜索和位置信息的提前输入建议服务。根据该公司的指标,错误页面是网站放弃的主要原因。 Expedia 希望全球用户能够快速且无错误地找到他们正在寻找的内容。当时,Expedia 在亚利桑那州钱德勒的数据中心运营所有服务。工程团队意识到他们必须在物理上靠近客户的位置运行 ESS,才能以最小的网络延迟实现快速响应的服务。
客户
Expedia
关于客户
-
解决方案
Expedia 考虑了本地虚拟化解决方案以及其他云提供商,但最终选择了 Amazon Web Services (AWS),因为它是唯一具有支持亚太地区客户的全球基础设施的解决方案。 “从架构的角度来看,基础设施、自动化和靠近客户是关键因素,”技术总监 Murari Gopalan 解释道。 “没有 AWS,我们无法解决问题。”
运营影响
相关案例.
Case Study
Enel Secures Italian Power Generation Network
Electric energy operators around the world are working to increase the reliability and cyber resiliency of their systems. This includes Enel, a global power company that manages and monitors the Italian power grid. This grid:• Serves 31 million customers• Has a net installed energy capacity exceeding 31 gigawatts• Includes more than 500 power generation plants,including hydroelectric, thermoelectric, and wind• Is managed and monitored by Enel 24/7/365• Is operated by Terna, the Italian Transmission System Operator (TSO)Enel is responsible for the availability of the grid’s underlying ICS and industrial network. It also manages Regional Control Centers and Interconnection Centers which connect with the TSO. The TSO manages the flow of energy to the grid plus controls and remotely regulates the power generation of power plants, increasing and decreasing power production as required. The complex system of interaction and cooperation between Enel and the TSO has strong security implications as well as operational and business challenges.
Case Study
Securing the Connected Car Ecosystem
In-vehicle communications and entertainment system hosts high-value or sensitive applications. API libraries facilitate communication and sharing of vehicle data. These API libraries are vulnerable to reverse engineering and tampering attacks and may even result in loss of passenger safety. Attackers can inject malware that may be able to migrate to other in-car networks such as the controller-area-network (CAN) bus which links to the vehicle’s critical systems. Software provided for dealers to interface with cars through the OBD2 port is vulnerable to reverse engineering and tampering attacks. Hackers may be able to abuse these tools to inject malicious code into the ECUs and CAN bus. Attackers can lift the cryptographic keys used, and use that to build their own rogue apps/software. Their cloned version of the original app/software may have altered functionality, and may intend to gain access to other in-car networks.
Case Study
Secure and Cloud-based Data Marketplace
The great promise of new connected concepts of industry like 'Industry 4.0' is their ability to deliver a historically unparalleled level of responsiveness and flexibility. While modern supply chains are already heavily integrated and designed to be fluid and fast moving, a large swathe of manufacturing still remains beholden to economies of scale, large production runs, and careful preplanning.The Industrial Internet of Things (IIoT) is set to change this by allowing small-batch or even custom manufacturing on a truly industrial scale. With machines whose functions are not set in stone, but flexible and determined by their operating software and with a new form of connectivity bringing industrial engineers, product manufacturers, and end users closer together than ever before. Ad-hoc adjustments to automotive parts, for example, during active product runs or the bespoke manufacturing of custom sneakers become very viable options indeed.Much of this remains a theoretical vision, but IUNO, the German national reference project for IT security in Industry 4.0 demonstrates the new capabilities in action with a secure technology data marketplace running a smart drinks mixer.
Case Study
OTA Software Updates for Smart Energy (gridX)
gridX has a requirement for over-the-air software updates for their gridBox devices and used the Yocto Project for their builds. The driver for the requirement was having the ability to quickly support new features, as well as deploying bug fixed and path known security vulnerabilities. New software updates with a US stick manually to all gridBox devices in the field would be prohibitively expensive and labor-intensive.
Case Study
Transformed IT Infrastructure Improves Business Agility
A global security, storage, and systems management software provider planned to demerge into two separate companies. To prepare, it undertook a major overhaul of its IT infrastructure and operations strategy. A key requirement: streamlining the Hosting Group, which handled compute, storage, and middleware operations. These functions had grown complex and had a wide geographic distribution. The company planned to bring them under closer in-house management.The company looked to increase its business agility so it could quickly and creatively respond to customer demands with improved internal collaboration and optimized go-to- market and IT service delivery capabilities. Modernizing IT functions, and making them more responsive, was critical to achieving these goals.
Case Study
Closer To Becoming world's Most Digitized Bottling Operation
While digitization is increasing efficiency and significantly growing customer engagement, it also comes with several challenges, not least being the growing risk of cyberattacks.This led the company’s Australian, Pacific and Indonesian operations (CCEP API) to create a three-year roadmap for developing and implementing enhanced security measures. A key element of the plan has been to improve existing privileged access management processes and gain heightened oversight and control over the use of elevated credentials.