As you may have read previously on the blog, the MongoDB team is adopting the Go language for a variety of projects. At last month’s New York MongoDB User Group, Sam Helman presented on how MongoDB is using Go for new and existing cloud tools. In Sam’s talk, you’ll learn how MongoDB is using Go for the backup capabilities in MongoDB Management Service and a new continuous integration tool.
Why go with Go? Between the lightweight syntax, the first-class concurrency and the well documented, idiomatic libraries such as mgo, Go is a great choice for writing anything from small scripts to large distributed applications.
Thanks to g33ktalk for recording Sam’s talk.
Open Source Software in Business
Open Source software (OSS) has made significant strides in enterprises. From the New York Stock Exchange to the smallest mom-and-pop store, the Linux operating system is powering today's business servers. Its growing popularity is due in no small part to the fact that thousands of IT professionals around the world recognize that producing and distributing this type of open standard software has tremendous benefits over traditional commercial products. Unlike off-the-shelf software, open source gives users access to the underlying source code of the application that programmers write and how they instruct a computer to perform certain tasks. Commercial software is considered proprietary to the company that produces it. “It works well, saves money, and is more secure. SMB or large enterprise, there's no down-side, says Steven Vaughn-Nichols, a long-time Linux and open source journalist. “OSS tends to be more secure -- its code is open so anyone can find, report and fix the bugs. You have no idea what may or may not be hiding in proprietary code.” OSS also tends to be cheaper than its proprietary brothers, he adds. “Better security and cheaper to boot? What's not to like?” Previously, security and licensing acted as traditional barriers to adoption. Now, OSS is driving change from the bottom up, according to the seventh annual “Future of Open Source Survey,” of more than 800 respondents, sponsored by North Bridge Venture Partners and Black Duck Software. Survey results indicate OSS is experiencing a growing influence in organizations. This is due to a cultural shift supported by executives' openness to work with active and strong communities to influence projects and spur innovation, the study found. Additionally, “open source has reached a depth and maturity where quality, access to code and costs are no longer barriers to adoption. “This trend is reinforced by thousands of developers working to reduce defects in code, improve its security and innovate with new features and enhancements that get closer to what users want - because those users can have a hand in making it so,” the study found. The biggest factor in OSS adoption, respondents said, is quality, a ranking that increased from third place in 2012. Freedom from vendor lock-in dropped to second place this year, from first place in 2012. Lower costs, big data, and systems integration are the top three business problems open source is solving. In terms of sector growth, the study found that government, as well as health care and media/entertainment are moving toward adoption of open source. Technical capabilities and features were cited by 45 percent of respondents as reasons for why they choose OSS over proprietary solutions. Only 12 percent chose commercial vendor support as being an important factor, according to the study. Linux has taken over some verticals, notes Vaughn-Nichols. “Most stock markets’ core servers, for example, now run Linux. It really has been moving everywhere in other businesses.” As for the types of applications, he says it started with edge servers, file and Web servers, and over the years Linux is now being used for a large variety of apps, including CRM. Sears, for example, used open source software to build a private cloud platform. According to published reports, the company opted for OSS because it helped reduce costs and boost flexibility. And Sears and Chevron are using Hadoop, an open source database to analyze large amounts of data. Because the code is reusable, OSS is also being used by MasterCard to build prototypes of mobile apps. This gives developers the ability to create apps quickly, the company said. While the energy industry typically hasn’t shown an interest in OSS and has generally only used Linux application servers, Chevron is using Hadoop to find oil in areas including the Gulf of Mexico. As for smaller businesses, Vaughn-Nichols says many are probably not aware that their Network-Attached Storage (NAS) device and Internet router “are almost certainly running Linux.” The OS is everywhere, he adds. “It's in your pocket with your Android smartphone and it's what powers your Google Web searches. The only place it really isn't is the conventional desktop.” Better quality was the number one factor for open source adoption in business cited by respondents in the Future of Open Source survey. Other factors in order of importance were: freedom from vendor lock-in; flexibility/access to libraries of software, extensions and add-ons; elasticity/ability to scale at little cost or penalty; superior security; pace of innovation; lower costs; and access to source code. Increasingly, open source software is being chosen over proprietary alternatives. Industry observers say it’s a viable choice for businesses because it provides: Control – Unlike commercial software, OSS lets you make decisions about how to run your business. Flexibility – OSS is licensed in a way that lets you modify it yourself or hire a third party to tailor the software to meet the needs of your business. Reliability – OSS typically has fewer bugs and is more reliable than software developed using a standard commercial development process. Cost – There are little to no upfront costs with OSS. Users only pay for the support they need and most importantly, when they need it. Longevity – If a commercial software company goes out of business, you lose all of your support, bug fixes, security patches and possibility of future upgrades. Contrast that to a mission-critical software application a business is using: all it has to do is find a consulting firm, programmer or another third-party provider. “Enterprises see [open source software] as leading innovation, delivering higher quality and driving growth rather than being just a free or low-cost alternative,’’ says Michael Skok, general partner at North Bridge Venture Partners. “Going forward, as broader adoption creates a virtuous cycle of innovation and investment, we can expect more disruption from open source, new business models and many more exciting new projects and companies." Vaughn-Nichols also sees OSS becoming more ubiquitous in business. “It's becoming invisible. People tend to think of software as what they see in front of them. For most people that means Windows or Macs. Behind all of them everything -- and I mean everything -- has been switching over to OSS.”
AWS and MongoDB: Partners in Reliable, Resilient Cloud Environments
Security is increasingly critical for application development. While the volume of applications developed, distributed, used, and patched over networks is rapidly expanding, so, too, are cyberattacks and data breaches, many of which happen at the web application layer. As more organizations move to the cloud, it’s imperative for customers to know who’s responsible for what when it comes to security. Understanding these roles and responsibilities is crucial for ensuring cloud workloads remain secure and available. MongoDB and AWS are working together to simplify and strengthen data security for our customers so they can focus on developing great applications and user experiences. For more information on shared responsibility, read the first blog in this series . Shared responsibility in the cloud Back when most IT environments lived on premises, the responsibility of securing the systems and networked devices fell squarely on the owner of the assets — usually the business owner or a managed service provider. Today, with the prevalence of cloud applications, hybrid environments, and pay-as-you-go services, it is often not clear who's responsible for what when it comes to securing those environments, services, and the data they contain. For this reason, the shared responsibility model of cloud security has emerged. Under the shared responsibility model, some security responsibilities fall on the business, some on public cloud providers, and some on the vendors of the cloud services being used. When you deploy a MongoDB Atlas database on AWS, the database is created on infrastructure operated, managed, and controlled by AWS, from the host operating system and virtualization layer down to the physical security of the AWS data centers. MongoDB is responsible for the security and availability of the services we offer — and for everything within the scope of our responsibilities as a SaaS vendor. Customers are responsible for the security of everything above the application layer — accounts, identities, devices, and data — plus the management of the guest operating system, including updates and security patches; associated application software; and the configuration of the AWS-provided security group firewall. (See Figure 1.) Figure 1. Shared responsibility when using MongoDB Atlas. Strategic partners in data solutions MongoDB Chief Information Security Officer Lena Smart delivered a keynote at AWS re:Inforce , an event where security experts offered tips and best practices for securing workloads in the cloud, and was also interviewed by theCUBE . Smart noted how MongoDB and AWS are working together to enable our joint customers to focus more on business objectives while having the confidence in the cloud services and infrastructure they get from us. "You want to worry less about security so that you can focus on application development, performance, availability, business continuity, data management, and access," Smart said. "As the CISO of MongoDB, these concerns are also my top concerns as we work to better serve our global customer base. And we are very appreciative of the opportunity to do this in lockstep with AWS." Jenny Brinkley, Director, AWS Security, agrees that customers stand to benefit through the shared responsibility model. "The shared responsibility model is a huge reason why more customers are deploying in the cloud," Brinkley said. "AWS, combined with marketplace services like MongoDB Atlas, help relieve the customer's operational burden so they can focus on driving their businesses forward." Smart's appearance at the event is just one example of how MongoDB and AWS are working together to deliver scalable data intelligence solutions for enterprise data in the cloud, reduce risk for cloud-native tools, and enable our joint customers to achieve compliance and protect their sensitive data. Thanks to our strategic partnership, organizations around the globe and across a wide range of industries — from banking and airlines to insurance and e-commerce — are better able to discover, manage, protect, and get more value from their regulated, sensitive, and personal data across their data landscape. MongoDB Atlas is trusted by organizations with highly sensitive workloads because it is secure by default. We're constantly innovating with new, breakthrough technologies, like our industry-first queryable encryption, which allows customers to run rich, expressive queries on fully randomized encrypted data, improving both the development process and the user experience. MongoDB Atlas is designed to be secure by default. Try it for free . MongoDB Atlas (Pay as You Go) is now available in AWS Marketplace - Try it today .