แก้ไข

แชร์ผ่าน


Compute for SaaS workloads on Azure

Your software as a service (SaaS) application needs to run on a compute platform. Like other components in your architecture, it needs to meet the business requirements and be designed according to your business model. The choice of compute platform is a significant design decision. Your decision affects customer isolation, performance, and resiliency, and your compute platform influences how your entire SaaS solution can scale and grow.

This article describes the considerations for choosing your hosting model, the operational aspects of that model, and how to optimize the technology options to help you meet your service-level agreements (SLAs) and service-level objectives (SLOs).

Select a compute platform

Choosing the right compute platform for your SaaS workload is important, but the abundance of available options can make the choice feel overwhelming. The best platform depends on factors like application architecture, scale, performance needs, and the tenant isolation model. What's optimal for one application might not be for another.

Design considerations

  • Hosting model. Azure offers various hosting models, primarily infrastructure as a service (IaaS) and platform as a service (PaaS), each with its own benefits and tradeoffs. Evaluate your application's requirements and choose the most suitable model.

    • IaaS provides virtual machines (VMs) and full control over them, including networking and storage. However, it requires managing and patching, which can be operationally intensive. Examples include virtual machine scale sets and Azure Kubernetes Service (AKS) clusters.

    • PaaS allows you to deploy applications without managing the underlying infrastructure. It includes built-in features for autoscaling and load balancing. Examples are Azure App Service and Azure Container Apps.

      PaaS services offer less control compared to IaaS, which can be problematic if your application needs specific configuration. For example, your application might run on an operating system that the PaaS service doesn't support.

  • Workload type. Some platforms are specialized for specific workloads, while others are versatile. For instance, App Service is designed for web applications, whereas AKS is more general-purpose. It can host web apps, AI workloads, and batch compute tasks.

  • Develop team expertise. Large changes can be challenging if the team lacks experience with the new platform. Assess your team's skills and match them to your platform requirements. Start with a simple platform and gradually evolve your architecture rather than jumping straight to a more advanced option.

    For example, if you're building a containerized application, start with Container Apps for easy management. As your needs grow more complex, you can transition to AKS when you gain a better understanding of the platform over time.

  • Management overhead. Compute platforms balance overhead and control. More management responsibility shifted away from your team means less control over the platform.

    For example, IaaS offers high control over VMs but comes with significant overhead. If your application is deployed in a customer's environment, you might have limited access for management operations. Assess if these tradeoffs are acceptable and feasible.

  • Performance requirements. Understand your application's performance requirements by modeling CPU, memory, network, including bandwidth and latency, GPU, and availability needs. You should also consider future growth. Use this information to choose the appropriate compute resources, like the series and size of VMs. You might also need to select specific regions that support particular VM series to meet specialized requirements.

  • Reliability requirements. Consider the reliability features of your compute platform and ensure that they meet your reliability targets. You might need to use specific service tiers to have multiple instances of your solution or deploy across availability zones for enhanced reliability.

    Refer to RE:04 Recommendations for defining reliability targets.

  • Application security and compliance. Evaluate the security features and compliance certifications of each compute platform to ensure that they meet your needs. For example, if you need to monitor and filter outgoing traffic, you might need to choose specific compute services or tiers.

Design recommendations

Recommendation Benefit
Evaluate the compute performance requirements by estimating CPU, memory, network, and GPU scale dimensions.

Perform load testing to gather more accurate data to inform your modeling exercise.
These tasks help you select the appropriate sizing for your compute platform and scale appropriately when the load on the system increases.
Evaluate your team's proficiency and start with the least complex platform that meets your needs or one that the team is already familiar with. You ensure smoother operations and avoid overburdening your team by choosing a compute platform that they're familiar with.
Be flexible in your design. Aim for a solution that you can iterate on over time to adapt to evolving business and technical requirements. Flexibility allows you to more easily adapt to changes and improvements over time. You can respond effectively to evolving business and technical needs.
Evaluate the total cost of ownership (TCO), including costs of operating the solution. You have a clear understanding of costs, which is crucial in planning your pricing model and ensuring cost-effective operations.
Assess whether you need to use specific compute platforms because of your technology stack. Some compute platforms are better suited for certain programming languages, tooling, and operating systems. Strive to use platforms that natively support your technology choices. You avoid the cost of redesigning your architecture, which might include migrating to a new platform.
Evaluate the reliability features of the platform and factor your cloud service provider's guarantees into your SLOs. You reduce the risk of localized datacenter outages by planning for reliability features and using availability zones if they're available.

Tenancy model and isolation

Your SaaS business model determines whether you host resources for customers or manage them in the customer's environment. Most SaaS providers host resources on behalf of their customers, which allows for flexibility in compute platform design. Isolate customer workloads effectively to optimize cost efficiency without compromising customer experience or performance.

Design considerations

  • Plan your tenancy model. Your tenancy model determines resource sharing between customers and is influenced by your business and pricing models. Single-tenant models have higher costs per customer compared to fully multitenant models. Your pricing should reflect these differences.

  • Customer requirements. Some customers might have specific needs for data residency, performance guarantees, or security compliance. If these requirements need higher isolation levels than usual, consider how to reflect the increased costs in your business model.

  • Noisy neighbor problem. Be aware of the noisy neighbor problem when sharing resources among tenants. Compute resources are affected the most. For more information, see Noisy neighbor antipattern.

    When you choose a tenancy model, balance the cost savings of resource sharing with the need to guarantee customer performance. Over-sharing resources or allowing excessive consumption can degrade the customer experience.

Tradeoff: Performance and cost. Sharing resources among customers can be cost-efficient, but if some customers use more resources than expected, this approach can degrade performance for others. To prevent this, implement proper resource governance to ensure tenant usage stays within expected limits.

Design recommendations

Recommendation Benefit
Evaluate the isolation features of the compute platform to ensure that it meets your tenancy model requirements. You avoid reworking your platform by verifying critical configuration first.
Enforce your isolation model.

Be cautious with shared resources like local disk caches, system memory, and external caches because they can unintentionally leak data between tenants if they're not managed properly.

For high isolation requirements, enforce isolation within the compute platform and in the application.
Strong isolation reduces the risk of cross-tenant data leakage, a serious security incident.
Implement resource governance and monitoring, with visibility of customer-level metrics.

Proactively monitor each customer's resource consumption to detect and mitigate noisy neighbor problems.
You prevent problems from affecting other customers by monitoring resource consumption and mitigating problems early.

Configure for scalability and cost efficiency

Your customers can use your application with different performance profiles. They expect the application to handle increasing user demands, large-scale data, and complex workloads without compromising speed and performance. Your system architecture must ensure scalability and optimal performance, whether it manages hundreds or millions of users, while balancing performance needs and costs.

Tradeoff: Performance and cost. Improving performance typically involves adding resources, which increases costs. Review workloads holistically to identify which resources offer the most benefit for the extra cost. For instance, isolating your most important customer on dedicated infrastructure might be worth the additional expense to avoid performance problems from other workloads.

For more information about cost management, see Billing and cost management for SaaS workloads on Azure.

Design considerations

  • Horizontal and vertical scaling strategies. Horizontal and vertical scaling approaches are viable for handling increased load. The approach that you use depends on your application's ability to scale across multiple instances.

    • Horizontal scaling involves adding more instances of compute nodes. Your architecture needs a load balancer to distribute incoming traffic across multiple servers or instances.
    • Vertical scaling involves increasing resources, like CPU and memory, on a single server. Use this approach for stateful applications that don't need external state stores like caches. Scaling vertically might cause brief service interruptions and has a resource limit on a single server.

    Refer to PE:05 Recommendations for scaling and partitioning.

  • Autoscaling. Systems need to efficiently handle varying levels of demand. As user traffic increases, your application resources need to scale up to maintain performance. When demand decreases, resources scale down to control costs without affecting user experience. Factors like CPU utilization, time of day, or incoming requests guide these adjustments. Autoscaling helps balance performance and cost and mitigates the impact of high demand on other tenants.

    Refer to RE:06 Recommendations for reliable scaling.

  • Capacity planning and compute allocation. Onboarding new customers to your SaaS workload consumes resource capacity. Even if you scale vertically or horizontally, you eventually reach limits, such as networking or storage constraints, in your solution's scalability.

    Note

    The Deployment Stamps pattern allows you to deploy multiple independent instances of your solution. It provides another scaling dimension. It's crucial to understand the capacity of each stamp to determine when to deploy more. This concept is also known as bin packing.

Design recommendations

Recommendation Benefit
Choose horizontal scaling over vertical scaling. Horizontal scaling is often less complex, more reliable, and more cost effective than vertical scaling. Horizontal scaling is often simpler, more reliable, and cost-effective, which allows you to scale to a higher degree than vertical scaling.
Perform load testing. Simulating usage can help you identify bottlenecks and scaling thresholds before you deploy to production.
Define the scaling threshold for deploying a new stamp instead of scaling horizontally or vertically.

For cost-effective scaling without performance loss, condense your tenants onto as few resources as possible.
You're better prepared to handle growth beyond your current infrastructure.
Implement autoscaling, where possible. Set autoscale rules to reflect your application's load accurately. You optimize performance and cost by increasing and decreasing resources as needed.
Monitor and evaluate customer usage patterns. You know when to adjust your infrastructure to boost performance or optimize costs.
Implement caching mechanisms, where possible. You reduce the potential processing load on the compute layer.
Use cost alerts. Warnings help you detect high usage and control cost problems early.
Use Azure reservations for customers that have long-term commitments and guaranteed compute utilization for that entire period. You maximize cost efficiency on your reserved capacity.

Design for resiliency

Resiliency of your compute layer plays a large part in your overall resiliency strategy. Your application should tolerate and recover from common failures automatically and seamlessly, without user impact.

Design considerations

  • Reliability requirements. Set clear reliability requirements. These requirements include internal targets, or SLOs, and customer commitments, or SLAs, that often specify uptime targets like 99.9% per month.

    Refer to RE:04 Recommendations for defining reliability targets.

  • Deployment strategy. Cloud resources are deployed in specific geographic regions. In Azure, availability zones are isolated datacenter sets within a region. For resiliency, deploy applications across multiple availability zones. Deploying across regions or cloud providers enhances resiliency but adds cost and operational complexity.

    Refer to RE:05 Recommendations for using availability zones and regions.

  • Stateless workloads. To deploy resilient applications, you typically need to run redundant copies in different locations. This task can be challenging for stateful workloads, which need to maintain session state. Aim to build stateless workloads when possible.

Design recommendations

Recommendation Benefit
Handle transient faults in your application. You increase your availability by quickly recovering from minor issues.
Choose stateless applications. If your application needs to be stateful, use an external state storage mechanism like a cache to store the state. You prevent state loss that's caused by an instance being unavailable, such as during erroneous load balancing or during an outage.
Use availability zones. You increase your resiliency by mitigating localized datacenter outages.
Design a multiregional architecture when there's business justification to do so. You meet high uptime requirements and support users in different regions.
Perform chaos engineering. You better understand where your points of failure are and can correct them before an outage occurs.
Limit the use of components that multiple stamps share. You eliminate single points of failure and reduce the potential area of impact for an outage.

Additional resources

Multitenancy is a core business methodology for designing SaaS workloads. These articles provide more information about compute platform considerations:

Next step

Learn about the networking considerations for SaaS workloads.