Rehost and Replatform Migration on AWS
SmartPay is a Vietnamese payment services provider, a digital service associated with VP Bank and a financial company FE Credit - a large private lender in Vietnam. SmartPay gained a foothold in the booming electronic and mobile payments market, and during 2020 achieved explosive growth. Now SmartPay is an important contender in the Vietnamese payment apps landscape and experiencing growth with new vendors, partners and users.
The technology stack of SmartPay is a range of vendor provided as well as custom applications built in-house and running on Linux servers with variety of programming languages, frameworks and OS distributions. The company follows microservices architecture, allowing each team and business unit to choose the technologies for the services they are responsible for. The data stores for each such custom application are also varied, due to the independence of the app teams to choose what works the best for their workloads. Therefore, the solution includes several relational databases, NoSQL databases such as MongoDB, and file storage services.
As is common in microservices architecture, the services communicate with each other via common message queues, while there are multiple load balancers, proxies and firewalls handling the ingress and egress traffic. Obviously as financial services provider, SmartPay adheres to high security standards and these are taken into consideration in all the systems, applications and network design, as well as in the infrastructure implementation.
The customer was hosting all their services on a dedicated infrastructure in local data centers, which was proving limiting for their changing needs. In particular, attempting to predict the fast growth of the services popularity and the associated need to provision more servers involves a lot of guesswork on-premises and mistakes can be very expensive. The customer needed to balance the performance and stability requirements with the cost of resources used. Another concern was the rapidly increasing operation and maintenance requirement of the services used on-premises. For services such as databases, caching layer and search, the customer was looking for a way to get the operations and maintenance as managed services.
Security and compliance are major concerns for the customer. Certain standards such as PCI-DSS for payment cards processing are mandatory in this industry, and the customer requires the highest levels of security for all their applications, data stores and associated services to protect the integrity and confidentiality of their data and their customers. All interfaces, whether to the end user, to integration partners, to vendors, partners and banks, and to internal operations and maintenance processes, must to using the security best practices and be easily monitored for any threats, breaches or incidents. Thus, a platform with inherently high security standards and powerful security controls was required. Also important was the provider’s experience on serving banking and financial industry.
SOLUTION - RENOVA CLOUD APPROACH
Renova Cloud reviewed the customer’s requirements and the current system to gain an overall understanding. The following main topics were identified as of importance to meet the needs of the customer and all stakeholders:
- The application workloads must be deployed in virtual servers and load-balanced with optional auto-scaling, using auto-healing features as appropriate
- Stability and adequate performance of the applications is extremely important, due to possibility of losing users and business as result of any low performance or downtime
- There should be multiple environments for production and non-production workloads with a proper separation between them; however avoiding over-engineered solution
- Data stores, cache, search, message queue, etc. should be offered as AWS managed service where this is possible
- Private connectivity from SmartPay premises required; both Direct Connect and VPN
- High Availability configuration for applications and data stores is important and should be achieved in Multi-AZ basis to withstand the failure of an AZ
- Cost-effectiveness: it’s important to eliminate waste and identify the necessary and superfluous parts; so the solution must contain only the necessary services
Based on these high level requirements and detailed discussion with the customer’s business, technical and developers regarding the sizing and usage patterns, Renova Cloud drafted a solution on AWS. The migration plan was divided into 2 phases, first Re-host approach with lift-and-shift of all relevant workloads, second phase migrating the required services such as databases, message queues, caching, search to AWS managed services. Renova Cloud as AWS partner performed the migration tasks for the both phases.
- Re-host migration phase took place for all the in-scope servers and was performed mainly using the AWS CloudEndure Migration tool with agents installed in the old servers and using the agents to replicate to the new EC2 instances on AWS. For the relational databases within the solution, the AWS RDS service was used as the hosting migration target, and AWS DMS Database Migration Service successfully migrating the whole database directly to the AWS RDS database servers.
- Re-platform migration phase involved identifying each workload that could be running well in an AWS managed service, there are several used as target in this phase; the NoSQL database MongoDB was migrated to AWS DocumentDB, Redis was migrated to ElastiCache for Redis, while RabbitMQ message queues were refactored in AmazonMQ topics and Elasticsearch was run with Amazon Elasticsearch.
Both phases were managed as independent projects with clear planning, designing, implementation, testing and delivery phases defined. The customer and their feedback were involved at each step.
The secure private connectivity to the AWS VPC is managed through two different managed VPN solutions. Between customer’s premises and AWS, a Site-to-Site VPN connection with a pair of tunnels is established, allowing connectivity of SmartPay users to their required interfaces. The AWS networking partner also supported to request the Direct Connect setup for faster dedicated connectivity, enabling fast transactions in the app.
The first phase architecture describes the lift-and-shift migration with CloudEndure:
The second phase applies managed services on AWS:
The HA high availability configuration involves running additional resources mostly in a different AZ than the main one used with the solution. For security requirements, clear dashboards and monitoring pages have been created, and Renova Cloud offers managed services with helpdesk and incident management system for urgent cases.
After the migration was finished, SmartPay experiences a highly scalable and elastic solution on AWS which can be sized and adjusted to their needs easily. The performance is good even in face of increasing traffic, and Renova Cloud has helped to minimize the costs of the architecture. Utilizing managed services for all the workloads where this is an option has reduced the needs of operations and maintenance, allowing the customer to focus their resources to other tasks.
SmartPay is benefitting from AWS in a flexible and sustainable way. Continuing to use AWS hosting and Renova Cloud’s services ensures the stability and innovative growth.
Ngân hàng Thương mại Cổ phần
Joint Stock Commercial Bank successfully accelerated growth by migrating to AWSThe competitive digital race among banks is increasingly fierce, focusing on attracting technology-savvy customers. The commercial bank wanted to stay ahead of the competition and required scalable, reliable and cost-effective back-end infrastructure for rapid growth.Read more>
IMV’s Business Intelligence Empowered by AWS Data Management SolutionThe former infrastructure of IMV lacked the scalability required to accommodate the growing volumes of data and the increasing demand for business intelligence and analytics. Read more>
Vietnam’s Prominent E-wallet Migrated Its Two Most Critical Workloads to AWSThe E-wallet in question is one of Vietnam’s largest online payment platforms, developed and published by one of the most dominant technology players in the region. Read more>
F88’s Journey to a Secure and Centralized Data Management with AWS Cloud SolutionsEstablished in 2013, F88 stands as the forerunner network of secure lending in Vietnam, focusing on serving micro & small enterprises as well as individual customers. Receiving substantial financial support from renowned global Read more>
Greenfeed Data optimization solution with AWSGreenfeed's mission is to provide consumers with a clean food chain from farm to table with the 3F Plus process - FARM FEED FOOD. Read more>
RENOVA – STARTUP OI – SUCCESS STORYStartup Oi is a new social media and tech talent platform. Startup Oi has an ambitious goal to focus on professional needs of tech engineers and developers, building a digital community and connecting with job opportunities and tech events. Read more>
VIETCETERA – MIGRATION JOURNEY TO AWSFounded in 2016, Vietcetera is a first-of-its-kind multimedia digital platform producing editorial content along with video series and podcasts in both Vietnamese and English.Read more>
IMV – ON-PREMISE TO CLOUD JOURNEYInternational Minh Viet Joint Stock Co. is a distribution company which entails general trade, modern trade, as well as an e-commerce channel. Read more>
SmartPay Rehost and Replatform Migration on AWSSmartPay is an important contender in the Vietnamese payment apps landscape and experiencing growth with new vendors, partners, and users. Read more>
Pepsi Co Myanmar
Accelerate SAP S/4HANA Transformation With AWSPepsi Co Myanmar was looking to modernize their existing systems and launch a new platform for their users and applications utilizing the up-to-date technology solutions and choose SAP S/4HANA on AWS. Read more>
AWS Immersion Day with Nutifood GroupThe goal of this educational workshop was to empower N Group's IT team and leadership to confidently use the AWS platform for their benefit, and unlock new business opportunitiesRead more>
Serverless application implementation on AWS for Tadiran GroupTadiran is a leading technical and electrical appliances manufacturer company. Some of the company’s more famous product lines include batteries and air conditioners. Read more>
Scratchpay Security best practices and well-built architecture on GCPEvaluation and assessment of the existing GCP environment for best practices and well-built architecture methodologiesRead more>
UAB - Connect. Create. Change.
UAB BANK CLOUD NATIVE APPSAs a part of the modernisation and digitalisation strategy, UAB is expanding its services to build mobile apps for payment and e-Wallet purposes to serve the growing Myanmar consumer banking marketRead more>
Yoma Transformation to AWS CloudThe increasing demand for Yoma’s applications and business across different verticals requires to have a digital transformation journey with an effective migration to the cloud.Read more>
AQUA – Migration & CI/CDAQUA is able to improve operations as result of the migration and CI/CD on AWS as well as able to release new features faster with minimal time and disruption to the end users.Read more>
Sovigaz – migrating to AWSThe agility of the new infrastructure help Sovigaz to relieve the burden of on premise infrastructure management and limitations as well as access to advanced services offered on AWS platform. Read more>
Kaopiz’s Infrastructure AutomationAutomate the processes on AWS and create an environment to test new features to support the Development & QA team to deliver jobs faster, automated and without a deep level of experience and skills on AWS.Read more>
Navigos’ journey to the CloudAs part of the company commitment to it’s customers, it is essential to secure a robust disaster recovery process. Navigos’ application requires to have a fast and effective reaction in the disaster recovery scenarios.Read more>
Sabeco Case StudyHaving migrated to AWS, Sabeco is capable of quickly responding to increased traffic and services’ usage when necessary, making running marketing campaigns and launching new features less risky.Read more>
Nkid’s journey to the CloudNkid Group is running a number of Microsoft workloads in various environments including on-premises, local data center in Vietnam, Microsoft Azure and AWS.Read more>