The cloud native

transformation
A guide to cloud native design
and operations principles

October 2020
2 Ericsson  |  The cloud native transformation

Cloud native –
a holistic view

Being cloud native is synonymous with industry-wide

transformation in the ICT field, with extremely fast innovation
and value coming both from start-ups and established players.

In the telecommunications sector, many
operators and vendors are also embracing
cloud native. In this paper we wish to share
the holistic methodology we at Ericsson
use to understand the main implications
of cloud native, with the strong belief
that in order to get the desired benefits –
especially in the telecom context – one
needs to view this transformation from
different angles.
The four main aspects of cloud native
described in this document are:
• application design and development
• technology and infrastructure
• processes and ways of working
• management and orchestration
These four aspects do not exist – nor
should be looked at – in isolation. They all
influence each other, and so none of them
should be overlooked at any point in time,
irrespective of whether we are discussing a
development of a brand-new cloud native
network function (CNF), transforming an
existing legacy application onto the cloud,
or transforming a whole network.
Omitting any of the aspects carries
the risk of not gaining the full intended
benefits – for example, if applications,
infrastructure and orchestration all follow
cloud native design patterns, yet the ways
of working and organizational setup and
model do not take advantage of the cloud
native setup, the full potential will not
be reached.
Technology plays a crucial role in
all four aspects of cloud native. For
communications service providers (CSPs),
many of the aspects are connected to the
desire to build networks with equipment
from multiple vendors (for example,
applications provided by one vendor and
infrastructure provided by another), so
it is therefore crucial that multi-vendor
interoperability is ensured. Alignment
between players across the necessary
interfaces can be tricky, but open source
initiatives, such as the Cloud Native
Computing Foundation (CNCF) and
The Linux Foundation, often provide a
good basis to work with in the form of
de-facto standards (like Prometheus
for monitoring or Helm for package
management). However, alignment
around processes and ways of working
is still lacking as of today and is an area
where industry consensus via open source
and standardization is very much needed.

Figure 1: The four main aspects of cloud native

Application design and development Processes and ways of working

Cloud native

Technology and infrastructure Management and orchestration

3 Ericsson  |  The cloud native transformation

Application design
and development

We have identified five design principles to follow

when designing cloud native telecoms applications.

Agnosticity Figure 2: Cloud native application agnosticity

In the telecommunication industry, a
cloud native application (CNA) needs to be
Cloud native Cloud native
agnostic to the underlying infrastructure. application application
This does not necessarily apply to the
traditional cloud native players, such as
App business logic App business logic Cloud native Cloud native
Netflix and Uber, since they control the full application application
stack that they deploy their application on.
As we evolve the cloud infrastructure
towards supporting container as a service App business logic App business logic

(CaaS), the requirement for agnosticism Kubernetes based CaaS: Any

remains but the challenges are different.
A CNA requires a container infrastructure
and must be deployable on whatever
CaaS and infrastructure as a service
(IaaS) combination that a CSP has in its
cloud environment; see Figure 2 for CNA
agnosticism scenarios.
A CNA must be able to run on any
modern kernel without requiring any
proprietary additions. CNAs should only
require “vanilla Kubernetes” with no
additional plug-ins for basic operation.
Optional use of plug-ins for optimizing
performance is allowed.
At the same time, the telecoms industry
is highly regulated. Mission-critical telecom
services, composed of infrastructure and
applications supplied by IT and telecom
vendors, must live up to very demanding
internet CSP (ISP) requirements.
IaaS*: Any
Hardware: Any x86
Life cycle management
A fundamental principle of a CNA is to
decompose software into smaller, more
manageable pieces. This is usually done
through utilizing microservice architecture.
This is a design pattern that strives to
structure an application as a collection
of loosely coupled stateless services and
stateful backing services.
This concept is not new. It has always
been good practice to divide code into
Kubernetes based CaaS: Any
Hardware: Any x86*
more manageable pieces, whether
this is referred to as “microservices”,
“subroutines”, “code modules” or
“software components”. What is
new, however, is that each piece has
a well-bounded scope and can now
be individually deployed, scaled and
upgraded using a CaaS environment. In
addition, microservices communicate
through well-defined and version-
controlled network-based interfaces.

Application design principles: Figure 3: Example of a microservice architecture

• Agnosticity
• Decomposed software Stateless Cloud native application
• Application resiliency services Yang VES XML
• State-optimized design REST µService DB
CM CM µService PM µService Logic 3 DB
• Orchestration and automation Stateful backing API AppLogic 3 API
µService DB PM DB FM
services

µService
REST REST µService DB
Application AppLogic 1 Logic 4 DB
API API AppLogic 4 API
(SE)

Cloud native
TR µService REST µService
application
IF AppLogic 2 API AppLogic 2
consumer
4 Ericsson  |  The cloud native transformation

Figure 4: Upgrade/update example

µService A µService B Before

Version x.0 Version y.z

Fallback

µService A µService B During

Version x.1 Version y.z

µService A µService B After

Version x.1 Version y.z

Scaling State-optimized design Network-level orchestration

A microservice architecture allows
independent scaling, based on each
microservice’s particular need. It will
scale linearly as long as the infrastructure
provides needed resources like CPU,
memory, storage and networking.
This scaling is automated to enable
self-dimensioning applications.
Upgrade
By eliminating the application-level
clustering and relying on CaaS-level
mechanisms and backwards-compatible
APIs between services, in-service upgrades
can be simplified. Application upgrade
becomes the automated and orchestrated
upgrade of its microservices; see Figure 4.
By ensuring that two microservice
instances of the same type never
communicate, it’s possible to run images
with different software revisions in the
same application instance. This makes
canary testing efficient and low risk.
Application resiliency
Previously, local 1+1 resiliency models
together with geo-redundancy have been
deemed sufficient for physical network
functions (PNFs). This is due to the long
meantime between failure (MTBF) of
hardware. In cloud environments, this is not
enough, as one must consider the (much
shorter) aggregated MTBF of hardware,
virtual machines (VMs) and containers.
The best way to manage state or data
must be decided based on the type, and
the application context within which it is
handled. The lifetime of states can vary
significantly, from milliseconds to days or
even months.
In general, the following aspects are
used for determining the importance of
maintaining state information in the case
of a microservice failure:
• impact severity of the state/data loss
• impact on user
• cost/benefit considerations pending and orchestration of network-level use
frequency of changing states
Orchestration and automation
Internal automation and orchestration:
CNAs are automated, thereby automating
the lifecycle of the internal microservices
that make up the application through
service discovery, load distribution and
other CaaS mechanisms. Some examples
of automated actions are scaling, healing
and in-service update/upgrades.
Figure 5: A CNA with multiple failures
Cloud native application
µService A µService A
and automation
Internal CNA automation is not
enough. It is equally important that it
can be orchestrated from an external
management system in order to be
included in a wider network context, such
as a 3GPP network slice. For this purpose,
a CNA must expose performance and
fault management information to an
external management system, as well
as allow for model-driven configuration
management. This enables automation
cases like instantiation/decommissioning
and network scaling of a CNA (where
“network scaling” means adding more
instances of the CNA).
µService A

Therefore, a CNA should support

any combination of failures at any time,
without escalation to full restart and loss
of service.
µService B µService B µService B
Multiple failures will lead to
degradation of capacity, but not of service
availability. Service will continue as long as
one instance of each required microservice
type is available. The degradation of µService C µService C µService C
capacity is addressed by automated
scaling, enabling a system to recover
quickly and automatically.
5 Ericsson  |  The cloud native transformation

Processes and ways

of working

As the cloud native open source landscape grows

and matures, it becomes increasingly important to
make use of the best open source components.
Figure 6: Using open source platform software
The CNCF provides a new starting point
when looking for reuse opportunities
from a cloud native and microservice Ericsson CNFs 3PP CNFs CNCF
architecture perspective, adding value
Prometheus
by creating structure, choosing relevant
Spinakker
open source projects, and ensuring overall Ericsson Platform Services (PaaS)
Helm
quality and community acceptance. It Operator Framework
also provides a comprehensive map of Elastic
Istio
potential realizations for different areas. Logstash
Strict backward compatibility of the Configuration management Tracing OpenTracing
exposed interfaces is required to achieve Envoy
Redis
loose coupling and make it possible for Multus
each service to evolve independently. Performance management Database Kafka
At the same time, semantic versioning Project Calico
Jaeger
on the interfaces creates a common Docker
way to communicate the evolution of Jenkins
Fault management Service mesh
the interfaces.
The model for using open source
software is to bring in the source code –
Logging Life cycle management
even if pre-baked container images are
provided by some projects – and build
container images, including the selection
of the base operating system image, to
ensure security and to maintain version CCD EKS AKS GKE
control. Regardless of whether a service is
based on open source code or a proprietary
implementation, the development team Any IaaS including bare metal
structure and the responsibility must be
the same. Constant validation is crucial
for early detection of any potential issues
relating to backward compatibility.
In order to avoid creating proprietary
branches of open source components, and
thereby losing the open source advantage,
it is critical to apply an upstream-first
strategy; new functionality needs to be
contributed to the open source project
before being released to customers.

Open source components are key for cloud native success

6 Ericsson  |  The cloud native transformation

Figure 7: Telco phasing of software pipeline (CI/CD/CD)

Continuous design and integration Continuous delivery Continuous deployment

µService Application System System System

Delivery Deployment
staging staging staging staging staging

Live network
Monitoring and Monitoring and Monitoring and
analytics analytics analytics

Software vendor Software operator

Continuous ways of working
The fundamental continuous integration
and continuous delivery (CI/CD) software
pipeline methodology comes from the
ICT industry, and is simple to understand
for mainstream web players where
the same company is responsible for
both the development and operations
of an application. This implies that the
development environment can be identical
to the runtime environment.
In the telecom environment, it’s not
usual for the software vendor to both
develop and operate the application;
rather, the vendor delivers software
to multiple CSPs that operate the
application. This means that the software
pipeline needs to support three phases
– continuous integration, continuous
delivery and continuous deployment
(CI/CD/CD) – rather than two
(that is, CI/CD).
Since the telecom landscape is made
up of multi-vendor systems, this needs
to be catered for in the software pipeline
setup and phasing. This can be automated
by merging pipelines and reusing test
suites, thereby increasing flexibility and
speed without raising cost; see Figure 8.
However, this comes with an integration
cost, since software pipeline tools are
not yet standardized across the
telecom industry.
Automated pipelines have the potential
to solve many challenges of the software
life cycle. Through staging multi-vendor
systems in multiple phases, the increase
in network and system complexity can
be mitigated and the cost of
integration managed.

Figure 8: Merging pipelines

Vendor 1 Vendor integrator role Operator integrator role

µService Application System System System

Delivery Deployment
staging staging staging staging staging

Vendor 2
Live network

µService Application System

staging staging staging

Vendor 3

µService Application System

staging staging staging
7 Ericsson  |  The cloud native transformation

Technology and
infrastructure

Telco infrastructure has evolved fundamentally in the last 10 years,

starting with the introduction of network functions virtualization
(NFV) in 2012, which has shaped today’s preferred practices.

Infrastructure evolution Public cloud orchestration. While shortcomings

NFV introduced a clear separation of
hardware and VM-based software
components. It also brought unified
management of infrastructure and
application workloads with MANO. Over
the years, MANO has been thoroughly
standardized and evolved with more
advanced automation capabilities. The cloud
native evolution brought CaaS environments
on top of VM-based infrastructure, with
Kubernetes as the choice for orchestration
of container-based workloads. Here we see
strong momentum towards Kubernetes- and
Helm-based APIs becoming the preferred
way to define and manage container
resources and applications.
To further optimize the resource
utilization and reduce operational
complexity, the next natural step is to
deploy the CaaS environment directly on
the hardware, via bare metal deployments.
However, VM-based applications will
remain for the foreseeable future. To avoid
fragmentation and multiple operational
models, we foresee an extended
CaaS layer, which would be capable
of managing both VM and container
workloads via a unified API (see Figure 9).
For telco applications, the CaaS layer
provides the most cost-efficient multi-
vendor integration point with strong
de-facto realizations like Kubernetes and
Helm. It constantly evolves, enriching it
with more capabilities to support telco
applications and use cases with expected
functionality, performance and security.
Demand is increasing to deploy CNAs on
public clouds managed by hyperscale
cloud providers like Google, Amazon and
Microsoft. All major public cloud providers
offer managed Kubernetes-based CaaS
solutions, spanning from data center
deployments to edge and on-premises
solutions. This deployment journey has
only just started, though most Ericsson
cloud native telco applications can already
be deployed on public cloud. However,
some aspects of specific applications
cannot yet be fulfilled; challenging areas
include telco networking, performance
characteristics and management and
Figure 10: Preferred portability layer
Ericsson CNFs
Ericsson Platform Services (PaaS)
Configuration management
Performance management
Fault management
Ericsson Platform Services (PaaS)
EKS AKS
VMs (any IaaS)
are addressed, it is expected that less
demanding applications and use cases will
be realized on public cloud.
We are striving for openness and
portability, working with all major public
cloud providers to make this a viable
deployment option for CNAs. These
providers offer various proprietary
platforms as a service (PaaS), for example
logging and metric collection services.
In the absence of standards, or de-facto
standards, in the PaaS layer, Ericsson
considers CaaS to be the most relevant
multi-vendor integration point for telco
CNAs (see Figure 10).
Logging Tracing
Database
Service mesh
Portability
layer
GKE
Bare metal

Figure 9: Infrastructure evolution

NVFI with IaaS CaaS using IaaS resources Iaas and CaaS with evolved MANO Evolved CaaS
VNFs VNFs and cloud native apps VNFs and cloud native apps VNFs and cloud native apps
MANO MANO MANO MANO
Open stack Open stack Helm API Open stack Kubernetes Kubernetes
API Minimizing API CaaS Evolved API CaaS / Helm API Harmonizing / Helm API

IaaS operations IaaS MANO and IaaS CaaS "VIMs" and CaaS
impact BM CaaS evolved SDI
Hardware Hardware Hardware Hardware
8 Ericsson  |  The cloud native transformation

Management and
orchestration

Management and orchestration is a wide discussion topic in itself.

Here, we discuss the main benefit of using Kubernetes; the possibility
to delegate automation tasks to the container orchestrator.

There are two notable differences that
Kubernetes offers, when compared to
more traditional IaaS environments:
• The ability of Kubernetes to carry out contributes to simplicity – what used to be
end-to-end life cycle management for a complex workflow becomes practically
pods (which are the main building a specification of the desired state for
blocks of CNAs)
• The declarative approach by which own challenges where the Kubernetes
Kubernetes handles automation tasks
Compared to traditional VM orchestrators,
Kubernetes deals with containers and
pods as the main building blocks of a CNA,
and complements those with additional
essential services such as discovery or load
balancing. While a VM-based application
typically needs additional logic on top
of what is available in the Virtualized
Infrastructure Manager (that is, Open Stack)
to be able to manage the life cycle of an
application, some life cycle management
procedures can be delegated to
Kubernetes controllers.
Provided that the application is
developed according to the cloud native
design principles, and is decomposed into
functionally independent microservices,
Kubernetes can instantiate, terminate,
scale (based on KPIs) or even upgrade
these microservices. Even where
Kubernetes might lack in capabilities
by default (as, for example, life
cycle managing stateful services such
as databases), Kubernetes operators,
which are built specifically for a particular
microservice, can be used to bring the
necessary logic right into the
container orchestrator.
The main benefit in the telecom context
is reduced complexity at the higher levels
of the orchestration chain. The life cycle
of microservices, which comprise a CNA,
can be delegated to Kubernetes, its
built-in controllers, or custom Kubernetes
operators. This delegation allows the
higher-level orchestration to focus on the
smart composition of microservices into a
CNA, leveraging the intent-based API and
built-in automation of Kubernetes.
The declarative nature of the
intent-based Kubernetes API also
each microservice – but also presents its
operators and controllers constantly need
to ensure that the current state of the
microservice matches the desired state,
and take action if needed. To leverage
Summary
Our holistic strategy for the cloud
native transformation offers CSPs
the possibility of decreased time
to market combined with opex
reductions, along with a more modern
operational model where software
flows continuously from development
to production environments. The four
key aspects highlighted in this paper
are application design principles,
infrastructure evolution, processes and
ways of working and management and
orchestration.
Our strong recommendation is to
consider all four aspects as having
equal importance, in order to maximize
Application design principles, infrastructure, ways of working
and management and orchestration are equally important
the automation in the Kubernetes space,
it is essential that the higher-level
management systems provide enough
abstraction from the realization, avoid
low-level resource control and rely on
policies to influence the lower-level
controllers. It can be assumed that
higher-level orchestration systems
following an intent-based management
approach can effectively leverage
automation and innovation in the
Kubernetes layer.
the cloud native benefits in the
telecom context.
There is huge potential in industry
alignment for operational models,
processes, ways of working and
automated software pipelines, and
the suggested channels for these are
standardization and open source,
where vendors and operators can freely
collaborate and share specifications
and software components.
We are currently deploying
5G Core software that is built to be
fully cloud native, and are transforming
our existing digital services portfolio,
considering all four aspects of the
holistic cloud native strategy.

Ericsson
SE-164 80 Stockholm, Sweden
Telephone +46 10 719 0000
www.ericsson.com
Ericsson enables communications service providers
to capture the full value of connectivity. The company’s
portfolio spans Networks, Digital Services, Managed
Services, and Emerging Business and is designed to
help our customers go digital, increase efficiency and
find new revenue streams. Ericsson’s investments in
innovation have delivered the benefits of telephony
and mobile broadband to billions of people around
the world. The Ericsson stock is listed on Nasdaq
Stockholm and on Nasdaq New York.
www.ericsson.com
The content of this document is subject to 4/287 01-FGM 101 51
revision without notice due to continued © Ericsson 2020
progress in methodology, design and
manufacturing. Ericsson shall have no
liability for any error or damage of any kind
resulting from the use of this document