Application hosting services at a glance
Learn about the hosting service options offered, enabled and managed by the Office of the Chief Information Officer (OCIO) with the B.C. government.
Last updated on
Application hosting services options
As a product owner, you can use this guide to help you and your team choose the best hosting platform for your product.
Each service has unique capabilities and features that create a secure and compliant environment for digital service hosting.
- The Data centre classic on-prem hosting offers traditional managed hosting services for virtual and physical systems. It supports various operating systems and technologies
- The Private cloud OpenShift platform combines on-premise and cloud benefits. It offers managed services on dedicated hardware for control and flexibility
- The Public cloud Amazon Web Services (AWS) Landing Zone uses AWS hardware. It provides scalable, on-demand computing services accessed through the internet with a secure, pre-configured environment
Notes:
- Only services that are managed by OCIO are listed
- If you’re considering the adoption of ready-to-use, subscription-based software, visit Software as a Service (SaaS)
- Contact the OCIO Enterprise Architecture team at citzas@gov.bc.ca if you need guidance
What geographic region is this service provided from?
B.C. government’s data centres in Kamloops, B.C. and Calgary, AB
B.C. government’s data centres in Kamloops, B.C. and Calgary, AB
Amazon data centre in Montreal, QC (work is underway to enable access to the Amazon data centre in Calgary, AB)
What type of hosting environment does this service offer?
Learn more about hosting environments on technical terms explained
Virtual machines and physical hardware
Containerized
Focused on containerized and serverless
What’s the highest data classification this platform can host?
What level of infrastructure support and monitoring is available for the hosting service?
Review the responsibility model for more details
- Client infrastructure default support are weekdays from 9:00 am to 5:00 pm Pacific time, excluding statutory holidays. More information
- Extended 24/7 support is available for an extra fee
- Data centre support is 24/7
- Client infrastructure support addressing non-critical platform issues and maintenance is available weekdays from 9:00 am to 5:00 pm Pacific time, excluding statutory holidays. More information about support responsibilities
- OpenShift platform and critical services (Artifactory and Vault) support is available 24/7
- Client infrastructure support is available weekdays from 9:00 am to 5:00 pm Pacific time, excluding statutory holidays. More information about support responsibilities
- AWS Infrastructure is supported by the vendor via AWS Enterprise Support and it is available 24/7
How elastic is this service? Can it scale up to meet increased demand?
Learn more about elasticity on tech terms explained
Low
Computer resource must be pre-purchased to be available
Medium / High
Elasticity ensures that a project can scale its resource usage up to the maximum allowed by the project resource quota
Learn more about OpenShift project resource quotas
High
Elasticity can scale as needed, limited only by the product budget
Learn more about AWS Landing Zone
What technical training is available?
The vendor offers both complimentary and paid training, not specific to the B.C. government’s implementation
B.C. government’s internal training specific to the B.C. government’s implementation
The vendor offers both complimentary and paid training, not specific to the B.C. government’s implementation
What additional services are available?
Learn more about these services on tech terms explained
- Software Defined Network
- S3 Object Store
- Software Defined Network
- S3 Object Store
- AI/ML
- Security tools
- Checkpoint CSPM
- All AWS IaaS/PaaS services available in Canada central region (ca-central-1) and United States east coast (us-east-1). Does not include Marketplace services
What is the process for procuring third-party software licences for additional software that ministries may want to install in a hosting environment?
- Corporate Software Asset Management (CSAM)
- Self-procurement
- Corporate Software Asset Management (CSAM)
- Self-procurement
- Corporate Software Asset Management (CSAM)
- Self-procurement
Internal and external expertise availability
High
Extensive expertise within OCIO
High
Extensive expertise within OCIO
Medium
OCIO is developing expertise to support clients
Recommended technical skillset
- Server administration
- Security operations
- Technical architecture
- Application development
- Database administration
- DevOps
- Full-stack development
- Site reliability engineering
- Security operations
- Database administration
- DevOps
- Full-stack development
- Site reliability engineering
- Security operations
- Technical architecture
- Network and infrastructure operations
- Database administration
What amount of support is assigned to a product team?
Review shared responsibility model
Review shared responsibility model
Review shared responsibility model
Notes for the hosting services table:
* The OCIO is responsible for the operations and security of the hosting service.
** Hosting service’s ability to meet security, compliance, reliability and support needs of ministry business mission critical applications.
Shared responsibility model
The responsibilities are divided among ministry teams, service providers and the OCIO when hosting applications in each of the hosting environments.
Information technology (IT) management responsibilities vary across hosting and cloud models. Some vendors handle IT management, while others require you to manage it. Not all providers agree to the same terms, which makes procurement challenging.
Everyone in the organization must understand their roles and responsibilities for successful cloud adoption. This includes business, procurement, compliance and technology departments.
User identity
OCIO
OCIO
OCIO
User access
Ministry
Ministry
Ministry
Data
Ministry
Ministry
Ministry
Application
Ministry
Ministry
Ministry
Application storage configuration
Ministry and OCIO
Ministry
Ministry
Application network security
Ministry and OCIO
Ministry
Ministry
Application vulnerability management
Ministry and OCIO
Ministry and OCIO
Ministry
Network configuration for example: Load balancers, core network
OCIO
Ministry and OCIO
Ministry and OCIO
Infrastructure
OCIO
OCIO
Service provider
Physical
OCIO
OCIO
Service provider
Notes for the shared responsibility model table:
* Only applies to virtual machines.
Technical terms explained
These technical terms are listed in the applications hosting services options table.
Hosting environment definitions
Choosing the right hosting environment for your application is important because it affects your application’s performance, scalability and maintenance.
- Virtual machines are software-based simulations of physical computers that let you run multiple applications on a single server. This offers flexibility and isolation
- Physical hardware provides dedicated resources for your application. This ensures consistent performance and control. This option is ideal for high-demand or sensitive applications
- A containerized environment packages your application and its dependencies. This allows it to run consistently on any system and reduce compatibility issues. It also makes it easier to move your application between environments and scale it as needed. It allows your team to develop, test and deploy more efficiently. Ultimately, this enhances the overall stability and performance of your application
- A serverless environment lets you run your code without managing servers. It automatically grows or adjusts as needed without requiring additional setup. This environment is suggested for variable workloads
Elasticity definition
Elasticity in hosting means the ability to automatically increase or decrease the resources based on demand. For example, it can add computing power, storage or memory when needed, and reduce them during slower times to save money.
This flexibility is important for applications that experience high, sudden demand, but may not be as important for applications with more consistent demand.
Service definitions
These additional services enhance your hosting platform’s capabilities.
- Software Defined Network (SDN) uses software to control data flow over a network, unlike traditional networks that rely on hardware connections. SDNs are more flexible and secure. They’re essential for running virtual environments like virtual machines, containers and serverless hosting. They improve network management and make it easier to control and optimize traffic
- S3 Object Store is a flexible, scalable and cost-effective way to store files that don’t change often. It’s ideal for storing photographs, email attachments or database backup files. It offers scalable storage for large amounts of data. However, it’s not suitable for live database files or files used regularly for collaboration. The OCIO offers an S3-compatible Object Storage service called Dell Elastic Cloud Storage
- Artificial Intelligence/Machine Learning (AI/ML) services encompass a wide range of computer applications that enable advanced analytics and automating tasks. Many types of AI exist, but the most common and popular type of AI right now are Large Language Models (LLMs), such as ChatGPT
- Security tools are tools for securing applications. For example, HashiCorp Vault for managing encrypted secrets, Artifactory for handling development artifacts and RedHat Advanced Cluster Security for active pod security scanning on OpenShift. These tools ensure robust security measures across development environments
- Checkpoint CSPM stands for Cloud Security Posture Management. This is a security tool offered by Checkpoint to analyze and strengthen security against threats
- AWS IaaS/PaaS refers to Amazon Web Services Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) offerings in Canada’s central region (ca-central-1) and the United States’ east coast (us-east-1)