Municipalities such as the City of Austin, Charlotte, and Chicago want to provide citizens with an easy way to pay for and manage mobility services like parking, tolling, transit, and micro-mobility (scooters, bikes, etc.). Passport provides a mobility platform and applications to these cities that power solutions such as the City of Austin’s Park ATX App, that allows drivers to perform transactions from their smartphones. Cloud architectures, such as Passport, often begin with the core AWS services like EC2, RDS, and S3. As AWS has expanded its offerings, the Passport architecture has evolved with it. Hear about how AWS is helping Passport modernize its architecture to power the cities and mobility needs of the future. Discussion will include: S3, DynamoDB, RDS, Lambda, API Gateway, S3 Data Lake, Serverless, Event Driven Architecture, and AWS Device Farm.

1. P U B L I C S E C T O R
S U M M I T
WASHINGTON, D C

2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Modernizing Architectures in AWS
to Drive Efficiency for Municipal
Mobility Services
Jason Hoog, AWS Senior Solutions Architect
Duncan Mapes, VP of Engineering, Passport
3 1 0 6 5 4

3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Welcome
INNOVATION ON AWS
WHAT IS PASSPORT
WHERE WE STARTED
ARCHITECTURE EVOLUTION
SCALING IS HARD
TARGET STATE ARCHITECTURE

4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
How AWS helps customers innovate
• 165 Services
• 1,957 features launched in 2018
• New services that remove undifferentiated heavy lifting
• Invent and iterate with flexible, scalable, secure AWS services

5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Passport is transforming mobility
management for cities, empowering
them to create more livable and
equitable communities.
Passport’s mobility platform enables
clients to digitally coordinate all modes
of transportation and implement
real-time, data-centric management
of their curbside and streetspace
through its enterprise software.
WHAT IS PASSPORT?

6. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
CUSTOMER GOALS – City of Austin
Digital Transformation
Improved Compliance
Reduced Congestion
Streamlined Operations
Lower Costs

7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
SOLUTION – Mobile Payments for Parking (Park ATX)
[talk about why Austin wanted
digital payments]

8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Initial Solution
• Standard LAMP Stack
• Single Amazon Relational
Database Service (Amazon
RDS) MySQL instance
• Amazon Elastic Compute
Cloud (Amazon EC2)
compute instances
• Dozens of self-managed servers
running Ubuntu
• Self-hosted RabbitMQ and Redis
• Crontab for scheduled jobs
• Elastic Load Balancers

9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
SUCCESS = Growth = More Traffic + New Products

10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
It quickly became too much

11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T

12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
OPINON / ADVICE: Embrace Managed Services
Identify the non-proprietary services you are running today
• Database
• Email sending services
• Queues
• Cache Layers
• Load Balancers & Gateways
• Container Hosts
• And many more…
Check if AWS provides a managed solution out of the box & evaluate
Hint: They probably do
Migrate to these services
Most of the time it will be straightforward, even if not, it is almost certainly worth it.

13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
RabbitMQ to Amazon Simple Queue Service (Amazon SQS)
• Pay for use
• Unlimited scale
• Highly Available
• Guaranteed delivery > FIFO

14. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Self-hosted Redis to Amazon ElastiCache
• Pay for use
• Simple, rapid scale
• Highly Available
• Simple configurations are sufficient

15. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Crontab to Amazon CloudWatch
• Centralized configuration
• Additional triggers from AWS resources
• RabbitMQ targets replaced with Amazon SQS targets
• Eventual migration to serverless…

16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
AWS Device Farm
• Needed ability to test on more devices
• Repeatable
• Test more, faster

17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Self-hosted SFTP to AWS Transfer
• Amazon Simple Storage Service (Amazon S3) Backed
• IAM Permissions Schema
• Serverless

18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T

19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Architecture Limitations
One Deployable Artifact
High Risk
Monolith Database
Shared Tables Across Teams and Products
Tightly coupled code and data
Shared Schemas
Not offloading data to long-term storage
Scaling is slow and limited
Cyclical Demand
Meet peak demand without waste

20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Challenges - Park ATX
Hundreds of Cities and
Operators
More complex rate structures
and zones
Multi-App Interactions
(exponential growth in load)
Dynamic Pricing
Powering Meter Rates

21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Challenge – Chicago Enforcement Integration
Parking enforcement in a large
city like Chicago is a complex
process.
Multi-source, multi-format
ingestion and aggregation at
low latency.

22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Challenge – Tolling / Connected Car /
IoT
GPS Based Tolling generates large
amounts of real-time data that
needs to be analyzed and
processed
Sensors data for occupancy
Connected Cars checking for
updates from the road

23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Scaling Challenge – Micro-Mobility
Ingesting Position Data for
MM
Analyze streams for
compliance
Provide Realtime Dashboards
Unknowns…

24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T

25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Architecture Principles
1. Leverage managed services
2. Design for serverless first
3. Build segmented microservices
4. Lean into event-driven Architecture
5. Make data a global asset
6. Follow a "zero trust" security model
7. Strive for centralized deployment

26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Serverless First
• API Gateway to manage REST endpoints
• AWS Lambda Compute
• Amazon DynamoDB for operational data stores
• Amazon S3 for object storage
• AWS Glue ETL
• Amazon Kinesis to enable event consumers
• Amazon Simple Notification Service (Amazon SNS) and SQS
for asynchronous microservice integrations

27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Segmented Microservices
• REST endpoints within Amazon API Gateway
• Light-weight Node.js AWS Lambda functions
• Amazon CloudWatch events for warming AWS Lambda's
• Custom authorizers to enforce API access controls
• Separate, isolated Amazon DynamoDB tables
• AWS Identity and Access Management (IAM) Policies restrict access to
Dynamo tables
• Amazon Aurora PostgreSQL or MySQL where DynamoDB doesn’t fit
(GeoSpatial)

28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Lean into Events
• Build event publication into each microservice
• Establish Amazon Kinesis Streams to support event-based integrations
with 3rd parties
• Leverage Amazon Kinesis Data Firehose to bundle and push event data
into Amazon S3 (Passports Data Lake)
• Use Amazon SNS and Amazon SQS to trigger asynchronous processing
between microservices where necessary

29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Target State application – Park ATX

30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Target State application – Chicago Part 1

31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Target State application – Chicago Part 2

32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Target State Application – Tolling / Connected Car / IoT

33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Target State Application – Micro Mobility

34. Thank you!
© 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T
Duncan Mapes
VP, Engineering
Passport
https://www.passportinc.com/

35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.P U B L I C S E C T O R
S U M M I T