Skip to main content

Guidelines for Using Lifecycle with SBOMs for Monitoring

Sonatype Lifecyle can be used to analyze SBOMs associated with applications. The following sections provide general guidelines for hardware requirements for an IQ Server instance based on the magnitude of the application workloads.

Assumption: One SBOM per application.

Application Workloads: 1,000 to 40,000 applications

Running Sonatype IQ Server on 1 node with external Postgres database.

Sonatype IQ Server: 1 node at c5.4xlarge instance (Amazon EC2)

Postgres Database: db.m5.4xlarge (Amazon RDS)

Network Bandwidth: 10 Gbps

Generic Hardware for AWS Instances:

Instance

CPU

Memory

Disk Bandwidth

c5.4xlarge

16 vCPU

32GB

4,750 Mbps

db.m5.4xlarge

16 vCPU

64GB

4,750 Mbps

Application Workloads: 50,000 applications

Running Sonatype IQ Server on 2 nodes using the High Availability (HA)/multi-node architecture.

Sonatype IQ Server: 2 nodes at c5.4xlarge instance (Amazon EC2)

Postgres Database: db.m5.4xlarge (Amazon RDS)

Network Bandwidth: 10 Gbps

Generic Hardware for AWS Instances:

Instance

CPU

Memory

Disk Bandwidth

c5.4xlarge

16 vCPU

32GB

4,750 Mbps

db.m5.4xlarge

16 vCPU

64GB

4,750 Mbps

Application Workloads: 500,000 applications

Running Sonatype IQ Server on 10 nodes using the High Availability (HA)/multi-node architecture with very large database memory (VLDB).

This recommendation is based on:

  1. Evaluating 500K applications evaluated within 24 hours, in continuous-monitoring mode

  2. Internal assessment of large data sets using continuous monitoring, and multithreaded configuration.

Sonatype IQ Server: 10 nodes at c5.4xlarge (Amazon EC2)

Postgres Database:db.m5.16xlarge (Amazon RDS)

Network Bandwidth: 10 Gbps

NOTE: The Postgres Database would require a high memory cache size. We recommend using a multi-node database (via a database provider).

Generic Hardware for AWS Instances:

Instance

CPU

Memory

Disk Bandwidth

c5.4xlarge

16 vCPU

32GB

4,750 Mbps

db.m5.16xlarge

16 vCPU

256GB

13,600 Mbps