The Virtualization Practice

While looking on twitter this morning I discovered a tweet that pointed to the following article, which is relatively devoid of details but none-the-less extreme interesting to those who follow virtualization security: Fired techie created virtual chaos at pharma company. This article points out an external attack that lead to management access of a virtual environment. Now we do not know if the attack was using antiquated credentials or some other means. But what we do know is that VMs were deleted by an external source that used to be a former employee. Hoax or not, this is a very serious issue brought to light.

Like a new college student, fresh from the flush of new found freedom to expand their horizons, Citrix appear to have had a case of the munchies. First Citrix’s portfolio was extended with the acquitisition of Kaviza. More recently, the purchase of RingCube. The desktop virtualisation techhnologies acquired will help strengthen Citrix’s virtualised desktop offering. VDI-in-a-box offering simplicity of deployment, providing options for the SMB and MSP spaces; and vDesk providing a layering functionality giving greater VDI scalability with an improved personalisation offering.

On the 7/28 Virtualization Security Podcast, we were joined by Robert Martin of Mitre to discuss Mitre’s new CWE, CWSS, and CWRAF tools to aid in software and system security evaluation. We put a decidedly cloud based discussion around these tools to determine how they would be used by those that program within a PaaS environment, make use of SaaS, or other cloud services.

vSphere 5 Licensing – The Role of Cross Platform Management Tools and the Hotlink SuperVISOR

So you are a loyal VMware customer. You have licenses for vSphere 4 and you are about 40% virtualized. Based upon the revised vRAM entitlements in the revised vSphere 5 licensing, you think you are going to be OK as you progress through the more demanding business critical purchased and custom developed applications that lie in front of you. But you would like a hedge and a simple way to manage the second hypervisor that is a part of that hedge. Help has arrived.

VMware view to release RTO profile solution. Is this lagging behind Citrix who have bought Ringcube? View now has profile management – but that isn’t user virtualisation. Does VDI need User Virtualization, or does User Virtualization need VDI? User Virtualization has the capacity to extend across desktop delivery boundaries because the user workspace, their applications and data are no longer bound to the desktop OS. Solutions available from vendors such as AppSense, UniDesk and RES. To deliver virtual desktops for the enterprise, it is not simply a case of managing profile load time better: many users need greater customisation than a shared desktop can deliver. In an enterprise environment VDI is not the only method of delivering desktops. A complete user virtualization solution needs to be able to accommodate, not only centralised hosted desktops, but off-line use as well and standard desktops.

Windows boot IO and storage performance impact on VDI

With Virtual Desktop Infrastructures (VDI) initiatives adoption being a popular theme associated with cloud and dynamic infrastructure environments a related discussion point is the impact on networks, servers and storage during boot or startup activity to avoid bottlenecks. VDI solution vendors include Citrix, Microsoft and VMware along with various server, storage, networking and management tools vendors.

A common storage and network related topic involving VDI are boot storms when many workstations or desktops all startup at the same time. However any discussion around VDI and its impact on networks, servers and storage should also be expanded from read centric boots to write intensive shutdown or maintenance activity as well.

Over the last few months we have identified a trend towards “diversity” in the PaaS provider marketplace. Platform as a Service has become Platforms as a Service, the providers are offering multiple choices at each layer of the platform infrastructure, and seeing their role as automating the provisioning of properly-configured instances as required at each layer of the stack.

On Aug 2nd, there was another entrant to this “diverse” PaaS provider marketplace called Cumulogic, a startup with a PaaS cloud positioned alongside Red Hat OpenShift and VMware CloudFoundry that we identified earlier.

Trend Micro: Info Graphic on Journey to the Cloud

Trend Micro provided us a very interesting info graphic on a Journey to the Public Cloud with a list of which of their tools secure that Journey. What is interesting about this info graphic is the steps outlined in this journey to the Cloud and the threats and issues as you step along this path. These steps are well thought out and are useful to everyone as they look at their virtualization and cloud security options moving forward.