The Virtualization Practice

When you read many blogs and articles on cloud security, writers such as myself often mention jurisdictional issues as a big problem. Nor is the ability to Audit clouds the only problem. Yet both of these are huge issues for clouds today, but fundamentally, is the cloud flawed from a security point of view or are there plenty of security mechanisms available?

One of the questions I get from time to time is, can I store my data in the cloud? At the NEVMUG, this came up once more. There is currently a lot of uncertainty about cloud storage, specifically when it comes to critical and highly regulated data. Where should I store my data, dovetails nicely with discussions of going to the cloud as well as data protection is a key component of such a migration.

The answer is to dramatically narrow the scope and set of enforcement actions for SOPA and PIPA so that they target just offshore sites engaged in large scale commercial piracy and so that the existing safe harbor for sites that take content from users is both maintained and formally recognized as an exception to the scope of SOPA and PIPA. This will ensure that law enforcement can go after the really bad actors, and that the many good and useful sites and are the basis of the “good Internet” are not collateral damage in these enforcement efforts.

I was discussing yesterday how to use virtualization and cloud performance management tools as an early warning system for security issues. I have touched on use of New Relic, VMware vFabric APM, Quest vFoglight, and other tools that can make up such a early warning system before, but without the proper process in place, the tools will not be good enough.

News: Virsto introduces new virtual storage options for VMware and Hyper-V

The virtual storage market is hotting up with Virsto Stoftware’s announcement of two new products for release Tuesday, January 17th. Following on from its June 2011 acquisition of EvoStor and building on its existing Virsto for VDI platform, Silicon Valley-based Virsto Software has made good on its investment by announcing the release of Virsto for vSphere.

At the end of last year and the beginning of this year the Virtualization Security Podcast featured two very different guest panelists to discuss cloud security, policy, and compliance: Phil Cox, Director of Security and Compliance at RightScale, joined us for the last podcast in 2011 and the George Gerchow of VMware’s Policy and Compliance Group, joined us for the first podcast of 2012. We asked is the public cloud ready for mission critical applications. The answer was surprising. Have a listen and let us know your thoughts.

Whatever your enterprise desktop issue – VDI is often hailed as the answer. But a remote desktop is not always available anytime, anyplace, anywhere. More importantly, a VDI infrastructure is complex and expensive to deliver. Virtualisation will certainly play a major part in the next generation desktop: but does that next generation desktop have to be hosted and run in a datacentre? A client hypervisor can solve the issues that are inherent for many applications and use cases when you take the compute power away from the end-device and try and put it back in the data centre?