Christofer Hoff (@Beaker) and I had a short discussion on twitter the other day about the VMware Cloud Director (vCD) security guidance. We both felt it was a bit lite and missed the point of Secure Multi Tenancy. However, I feel even more strongly that people will implement what is in the vCD Guidance, vBlock Security Guidance, and the vSphere Hardening Guidance, and in effect have a completely insecure cloud. These three guides look at the problem as if they were singular entities and not as a whole.
I can remember, in what seems like a really long time ago, about the creation of a new company, Acadia, that will support the coalition of VMware, Cisco and EMC’s vBlock product. I had really long forgotten about the new company that was going to be formed when EMC really started their hiring blitz and campaign to get all the well known talent that EMC could get their hand on. That had been the news and buzz in the industry, as well as a nonstop twitter topic speculation about who was going to be the next person to enroll in Chad’s Army as a vSpecialist. It really appeared that the EMC crew was going to be in the best position to support and sell vBlock technology.
Anticipating the formal announcement was a widely leaked report that View 4.5 would ship without Virtual Profiles, the user profile management solution that VMware OEMed from RTO Software in fall 2009. VMware finally confirmed that the leak was correct on the first day of VMworld 2010, but even then held back from announcing its interim solution until after the formal product launch. Then rather than simply offer View customers a copy of Virtual Profiles as a standalone product, VMware chose instead to partner with Liquidware Labs to enable them to offer Liquidware Labs’ ProfileUnity to View customers at a substantial discount. While VMware’s position is that Virtual Profiles will ship with View 4.5 at some point in the future, the decision to offer ProfileUnity instead did nothing to address the concerns of potential customers, especially those who might finish up paying twice for a profile management system. The only good news for View customers is that ProfileUnity’s agent-less and database-less architecture should make the future migration to Virtual Profiles a simple matter when the time comes to move.
There used to be a FedEx commercial that had a saying “when it just has to be there overnight”. What if we did a play on words and changed the saying to work with Fault-Tolerance and or High Availability. The saying would be something like “when it just has to remain running overnight”.
How can you run IE6 in a Windows 7 or a Windows 2008 environment? Looking at how to use desktop and presentation virtualization in comparison to application virtualization to deliver choice and options to your users in the desktop environment
What seemed like forever to get here was over in a blink of an eye. VMworld 2010 in San Francisco was once again an incredible event with over 17,000 people in attendance. Now that I have had a little time to reflect on the past week, I wanted to share my thoughts on the week and the event itself. The weather in San Francisco was unseasonable warm for San Francisco standards during the event but as a person from Florida who enjoys warmer weather the temperature for me was absolutely wonderful. I arrived in town on Sunday afternoon and enjoyed taking advantage of the power of twitter from the San Francisco Airport. Once I landed I sent a tweet out to see who else may have landed and who might want to share a cab to the hotel. Denis Guyadeen (@dguyadeen) responded right back and once we grabbed are luggage we were off and on our way.
Virtualization Security was one of the BIG Deals at VMworld with several announcements:
* VMware vShield Edge, App, and End Point
* Trend Micro will have the first product making use of vShield End Point
* Cisco Virtual Security Gateway (VSG)
* HyTrust and their growing list of technology partners
But the biggest news is that Virtualization Security is finally on the radar of most if not all C-level as it is now seen as the gate to entering the cloud. But before we can solve the cloud security issue we have to solve the virtualization security issues. VMware’s announcement has the most impact on the virtualization security ecosystem. At once they are competing head-to-head with some vendors while providing a platform to use for other vendors.
Nearly everyone I talked to at VMworld was buzzing in some form about Virtualization Security. Everyone has picked up on the pre-show buzz from VMware, Trend Micro, HyTrust, and every other security vendor. This week will tell. There are announcements about security, keynote sessions that include security, and more than a few sessions about security.
This is also arguably the first VMworld where there are a large number of Virtualization Security sessions and panels at VMworld that are not entirely from VMware. I find involving the industry as they have at this specific conference moves forward the entire virtualization security ecosystem.
The week that all of us virtualization junkies have been waiting for has finally arrived. In case you are not sure what I am talking about, it is VMworld 2010 at the Moscone Center in San Francisco California. The weather for me is a little cool with the wind but then again I am from Florida so it does not take much for me to think it is cool. The sun is shining and the place is packed. All and all a great start for this event.