The Virtualization Practice

Cloud Computing

Cloud Computing focuses upon how to construct, secure, manage, monitor and use public IaaS, PaaS, and SaaS clouds. Major areas of focus include barriers to cloud adoption, progress on the part of cloud vendors in removing those barriers, where the line of responsibility is drawn between the cloud vendor and the customer for each of IaaS, PaaS and SaaS clouds, ...
as well as the management tools that are essential to deploy in the cloud, ensure security in the cloud and ensure the performance of applications running in the cloud. Covered vendors include Amazon, VMware, AFORE, CloudSidekick, CloudPhysics, ElasticBox, Hotlink, New Relic, Prelert, Puppet Labs and Virtustream.

CloudComputing

There is a difference between outsourcing layers of your infrastructure and making the organization to whom you have outsourced those layers responsible for them, and losing all rights to change those layers in support of your business and application needs. Careful contract and product decisions need to be made in order to ensure that when you used a managed cloud service, you are not giving up the control you need to be agile and responsive to you business constituents.

CloudComputing

VMware’s Project Octopus and others like ownCloud and Oxygen Cloud have stirred some interesting ideas about Application Security. Those applications that make use of SSL, nearly every web application, can make use of secure data storage for certificate verification means. What makes SSL MiTM attacks possible, is mostly related to poor certificate management. If there was a way to alleviate the need for the user to be involved in this security decision, then SSL MiTM attacks would be significantly reduced.

ApplicationVirtualization

Numecent believe Cloudpaging has the potential to impact all connected devices where software needs to be delivered rapidly and securely. Cloudpaging isn;t just a fancy marketing term for a re-branded application virtualisation. Numecent have delivered a new application delivery technology that is poised to open up a new application delivery mechanism not only for enterprises, but for both ISVs and MSPs.

Speaking-at-RSAC-2012-small

The 3/8 Virtualization Security Podcast held a discussion on the happenings as the 2012 RSA Conference in San Francisco as well as a discussion of the features of Bitdefender’s entry into the virtualization and cloud space with their SVE product. RSA Conference high lights not just those security tools for the virtualization and cloud spaces but the entire industry and each year there is always a common theme. Was there one this year? Was there any surprises at the conference?

News: VMware Blows Away the Image – Launches vFabric Application Director

With vFabric Application Director, vFabric AppInsight and the rest of the vFabric product line we are seeing VMware’s application level strategy come to life. It is clear that VMware is making an enormous and strategic investment on this front, probably second only in priority to the continued investment in vSphere’s domination of data center virtualization. The combination of vFabric and vSphere also brings into clear focus the fullness of the VMware software stack, and the degree to which VMware seriously threatens established OS vendors like Microsoft and Red Hat.

Microsoft100x30

Windows Server 8 and Hyper-V 3 may blow up the entire rationale for EMC owning VMware. Cheap storage for virtualization enabled by new Microsoft features will force VMware to embrace cheap storage as well. This will precipitate the commoditization of the storage market, and accelerate the pace of virtualization and cloud computing.

VirtualizationSecurity

The Virtualization Field Day delegates joined the Virtualization Security Podcast as guest panelists on 2/23 and the topic of the day was cloud security. There were questions about compliance, security of the tenant, and security of the administrators, and legal issues. There were answers from Rodney Haywood (Rodos), another Virtualization Field Day Delegate and cloud architect as well as the podcast standard panelists. So what did the questions boil down to?