It is the start of 2011 and I hope everyone has not broken their New Year’s Resolutions already. To start the year off, I would like to encourage and or challenge you to become a part of your local VMware User Group or VMUG as we like to call it. Last year I did a post on My Experience with VMUGs and I am a full supporter of this program and the good it can bring. Although I have a bias for the VMUGS over other types of user groups, the concept of people helping people rates high in my book and I would like to challenge you all to get involved.
When we think of the threat to a virtual environment or the cloud, what do we think about? First it is important to understand how the cloud is layered ontop of the virtual environment. Given a cloud stack, where are the entry points for SaaS, PaaS, IaaS, and Cloud management? At the recent Minneapolis VMUG I attempted to relay that information to the attendees. Once we understood the layers we could then concentrate on the threat vectors to the cloud and virtual environment.
Cloud Computing will rely upon adequate Internet bandwidth being available to ensure that users of cloud computing services have an acceptable end user experience, and that providers of these services can promise that acceptable experience to their customers. The Internet needs a funding model that ensures that the right capacity is available to the applications (cloud services) that need it. We face a choice as to whether or not FCC regulation will help or hurt the progress towards the correct funding (and ultimately payment for Internet services model). Choosing incorrectly may severely inhibit the growth of Cloud Computing services due to confusion over bandwidth and pricing decisions.
It is the last few days of the year and time for a review of virtualization 2010. Although VMware was founded in 1998 it was not until 2001 that I first heard of VMware and played with the workstation product to be able to run different flavors of Linux. So for me, 2010 closes out a great year in virtualization as a whole as well as a decade of virtualization and what a ride it has been.
My conference schedule kept pace with the changes in the virtualization security ecosystem through out the year. What are those changes? This is the end of year review of the virtualization security ecosystem.
Implementing IT as a Service requires a virtualization platform, and virtualization aware configuration and change management, secure multi-tenancy, provisioning and lifecycle management, orchestration and automation, and service catalog. These capabilities are available from VMware, DynamicOps, Embotics, Eucaplyptus, ManageIQ, newScale, Quest, rPath and Reflex Systems.
Open Source continues to be an important part of the mix in Virtualization and Cloud. Indeed, this year has seen major developments in established players at the Operating System and Hypervisor level, as well as a major new cloud entry at the IaaS cloud layer.
In the last Virtualization Security Podcast on 12/16 we had with us James Urquhart who manages cloud computing infrastructure strategy for the Server Provider Systems Unit of Cisco Systems. Author of the popular C|NET Network blog, The Wisdom of Clouds. James shared with us some of his Wisdom over the hour. The discussion covered what is preventing people from Entry into the Cloud and why private and hybrid clouds are going to stick around for quite a while and are not a passing fad. We answered the question of why people are reluctant to enter the cloud.