Small Business Virtualization: Growth Through the Ages

SMBVirtualizationAs a small business we run a 100% virtualized environment and looking to migrate to a cloud, but the investment in IT to do this has been pretty substantial and for a cash strapped small business can be a many year process due to budget constraints and immediacy of other business needs. That is the key to a small business, the immediacy of business needs, but if you can step back and do a little planning, any small business can proceed along the journey from a physical environment to a software defined environment. There are many choices available to a small business depending on when they started this journey, existing investment, and where they wish to go. What choices are available now for a small business and where should we go as small business owners? Continue reading Small Business Virtualization: Growth Through the Ages

API Security within the Hybrid Cloud

The hybrid cloud has 100s if not 1000s of APIs in use at any time. API security therefore becomes a crucial part of any hybrid cloud environment. There are only so many ways to secure an API: we can limit its access, check the commands, encrypt the data transfer, employ API-level role-based access controls, ensure we use strong authentication, etc. However, it mostly boils down to depending on the API itself to be secure, because while we can do many things on the front end, there is a chance that once the commands and actions reach the other end (cloud or datacenter), the security could be suspect. So how do we implement API security within the hybrid cloud today? Continue reading API Security within the Hybrid Cloud

Antifragile Systems: Designing for Agility vs. Stability

For many years, the focus in IT has been on building robust systems that invested heavily in avoiding failures. To accomplish this goal, methodical processes were implemented to guide IT through a list of known use cases so that systems could try to avoid failing and have a plan for recovery if a failure did occur. This approach often led to long delivery cycles and a high degree of complexity which in reality, increased the risk of failure and created fragile systems. Fragile systems are those systems that cannot adapt to unpredictable, volatile, and random events often referred to as “shocks to the system”. Continue reading Antifragile Systems: Designing for Agility vs. Stability

Rethinking Thin Clients from a Security Perspective

DesktopVirtualizationCorporate data is floating around on PC’s and laptops, sitting on cloud file-sharing platforms and being transmitted over email.  Laptops and mobile devices are sitting in the trunks of cars at the mall, being left in hotel rooms or lost in the backs of taxis.    Data has become as good as gold.  Credit Card numbers, Social Security numbers, architectural diagrams, marketing plans and source code – each a target for a particular thief.  And just like fine art and jewelry, there is a huge black market of data buyers.  Don’t think your competition wouldn’t want to get their hands on your customer accounts, price lists or intellectual property if they could. There are too many cases in recent history of massive data loss to think that this problem is something that can be easily fixed without changing the way employees get access and use corporate data. Continue reading Rethinking Thin Clients from a Security Perspective

Testing within the Virtual Environment

DataCenterVirtualizationThere has long been a debate about testing products within a virtual environment. Not just on how, but the why as well as the what to test. There are limits in some EULA’s as well on the reporting of such testing.  This was the subject of the 7/25 Virtualization Security Podcast (#112 – Virtualization Security Roundtable) held Live from NSS Labs in Austin, TX.  Where we delved into the issues of testing within a virtual environment. While the discussion was about security products, it is fairly straight forward to apply the concepts to other products within the virtual environment. Continue reading Testing within the Virtual Environment

The Benefits of Virtualizing Networking and Storage

DataCenterVirtualizationVMware, Microsoft, Red Hat, and Citrix have all successfully virtualized CPU and memory in their respective hypervisors. VMware is building a Software Defined Data Center with the intention of virtualizing networking and storage as well. Perhaps it is time to take a step back and think about what exactly it means to virtualize these various resources, and what benefits come from the virtualization of each one. Continue reading The Benefits of Virtualizing Networking and Storage

Cloud Computing News, Resources, and Analysis