On the second Virtualization Security Podcast of 2011, we had Doug Hazelman of Veeam as our guest panelist to discuss backup security. Since most of backup security relies on the underlying storage security, we did not discuss this aspect very much other than to state that the state of the art is still to encrypt data at rest and in motion. What we did discuss is how to determine where your data has been within the virtual or cloud environment. This all important fact is important if you need to know what disks or devices touched your data which is an auditing requirement for high security locations. So we can take from this podcast several GRC and Confidentiality, Integrity, and Availability elements:
- Backup Integrity and Confidentiality State of the Art is Encryption of Data at Rest which is in many cases handled by the underlying storage security.
- Virtualization Backup tools can only track where data has been based on what it sees. Since data is contained within virtual disks generally, the Hypervisor is responsible for tracking a virtual disk’s location. Continue reading Knowing where your Data is: Backup Security
The question of how to manage virtualized environments as they scale up in size and complexity, and grow to host business critical applications (instead of just low hanging fruit tactical applications owned by IT) is clearly starting to get attention by larger vendors with serious ambitions in the virtualization performance management market. NetApp is acquiring Akorri, putting NetApp into a leadership position in Infrastructure Performance Management. Now SolarWinds acquires Hyper9. Continue reading SolarWinds Acquires Hyper9 – The Implications
I have started the year 2011 out by looking at some of the different monitoring solutions available for us to have an insight into the health and welfare of the systems that we support. In your typical monitoring solution you would install the monitoring server in your environment and let the system discover all the devices in your infrastructure and/or to control the licenses we would manually enter the devices that we want to monitor. Some of these monitoring servers solutions have to have a beefy box to begin with and all solutions will need a great deal of “tweaking” to control the number of false positives as well as time put in to be able to report on what exactly we care to be alerted about. Continue reading Monitoring from the Cloud
You heard the buzzwords and drunk the kool-aid and now you want to move to the cloud, how do you do this? This has been the a fairly interesting question on the VMware Communities Podcast yesterday, when the vCloud team showed up to talk about the current reference architecture. Yet almost all the questions were about going to the cloud and not about the architecture. Does this mean people do not understand what is required to go to the cloud? I think so. So to take a few elements from the podcast and put them in writing is the goal of this article. The Simple Steps to move to the cloud.
Continue reading Want to Move to the Cloud? Simple Steps
Wanova has today announced general availability of Mirage 2.0, the newest release of its distributed desktop virtualization platform. Mirage 2.0 is a significant milestone for Wanova, extending the platform from a limited scalability solution to a true enterprise-class platform, just in time for when is expected to be a year of rapid growth for desktop virtualization.
Wanova’s approach to desktop virtualization differs from many of the other vendors in this market who based their solutions on offering the ability to run the desktop workload in the data center. More significantly it also differs from other desktop virtualization vendors in that it does not depend on a hypervisor for its operation. Continue reading Mirage 2.0 extends Wanova vision to the enterprise
In my article entitled EMC VNXe Spurs Thinking Outside the Box I discussed the possibility of combining several EMC technologies to make a Forensic’s security appliance. This has spurred even further thoughts on this new and revolutionary approach to storage. The possibilities are pretty endless given the ability to ‘refactor’ physical components into virtual components that will run within the VNXe (and for that matter the entire VNX family of products). Granted, some of these ideas need to wait for devices that will work with the add on slot in the back of the VNX controllers: FC or FCoE anyone? But for what else can we use VNXe? Continue reading VNXe More than Just Storage