This year’s VMworld conference saw the announcement of VMware’s new
vCloud Director product, a culmination of the vision for the cloud computing
the company articulated last year and a significant step forward in providing
a true enterprise-grade cloud. This is virtualization 2.0—a major rethink
about how IT should deliver infrastructure services. VMware believes that the
secure hybrid cloud is the future of enterprise IT, and given their success
of late it is hard to argue against them.
vCloud Director (vCD) is interesting because it avoids the classic
virtualization metaphors rooted in the physical world—hosts, SANs, and
networks—and instead promotes a resource-centric view contained with the
virtual datacenter (VDC). vCD pools resources into logical groupings that
carry an associated cost. This ability to monetize is important not just in
public clouds, but for ... (more)
Cloud Security Journal on Ulitzer
Two weeks ago, I delivered a webinar about new security models in the cloud
with Anne Thomas Manes from Burton Group. Anne had one slide in particular,
borrowed from her colleague Dan Blum, which I liked so much I actually
re-structured my own material around it. Let me share it with you:
This graphic does the finest job I have seen of clearly articulating where
the boundaries of control lie under the different models of cloud computing.
Cloud, after all, is really about surrendering control: we delegate
management of infrastructure, application... (more)
I recently had a great, freewheeling discussion with Daniel Raskin, Sun’s
Chief Identity Strategist. Daniel runs the Identity Buzz podcasts. We talked
about issues in identity and entitlement enforcement in SOA, compliance, and
the problems you run into as you move into new environments like the cloud.
Daniel’s post about our podcast is on his blog. You can download the
podcast directly right here.
Security at Cloud Expo
Last week, the Cloud Security Alliance (CSA) released its Security Guidance
for Critical Areas of Focus in Cloud Computing V2.1.
This is a follow-on to first guidance document released only last April,
which, gives you a sense of the speed at which cloud technology and
techniques are moving. I was one of the contributors to this project.
The guidance explores the issues in cloud security from the perspective of 13
Domain 1: Cloud Computing Architectural Framework
Governing in the Cloud
Domain 2: Governance and Enterpri... (more)
You know that a technology has hit the mainstream when it appears in PCWorld.
Such is the case for cloud computing, a topic PCWorld considers in its recent
piece Amazon Web Services Sees Infrastructure as Commodity. Despite the
rather banal title, this article makes some interesting points about the
nature of commoditization and the effect this will have on the pricing of
services in the cloud. It’s a good article, but I would argue that it
misses an important point about the evolution of cloud services.
Of the three common models of cloud–SaaS, PaaS, and IaaS–it’s the
later, In... (more)