[Most Recent Entries] [Calendar View]
Friday, April 1st, 2016
- The largest reported attack in 2014 was 400Gbps, with other large reported events at 300, 200 and 170Gbps with a further six respondents reporting events over the 100Gbps threshold. Ten years ago, the largest attack was 8 Gbps.
- Firewalls and IPS devices continue to be targets for attackers. According to the report, over one third of organizations had firewall or IPS devices experience a failure or contribute to an outage during a DDoS attack.
- Security incidents are up but enterprises are not fully prepared to respond. The report points out that just over one third of respondents indicated an increase in security incidents this year, with about half indicating similar levels to last year. 40 percent of respondents felt reasonably or well prepared for a security incident, with 10 percent feeling completely unprepared to respond to an incident.
- Cloud and VM-level security. Imagine scanning a VM siting on your hypervisor for malicious code, malware, viruses, and other security holes. Now, imagine doing so without actually deploying any client. VM-level security means direct integration into the hypervisor layer. Furthermore, you increase the performance of your virtual machines without having to sacrifice levels of security. At the very basic level – you are now creating a very powerful cloud security methodology by allowing your VMs to directly integrate with your security solution. When working with cloud – always ensure that your network and data points are all secure. At the VM level, you can create access control policies which scale between on premise and cloud systems.
- Cloud means multi-tenancy, services, user experiences and management. Remember, cloud also means being ready for some high levels of multi-tenancy. Your virtual infrastructure must support a large number of users all sharing resources. This is why when it comes to cloud security, virtual machine and resource isolation and control is critical. Based on policies and configuration templates – you’re able to segment your hypervisor as well as you VMs to better control the flow of data throughout your cloud. Furthermore, you can control data delivery as well as QoS based on the classification of the workload. This level of flexibility also creates integrated security which allows you to better control a variety of data sets and applications. The most critical point to remember here is that security within cloud is not a unilateral solution. Rather, effective cloud security is a collection of security tools impacting various cloud use-cases.
- Enforcing compliance and security for your cloud. What if you could enforce PCI-DSS, HIPAA and Sarbanes-Oxley compliance all from one management plane – all for your own cloud environment? You can now integrate on premise resources with a respective cloud ecosystem. However, make sure your cloud provider is up to par when it comes to hosting compliance and regulation workloads. Specific providers have, for example, signed their business associate agreements (BAA) to be able to process protected healthcare (PHI) information. Others have created powerful ecommerce gateway platforms for PCI-compliant workloads. Compliance aside, your cloud will require advanced levels of security and management. Security technologies are capable of controlling virtual machines, application and resource security attributes, and the virtual networks they are utilizing. This translates to a lot of granular control – all from one management plane.
| Time | Event |
| 12:00p | Friday Funny: Are These Cabinets Too Tall? You sure these are tall enough? Here’s how it works: Diane Alber, the Arizona artist who created Kip and Gary, creates a cartoon, and we challenge our readers to submit the funniest, most clever caption they think will be a fit. Then we ask our readers to vote for the best submission and the winner receives a signed print of the cartoon. Submit your caption for the cartoon above in the comments. Congratulations to Todd, whose caption won the Server Refresh edition of the contest. His caption was: “Ok, so ‘Simon Said’ hold 17 servers, stand on one leg and sing the ‘Big Bang Theory’ theme song. What should I have him do next?” Some good submissions came in for last month’s St. Patrick’s Day edition – all we need now is a winner. Help us out by submitting your vote below!
For previous cartoons on DCK, see our Humor Channel. And for more of Diane’s work, visit Kip and Gary’s website! |
| 3:00p | Top 10 Data Center Stories of the Month: March 2016 Here are the most popular stories that ran on Data Center Knowledge in March: ASHRAE Strikes PUE from Data Center Efficiency Standard Draft – The society is no longer proposing the use of PUE to set data center efficiency standards in a new standard document that’s currently in the works. White House Orders Federal Data Center Construction Freeze – US government agencies are no longer allowed to build or expand data centers unless they prove to the Office of the Federal CIO that it’s absolutely necessary. Moving Away from AWS Cloud: Dropbox Isn’t an Anomaly, and Here’s Why – As Amazon Web Services was blowing out the candles on its 10th birthday cake, AWS customer Dropbox was not afraid to be a bit of a party pooper.  Drew Houston, Founder and CEO of Dropbox, in conversation with Laurie Segall from CNN on the center stage at the 2014 Web Summit in November 2014 in Dublin, Ireland. (Photo by Tristan Fewings/Getty Images) Merger of Two Healthcare Giants Makes IT Transformation Inevitable – How do you scale your IT infrastructure to three times its capacity while your budget stays about the same? Google Contributes 48V DC Data Center Rack to Open Compute – The company said it will contribute a spec for a data center rack with 48V power distribution and a new form factor that will enable OCP racks to fit into Google data centers.  Urs Hölzle, senior VP of technical infrastructure at Google, speaking at Open Compute Summit 2016 How Juniper IT Went from 18 Data Centers to One – Most applications were moved to cloud services of all flavors: Infrastructure-as-a-Service, Platform-as-a-Service, and Software-as-a-Service; public and private.  Photo: Juniper Networks Facebook Data Centers: Huge Scale at Low Power Density – Many data center industry experts predicted several years ago that the overall amount of power per rack is going to grow in data centers – a forecast that for the most part has not materialized.  Jason Taylor, Facebook’s VP of infrastructure, speaking at the Open Compute Summit in March 2016 in San Jose, California (Photo: Yevgeniy Sverdlik) LinkedIn Adopting the Hyperscale Data Center Way – LinkedIn’s need for scale has never been higher than today, and the social networking company is adopting a lot of the same approaches to building hyperscale data center infrastructure companies like Google, Facebook, and Microsoft have been using.  LinkedIn headquarters in Mountain View, California. (Photo by Justin Sullivan/Getty Images) Why Google Doesn’t Outsource Data Center Operations – Only 15.4 percent of incidents at Google data centers were caused by human error over the past two years, according to the company’s top data center exec.  Joe Kava, Google’s VP of data center operations, speaking at the company’s GCP Next 2016 event in San Francisco (Source: video by Google) Why Data Center Managers Should Care about DevOps -Even if you aren’t providing cloud services as an IT organization, your customers, be they marketing directors or developers, generally expect you to provide services the way a cloud provider would. Stay current on data center news by subscribing to our daily email updates and RSS feed, or by following us on Twitter, Facebook, LinkedIn and Google+. |
| 11:47p | Considerations When Creating a Secure Cloud Environment
There is a definite change in the cloud security world. Organizations are deploying more cloud platforms to support an ever-growing user base. Still, the big question revolves around security – and how to protect critical data points. Let’s start here – over the past few months, there have been more DDoS attacks against more IT infrastructures all over the world. These attacks have evolved from simple, volumetric attacks to something much more sophisticated. Now, attackers are using application-layer and HTTP attacks against certain targets within an organization. Consider this – DDoS attacks are larger than ever. Arbor Networks 10th annual Worldwide Infrastructure Security Report illustrates this point very clearly. So how can you secure your critical virtual machines? What can you do to create a multi-layered security approach from your private cloud platform? The secret to security could revolve around your hypervisor – the gateway to a private cloud. When it comes to deploying a cloud, your hypervisor aggregates resources, virtualizes critical components, and delivers powerful features to the virtual machine. So why not integrate your security platform directly into the hypervisor layer? A great way to ensure security moving forward is to deploy a next-gen security model directly into your cloud architecture. With this type of integration, you get performance benefits, greater visibility into the on premise as well as cloud environment. Most of all – you get centralized security management for all hosts. Ultimately, you gain proactive management capabilities around your very important cloud architecture. This article first appeared at http://www.thewhir.com/web-hosting-news/c |
| 11:59p | Ceph Open Source Storage Powers Red Hat and SanDisk Partnership  By The VAR Guy Open source distributed storage is bringing Red Hat (RHT) and SanDisk (SNDK) together. The companies announced a partnership this week to deliver an integrated storage solution based onCeph, the scale-out storage platform. Ceph is an open source storage platform designed for building file systems that stretch across a number of servers. Developed by Inktank, it came under Red Hat’s direction when Red Hat acquired Inktank in 2014. Red Hat subsequently developed an enterprise storage platform, Red Hat Ceph Storage, which combined Ceph with the company’s GNU/Linux distribution. But Red Hat hadn’t done much else with the product until it announced the SanDisk partnership this week, which represents the company’s first big channel play surrounding Ceph. Through the partnership, SanDisk will offer Red Hat’s Ceph product as part of the SanDisk InfiniFlash storage system. The goal is to provide a high-performance storage solution that works with commodity hardware — which is exactly what Ceph is designed to do. “The combination of open, software-defined storage from Red Hat and flash storage from SanDisk enables companies to serve a broad set of workloads with more tightly integrated, high-performing storage that scales,” Red Hat says. The news builds upon SanDisk’s efforts to increase its engagement with the open source ecosystem. The company, which has previously not had a major presence in the open source space, announced contributions to the Ceph project last March. The takeaway for the channel is that open source storage solutions designed for clusters and the cloud are now entering primetime, with big-name enterprise support backing them up. Ceph still has a ways to go to become the dominant storage platform in this market, but the Red Hat and SanDisk partnership suggests it is gaining ground. This post was originally published at: http://thevarguy.com/open-source-applica |
| << Previous Day |
2016/04/01 [Calendar] |
Next Day >> |