Beruflich Dokumente
Kultur Dokumente
WORLD
Issue 1 August 2014
The cloud:
OpenStack builds
momentum
Understanding cloud
load balancing
Why planning should be central to your cloud adoption process
Launch Partners
ARE YOU ON
CLOUD NINE?
Could you too unlock savings from your critical environment? Speak to our Data Centre Solutions team today.
Looking towards an open source cloud future - cost cutting without service reduction
Launch Partners
Why planning is essential when it comes to the cloud Publisher & Managing Director:
Ian Titchener
32
Editor: Steve Gold
Journey to the cloud: challenges posed by security Production Manager: Rachel Titchener
How the cloud brings challenges, as well as benefits Advertising Sales: Bob Handley
Reprographics by Bold Creative
36 Security questions to ask your cloud provider The author and publisher, and its
officers and employees, do not
Reducing security risk with due diligence accept any liability for any errors
that may have occurred, or for any
reliance on their contents.
40
no responsibility for any inadvertent
Taking your first steps into the cloud misuse that may occur.
44
must not be reproduced in any
Will Linux cause problems with load balancers? medium. All rights reserved.
How next-gen Linux containers could cause problems Cloud Computing World stories,
news, know-how?
CLOUDCOMPUTING 3
FOREWARD
Hello everyone,
Steve Gold
Editor - Cloud Computing World
4 CLOUDCOMPUTING
Storage performance up to 30 times faster
than leading cloud providers
CCWNEWS
All the key news in the world of cloud.
Please dont forget to check out our Web
site at www.cloudcomputingworld.co.uk
for a regular weekly feed of relevant news
for cloud professionals.
A
ttix5, the data protection software CIX customers will gain access to CSPs on-going strategy to provide cloud
specialist, has taken the wraps off Hibernias Project Kelvin network. Project infrastructure services to support business
DynamicRestore, an instant cloud- Kelvin is an extensive submarine and growth initiatives.
based disaster recovery platform. The new terrestrial cable deployment that directly The new US node brings our total cloud
service is billed as providing users with connects Northern Ireland to North America presence up to seven distinct locations
immediate recoverability in the event of a and Europe. throughout the United States, Europe and
loss of critical servers and data. The sub sea cable comes ashore at Asia Pacific and will enable customers
According to Luv Duggal, Attix general Portrush, Northern Ireland and connects operating across multiple geographic
manager, DynamicRestore is guaranteed to Hibernias terrestrial fibre optic ring locations, including the US, to quickly and
to increase the efficiency and delivery of consisting of over a dozen Irish towns and efficiently realise the benefits of enterprise
business continuity and disaster recovery. cities, providing local and global commerce cloud services on their global operations,
Lost servers or data, he says, can have opportunities between the island of Ireland he said.
dramatic cost-implications for businesses and the rest of the world.
when they are not recovered to an www.telstra.com
operational level in minimal time. www.cix.ie
M
Even with this in mind, there is still a ore than one-third of IT security
G
large segment of the market that is unable ridstore, the SDS (Software-Defined pros are sending sensitive data
to buy expensive recovery solutions because Storage) provider of Windows outside of their organisation
of the high level of investment involved. Servers and Hyper-V Gridstore, has without encryption
What we have created, is a means of helping announced the integration of Gridstore 3 Despite headline-making breaches that
small and medium enterprises around the with Microsoft System Centre 2012, a move have called attention to the importance
world employ world-class security, at the it says will enable its delivery of the Cloud of data encryption, nearly 36 per cent of
SME price point - without sacrificing quality Data Centre. IT security professionals admit to sending
for the end-user, or profitability for the According to the firm, the integration sensitive data outside of their organisations
service provider, he explained. with System Centre allows for management without using any form of encryption to
CCW notes that DynamicRestore forms of all resources via a single console. This protect it.
part of the new Attix5 Dynamic product, central management, says Gridstore, The research, from Voltage Security,
which includes the features of he companys provides for better overall efficiency and took in responses from more than 200 IT
current Attix5 Pro platform, combined with flexibility. professionals towards encryption, big data
the new DynamicRestore technology. With System Centre Virtual Machine security and EU data privacy regulations.
Manager (SCVMM) integration, Gridstore is The survey showed that almost half
www.attix5.com billed as delivering policy-based provisioning of respondents indicated that they are
and orchestration of storage resources not de-identifying any data within their
H
ibernia Networks has added the Cork at VM-level granularity including key organisations. The ability to de-identify
Internet eXchange (CIX), the regional characteristics such as Quality of Service and information, by employing standards based
data centre for Southwest Ireland, Data Protection Schemes. encryption technologies such as FPE (Format
as a new Point of Presence on its network. System Centre integration will be Preserving Encryption) is said to provide very
The PoP allows Hibernia to further expand available by the end of Q3 - the company effective mechanisms to secure sensitive
its high capacity, international services says that all current and new customers data, as it is used and managed at the
throughout Cork, Munster and the island of running Gridstore 3 can upgrade with no personal and professional level.
Ireland. disruption or hardware change. Voltage says that discussions
Built in 2007 and open for business surrounding data residency, lawful intercept
in March 2008, CIX is a critical piece of www.gridstore.com and protecting data from advanced threats
communications infrastructure for Cork and have been top of mind for many years.
T
Munster. elstra has unannounced new cloud While recent stories shine a spotlight on the
The facility is responsible for delivering infrastructure services in the US, risks to data, including theft and extortion,
IP connectivity to thousands of businesses expanding on its offering already the need to both protect data from
and tens of thousands of homes from Kerry available in the UK, Hong Kong, Singapore inadvertent risk while ensuring the business
to Waterford via large telcos and regional and Australia and strengthening its isnt constrained is a clear problem every
ISPs. global virtual private cloud solution for business needs to solve.
According to Hibernia, CIX connects multinational customers.
upstream to an extensive list of fibre Martin Bishop, Telstras global lead of www.voltage.com
providers and has a 30-metre telecoms mast network applications and services, said the
onsite, with a line of sight to Cork City and US extension - which will be located on the
Cork County. East Coast - is in important milestone in the
6 CLOUDCOMPUTING
DATACENTRES Power issues in todays data centres
UNDERSTANDINGTHENEEDTO
REDUCE DATA CENTRE PUE LEVELS Mark Adwas discusses some of the power
consumption challenges - and solutions to
those challenges - that face modern data centre
facilitators and managers.
By Mark Awdas, Engineering Manager, Cannon Technologies
Introduction
The rising price of energy - coupled with a rising
understanding amongst management of the
social responsibilities that companies have in
reducing their energy consumption footprint
- means that data centre owners, their clients
and managers have been revisiting power
consumption issues in a big way over the last few
years.
In parallel with this, the data centre industry
has developed a measure of how effectively
a data centre uses its energy. Known as the
PUE (Power Usage Effectiveness) this measure
quantifies for what application and how much
energy is being used.
PUE is defined as the ratio of total amount of
energy used by a computer data centre facility to
the energy delivered to the computing equipment.
This is calculated by taking a measurement of
energy use at or near the facilitys utility meter.
We then measure the IT equipment load after
the power conversion, switching, and conditioning
processes are completed.
8 CLOUDCOMPUTING
DATACENTRES
server actually requires the delivery of 1,500W to availability, and kit, whilst IT staff will be try to
the data centre as a whole. ensure they have sufficient processing power,
Unfortunately, most organisations lack any network bandwidth and storage capacity to
power-consumption metering which can break support their upcoming IT initiatives - as well as
down usage at a level that allows them to gauge ensuring sufficient redundancy to handle system
the results of their optimisation efforts. To help disruptions.
solve this problem, efforts to monitor energy use Although balancing the needs of these
should start with the creation of a manufacturers two processes may sound relative easy, their
`power profile for each rack in an existing data complexity is often compounded by the fact that
centre. - in the past - facilities staff and IT professionals
Each department with an IT facility - and have tended to treat their operational costs
not just within a data centre itself - faces their separately, spreading their overall costs across
own separate challenges that can cloud (no pun the organisations and making it difficult to assess
intended) the power consumption and efficiency their full impact.
issue for the systems concerned. Because of the operational differences
For example, facilities staff can be struggling that exist between facilities staff and their IT
with limits on rack and floor space, power colleagues, it is clear that optimising data centre
energy efficiency requires a high degree of careful
planning.
This is in addition to the deployment
InfoBurst of components such as power, cooling, and
Keeping cable and power blocks tidy networking systems that can meet both current
makes life easier for rack amendments
and other changes needs and also scale for future requirements - and
so minimise TCO (Total Cost of Ownership) issues,
both now and in the future.
The scalability issue is such that, when
data centres reach 85 to 90 per cent of their
power, cooling, space, and network capacity,
organisations must seriously consider either
expanding their existing data centre or building
a new one - this is, we have observed, a difficult
strategic decision that can have a major impact
on the companys bottom line.
CLOUDCOMPUTING 9
DATACENTRES
In many data centres, between 5 and 15
per cent of servers are no longer required and
Mark discusses some of the power
can usually be turned off. The cost savings from
retiring these idle servers can be considerable
consumption challenges - and solutions to
Average server performance has also those challenges - that face modern data
increased - todays servers are far more powerful
than those of a decade ago, and virtualisation centre facilitators and managers
allows enterprises to take advantage of that
performance to consolidate multiple physical
servers onto a single virtualised server. It is worth Its primary goal, says ASHRAE, is to provide
noting that server upgrades can also help in this the data centre industry with unbiased and vendor
regard. neutral data in an understandable and actionable
One of the pivotal moments in the evolution way.
of data centre efficiency was the introduction of At the time of the books publication, John
version 1.0 of the European Commissions `Code Tuccillo, chairman of the board for The Green Grid
of Conduct on Data Centres Energy Efficiency Association, said that data centres are complex
(http://bit.ly/1luw7kK ) back in 2008. systems for which power and cooling remain key
In many ways the publishing of this code was issues facing IT organisations today
something of a wake-up call for the data centre The Green Grid Associations PUE metric has
industry - and has helped to generate a better been instrumental in helping data centre owners
industry understanding of the need to `go green and operators better understand and improve the
where data centres are involved. energy efficiency of their existing data centres,
The Green Grid, however, has not rested on as well as helping them make better decisions on
its laurels, as last year the IT/energy industry new data centre deployments, he explained.
association teamed up with ASHRAE - formerly
known as the American Society of Heating, Conclusions
Refrigerating and Air Conditioning Engineers and As energy costs continue to rise, it is clear that
which has re-positioned itself as a sustainability aligning the goals and requirements of business
association - to publish a review of the PUE - as well as facilities and IT departments - is
standard. now critical to optimising energy usage and so
Entitled `PUE: A Comprehensive Examination reducing power costs in enterprise data centres.
of the Metric, (http://bit.ly/1eo5o4E ) this is the below Our broad recommendations to help reduce
11th book in the Datacom Series of publications Reducing energy requirements translate these costs - as well as optimising the power
to real cost savings on power bills
from ASHRAEs Technical Committee 9.9. consumption for all types of data centres - is to
closely monitor a centres current energy usage,
as well as retiring idle servers and deploying
energy-efficient virtualised servers wherever
possible.
Our observations also suggest that, if you
are involved in the management or operation of
data centres, then the PUE ratio will matter to
you. In view of this, you should also be looking
at reducing the power consumption of the data
centre and so improve your facilitys benchmark
along the way.
The human element in the data centre power
efficiency stakes should also not be ignored
- especially in todays facilities management
arena. Vendors and data centre staff should
always be able to advise clients on how to
reduce temperatures and energy usage using
technologies such as innovative hot- and cold-
aisle designs.
Since the UK Carbon Reduction Commitment
(CRC) obligations were enacted back in April 2010
(http://bit.ly/1luwLPb ), it should be clear that
vendors and data centre providers need to work
together in developing industry standards and
ratings that work.
Cannon Technologies believes that the data
centre industry - from the power suppliers all the
way to the rack makers - needs to work together
to improve efficiencies and so ensure that we are
all at the forefront of efficient and green data
centre operations.
www.cannontech.co.uk
10 CLOUDCOMPUTING
Digital Realty
Data Centres
Powering the Worlds
Leading Companies
9 of the Top 15 INVESTMENT BANKS
5 of the Top 5 CLOUD SERVICE PROVIDERS
3 of the Top 5 SOCIAL MEDIA PROVIDERS
www.digitalrealty.co.uk
CLOUDBUSINESSISSUES Moving business applications into the cloud
HOWCRMCHANGED
CLOUDANDCLOUD
By Ian Moyse, Sales Director Workbooks, Eurocloud UK
Board Member and Cloud Industry Forum Governance
Board Member
CHANGEDCRM
relationship between the cloud
and business applications
InfoBurst
Customer Relationship Management in
the call centre - all smiles when things
are running smoothly
Introduction
CRM (Customer Relationship Management) is contact management solutions were on network
one of the forerunners of cloud technology and products from legacy vendors and remained a
remains one of the great success stories in the limited market of DOS and early Windows based
space - and has been dramatically changed as solutions such as ACT, Goldmine, Maximiser,
it has moved from an on network-led market, to Superoffice and the like.
the verge of being dominated by cloud offerings. These solutions provided the ability to share
The cloud is, of course, a heavily hyped term information usually limited to organisation,
in both the IT and business sector and has come people, activities and notes and act as a company
to cover a wide range of options as vendors have shared database of clients and prospects.
jumped on the bandwagon, many cloud-washing Then along came Siebel (founded in 1993)
their old solutions to be able to use this hip new delivering a wider functional experience and
term - for example many have simply put a Web richer customer information and really termed
front end admin console or added Web update the market CRM. By the late 1990s Siebel had
portals to be able to claim they are cloud-enabled. become the dominant player, with a peak market
True cloud solutions outweigh these share in 2002 of 45 per cent.
pretenders and are truly changing the way IT is
digested and moving us from an IT domicile to a Salesforce
business led agenda. In 1999 Salesforce was founded with a SaaS
Traditionally, for example, customer and (Software-as-a-Service) -only offering - and
12 CLOUDCOMPUTING
CLOUDBUSINESSISSUES
InfoBurst
CRM - if the IT is running smoothly,
everyone is happy...
remains so today - that rapidly started to disrupt Cloud customers rely less and less on brand
the status quo of vendors aforementioned and equity to make a decision and increasingly have
has grown to now be one of the top 10 sized IT more choice available to them. For example a USA
vendors worldwide, proof positive that SaaS CRM business can find a UK cloud provider and turn on
is both a lucrative space and one customers are the service, and use and be supported equally well
flocking to. from the other side of the world.
Alongside Salesforce a wide range of other SaaS-based CRM now contributes 50 per cent
Cloud CRM providers have sprung up to disrupt, of all new sales and is expected to reach 70 per
replace and become heavy competitors to the cent market penetration within a few years and
legacy providers. cloud CRM providers lead the way in winning
The cloud enables these vendors to develop awards (Workbooks won CRM of the Year in 2014
quicker (3-4 release updates a year compared to a and 2013 with most of the finalists being cloud
typical 1 every 2-3 years with a software vendor), only vendors) and market CRM reports such as G2
reach further and wider (cloud vendors can Crowd showing the leading players all being cloud
attain worldwide profile plus customers quickly based CRM offerings.
and affordably in comparison to the costly and On-network CRM providers still have
slow model to launch in the old software product customers, but in the majority are fighting to
model). retain their share, they are not experiencing the
They can also be more agile when it comes growth and certainly not at the pace that cloud
function and flexibility (cloud models need far less CRM vendors are delivering.
testing, support the required browsers and mobile
support and your away, compared to a product Microsoft is the exception
based system having to work on a wide range of Microsoft, of course, is the exception to this,
operating systems and version and worry about having to have an on network option alongside
software incompatibilities, network and hardware its cloud CRM whilst it transitions its own business
issues and a testing regime that can simply market approach from being an on network
never cope with the wide variety of customer on vendor to a cloud focused vendor - having realised
network device environments). the market shift a few years back when Microsoft
The cloud enables CRM vendors (and others) moved 95 per cent-plus of all its development
to innovate and compete on a global market, it quickly to focus on its cloud offerings.
empowers a vendor such as Workbooks to deliver Once the shift is complete and the market
a rich, intuitive Web-based system that can accepts Microsoft fully as a cloud first vendor,
compete fairly with vendors such as Salesforce, when will the step come where Microsoft joins the
something previously difficult to do in a product throws vendors offering cloud CRM as their only
world. form factor option for their own advantage?
CLOUDCOMPUTING 13
CLOUDBUSINESSISSUES
Cloud CRM was there right at the start, tactic, enabling you to miss out on competitive
displacing existing approaches and disrupting the advantage, flexibility, cost savings, functional
status quo of approaching business application benefit and greater resilience. Many examples
deployment methods and it has proven already exist of major brand name leaders not
consistently that this is increasingly the customers recognising the change being driven by the cloud
preferred approach. in general and the rapid effect user acceptance
Cloud solutions are now designed work well can have on changing the historical norm.
over slower links and transient connections, Take for example Blockbuster video once
making even remote customers who would have a world leading brand, now gone, devastated by
previously found their bandwidth limiting, viable the likes of Netflix and Lovefilm (Amazon) who
users of the SaaS based CRM options available. changed the delivery method for consumers
Increasingly also we have seem customers having renting a movie from taking a video tape home, to
higher connection speeds and demanding more clicking and streaming your choice, which is faster,
mobile access from any device, anywhere at any quicker and cheaper.
time (mostly from user demand and not led from The brand equity Blockbuster had was not
the business itself) all needs well suited to a cloud enough to overcome a new cloud based option
based CRM solution. Legacy solutions still survive, that customers chose to choose. Not because
but the emphasis is on survive whilst cloud CRM is of the cloud or because of disliking Blockbuster,
termed as thriving. simply because someone made it better and
We are now at the tipping point where cloud delivered something the customer preferred.
is an everyday term - whilst many still do not The same happened with Kodak as
understand it or its nuances, seeing it only as photography rapidly went digital and online with
the Internet, few have not heard of it or seen cloud based uploads and sharing replaced the
the branded marketing it is featured in, and old format. The music industry with ITunes vs
accelerated adoption has started. bricks and Mortar music stores is going through
The cloud is extremely disruptive - this is the same transition as are other markets. So
nothing new to those who are familiar with Clayon to undertake a belief that cloud will not affect
Christensens theory of disruptive innovation - IT delivery and to not truly consider it fairly in
and those ignoring it in vendor land and supply any business application or IT project is a naive
channels do so at their peril. approach that may leave you and your business
Many still dismiss the cloud, demanding on out in the cold.
network only, not for a logical reason, but normally
on an emotive basis, believing the Internet to be Conclusion
insecure, and reasoning, therefore, that the cloud The cloud is not a be all and end all, it is not right
will be. for every customer in every situation, just as the
This approach is not new and has affected the horse and cart still having its place in certain
adoption of new things across industries. Take situations i.e. the right tool for the right job - but
the motor car - when it was first introduced it was it will be advantageous in the highest majority of
deemed the devils work, with a man carrying a situations.
red flag having to walk down the street in front of The technology sectors ability to change has
each car and people were recorded as believing accelerated. Moores Law back in 1965 predicted
that if you went in a car and it travelled at over silicon power would double every two years. But
20 miles an hour it would rip the skin from the what its creator, Gordon E. Moore, couldnt have
human face. predicted was the dramatic economies of scale
Now, of course, we smirk at such things, but at the cloud would eventually bring to all of our lives.
the time that was a very real belief and emotion For one, it has helped lead to a drop in price
towards replacing a horse and cart with a car. We for essentials like computing power and storage
are experiencing something similar with the cloud. by making them more accessible. But also, its
enabled conveniences no one ever would have
Ignoring the cloud imagined four or so decades ago.
Ignoring cloud computing and the new form The cloud has not only driven down costs,
factor underpinning it can be a dangerous but its helped increased our satisfaction with
and expectations of our Internet experience.
Its enabled mobility and delivered immense
computing power to anyone, anywhere at any
We are now at the tipping point where time.
Perhaps an update to Moores Law will
cloud is an everyday term - whilst many still be formed to hypothesize that the number of
applications running the in the cloud will double
do not understand it or its nuances, seeing every two years; based on todays adoption and
consumption rates, however, its also possible we
it only as the Internet could see it being represented as the computing
power available to an individual consumer - via
the cloud - doubling every two months.
www.workbooks.com
14 CLOUDCOMPUTING
11 12 November 2014
RDS, Dublin
Cloud & IT Security Ireland is a NEW independent Conference & Exhibition at which Enterprise
and business organisations can see the latest solutions available and receive independent practical
information on the business arguments, software, technology and solutions they need to make better
informed decisions.
The Conference Themes addressed will include:
Utilising a combination of Case Studies, Panel What are the available options
discussions, Technical papers and interactive
forums the conference will showcase the latest in How do I assess my future needs
new ideas, software, solutions and Best Practice. Considerations when migrating to the cloud
Does one size fit all?
The Exhibition
Featuring leading companies, brands and value Security and the Cloud
added resellers this is your chance to and Future Technology
compare the latest in technology, software, Virtualisation and Storage
innovative solutions and source the suppliers who
Big Data
can assist you.
CUSTOMER-DEFINED
DATA CENTRES The official opening of one of its newly-expanded
data centres by the UK Home Secretary prompts
Bill Strain to re-define cloud service delivery...
By Bill Strain, CTO, iomart
16 CLOUDCOMPUTING
DATACENTRES
the G-Cloud framework, which was set up to This makes me think that what we should
encourage the adoption of cloud services by the be talking about today is the Customer Defined
public sector. Data Centre (CDDC) rather than defining DCs by
The whole G-Cloud initiative has been pushed the way they use software to set up the servers
by the need to allow local authorities and other and the network inside them.
public sector organisations to find easier ways to The importance of the customer in the
procure services from companies like ourselves delivery of our services should be at the forefront
on a pay-as-you-go basis instead of having to of how we architect the physical infrastructure
endure lengthy and often-expensive procurement that makes up the backbone of the cloud.
processes. So it is vital that the people responsible The innovative Cisco and Corning fibre
understand that the companies who own and technology weve deployed in the data centre
manage data centres are focused on giving them the Home Secretary visited allows us to provision
fast and effective ways of getting the cloud automatically and dynamically through our
services they require. control panel, whatever services our customers
The same goes for other senior decision need, at any time, on any scale. The technology
makers, few of them probably get the chance to has been designed with our end-users, our
step inside so we need to illustrate how valuable customers, in mind, providing them with what
data centres are to the economy by explaining they need to do their work.
what goes on in them in much simpler terms. The challenge for us was to make sure that
This applies to how we educated members of each rack of servers that goes in the seven data
the public, as much as it does to small business halls of the facility is capable of catering for every
owners, officials in local government, right up to network requirement, for all business groups,
the CEOs of the biggest corporations. We need to encompassing both initial and rapid future
be focused on the customer. expansion as and when required.
The people who are increasingly using cloud There is of course a benefit to us - we no
services do so because it adds value to what longer have to physically plug wires into servers,
they do. It might make their own jobs easier, for which therefore reduces our management burden
instance allowing a busy IT department to backup - but there is also huge benefit to the customer.
data quickly and securely without having to assign
staff to physically change and store tapes, or it Conclusion
might allow them to deliver better products and We are managing thousands of servers and the
services to their own customers, for instance by high capacity networks that deliver the computing
enabling accountants to use financial software power to support modern business in the age of
which they access via the internet to provide a digital. No longer do companies have to make huge
service to their clients. capital investments in their own hardware on their
own premises, instead they invest in us and so we
Customer defined need to have that same investment in them.
After initial scepticism, the value of the on- By talking about not just software defined but
demand, pay-as-you-go cloud services model Customer Defined Data Centres, I think we can
is now being embraced by government and show that we are transforming our networks to
enterprise business but it is also being driven deliver the highest levels of agility, performance
and changed by the needs of those same and flexibility to drive the development of the new
organisations. world economy.
CLOUDCOMPUTING 17
CASESTUDY WhiteSpider develops a cloud solution for Parsons Brinckerhoff
REMOVINGTHERISKFOR
How cloud computing helped a
company with more than 150
offices around the world...
DATACENTREANDENTERPRISEIT
InfoBurst
How Parsons Brinckerhoff called on the
assistance of WhiteSpider to implement
a wide-scale cloud topology across its
many offices around the globe.
18 CLOUDCOMPUTING
CASESTUDY
CLOUDCOMPUTING 19
CASESTUDY WhiteSpider develops a cloud solution for Parsons Brinckerhoff
20 CLOUDCOMPUTING
CASESTUDY
Cooling requirement
Initial studies indicate that cooling requirements
have been reduced by 80 per cent, power
consumption reduced by two-thirds (66 per cent),
and the server room footprint is down from 108
sq meters to just 15 sq metres -a reduction in floor
This is followed by a detailed plan and design, space of 88 per cent, representing a cost saving,
the enterprise architecture element, engaging at New York real estate prices, of $600,000 per
with the business to understand the key business year.
objectives in relation to the IT infrastructure and The new infrastructure across the clients
assets and developing a blueprint to design and sites has also improved connectivity and future-
build a core foundation of processes and systems. proofed the network - with the expectation that
The third step is `enterprise alignment - once the current infrastructure will need little upgrading
the architectural designs are defined, they can be in the next 3-5 years.
implemented through a comprehensive portfolio Resiliency has also been improved and
of services that maps across all aspects of IT the overall performance available to users is
infrastructure. significantly greater, with the capability for up to
In the fourth `enterprise assessment element, 10 Gbps to the desk. In addition availability of
WhiteSpider uses its experience in modelling, the new service environment has now reached
capacity planning and performance management the desired five-nines on a 24/7/365 basis, due to
to ensure that the network and applications are the elimination of risk, over subscription, device
tuned to deliver optimal performance and reduce failure and power outages, plus new maintenance
business risk. contracts around new technologies.
One of the major gains here was the reduction The new environment has been designed
in the complexity of the system with five storage and configured in line with industry best practice
platforms reduced to one and a 70 per cent and therefore it is more agile around service
virtualisation of the system delivery, easier to operate and manage, and
integrates seamlessly with legacy equipment and
The results components. As a result it is delivering substantial
The DCCAMP project had a number of clear cost savings, including the operating costs,
objectives to help Parsons Brinckerhoff build a streamlined time to deliver new services, reduced
robust and agile private cloud environment that equipment footprint and maintenance costs.
would provide high performance IT services for all
its business units globally now and into the future. www.whitespider.eu
CLOUDCOMPUTING 21
DATACENTRES Giving data centres a new perspective
CLOUD:
THE 60-YEAR-OLD HOT TOPIC
Andrew Roughan discusses the nature of the cloud
and how data centres fit into a cloud-based feature...
By Andrew Roughan, Commercial Director at Infinity SDC
22 CLOUDCOMPUTING
DATACENTRES
computing... will result in dramatic growth in IT Will your data centre flex like your IT?
products in some areas and significant reductions Whichever path feels best suited to each business,
in other areas. it needs to be agile, able to burst and ultimately
More recently, in October 2013, Gartner dynamic. As part of the journey to the cloud, CIOs
predicted that Cloud Computing would account have typically deployed virtualisation to increase
for the bulk of new IT spend by 2016. Cloud is the utilisation rates of their owned IT assets, while
clearly reaching its apex. also outsourcing to as-a-service providers to
reduce the overall size of the owned IT estate.
Cloud confusion However, the virtualisation journey can be
The length of time that that the cloud has taken unpredictable. At the start, companies expect an
to reach this point perhaps accounts for the overall reduction in their owned IT assets but find
confusion that continues to surround it. it difficult to accurately predict by how much.
There is, for example, confusion about cloud Whether in-house or outsourced there are
technology, confusion over IT infrastructure data centre costs that require a level of capacity
development and now, with the illusion of that is almost impossible to foresee and plan
unbounded capacity in the cloud, confusion about for. In addition to the planning, there are times
data centre options and their place in the IT when capacity needs to increase so that new IT
strategy. can be deployed before older assets are retired.
Public, private, hybrid, on premise, co-located Often, and despite growth in data, the net IT
- with so many options and approaches, many assets shrink as a result of these changes. This
mid-sized enterprises are finding it difficult to can strand power and space capacity and create
understand the myriad data centre solutions on unrecoverable costs.
the market. Many companies have commenced Seasonal or campaign-based peaks, such as
their IT transformation journey, but the data retail holiday sales, midnight on New Years Day
centre typically continues to be viewed simply for mobile operators and major charity events
as real estate. No longer can there be a single such as Children in Need create what we in the
procurement approach. Multi-sourcing is here to industry call demand peaks.
stay. The data centre needs to have the provision
The data centre must become more than to cope but should be flexible enough that the
that. At the heart of the transformation to the user isnt paying for that full capacity all the time
cloud, it needs to become more relevant to the unnecessarily.
enterprise in supporting the transition from basic
virtualisation to its latest stage of evolution: The next stage: software-defined data centres
software-defined data centres (SDDC). This As businesses continue along the IT journey,
means understanding both the enterprise IT milestones they reach include converged
revolution and the individual needs of each infrastructure, private cloud andsoftware-defined
business. data centres (SDDC).
The goals for businesses moving to the cloud The owned IT assets will range from non-
tend to be similar: whether private, public, or virtualised legacy IT, to virtualised private cloud IT
hybrid cloud, users seek to increase agility, boost and the management and support applications
flexibility, reduce time to implement, enable that provide the augmentation, management and
efficient international operations and reduce security of the SDDC.
costs. This does not mean that all companies can However, unable to predict the power
be herded in the same direction; they wont take densities and resiliencies required for those IT
the same journey in the IT transformation and will assets, planners face having to over-cater for an
have different needs. unknown future.
This leaves the CIO with a specific issue to
A cloud by any other name contend with - how to manage the data centre
Some industries are more accepting of cloud than capacity to provide the right-sized private cloud
others. At one end of the scale, the retail industry environment at each stage of the IT journey.
tends to be very comfortable with the concept and It is vital that CIOs consider the attributes
adoption of cloud and can articulate how it works they need from a data centre as they continue
and its benefits. along their IT journey. For example, space
At the other end of the scale, those driven flexibility with no minimum commitment; the
by strict regulatory standards charity-funded ability to only pay for power used rather than the
research organisations and legal in particular maximum power capacity; or predictability of the
are extremely cautious about cloud. A huge cost of change.
disconnect between the business and IT sides One thing is clear - a new breed of flexible
of these industries means that to them, cloud is data centre must emerge to put the CIO back in
public, out of their control and a security risk. the driving seat of the outsourced data centre.
That being the case, the mere use of the cloud Ultimately, what these changes all provide the
word causes ripples even when looking to deploy CIO with is high levels of flexibility and agility.
private clouds. More palatable to the lawyers,
partners and research leaders is terminology www.infinitysdc.net
such as utilising the benefits of automation and
orchestration in an on-premises environment.
CLOUDCOMPUTING 23
ENERGY CONSUMPTION Load balancing for a more robust cloud environment
AWELL-BALANCED
HYBRIDCLOUD
By Jason Dover, Director of Product Management,
KEMP Technologies
Introduction
Back in early 2007, I recall this opening statement
by an enthusiastic speaker at a tech conference:
Even though you might not realise it, over 95
per cent of you are already consumers of cloud
computing services.
This came just after the same speaker had
asked everyone to answer by a show of hands,
whether or not they were Yahoo and Gmail users.
Seven years on from this early evangelism at the
start of the cloud hype cycle and were at a point
where cloud computing is real.
24 CLOUDCOMPUTING
ENERGY CONSUMPTION
Challenges public clouds based on business rules that dictate
While this all sounds good, actual execution isnt how company resources should be consumed.
easy. Successful hybrid cloud implementation These enablers all have driven the adoption of
assumes a well-architected private cloud as a hybrid cloud strategy in the enterprise and the
opposed to simply a well-built traditional IT outlook is positive.
infrastructure. Modern IT deliverys need for
This means that adoption of hybrid cloud increased agility, rapid provisioning
starts with the transition from a traditional of innovative applications and
on-premise environment to one that includes focus on quickest time to market
concepts and supporting technologies that of applications coupled with the
enable functionality normally associated with current gap left by an all-in public
public cloud self-provisioning for application cloud model all mean one thing -
owners, dynamic resource scaling, a charge back hybrid cloud is here to stay.
model for lines of business, orchestration for
automating repeatable tasks and a high-visibility
management platform to monitor how and where
services get deployed. Cloud load balancing revealed
Its the familiarity with the very nature of the
public cloud model that has fuelled the business An Application Delivery Controller (ADC) decisions based on a wider range of
and technical requirements in the enterprise for directly assists in the management of network as well as business variables,
essentially, an IT-as-a-Service framework that client connections to enterprise and such as the ability to meet a SLA or
allows for agile self-service, provisioning and web-based applications. the value of a transaction based on
consumption monitoring, while simplifying the ADCs are normally deployed a per user or customer basis. Other
load on application owners. Because on-premise behind firewalls and in front of criteria could include user location,
legacy data centre environments were not built application servers and make networks time of day, regulatory compliance,
with these principles in mind, transitioning can be and applications more efficient by energy consumption and contractual
a challenge. managing the processing of traffic obligations.
Hybrid cloud also opens the possibility for shaping and distribution. The ADC When it comes to load balancing
workload overflow processing or cloud bursting so directs client access requests to the best and traffic management across
that applications can bring up new instances as performing servers based on factors public cloud providers, it is important
needed in the public part of the hybrid cloud once such as concurrent connections, CPU to consider some of the inherent
data centre capacity is reached. load and memory utilisation. limitations.
Load balancing instances, among other This makes sure that bottlenecks For example, the built-in load
dynamic, virtualised network functions, is a core do not occur to reduce performance; balancer provided in Microsoft Azure
enabler to make service assurance and optimised and if a server or application fails, does not offer Application Layer (Layer
delivery possible. the user is automatically re-routed to 7) visibility to provide the best level of
However, without application delivery another functioning server. This process service to users. While basic Layer 4
controller (ADC) technology running natively is seamless to the user and critical to balancing directs traffic based largely
in the cloud, virtualisation admins can find it delivering an optimised and reliable on server response times, Layer 7
challenging to deterministically know where data experience. switching uses application-layer criteria
centre capacity exhausts and how much external When it comes to the private, to determine where to send a request to
resources will need to be consumed in varying public or hybrid clouds, ADCs ensure provide more granular control.
scenarios for proper planning. the availability of applications while This leads to an improvement in
Additionally, applications actually built with maximising performance, regardless of the utilisation of data and application
the capabilities to traverse public and private the user location or device. traffic management and at the same
cloud boundaries bring about the additional In a hybrid-cloud environment, time allows the virtual machines to
challenges of ensuring that the underlying traffic running at normal levels is be used more effectively. It is possible
data is in the right place at the right time, as directed to dedicated, optimised to deploy a third-party Layer 7 virtual
well as dealing with enforcement of the same application servers. load balancer that runs directly on the
governance and security policies regardless of However, when traffic spikes occur, cloud platform rather than just directing
where active instances are operating. the load balancers will direct this spill traffic to the cloud network.
over to servers that can be located Deploying a virtual ADC with an
Where is it all heading? on public cloud. In some hybrid cloud application in the cloud ensures that
Fortunately, these challenges are not environments, dependencies between the organisation is able to monitor and
insurmountable. Cloud-focused security solutions cloud and on-premise devices may also manage the health of the application
with the capability of propagating a unified set of exist. and make global routing decisions to
policies across cloud borders have come onto the The high availability of ADFS deliver optimum performance and
market. Servers delivered through a load resilience. A virtual ADC can also provide
Technology leaders such as VMware, Microsoft balancer can provide guaranteed access a platform for global load balancing
and IBM have launched many new offerings to to on-premise Active Directory servers and DNS routing to enable internal
help companies build better private clouds and for MS-Office365, for example. and external cloud implementations to
extend the benefits of a virtualised infrastructure Cloud balancing simply increases behave as if one single network.
beyond the on-premise data centre. And finally, the choices from where a given
advancements in application delivery technology application should be delivered www.kemptechnologies.com
have made possible the use of complex traffic and can make application routing
steering algorithms across a fabric of private and
CLOUDCOMPUTING 25
SOFTWARE Understanding data centre software
OPENSTACK
BUILDS MOMENTUM
David Fishman explores the future of OpenStack
By David Fishman, Global Vice President, Mirantis
InfoBurst
Open architecture makes life a whole
lot easier...
How has OpenStack got to where it is now? A range of software, hardware and service
Many companies have wanted to build a Google- companies have joined OpenStack. Whats in
or Amazon-like infrastructure for their operations, it for them and for end-users?
but didnt want to outsource for several important For the end-user, the benefits of OpenStack are
business reasons. For example, they saw the value rapid deployment, easier scalability of cloud
of cloud infrastructure, but they felt that Amazon infrastructure, and importantly theres no vendor
could not guarantee data privacy and security, lock-in because its open. It provides tremendous
or they had limited opportunities to tailor the flexibility, allowing customers to configure their
infrastructure to their specific needs, such as SLAs infrastructure exactly to their needs and to
(service level agreements). integrate with existing systems.
26 CLOUDCOMPUTING
// Cloud Solutions // Business Continuity // Managed Service Provider
We also recently benchmarked how quickly What business model will accelerate adoption
private clouds could be provisioned using of OpenStack?
OpenStack, and hit a rate of over 9,000 virtual Its openness and vendor-agnostic nature are the
servers launched per hour for 8 hours in a multi keys to OpenStacks rapid adoption, and the fact
data centre set-up. The result was 75,000 virtual that OpenStack users are realising it can be used
machines running, which is the scale required by to add more computing capacity in minutes, as
the largest banks (such as Barclays), or mobile opposed to the several weeks or months that it
telecom infrastructure (such as Ericsson). can take to buy and provision new hardware. Its
For software, hardware and service this that will drive OpenStacks momentum.
companies, they realise that their customers
increasingly want cloud infrastructures that enable How should organisations use OpenStack for
rapid change. That works in two ways. the best results -- within a heterogeneous
First, the transparency and common environment?
interfaces that span compute, network, and One of the hallmarks of open source and
storage, mean that companies can more easily particularly so for OpenStack -- is the rapid pace
update and automate the software that serves of innovation. For example, Mirantis has partnered
their customers, and improves the ROI on the with VMware to make it possible to extend
infrastructure. VMware environments with OpenStack, so that
Second, the common standards that companies who have invested in ESX hypervisors
OpenStack enables means that vendors can can benefit from using OpenStack for their IaaS,
continuously compete for a piece of that and protect their innovation.
infrastructure, without being locked out by their OpenStack has evolved, and continues to
rivals. evolve rapidly. The concerns that CIOs might
have had 18 months or two years back have been
It seems enterprise adoption has been a little addressed as commercially-supported OpenStack
slow so far is this true? distributions resolve the concerns about security,
Naturally, organisations have been approaching scalability, support and so on, while still giving
cloud deployments with an element of caution, customers all the benefits of openness and
but I believe momentum is building very quickly interoperability.
now. For example, Ericsson has committed to
using Mirantis OpenStack as the foundation for Where do you see OpenStack going over the
its telecoms networks, internal data centers and next year or two?
cloud computing services for its customers. OpenStack adoption will accelerate in the years
Cisco recently announced its huge InterCloud ahead, moving even faster than Linux did a few
initiative will be OpenStack-based. Theres a great years back. There are four key trends that are
deal of pent-up demand for faster, more agile driving OpenStack adoption.
infrastructure. First, the overwhelming majority of companies
building applications for strategic advantage
Some argue there is a lack of clarity about are using cloud as a platform; as a result, theyre
what OpenStack does. Do you agree? comfortable building applications that leverage
One of the key points that needs to be cloud resources rather than traditional servers.
communicated about OpenStack is that its Second, open source is no longer foreign and
more than justopen-source cloud software. Its mysterious. Most IT organizations know how to
commoditising cloud infrastructure, so that cloud use it and manage it effectively, and understand
deployments can become more vendor-agnostic, the benefits it brings.
with broader interoperability. The aim is to make Third, the vast majority of infrastructure
it easier for customers to build their cloud the way vendors recognize that OpenStack accelerates
they want, with the best tools for the job, and market adoption of new technologies, and as the
adapt to marketplace opportunities over time. market shifts to cloud, they want a piece of that.
One of the things that will help this is open- Finally, the ability of SaaS companies to offer
sourcing OpenStack cloud certifications, to remove more compelling, information-driven value to their
the traditional software vendor ecosystem lock-in customers is a lesson in competitive advantage.
that says we only certify this particular solution Any organization that uses IT to innovate is
with our software. going to look for better, faster ways to make that
Open certifications which are supported infrastructure more nimble, and more capable
by over a dozen infrastructure vendors, including attracting and keeping customers. The flexibility
VMware, NetApp and HP, as well as OpenStack and agility of OpenStack can play a central role in
users such as Yahoo, Dreamhost and AT&T, achieving that competitive advantage.
are making OpenStack the more buyer-friendly
ecosystem. This way, using the open certifications www.mirantis.com
approach, buyers can see for themselves using
publicly available dashboards which solutions
work best with each other.
28 CLOUDCOMPUTING
ARE YOUR COLLEGUES AS
WELL-INFORMED AS YOU ARE?
www.netcommseurope.com Volume IV, Issue 3 2014
35/50
to the network communications infrastructure
marketplace. NETCOMMS europe features
news, legislation and training information from
industry-leading bodies, application stories
and the very latest information on cutting edge
technology and products. NETCOMMS europe
compiles editorial contribution from worldwide
industry figureheads, ensuring that it is the No.
l place to find information on all aspects of this
fast-paced industry.
Cloud - the FEATURES
Optical fibre - the future of mobile
NETCOMMS europe simply register online at NETCOMMS VOL 4 Issue 3 2014.indd 1 26/05/2014 20:50
www.netcommseurope.com.
CLOUDCOMPUTINGINAN
ON-DEMANDWORLD
Amit Khanna looks how the architecture of cloud
can help businesses to scale more effectively and
with lower costs...
By Amit Khanna, Vice President - Technology, Virtusa
Introduction InfoBurst
Cloud computing - full of technology
Cloud computing is changing the IT landscape acronyms?
and redefining how software is being built,
deployed and managed. Enterprises have come
to a stage where they cannot ignore cloud
computing any longer, or the tangible benefits
that it can deliver.
As companies and employees demand more
flexibility from their IT, and lower costs, cloud
30 CLOUDCOMPUTING
OPINION
usage will only increase. Yet what is it about cloud Supporting innovation
that enables this? What are the cost benefits? In addition to the cost savings implicit with
How do the economies of scale work? cloud computing, cloud computing provides
other benefits, such as: simplification and
Keeping cloud costs down standardisation of IT architectures from
Firstly, it is worth noting that cloud computing is the consumer stand point, consolidation of
not a single technology; it is in fact a computing infrastructure and application investments,
paradigm that combines many existing and increased virtualisation of the entire IT
technologies to provide distinct characteristics, landscape of an organisation. Here are some
such as: of the direct and indirect ways in which cloud
computing technology can cause which benefits
Multi-tenancy: Allows multiple application, users organisations:
and entities to share computing resources
Scale: Software can scale almost linearly by 1. Levels the competitive landscape across
leveraging shared resources industries Cloud computing will have a
Elasticity: The resources used (compute and profound shift in how IT is consumed by both
networking) automatically adjust to the peaks enterprises and end consumers alike.
and troughs of the computing demands 2. Accelerates convergence of technologies
On demand: The time taken to provision and Cloud technologies will increasingly be the
de-provision the resources is negligible platform around which other technologies, such
Pay as you go: No upfront infrastructure as mobile and big data solutions, rely upon.
investment required, pay as you use. 3. Creates a platform for innovation with cloud
computing providing a platform that can
Each of these aspects of cloud computing potentially scale indefinitely, the focus shifts
results in lower overall costs for enterprises. For from technology to business innovations.
example, the fact that many clients share cloud 4. Causes shift in enterprise IT buying patterns
platforms means that cloud vendors are able to Enterprises which have been traditionally
realise much higher utilisations than they can dependent on CIO organisation for IT solutions
from using traditional models. will now have their business units consuming IT
This higher utilisation of resources results solutions directly - thanks to the simplification
in cost savings, which can then be passed on to caused by cloud based consumption of
clients. solutions.
Most businesses see a huge variance in their
computing requirements. Examples include high So whats next?
demand during the office hours, or peak seasons, Before plunging headlong to cloud adoption,
such as holiday shopping etc. companies will have to do the required
Traditionally, these businesses had to plan groundwork and plan their adoption based on
for investments in technology infrastructure and their business needs.
solutions that would support the peak usage, It is important for enterprises to see the
resulting in a lot of capacity lying un-utilised big picture about the impact cloud computing
during off-peak season. adoption will bring to their long term IT
Now, the elastic nature of the cloud allows infrastructure needs. This requires careful
enterprises to scale in accordance with demand. planning, with all aspects clearly thought out
Excess capacity can be automatically released, before taking the step towards cloud adoption.
resulting in overall cost savings. Moreover, cloud Different organisations will have different
computing allows for this elasticity with little to no technology needs based on the markets they
manual intervention. operate in, their scale, and the competitive
Most of the time discussions around cost in scenario among others to consider. Today, the
cloud are heavily focused on operational aspects. focus for enterprises is not just to sell products
However, there are far more important cost and services in the markets, but also how to create
benefits of cloud computing, i.e. opportunity costs value for their customers.
and cost of failure: While adoption of cloud computing does
Opportunity cost Cloud computing enables require companies to relinquishing control in
enterprises to respond to business needs at a some ways, the opportunities that arise out
much faster rate than traditional IT. For example, of performance improvement, reliability and
if the business has an opportunity which involves scalability override many of the concerns.
adding more capacity or opening up an office in a Cloud computing technology is set to
new geography. revolutionise the Information Technology
Cost of failure The fact that cloud computing paradigm unalterably in the not so distant future.
offers pay as you go models obviates the need for These benefits will be propositions that will
heavy upfront capital expenditures for any new ensure adoption of Cloud computing technology
products and services. This means enterprises can to scale significantly higher than present levels in
not only bring these products to market faster, but the not so distant future.
they can also experiment a lot more, as no heavy
additional investments are required. www.virtusa.com
CLOUDCOMPUTING 31
SECURITY How the cloud brings challenges, as well as benefits
JOURNEYTOTHECLOUD:
CHALLENGESPOSEDBYSECURITY Phil Turner explains how to contain the security
challenges that the cloud creates...
By Phil Turner, Vice President of EMEA, Okta
32 CLOUDCOMPUTING
SECURITY
InfoBurst
Data extracts from Oktas rpeort:
Identityand Management in a Cloud D H
and Mobile World... A
E
C G
CLOUDCOMPUTING 33
OPINION Breaking down the planning process into more manageable steps
WHYPLANNINGSHOULDBE
CENTRALTOYOURCLOUDADOPTIONPROCESS
Russell Cook explains how breaking down the
cloud planning process can make the task a lot
more manageable
By Russell Cook, Managing Director, SIRE Technology
InfoBurst
The cloud: an amalgam of many
different technologies...
34 CLOUDCOMPUTING
SECURITY
understanding where your companys data is
going to be stored.
This is an important issue, we have observed,
as cloud service providers often duplicate their
data - your data - for resilience purposes, but do
not always tell their clients where these backup
copies are located.
This can be a problem on the compliance
front, as data stored in cloud resources outside of
the European Union can fall foul of data privacy
and security legislation.
And then there is the complex issue of
whether a US company is involved with the cloud
service provider in any way, as the US Patriot Act
requires all US companies and their subsidiaries
to allow the US government - and its agencies -
complete access to its data, including the cloud
files of its clients.
The due diligence step then involves
discussing the project with potential suppliers,
asking questions about the provision of support
services, who ultimately owns the data, what
layers of contracts with third parties exist, and
what lock-ins are imposed.
You should also be asking questions about
what will happen to your data when the contract SIREs services and knowledge real credence
is up and your data is transferred to another and allows the company to display its BCI
supplier, or what plans are in place in the event membership, as well as participating in some of
that the supplier goes out of business, for the organisations initiatives and campaigns.
whatever reason.
You may, for example, want to know what Conclusions
facilities exist for you to obtain direct physical There is a lot of talk about cloud computing and
access to your cloud data and what are the many SMEs may be wondering if this can really
logistics involved with completing a site visit and benefit them or is just for larger organisations?
removing data on suitable media, such as tape The answer, we have observed, is that,
cartridges or similar. yes, cloud computing is the next stage in the
It is also necessary at this stage to decide Internets evolution and, when managed
which type of cloud resource is the best for your correctly, provides the means through which
company - e.g. public, private or hybrid - and everything, from computing power to computing
which applications are provided by the cloud infrastructure, applications and business processes
vendor e.g. SaaS (Software as a Service), PaaS can be delivered to your business as a service,
(Platform as a Service) and so on. wherever and whenever you need it.
The final stage - implementation - is arguably Our observations also show that the cloud
the easiest, as the deployment and test process, offers any organisation significant benefits,
followed by an effective pilot program and its including flexibility and business continuity,
evaluation should be a breeze - assuming the regardless of its size or the nature of its business.
earlier stage have been completed reliably. If effective planning and suitable allied
process are carried out, we have found that clients
Business continuity can enjoy the considerable cost savings that
One of most frequently overlooked aspects of accrue from a well-planned and implemented
the cloud planning process is that of business cloud process.
continuity (BC), an element that is often confused It is worth remembering that the economic
with disaster recovery. imperative behind the cloud can sometimes lure
BC involves planning for a worst-case scenario clients into believing that the lack of human
- and then stepping back to lesser scenarios, and interaction in automated cloud service provision
planning accordingly. can often reduce the selection process to a `lowest
We take BC issues very seriously here at SIRE, cost is best route
and in June of this year we joined the Business This is actually a false economy, as opting for
Continuity Institute (BCI), an organisation that the lowest cost service over the slightly less cheap
has established itself as the leading international may lead to extra costs in the longer term. Our
institute for business continuity and certification observations suggest that a premium economy
for both organisations and individuals keen to approach to buying in business cloud services is
be recognised for a professional approach to this often the better option in the longer term.
relatively new area of technology and business.
Being accepted as members of the BCI gives www.sire.co.uk
CLOUDCOMPUTING 35
SECURITY Reducing security risk with due diligence
SECURITYQUESTIONS
TOASKYOUR Stephen Coty explains some
of the questions you should
CLOUDPROVIDER
be asking your cloud service
provider...
By Stephen Coty, Chief Security Evangelist, Alert Logic
infoBurst
Securing the cloud - a complex process
that needs to be carried out correctly...
Introduction right choice for their business, just like any other
The cloud is here and its only set to grow. This is business decision.
because its scalability and on-demand capacity Part of this has to be thinking about the scale
present the perfect medium to support businesses and type of information that will be placed in and
and the need to be agile. in transit within a cloud providers infrastructure.
The benefits are many, ranging from the Therefore, businesses that do take advantage of
ability to more effectively manage costs (which cloud infrastructure must give importance to the
makes the finance team happy) to not having to security of data that is put in the cloud careful
worry about installing and maintaining hardware deliberation, whether they are about to make the
in data centres that dont have enough space, move to the cloud or even after.
power or cooling (which keeps the IT team
happy). This is for a number of reasons:
Offloading the burden on to a cloud provider The same type of attacks typical to on-premise
that [says it will] take care of everything from data centre environments are moving to the
performance and storage to email is certainly an cloud What used to be historically on-premise
attractive proposition. based attacks, such as malware, botnet and
However, this doesnt mean that these are brute force attacks, are now targeting cloud
the only considerations to take into account when environments.
undergoing a cloud project. Companies need to A big driver for this is that businesses
do their due diligence and ensure that it is the are starting to deploy traditional enterprise
36 CLOUDCOMPUTING
SECURITY
applications like ERP and VDI (Virtual Desktop data by fixing any holes that malicious actors
Infrastructure) in the cloud. Hackers that see this can exploit to gain access to their systems.
happen run vulnerability scans and brute force
attacks, that attempt to siphon valuable company 3. How do you isolate and safeguard my data
data, in hopes of finding and taking advantage from other customers?
of lax security policies in the cloud. Furthermore, Due to huge capacities, cloud providers will
as more end user applications move to the cloud, undoubtedly (unless specified as private) house
malware and botnet attacks follow suit. data for more than one company (multi-tenancy).
The breadth and depth of attacks means that Ask how they segment the data, what controls
threat diversity in the cloud is on the rise threat they have in place to make sure data isnt
diversity is basically a measurement of how many accidentally shared, and how those controls are
different types of attacks exist and companies are implemented.
facing.
This year, threat diversity in the cloud 4. How is user access monitored, modified and
increased to rival that of on-premise data centres. documented?
This means that companies need to be just as Naturally, where security is concerned, it is vital
vigilant with the same security sophistication in to know who is accessing the data so that it
the cloud that would normally apply to protect an remains uncompromised. It is also important
enterprises on-premise data centre. that separation of duties are in place so that the
The point solutions typically relied upon service providers administrator does not have end-
to combat these threats are not enough To to-end authority and control over your data.
gauge the effectiveness of security solutions,
such as anti-virus protection, in major public 5. What regulatory requirements does the
clouds around the world, new patterns of attacks provider subscribe to?
and emerging threats were observed through a There are a number of regulatory controls that a
honeypot project. cloud service provider can adhere to in order to
One particularly interesting and disturbing demonstrate best practice and compliance. If
observation was that 14 per cent of the malware you are putting cardholder information in the
collected was considered undetectable by 51 of cloud, for example, you will want to make sure
the worlds top anti-virus vendors. that the provider is PCI compliant. If it adheres to
So, thats the cold, hard facts out of the way industry standards, such as ISO27001, it is a good
and certainly not to say that businesses should indication that it takes security and the integrity
stop using the cloud- there are just way too many of your data seriously.
benefits.
The good news is that there is a lot that 6. What is the providers back-up and disaster
organisations can do to protect themselves in recovery strategy?
the cloud; and the first step is to get educated on This is often referred to as resiliency. Like most
what their businesses and applications require services, occasional downtime is an inevitability.
from a compliance and security posture. Find out what the providers track record is in
The following guide of what questions you availability and make sure there is transparency
should be asking your service provider when it into its infrastructure. It may very well be that
comes to security in the cloud is a good starting you will be responsible for your own back up of
place. Make sure that the cloud service provider information, so make sure the boundaries are
can answer these questions confidently and defined and each party knows its responsibilities.
comprehensively so you feel confident that it The recent Code Spaces demise, for example,
takes the security of your business critical data could have been avoided if they had a separate
seriously. backup of their infrastructure: without it, they lost
everything.
1. What is their data encryption strategy and
how is it implemented? 7. What visibility will the provider offer your
Encryption is the industry ideal for protecting organisation into security processes and
critical data by making it unreadable to events affecting your data from both front
unauthorised parties. While there are many and backend of your instance?
considerations to give when it comes to These are just some of the questions that you
encryption, preferably, the cloud service provider may want to be asking a cloud service provider
will be able to answer questions like who controls about the security of sensitive information
the keys and what standard of encryption is used. residing in the cloud..
Depending on the level of confidence and
2. What is the hypervisor and provider completeness of the answers, they will help you
infrastructure-patching schedule? quickly judge how safe your data is with the cloud
As previously explained, malware and exploits service provider and how seriously they take the
continue to rise, so it is important that the cloud security of the data that backs and fuels your
service provider patches and updates their business.
infrastructure on a regular and frequent basis.
This will minimise the threats to their customers www.alertlogic.com
CLOUDCOMPUTING 37
INFRASTRUCTURE How the cloud can make your IT systems more robust
UNDERSTANDING
CLOUDDISASTERRECOVERYSERVICES
Peter Godden looks at how virtualisation is
helping organisations strengthen their disaster
recovery positions.
By Peter Godden, Vice President of EMEA,
Zerto
Introduction
InfoBurst
It seems by the stream of TV advertisements and One of the fundamental problems with using Zertos technology: creating a powerful
buzz in the technology press that cloud computing the cloud for IT recovery is that current array- Disaster Recovery platform...
is a methodology that can solve deeply intractable based replication techniques are not well suited
problems in the data centre. However, many to the increasingly virtualised workloads that are
organisations often adopt cloud to help solve one becoming more common, across the IT landscape.
initial issue, using the cloud as both a remedy Array-based replication products are provided
and a test bed to gain an understanding of the by the storage vendors and deployed as modules
potential. A survey last year at Amazon Web inside the storage array. Examples include EMC
Services Global Customer and Partner Conference SRDF and NetApp SnapMirror. As such, they are
found around two thirds (60%) cited cost savings single-vendor solutions, compatible only with the
and disaster recovery as the factors most heavily specific storage solution already in use.
driving cloud storage adoption. Currently the most popular replication method
However, the desire to use the cloud is in use in organisations, array-based replication,
tempered by the practical realities and additional does not have the granularity that is needed in a
fears. To quantify this position, Zerto conducted virtual environment or to replicate these virtual
a further survey which found cost and complexity environments into the cloud.
are both the biggest concerns with difficult
to manage coming in close third. Even the Mapping across
companies that have a DR implementation, only For example, mapping between virtual disks
23% are confident their DR will work in the case and array volumes is complex and constantly
of a real emergency. changing, creating management challenges and
38 CLOUDCOMPUTING
INFRASTRUCTURE
additional storage overhead. Often, multiple Hypervisor replication
virtual machines reside on a single array volume, Hypervisor based replication is fully agnostic
or logical unit. An array-based solution will to storage source and destination, natively
replicate the entire volume even if only one virtual supporting all storage platforms and the
machine in the volume needs to be replicated. full breadth of capabilities made possible
This under utilises the storage and results in what by virtualisation, including high availability,
is known as storage sprawl. clustering, and the ability to locate and replicate
Because array-based replication lacks the volumes in motion.
visibility and granularity to identify specific virtual Hypervisor based replication technologies are
machines in different locations, organisations becoming standard in a virtualised environment,
tend to put all disks from an enterprise application but even with the technology there are still a
into a single storage logical unit, when in fact number of options that should be considered, as
there are operational advantages to splitting although cloud is well suited to DR but it is not a
them up over a number of logical units. one hat fits all approach. It is helpful to define the
Array-based replication has several other options as this helps to understand the benefits
important disadvantages that limits its suitability and limitations of the different cloud based
to a cloud based DR position. Essentially, it is approaches.
designed to replicate physical entities rather The first type of approach is a Private Cloud
than virtual entities. As a result, it doesnt where business continuity and disaster recovery
see the virtual machines and is oblivious sits between two or more geographically separate
to configuration changes and due to their sites, all under the control of the enterprises IT
dynamic nature, virtual environments have a team and deployed as a private cloud.
high rate of change. This approach allows enterprises to create
As the starting position for a a flexible and dynamic environment in which
successful cloud DR strategy, a their IT departments can scale and mobilise
growing trend is to use hypervisor applications depending on needs and resources at
based replication technology which any point in time by delivering IT infrastructures
protects virtual machines (VMs) at across multiple geographical sites.
the virtual machine disk format file Taking this approach also helps enterprises
level rather than at the LUN or storage to evenly distribute production load between
volume level, thus replication can be multiple data centres and recovery sites. However,
done without the management and this is more complicated to set-up and manage
TCO challenges associated with array- and places more technical heavy lift on the
based replication. internal IT department.
Because it is installed directly inside
the virtual infrastructure (as opposed Conclusions
to on individual machines), Hypervisor The advent of virtualisation and the growth of
based replication is able to replicate cloud computing offer a significant opportunity
within the virtualisation layer itself, to strengthen disaster recovery processes. With
so that each time the virtual machine the inclusion of hypervisor based replication
writes to its virtual disks, the write technologies and the benefits of private and
command is captured, cloned, and sent as-a-service options, the cost and complexity of
to the cloud recovery site. This is more disaster recovery options is falling, offering the
efficient, accurate, and responsive than economies of scale to drive down costs even
prior methods. further.
CLOUDCOMPUTING 39
INFRASTRUCTURE Strategies for adopting the cloud
TAKINGYOURFIRST
Gordon Howes discusses the strategies
that companies need to adopt when
embracing the cloud...
InfoBurst
Breaking down the cloud planning and
adoption process into small segments
can make life a lot simpler...
40 CLOUDCOMPUTING
INFRASTRUCTURE
CLOUDCOMPUTING 41
INFRASTRUCTURE Strategies for adopting the cloud
42 CLOUDCOMPUTING
THREE
PHASE
POWER
Available with:
C13 C19 Locking outlets
C13 C19 Fused outlets
BS1363 UK outlets
Continental outlets
Individual circuit protection per outlet
Overall metering of V, A, kWh,
Harmonics, PF.
G4 MPS Limited
Unit 15 & 16 Orchard Farm Business Park, Barcham Road, Soham, Cambs. CB7 5TU
T. +44 (0)1353 723248 F. +44 (0)1353 723941 E. sales@g4mps.co.uk
SOFTWARE How next-gen Linux containers could cause problems
WILLLINUXCAUSEPROBLEMS
WITHLOADBALANCERS? Richard Davie discusses some of the current
challenges with cloud-based load balancer
technologies...
By Richard Davies, CEO, ElasticHosts
44 CLOUDCOMPUTING
SOFTWARE
CLOUDCOMPUTING 45
CASESTUDY Deutsche Telekom taps into the cloud
USINGOPENSTACK
INAN Axel Clauberg explains how
OpenStack has been the key to
ALL-IPENVIRONMENT
a new all-IP triple play network
offering...
By Axel Clauberg, Vice President Aggregation,
Transport, IP and Fixed Access, Deutsche Telekom
46 CLOUDCOMPUTING
CASESTUDY
SDN (Software-Defined Networking) and NFV
(Network Functions Virtualisation), including
software appliances, COTS (Common-Off-The-
Shelf) hardware, and automated provisioning and
service orchestration.
We designed TeraStream as an architecture
that breaks many of the rules on the operator
side, said Axel Clauberg, Vice Present of
Aggregation, Transport, IP and Fixed Access at
Deutsche Telekom AG.
The attitude of things-were-always-done-
this-way doesnt exist here. We questioned all
layers and all protocols in todays network, and
asked how would you run an efficiently managed
IP network moving forward? We realised that
if we truly wanted to change our cost base, we
needed to change the mode, he explained.
TeraStream is an open multi-vendor network,
which allows for greater innovation and avoids
vendor lock-in.
It is really key for operators to build a Figure 1:
foundation based on an open platform, said TeraStream is a model for next-gen-
Clauberg. We dont want a dependency on a eration operator networks an IPv6
network thats built on an infrastructure
single vendor in our critical infrastructure. cloud model.
TeraStream uses OpenStack for cloud Mapping Address over Port (MAP) as well as
orchestration, allowing it to control the compute, Lightweight 4 over 6 (LW4o6), an emerging IETF
storage and network resources in its data centers, standard thats an extension of Dual-Stack Lite
while empowering customers to provision (DS-Lite). In DS-Lite, address translation is done at
resources easily. TeraStream virtualises network the operator, while LW4o6 moves this translation
functions so they can be chained together to to the customer premise equipment.
create customized communications services The team decided that the LW4o6 approach
quickly and as needed. would scale more efficiently and allow tenants to
be managed individually.
Virtualising network functions The search for a virtualised Softwire solution
As an IPv6 network, TeraStream does not have led the TeraStream team to A10 Networks.
native support for IPv4. Yet it must still deliver IPv4 We were looking for a partner who could
as a service to its customers to support legacy develop LW4o6 softwires and prove that it works,
applications. said Clauberg. We felt there was common ground
There is an expectation that IPv4 traffic will with A10 Networks, he added.
go down significantly by the end of the decade, A10 moved quickly to implement LW4o6
but well need to deliver that function for some in its Thunder Series CGN, and TeraStream
time, said Clauberg. Producing IPv4 as a service deployed vThunder as a virtual service. With
is ideal, because we can react based on our vThunder, TeraStream has a high-performance,
current load and we dont need to drastically highly transparent and scalable solution for its
overprovision the way you might in a physical customers, which is delivering a strong return on
appliance scenario. investment.
The TeraStream team looked for a partner The Thunder CGN product line is part of the
that could drive a scalable, virtualised Softwire A10 aCloud Service Architecture, which enables
encapsulation service in its data centres. cloud operators to dynamically provision Layer
There are multiple ways to transport IPv4 4-7 tenant services while improving agility and
traffic over IPv6, and the team considered reducing cost.
In addition, aCloud on-demand licensing helps
operators in providing cloud services consistent
with cloud consumption model. The aCloud
Services Architecture integrates with OpenStack,
TeraStream is an open multi-vendor SDN network fabrics and cloud orchestration
platforms, so operators can dynamically deliver
network, which allows for greater innovation application and security services and policies per
tenant.
and avoids vendor lock-in. Automation through OpenStack and
integration with aCloud on-demand licensing
makes it possible to turn up new services for
customers as they are needed, and tear them
down once theyre no longer needed.
A10 tuned vThunder to use LW4o6 and deliver
CLOUDCOMPUTING 47
CASESTUDY Deutsche Telekom taps into the cloud
optimal performance, scalability and automation, Figure 2: companies with over 142 million mobile
which allows TeraStream scale elastically to TeraStream is a proving ground for customers, 31 million fixed-network lines and over
network functions virtualisation. It uses
support more customers and to deliver a better Lightweight 4o6 softwires to elastically
17 million broadband lines (as of December 31,
experience. scale the delivery of IPv4 traffic to 2013).
When you virtualise a network function customers. The group provides fixed-network, mobile
coming from hardware, there is a lot of potential communications, Internet and IPTV products
for optimisation and automation, said Clauberg. and services for consumers, and ICT solutions
A10 was very helpful to optimise the for business and corporate customers. The
performance so we could serve our customers CSP is present in around 50 countries and has
without burning hardware resources, he added. approximately 229,000 employees worldwide.
Clauberg went on to say that IPv4-over-IPv6 The group generated revenue of 60.1 billion
Softwire is the first example of a high-volume, euros in the 2013 financial year - over half of it
data-plane-oriented network function that was outside Germany.
virtualised.
When people talk about NFV today, they are
focusing on the control plane, not the data plane. About A10 Networks
But if we truly want to change our cost basis, we A10 Networks is a specialist in application
have to look at virtualising network services also networking, providing a range of high-
touching the data plane, he explained. performance application networking solutions
that accelerate and secure data centre
A business model built for the cloud applications and networks of thousands of the
TeraStream is taking advantage of A10s Pay-as- largest enterprise, service provider and hyper-scale
You-Go licensing model so it can offer on-demand web providers around the world.
cloud services to customers on a subscription The companys products are built on our
basis. proprietary Advanced Core Operating System
With the Pay-as-You Go licensing model, (ACOS), a platform of advanced networking
TeraStream can offer and deliver IPv4 and other technologies, which is designed to deliver
advanced L4-7 networking tenant services with substantially greater performance and security.
automated metering, reporting, billing and A10 Networks software based ACOS
license management, as is necessary in a cloud architecture also provides the flexibility that
environment. enables A10 Networks to offer additional products
A10s pay-as-you-go licensing is key, said to solve a growing array of networking and
Clauberg, adding that a flexible licensing scheme security challenges arising from increased Internet
is win-win, because it makes the vendor profitable cloud and mobile computing.
and it makes us profitable.
www.a10networks.com
About Deutsche Telekom www.telekom.com
Deutsche Telekom is one of the worlds
leading integrated telecommunications
48 CLOUDCOMPUTING
CLOUDCOMPUTING
WORLD
CLOUDCOMPUTING
CLOUDSERVERS
CCW is the UKs first digital
publication totally dedicated to
WORLD
Issue 1
June 2014
CLOUDCOMPUTING 1
businesses.
www.cloudcomputingworld.co.uk
26 St Thomas Place, Cambridge Business Park, Ely, Cambridgeshire CB7 4EX
01353 644 081
ISO 9001 | ISO 14001 | ISO 27001 | PCI DSS LEVEL 1
A'^
d
/d/d