Welcome!

Cloud Expo Authors: Jeremy Geelan, Maureen O'Gara, Pat Romanski, Patrick Burke, Elizabeth White

Related Topics: Web 2.0, Virtualization

Web 2.0: Article

Virtualization Security: VMware Crosses the Rubicon

Will The Netsec Industry Finally Wake Up to the Potential of Virtsec?

While the press and blogs are buzzing about cloud computing, VMware has made probably one of the most significant cloud-related announcements ever made; and with : vShield Zones has added even more distance between rivals when it comes to data center and cloud security.

Last year at VMworld in Cannes, VMware announced the VMsafe VMware security partner ecosystem. The virtualization security "industry" had been notably silent (other than a colorful row between security blogger/expert Chris Hoff and Citrix CTO Simon Crosby) for the rest of 2008. Virtualization expert Rich Miller even mentioned the sound of security silence at VMworld Las Vegas in September:

The theme I noted most at VMworld 2007 a year ago was "security."  This year, it seemed noticeably absent.  My sense is that the industry has yet to catch up and capitalize on VMsafe. Because all of the "next generation" of offerings from VMware and the independent providers are still in development, no one made too much of security issues.

The contrast between the Cannes security ecosystem exuberance and VMware crossing the Rubicon at VMworld Cannes 2009 marked a stunning and much needed shift in the virtualization space. It was the first serious step by any vendor towards a real solution for securing the cloud and moving data center virtualization deployments from virtualization-lite (hypervisor VLANs) to "rack and stack" cloud environments.

While Microsoft and Citrix make price adjustments VMware launches genuine innovation that could significantly change the economics of IT in production environments. Security is a critical differentiator when it comes to deploying virtualization in production data centers and creating cloud environments.

This move is not without risk, as VMware had invested great effort in lining up a security partner ecosystem which was kicked off the year before in Cannes, which I celebrated via an interview with Tarry Singh during my recent tenure at Blue Lane (which was acquired by VMware in 2008).

If the Blue Lane acquisition didn't send a chill down the spine of the network security industry, this announcement should. It signals a new era in security introduced, ironically, by a virtualization vendor. Despite the virtsec exuberance and optimism introduced by the new and novel security requirements, much of the network security industry was caught flat-footed. And that still seems to be the case.

Gartner VP Neil MacDonald summed it up with his recent blog about the traditional security vendors:

Many are clinging to business models based on their overpriced hardware-based solutions and not offering virtualized versions of their solutions. They are afraid of the inevitable disruption (and potential cannibalization) that virtualization will create.

The writing is on the wall for network security vendors who have elected to wait and see if the "cloud computing hype" is just a passing fad or are clinging to obsolete technology or business models. The vShield announcement could also a double-edged sword for the virtsec startup vendors: 1) who could be more isolated than ever from the virtsec momentum within VMware and yet 2) possibly more strategic now that VMware has played a real security card in the marketing battle.

With the VMware vShield Zones announcement, any vendor who thinks that virtualization and security are two separate and distinct matters is headed for the distinctive Club Maginot school of static security expertise. They are about to relive the fates of French officers watching German planes fly over the massive, integrated and ambitious French defense investment at one of its strongest points (in Belgium). The wall was designed for WW1 and was partly responsible for a rapid German conquest of France in early WW2.

Virtualization and cloud are introducing new demands on security, because they are introducing new, unprecedented levels of mobility and automation for systems and endpoints. The economic payoffs are so promising that cloud promises to have a substantial impact on the computing era. The question is, are those who think in terms of static networks (whether they are security or network vendors or pros) fully prepared for the requirements of Infrastructure 2.0?

Yet the increased velocity of change is also making the network itself more strategic and yet more challenged. This collision between automated systems and manually managed networks will produce significant opportunities for networking vendors and professionals who understand the power and opportunity of automation; and significant risks for those still riding the "kludge train" of manual reactions to the automation revolution now proliferating within the bowels of IT.

I am a senior director at Infoblox. You can follow my comments in real time at www.twitter.com/archimedius.

 

More Stories By Greg Ness

Greg Ness is a Silicon Valley marketing veteran with background in networking, security, virtualization and cloud computing. He is VP Marketing at CloudVelocity. Formerly at Vantage Data Centers, Infoblox, Blue Lane Technologies, Juniper Networks, Redline Networks, McAfee, IntruVerofficer at Networks and ShoreTel. He is one of the world's top cloud bloggers.

Cloud Expo Breaking News
"Since Cloud Expo is running the week of June 10, we thought it'd be a great idea to schedule our Meetup this week. That way, if you have colleagues, friends, or family in town that week for the Expo, you can invite them to join you!" With those words, the OpenStack New York Meetup Group's organizer's launched a landing page this week where anyone interested can register for the June 12 evening event.
Cloud computing is transforming the way businesses think about and leverage technology. As a result, the general understanding of cloud computing has come a long way in a short time. However, there are still many misconceptions about what cloud computing is and what it can do for businesses that adopt this game-changing computing model. In his General Session at the 12th International Cloud Expo, Gene Eun, Senior Director, Oracle Cloud at Oracle, will discuss and dispel some of the common myth...
“Open source has always provided a number of benefits, including easing adoption costs, propagating a better understanding of the technology, and allowing for faster evolution and commercialization of products and services based on it,” noted Terry Woloszyn, Founder & CEO, Leeward Security Ltd., in this exclusive Q&A with Cloud Expo Conference Chair Jeremy Geelan. “This is clearly evident with the OpenStack and CloudStack,” Woloszyn continued, “and others that have been quickly commercialized as...
Cloud enables SMBs to access new, scalable resources – previously only available to enterprises – in flexible and cost-effective ways. McKinsey’s SMB Cloud Report projects the public cloud market to reach $40-$50 billion by 2015, with SMBs comprising 65% of public cloud spending in 2015. But selling cloud to SMBs raises the questions of who, what and how. In her session at the 12th International Cloud Expo, Manjula Talreja, VP of Cisco’s Global Cloud Business Development Team, will discuss the...
In the face of rapidly increasing amounts of unstructured data, industry is investing heavily to turn machines into services and connect them to analytics engines that will extract an extraordinary amount of value and unleash a productivity revolution for both businesses and consumers. In the health care, transportation and energy sectors alone, the combination of machine diagnostics software and analytics will eliminate as much as $150 billion in waste. In his session at the 12th Internation...
The economics of business are radically changing due to the way in which software and services are being delivered thanks to cloud computing. In his session at 12th Cloud Expo | Cloud Expo New York [10-13 June, 2013], Mike Kavis will cover six reasons for the disruption.
New, "Super-Sized" 4-Day Cloud Computing Bootcamp is a brief introduction to cloud computing carefully created and devised to help you keep up with evolving trends like Big Data, PaaS, APIs, Mobile, Social and Data Analytics. Solutions built around these topics require a sound cloud computing infrastructure to be successful while assisting customers harvest real benefits from this transformational change that is happening in the IT ecosystem.
As enterprises deploy private IaaS clouds into production they are reevaluating their future application delivery models. SUSE and WSO2 believe that private PaaS will leverage the automation and scalability of Private IaaS solutions, such as OpenStack-based SUSE Cloud, to deliver the secure, standardized development environments that will make migrating to an agile, serviceoriented delivery model possible. In their session at the 12th International Cloud Expo, Chris Haddad, VP of Technology Ev...
“Trust is an ongoing journey and sits at the foundation of any vendor relationship – the companies that don’t consistently earn trust won’t be around long,” noted Henrik Rosendahl, Senior VP of Cloud Solutions at Quantum, in this exclusive Q&A with Cloud Expo Conference Chair Jeremy Geelan. “As they do more with cloud, trust will organically grow – maybe it’s just about meeting SLAs or seeing firsthand that data is there when you need it,” Rosendahl continued. Cloud Computing Journal: The move ...
If zettabytes of data exist, why is less than 1% of the world’s data being analyzed today? Seasoned entrepreneur and startup CEO Radhika Subramanian believes that the inability to analyze and gain value from Big Data is that organizations are taking a services-centered approach. As the title of the session implies, Subramanian believes that the data needs to do the talking, not armies of analysts searching and querying databases. Her company has developed high-speed, advanced algorithms to autom...