Welcome!

@CloudExpo Authors: Liz McMillan, Pat Romanski, Mehdi Daoudi, Elizabeth White, Rene Buest

Related Topics: @CloudExpo

@CloudExpo: Article

Bringing Cloud Computing Down to Earth

Three Key Network-related Issues Need to be Addressed: Automation, Capacity and Security

Whether you’re a small business considering cloud services or an enterprise contemplating public or private cloud services, it pays to understand some of the technical challenges and players likely to have a significant impact on the availability, security and costs of those services. Cloud computing is a game changer, and it may also pay to know who could win or lose as IT services are decoupled from specialized hardware in specific locations.

Don’t let the endless list of companies proclaiming cloud leadership confuse you that the world has already embraced cloud; there is a vast difference between using cloud services to deliver software as a service and delivering cloud IT services in a multi-tenant public environment. There is also a sizable gap between cloud announcements, cloud revenue and enterprise-ready cloud services.

Vendors who best address the gap between true cloud requirements and today’s whirlwind of proclamations will be tomorrow’s winners as computing processes and storage requirements shift from endpoints and custom hardware to networks and netbooks. Investors who understand the difference between proclamations and critical technologies will make better decisions. Networking pros who understand the ramifications of this shift will have more influence over their career development.

I’ve been in the networking industry for most of the last nine years, so my perspective is understandably network-centric. My list of critical technical challenges focus on networking, because I think that this area hasn’t been adequately discussed in the haze of vendor cloud positioning exercises; and I think networks will be more strategic to the cloud than they are to the LAN or WAN.

There are at least three network-centric technology challenges when it comes to cloud computing: 1) network automation and management; 2) capacity; and 3) security.

The Case for Network Automation

Virtualization set the stage for cloud computing by decoupling applications and operating systems from hardware. Some even suggest that virtualization software is an operating system. That decoupling combined with VMotion enables considerable savings in how servers are utilized. Racks of specialized servers kept on 24/7 in case they’re needed can be converted into smaller racks of more powerful blade servers distributed around the world to exploit off peak power turned on as they’re needed.

The larger the pool of blade servers that can be utilized as needed the higher the energy savings. Check out this product efficiency calculator at the Cisco data center blog. Today’s network infrastructure (infrastructure 1.0) contains millions of specialized servers connected by complex, growing networks wasting huge amounts of energy, from electricity to the human capital required for changes, configuration and a host of mundane, yet specialized tasks.

The Increasingly Unbearable Human Capital Factor

These tasks engage ranks of network administrators manually managing everything from spreadsheets of IP addresses (otherwise known as IP address management or IPAM) to DNS/DHCP, RADIUS, NTP and TFTP. You can call these services core network services, or one of the last bastions of manual labor and expense in IT. Manual labor gets increasingly expensive (even on a per IP address basis) as networks grow and outage risks increase with every new device and network added.

Committees form as networks grow in an effort to avoid the risk of outage and exercise better control over the availability, security and scalability of the network, not to mention the performance of applications. Yet these committees add extra time and resources and expense to every network change, increasing expenses further in an effort to reduce risk. This “necessary bureaucracy” required (at least with manually managed networks) severely constrains the ability of an organization to embrace the flexibility and consolidation enabled by virtualization and cloud.

While network automation (or the automation of core network services) can deliver sizable capital and operating expense savings it also helps companies position themselves for the coming era of virtualization and cloud computing. Yes its true: some of the most mundane, even boring tasks required to keep a network available will become even more strategic to the next big era of computing.

The Case for more Network Capacity

I’m on a panel in late May at the Strategic News Service Future in Review conference on dynamic infrastructure (infrastructure 2.0), along with Richard Kagan from Infoblox, Doug Gourlay from Cisco, Erik Giesa from F5 Networks and Mark Thiele from VMware. I fully expect Cisco and F5 Networks to take viewers through the massive network requirements involved in shifting loads from one location to another.

You can watch Cisco’s Gourlay (via YouTube) talk about the sheer load, operating and cash requirements (before movement is added) of a data center during a recent Infrastructure 2.0 event. Here on YouTube, about 5 minutes in you can watch Gourlay talk about the new network requirements of virtualization and cloud services and about the load requirements 8 minutes in here on YouTube.

The business case for this level of mobility is especially powerful for the larger enterprise and service provider. And I think it is this business case that will drive the next round of investment in network infrastructure. Cisco’s recent Unified Computing announcement, and recent IBM/Juniper announcements and IBM/Sun discussions all point to the synergy between networks, applications, endpoints and virtualized services.

I’m still waiting for a networking vendor to announce its own branded OEM netbook, similar to how Cisco entered VoIP years ago with Cisco branded OEM phones.

The blade server loaded with virtualization software is called a hypervisor. One of the most important network implications of the hypervisor is that the network actually terminates inside the blade server. This could explain to those preoccupied with the blade server portion of Cisco’s recent announcement how strategic the hypervisor is to the network.

The (Infrastructure 2.0) network will ultimately be built on meshes of ever more powerful blade servers connected by ever more powerful networks capable of ever more powerful load transport managed by new generations of specialized appliances delivering unprecedented levels of automation and management. Specialization will shift from the hardware in the core of the network (starting with blade servers) to the hardware automating and managing the network.

Strategic Specialization Driving Unprecedented Automation and Commoditization

The increasing levels of movement and load and the business case enabled by virtualization and cloud computing will make management and automation strategic to the cloud. That strategic payoff will justify and support specialization while commodity functions will increasingly shift to software on commoditized blades.

Those who miss the strategic payoff of network automation will learn a painful lesson: adding higher velocities of change to a manually administered network drives up expenses and erodes the business case for virtualization and cloud computing. Virtualization cannot thrive on a network run by checklists and committees You can read a recent blog by Cisco's James Urquhart addressing the critical role that core network service automation plays in the evolution to Infrastructure 2.0.

As commoditization spreads through populations of servers and switches and routers, intelligence and automation will shift from spreadsheets and manual labor intensive freeware to a new generation of specialized, powerful appliances specifically designed to unleash the power of automation through ever larger and more geographically dispersed Grids. Those vendors designed in, perhaps through partnerships and/or preloaded software will have strategic advantages over those still caught up in the monetization of complexity and control that played a key part in the growth of the network hardware appliance industry.

We saw the same effect in the application delivery space as load balancers were commoditized and intelligence and specialization were designed into new layer 4-7 application front ends. New application delivery demands forced new functionality into specialized network appliances and established a booming industry made up by the likes of F5 Networks, Cisco and others. New levels of load and mobility will require more network capacity and more automation and management.

The Hazy Cloud Security Story

When virtualization entered the data center it indirectly drove a meme explosion around virtualization security. Those driving virtualization into production were in effect colliding two worlds of IT not used to working together: devtest (operations) and network security. Of all of the virtualization players, VMware got this first and created an ecosystem and making an acquisition that enabled the first serious security offering from a virtualization vendor.

As virtualization is a critical enabler of cloud computing, enabling the dynamic movement of processing power from one location to another (the decoupling of application from hardware), the virtualization security issues only get more complex in a cloud environment. For an entertaining deep dive try out Chris Hoff’s "The Frog who would be King" PowerPoint deck. Or try his blog on PCI compliance in the cloud.

In essence, the very dynamic mobility of a cloud computing environment wreaks havoc on static network security infrastructure. The same old attacks suddenly get new cloud attack vectors and new, ever larger hordes of available treasure. While Google and Amazon often deny cloud security issues by issuing blanket statements, their cloud efforts are clearly focused on businesses and consumers less concerned about security risks and compliance. Other cloud providers may have a similar approach.

That isn’t to say that they haven’t solved critical security issues, just that they haven’t been very open in discussing them. For those of us all to aware of the virtualization security surprise and its impact on VLAN spaghetti (the anti-cloud), cloud security proclamations only deliver a hazy picture of an image that needs to be very clear to enterprise IT execs.

The Triple Play

Looking forward I think the three dynamics of network automation, capacity and security will create new opportunities for vendors and network pros who understand the strategic shift enabled by cloud and the technological barriers or issues. More and more it appears that IT services will evolve and force new partnerships and potentials and shift specialization into new areas of IT that enable greater automation and mobility. That will enable new security and capacity capabilities.

As Cisco, Microsoft, VMware, Juniper, IBM and Sun place their bets in various forms of partnership or collaboration it seems clear that whoever offers the most dynamic infrastructure with the most effective security and greatest capacity will have a strategic advantage selling to large enterprises and service providers. That advantage could put incredible pressures on those who have yet to articulate and deliver on the new vision.

The winners’ main competitors may end up being Google and Amazon instead of the usual assortment of category competitors; as those categories may become extinct.

I am a senior director at Infoblox. You can follow my comments in real time at www.twitter.com/archimedius. Or you can join the Infrastructure 2.0 conversation at the new Infra20.com blog.

More Stories By Greg Ness

Greg Ness is a Silicon Valley marketing veteran with background in networking, security, virtualization and cloud computing. He is VP Marketing at CloudVelocity. Formerly at Vantage Data Centers, Infoblox, Blue Lane Technologies, Juniper Networks, Redline Networks, McAfee, IntruVerofficer at Networks and ShoreTel. He is one of the world's top cloud bloggers.

@CloudExpo Stories
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...
To get the most out of their data, successful companies are not focusing on queries and data lakes, they are actively integrating analytics into their operations with a data-first application development approach. Real-time adjustments to improve revenues, reduce costs, or mitigate risk rely on applications that minimize latency on a variety of data sources. Jack Norris reviews best practices to show how companies develop, deploy, and dynamically update these applications and how this data-first...
Intelligent Automation is now one of the key business imperatives for CIOs and CISOs impacting all areas of business today. In his session at 21st Cloud Expo, Brian Boeggeman, VP Alliances & Partnerships at Ayehu, will talk about how business value is created and delivered through intelligent automation to today’s enterprises. The open ecosystem platform approach toward Intelligent Automation that Ayehu delivers to the market is core to enabling the creation of the self-driving enterprise.
"We're here to tell the world about our cloud-scale infrastructure that we have at Juniper combined with the world-class security that we put into the cloud," explained Lisa Guess, VP of Systems Engineering at Juniper Networks, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We're a cybersecurity firm that specializes in engineering security solutions both at the software and hardware level. Security cannot be an after-the-fact afterthought, which is what it's become," stated Richard Blech, Chief Executive Officer at Secure Channels, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
In his session at 20th Cloud Expo, Mike Johnston, an infrastructure engineer at Supergiant.io, discussed how to use Kubernetes to set up a SaaS infrastructure for your business. Mike Johnston is an infrastructure engineer at Supergiant.io with over 12 years of experience designing, deploying, and maintaining server and workstation infrastructure at all scales. He has experience with brick and mortar data centers as well as cloud providers like Digital Ocean, Amazon Web Services, and Rackspace. H...
SYS-CON Events announced today that Grape Up will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct. 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Grape Up is a software company specializing in cloud native application development and professional services related to Cloud Foundry PaaS. With five expert teams that operate in various sectors of the market across the U.S. and Europe, Grape Up works with a variety of customers from emergi...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
SYS-CON Events announced today that Massive Networks will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Massive Networks mission is simple. To help your business operate seamlessly with fast, reliable, and secure internet and network solutions. Improve your customer's experience with outstanding connections to your cloud.
DevOps is under attack because developers don’t want to mess with infrastructure. They will happily own their code into production, but want to use platforms instead of raw automation. That’s changing the landscape that we understand as DevOps with both architecture concepts (CloudNative) and process redefinition (SRE). Rob Hirschfeld’s recent work in Kubernetes operations has led to the conclusion that containers and related platforms have changed the way we should be thinking about DevOps and...
Everything run by electricity will eventually be connected to the Internet. Get ahead of the Internet of Things revolution and join Akvelon expert and IoT industry leader, Sergey Grebnov, in his session at @ThingsExpo, for an educational dive into the world of managing your home, workplace and all the devices they contain with the power of machine-based AI and intelligent Bot services for a completely streamlined experience.
Because IoT devices are deployed in mission-critical environments more than ever before, it’s increasingly imperative they be truly smart. IoT sensors simply stockpiling data isn’t useful. IoT must be artificially and naturally intelligent in order to provide more value In his session at @ThingsExpo, John Crupi, Vice President and Engineering System Architect at Greenwave Systems, will discuss how IoT artificial intelligence (AI) can be carried out via edge analytics and machine learning techn...
FinTechs use the cloud to operate at the speed and scale of digital financial activity, but are often hindered by the complexity of managing security and compliance in the cloud. In his session at 20th Cloud Expo, Sesh Murthy, co-founder and CTO of Cloud Raxak, showed how proactive and automated cloud security enables FinTechs to leverage the cloud to achieve their business goals. Through business-driven cloud security, FinTechs can speed time-to-market, diminish risk and costs, maintain continu...
"Cloud computing is certainly changing how people consume storage, how they use it, and what they use it for. It's also making people rethink how they architect their environment," stated Brad Winett, Senior Technologist for DDN Storage, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Existing Big Data solutions are mainly focused on the discovery and analysis of data. The solutions are scalable and highly available but tedious when swapping in and swapping out occurs in disarray and thrashing takes place. The resolution for thrashing through machine learning algorithms and support nomenclature is through simple techniques. Organizations that have been collecting large customer data are increasingly seeing the need to use the data for swapping in and out and thrashing occurs ...
As many know, the first generation of Cloud Management Platform (CMP) solutions were designed for managing virtual infrastructure (IaaS) and traditional applications. But that’s no longer enough to satisfy evolving and complex business requirements. In his session at 21st Cloud Expo, Scott Davis, Embotics CTO, will explore how next-generation CMPs ensure organizations can manage cloud-native and microservice-based application architectures, while also facilitating agile DevOps methodology. He wi...
SYS-CON Events announced today that Datera, that offers a radically new data management architecture, has been named "Exhibitor" of SYS-CON's 21st International Cloud Expo ®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Datera is transforming the traditional datacenter model through modern cloud simplicity. The technology industry is at another major inflection point. The rise of mobile, the Internet of Things, data storage and Big...
Blockchain is a shared, secure record of exchange that establishes trust, accountability and transparency across business networks. Supported by the Linux Foundation's open source, open-standards based Hyperledger Project, Blockchain has the potential to improve regulatory compliance, reduce cost as well as advance trade. Are you curious about how Blockchain is built for business? In her session at 21st Cloud Expo, René Bostic, Technical VP of the IBM Cloud Unit in North America, will discuss th...
“Why didn’t testing catch this” must become “How did this make it to testing?” Traditional quality teams are the crutch and excuse keeping organizations from making the necessary investment in people, process, and technology to accelerate test automation. Just like societies that did not build waterways because the labor to keep carrying the water was so cheap, we have created disincentives to automate. In her session at @DevOpsSummit at 20th Cloud Expo, Anne Hungate, President of Daring System...
SYS-CON Events announced today that GrapeUp, the leading provider of rapid product development at the speed of business, will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Grape Up is a software company, specialized in cloud native application development and professional services related to Cloud Foundry PaaS. With five expert teams that operate in various sectors of the market acr...