Emerging Enterprise Architecture

Hybrid Cloud

Subscribe to Hybrid Cloud: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Hybrid Cloud: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Public, Private and Hybris Authors: Elizabeth White, Pat Romanski, John Katrick, AppNeta Blog, Kong Yang

Related Topics: Cloud Computing, Cloud Security Journal , Hybrid Cloud

Blog Post

Hybrid Cloud Security | @CloudExpo @Cavirin #API #SDN #AI #DX #DataCenter

For enterprises, the hybrid cloud provides a best of both worlds solution

According to a recent Gartner study, by 2020, it will be unlikelythat any enterprise will have a "no cloud" policy, and hybrid will be the most common use of the cloud. While the benefits of leveraging public cloud infrastructures are well understood, the desire to keep critical workloads and data on-premise in the private data center still remains. For enterprises, the hybrid cloud provides a best of both worlds solution. However, the leading factor that determines the preference to the hybrid cloud, among other things, is "security." Moreover, as the growth of the public cloud infrastructure continues, it is not hard to observe two key directions of focus by the cloud providers, namely:

  • The geographical expansiveness of their public cloud infrastructure to grow the number of availability zones
  • The richness of their services catalog to ensure cloud adopters are not discouraged by the lack of cloud services across IaaS as well as PaaS layers

This is not to say that public cloud providers are not focused on security. Their view is that security on the cloud is as much of the user's problem as that of the cloud provider's problem, as evidenced by the shared responsibility model. More recent technology advances such as containers and hyper-converged infrastructure solutions provide enough motivation for the enterprises to continue to keep their critical workloads on-premise and still not become technologically obsolete.

Regardless of the above arguments, a fundamental problem of architecting a flexible and dynamic security solution for the hybrid cloud exists and becomes critical as the growth continues in cloud and data center technologies. Any architecture that can be thought of must address the following questions:

  • Can we safely migrate workloads to AWS, Microsoft Azure, or Google when there are fundamental differences between security practices between the data center and the public cloud?
  • How effectively we can create a hybrid, segmented network that spans across the resources on the public cloud and private data center, while still addressable as a single entity with a common security objective?
  • If business needs require the use of more than one public cloud provider, how can we create a "canonical" security model and management methodology knowing the fundamental differences in the way compute, storage, and networks are consumed across heterogeneous public clouds?
  • Knowing very well that next generation advances in IT infrastructure technologies such as containers and hyper-converged infrastructure are equally applicable on private data centers, how can we bring in a security management program that evolves with technology trends?, and finally
  • How to keep up with the dynamic requirements of staying compliant on an ever evolving set of security benchmarks and regulatory standards such as PCI, HIPAA, etc.?

We identify the following fundamental characteristics as essential for a reference architecture to address the questions raised above. They are:

  • It must be a platform, and not a tool or a point solution.
  • It must be open with a rich set of APIs to consume its services by multiple means (UI, SDK, custom-built solutions).
  • It is adaptive and allows for extensibility without constraining with any sort of technology lock-in.
  • It is canonical in the way it approaches the security management by abstracting the variability of the cloud providers and technology differences between cloud and on-premise.
  • It has to be minimally invasive, with a small deployment footprint, yet capable of reaching out to a vast and heterogeneous infrastructure for security assessment.
  • It must allow for easy integration with existing enterprise systems used for day-to-day infrastructure management.
  • It must have a means of ingesting security data from sources internal or external to the enterprise if that data is found to be relevant for security assessment.

In Figure 1, a reference architecture is depicted that highlights how a forward-looking, security conscious enterprise may deploy a security solution within the AWS public cloud and a private data center that has a mix of legacy as well as a virtualized computing infrastructure. A compelling appeal of this architecture is its ability to retain the security findings and other assessment data within the enterprise boundary while still maintaining the flexibility of extending the security operations into the public cloud resources of the enterprise.

The World's Largest "Cloud Digital Transformation" Event

@CloudExpo / @ThingsExpo 2017 New York 
(June 6-8, 2017, Javits Center, Manhattan)

@CloudExpo / @ThingsExpo 2017 Silicon Valley
(Oct. 31 - Nov. 2, 2017, Santa Clara Convention Center, CA)

Full Conference Registration Gold Pass and Exhibit Hall ▸ Here

Register For @CloudExpo ▸ Here via EventBrite

Register For @ThingsExpo ▸ Here via EventBrite

Register For @DevOpsSummit ▸ Here via EventBrite

Sponsorship Opportunities

Sponsors of Cloud Expo @ThingsExpo will benefit from unmatched branding, profile building and lead generation opportunities through:

  • Featured on-site presentation and ongoing on-demand webcast exposure to a captive audience of industry decision-makers
  • Showcase exhibition during our new extended dedicated expo hours
  • Breakout Session Priority scheduling for Sponsors that have been guaranteed a 35 minute technical session
  • Online targeted advertising in SYS-CON's i-Technology Publications
  • Capitalize on our Comprehensive Marketing efforts leading up to the show with print mailings, e-newsletters and extensive online media coverage
  • Unprecedented Marketing Coverage: Editorial Coverage on ITweetup to over 100,000 plus followers, press releases sent on major wire services to over 500 industry analysts

For more information on sponsorship, exhibit, and keynote opportunities, contact Carmen Gonzalez (@GonzalezCarmen) today by email at events (at) sys-con.com, or by phone 201 802-3021.

Secrets of Sponsors and Exhibitors ▸ Here
Secrets of Cloud Expo Speakers ▸ Here

All major researchers estimate there will be tens of billions devices - computers, smartphones, tablets, and sensors - connected to the Internet by 2020. This number will continue to grow at a rapid pace for the next several decades.

With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend @CloudExpo@ThingsExpo, June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA. Learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.

Track 1. FinTech
Track 2. Enterprise Cloud | Digital Transformation
Track 3. DevOps, Containers & Microservices 
Track 4. Big Data | Analytics
Track 5. Industrial IoT
Track 6. IoT Dev & Deploy | Mobility
Track 7. APIs | Cloud Security
Track 8. AI | ML | DL | Cognitive Computing

Delegates to Cloud Expo @ThingsExpo will be able to attend 8 simultaneous, information-packed education tracks.

There are over 120 breakout sessions in all, with Keynotes, General Sessions, and Power Panels adding to three days of incredibly rich presentations and content.

Join Cloud Expo @ThingsExpo conference chair Roger Strukhoff (@IoT2040), June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA for three days of intense Enterprise Cloud and 'Digital Transformation' discussion and focus, including Big Data's indispensable role in IoT, Smart Grids and (IIoT) Industrial Internet of Things, Wearables and Consumer IoT, as well as (new) Digital Transformation in Vertical Markets.

Financial Technology - or FinTech - Is Now Part of the @CloudExpo Program!

Accordingly, attendees at the upcoming 20th Cloud Expo @ThingsExpo June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA will find fresh new content in a new track called FinTech, which will incorporate machine learning, artificial intelligence, deep learning, and blockchain into one track.

Financial enterprises in New York City, London, Singapore, and other world financial capitals are embracing a new generation of smart, automated FinTech that eliminates many cumbersome, slow, and expensive intermediate processes from their businesses.

FinTech brings efficiency as well as the ability to deliver new services and a much improved customer experience throughout the global financial services industry. FinTech is a natural fit with cloud computing, as new services are quickly developed, deployed, and scaled on public, private, and hybrid clouds.

More than US$20 billion in venture capital is being invested in FinTech this year. @CloudExpo is pleased to bring you the latest FinTech developments as an integral part of our program, starting at the 20th International Cloud Expo June 6-8, 2017 in New York City and October 31 - November 2, 2017 in Silicon Valley.

@CloudExpo is accepting submissions for this new track, so please visit www.CloudComputingExpo.com for the latest information.

Speaking Opportunities

The upcoming 20th International @CloudExpo@ThingsExpo, June 6-8, 2017, at the Javits Center in New York City, NY and October 31 - November 2, 2017, Santa Clara Convention Center, CA announces that its Call For Papers for speaking opportunities is open.

Submit your speaking proposal today! ▸ Here

Our Top 100 Sponsors and the Leading "Digital Transformation" Companies

(ISC)2, 24Notion (Bronze Sponsor), 910Telecom, Accelertite (Gold Sponsor), Addteq, Adobe (Bronze Sponsor), Aeroybyte, Alert Logic, Anexia, AppNeta, Avere Systems, BMC Software (Silver Sponsor), Bsquare Corporation (Silver Sponsor), BZ Media (Media Sponsor), Catchpoint Systems (Silver Sponsor), CDS Global Cloud, Cemware, Chetu Inc., China Unicom, Cloud Raxak, CloudBerry (Media Sponsor), Cloudbric, Coalfire Systems, CollabNet, Inc. (Silver Sponsor), Column Technologies, Commvault (Bronze Sponsor), Connect2.me, ContentMX (Bronze Sponsor), CrowdReviews (Media Sponsor) CyberTrend (Media Sponsor), DataCenterDynamics (Media Sponsor), Delaplex, DICE (Bronze Sponsor), EastBanc Technologies, eCube Systems, Embotics, Enzu Inc., Ericsson (Gold Sponsor), FalconStor, Formation Data Systems, Fusion, Hanu Software, HGST, Inc. (Bronze Sponsor), Hitrons Solutions, IBM BlueBox, IBM Bluemix, IBM Cloud (Platinum Sponsor), IBM Cloud Data Services/Cloudant (Platinum Sponsor), IBM DevOps (Platinum Sponsor), iDevices, Industrial Internet of Things Consortium (Association Sponsor), Impinger Technologies, Interface Masters, Intel (Keynote Sponsor), Interoute (Bronze Sponsor), IQP Corporation, Isomorphic Software, Japan IoT Consortium, Kintone Corporation (Bronze Sponsor), LeaseWeb USA, LinearHub, MangoApps, MathFreeOn, Men & Mice, MobiDev, New Relic, Inc. (Bronze Sponsor), New York Times, Niagara Networks, Numerex, NVIDIA Corporation (AI Session Sponsor), Object Management Group (Association Sponsor), On The Avenue Marketing, Oracle MySQL, Peak10, Inc., Penta Security, Plasma Corporation, Pulzze Systems, Pythian (Bronze Sponsor), Cosmos, RackN, ReadyTalk (Silver Sponsor), Roma Software, Roundee.io, Secure Channels Inc., SD Times (Media Sponsor), SoftLayer (Platinum Sponsor), SoftNet Solutions, Solinea Inc., SpeedyCloud, SSLGURU LLC, StarNet, Stratoscale, Streamliner, SuperAdmins, TechTarget (Media Sponsor), TelecomReseller (Media Sponsor), Tintri (Welcome Reception Sponsor), TMCnet (Media Sponsor), Transparent Cloud Computing Consortium, Veeam, Venafi, Violin Memory, VAI Software, Zerto

About SYS-CON Media & Events
SYS-CON Media (www.sys-con.com) has since 1994 been connecting technology companies and customers through a comprehensive content stream - featuring over forty focused subject areas, from Cloud Computing to Web Security - interwoven with market-leading full-scale conferences produced by SYS-CON Events. The company's internationally recognized brands include among others Cloud Expo® (@CloudExpo), Big Data Expo® (@BigDataExpo), DevOps Summit (@DevOpsSummit), @ThingsExpo® (@ThingsExpo), Containers Expo (@ContainersExpo) and Microservices Expo (@MicroservicesE).

Cloud Expo®, Big Data Expo® and @ThingsExpo® are registered trademarks of Cloud Expo, Inc., a SYS-CON Events company.

More Stories By Ravi Rajamiyer

Dr. Ravi Rajamiyer serves as Cavirin’s vice president of engineering. He leads the engineering organization at Cavirin, where he is responsible for Cavirin’s products, services, as well as research and development. He is a seasoned software engineering professional, with a solid track record of building, mentoring and leading high-performance engineering teams. In his career, Ravi has spanned product development and R & D responsibilities at Yahoo, VMWare, and a couple of successful Silicon Valley technology startups. He has an MS from Indian Institute of Technology (IIT) Bombay, and a PhD from Washington University in St. Louis.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.