vmware vcloud data center services overview
TRANSCRIPT
Completely shared
Single network context
Public transport only
Shared computing resources
First come first served
One-size-fits-all
Dedicated environment
Fully secure and customizable
Loses shared economies of scale
Expensive to deploy, manage & maintain
Physical multi-tenancy
Logical segmentation of resources
Private compute pools
Private network integration
Private address space
Dedicated firewall context
Guaranteed availability
Fully auditable
NAP of the Capital Region™
• 30 acre federal-grade campus
• Engineered to meet Uptime Institute Tier III standards
• Highest levels of physical security
• Office building with SCIF-compliant 150-seat auditorium
• Goal: FISMA & DIACAP compliant deployments
Architectural security
Physical security
Authentication
Management security model
Lifecycle security services
Compliance & audit
Datacenter migration services
Colocation for legacy device connectivity
Dedicated circuits/Private networking
Managed services
Backup services
Disaster Recovery
© 2009 VMware Inc. All rights reserved
VMware vCloud Datacenter ServicesEnterprise Hybrid Cloud Delivered
Michelle Kerby
Director, vCloud Product Marketing
VMware
16
“Enterprise Hybrid” Requirements Aligned with VMware
Recent global study among CIOs and top IT decision makers
Key findings:
Requirements for Enterprise Hybrid cloud are clear; (high performance,
enterprise-level security and Quality Of Service, application portability)
Business Agility is the top driver for cloud (75%)
Highest deployments in private clouds today; ~ 20% (and growing) using hybrid
cloud today
88% would use cloud more if they could achieve the same or better security as
their internal datacenter
88% rate cloud computing as priority over the next 18 months
Adoption is maturing quickly; 2/3 of respondents planning or adopting cloud today,
22% already in department and enterprise-wide deployments
95% agree that virtualization is critical to cloud
93% agree with VMware’s definition of cloud computing
Base: 636 Total respondents; 234 US respondents; 202EMEA respondents; 200 APAC respondents
Source: CIO Global Cloud Computing Adoption Survey January 2011
17
Enterprise Hybrid Cloud Requirements – Summary
Agility with Reliable Performance
• On-demand provisioning of virtual servers
• Fast scale up at reasonable cost
• Predictable, consistent SLAs
Application Portability
• Compatible with existing workloads
• Globally consistent service across providers
Security
• Secure & auditable cloud infrastructure
• Secure apps and user access
18
Apps
VMware offers the best of both worlds with hybrid cloud
Cloud Infrastructure
Apps
Cloud Infrastructure Management
Security
Common platform
Common management
Common security
Cloud Computing Moves from a
Technology Discussion to a Business Decision
vCloud
Service ProviderPrivate Cloud
VMware
Enterprise Hybrid Cloud
19
Optimize not only
how IT is delivered
and managed, but
also how it is
consumed
Increase business agility by empowering
users to rapidly deploy services on-demand
through self-service portals and catalogs
Improve security and compliance within
multi-tenant environments with strong
access controls and vShield security
Reduce costs by more efficiently
delivering resources and by consolidating
and standardizing your infrastructure
Enable application portability and
interoperability across clouds while
leverage existing investments
vCloud Enables Agility and Efficiency Across Multiple Clouds
Consuming Infrastructure as a Service
Producing Infrastructure as a Service
20
Why a VMware Enterprise Hybrid Cloud
VMware Key Differentiators
Quality of Service
• vSphere is the most trusted virtualization platform, offering unique capabilities for
performance and availability
Security
• VMware offers robust security across private and public clouds covering the platform, access
controls, and network security
Complete, out-of-the-box solution
• VMware has the complete software stack and the IP to deliver on cloud computing today
Compatibility and interoperability across clouds
• VMware extends your investment in vSphere to offer the benefits of cloud computing while:
o Supporting both new and existing applications
o Operating across public and private clouds
o Leveraging open standards and interfaces
21
Private Cloud
Portability
Service ConsumptionvCloud Request Manager
vCenter Chargeback
Service DeliveryvCloud Director
Security and CompliancevShield Security Family
vCenter Configuration Manager
Resource ManagementvSphere
vCenter Management Family
Public Cloud
Cross-Cloud StandardsvCloud API
Open Virtualization Format
Cross-Cloud ManagementvCloud Connector
Enterprise Hybrid Cloud
vCloud Powered Broad array of
VMware-compatible clouds
for any business need
VMware vCloud Services Enhance Your Private Cloud Deployment
vCloud Datacenter
Security & performance
for enterprises
vCloud Express
Rapid, credit card payment
for developers
Co-Branded vCloud Services
22
Agility: Self-Service Computing, Quickly Delivered
Two ways to connect
• Web-based GUI – consistent with
your private cloud
• Programmatic access through
vCloud API
Delegated controls
• Basic VM operations, including
provisioning and de-provisioning
• Move vApp to new VDC
• Customize the guest OS
Never lose control
• Bounded by the virtual data center
• Segregation Of Duties through role-
based access control
23
Predictable Cloud Performance
vCloud Datacenters are given
specific performance and
availability characteristics
• Backed by allocated hardware
• Pre-defined SLA / response time
• Availability, performance guarantees
Uses vSphere features such as
• VMware HA
• DRS and vMotion
• Storage and Network I/O control
vShield technologies built in
• Virtual firewall
• Virtual layer 2 and layer 3 network
templates
Availability
Security
Performance
24
“Follow The Application” Security
Fully virtualized security
Full virtual layer 2 networking per vApp and per Organization
DHCP and NAT per vApp
Virtual firewall per vApp and per Organization using vShield Edge
25
User Security: Authentication & Access Controls
Authenticate Users via
Enterprise directory (LDAP)
• Secure access for multiple users per
account
• No “shadow” user list to manage in
the cloud
• All access logged for audit trail
Role-based access controls
• Managed delegation of
responsibilities
• Essential to implement segregation
of duties for security purposes
26
Portability: Bring Your Own Virtual Machine
Same management experience and look & feel
Export VM as OVF from vSphere or convert VMDK to OVF
Upload & Import into vCloud Datacenter
27
vCloud Datacenter
Types of vCloud Datacenter Services You Can Buy
VMware certified to
be globally
consistent
Run any VMware
OVF image
Private cloud not
required
Self-service within
boundaries of VDC
Auditable security
control set
SAS 70 and/or ISO
27001 audited
Scripts/Programs
vCloud API
IT staff and users
VMware vCloud Director UI
Virtual Data Center Tiers
1. Basic “Pay-per-Use”
Target: pilot projects and basic dynamic workloads
Pay-for-use model; no subscription
2. Committed
Target: Workloads that need predictable performance
Subscription model; 100% resourced with 33% burstable
3. Dedicated
Target: Workloads that need physical segregation
Subscription model; 100% dedicated resource
Audited with
consistent
compliance
framework
28
Compliance Framework
Compliance Control Matrix
• ISO27001 certified, which proves that security management processes are in place, and
have a relevant subset of the ISO27002 controls in place; or
• SAS 70 Type II audits based on the same relevant set of standard set of controls
• Map to different frameworks and regulations such as HIPAA/HITECH, PCI, COBIT, etc.
Ensure Customer Transparency
• Compliance Logging
o Identity and access management
o User activities monitoring
o Change and configuration management
o Security and threat management
o Business continuity and availability management
Ensure Customer Control
• Full self-service in managing the customer organization (users, firewall policy, etc)
• LDAP authentication, potentially connect back to corporate AD
Compliance Architecture
• Ensure the infrastructure is secure and compliant
29
Next steps
Learn more about vCloud Datacenter Services
• http://www.vmware.com/solutions/cloud-computing/publiccloud/
• Contact us :
o Email: [email protected]
o Phone: 1-877-4-VMWARE
Conduct a cloud readiness assessment with your VMware rep or
with Terremark