Enterprise Cloud & vCloud Datacenter

Bill Lowry Vice President, Cloud Services
Hosted by:

Completely shared Single network context Public transport only Shared computing resources

First come first served

Dedicated environment Fully secure and customizable

Loses shared economies of scale
Expensive to deploy, manage & maintain

Physical multi-tenancy Logical segmentation of resources
Private compute pools Private network integration Private address space

Dedicated firewall context

Guaranteed availability Fully auditable

Data Centers Network Infrastructure Connectivity Server Platform Storage Architecture

NAP of the Capital Region™

• • • • •

30 acre federal-grade campus Engineered to meet Uptime Institute Tier III standards Highest levels of physical security Office building with SCIF-compliant 150-seat auditorium Goal: FISMA & DIACAP compliant deployments

Data Centers Network Infrastructure Connectivity Server Platform Storage Architecture

Architectural security Physical security Authentication Management security model

Lifecycle security services
Compliance & audit


Management Systems
Security Models Standards Virtualization Platform API

Datacenter migration services Colocation for legacy device connectivity Dedicated circuits/Private networking Managed services Backup services Disaster Recovery

Skills Expertise Organizational Structure Communication Path

Additional Services

VMware vCloud Datacenter Services
Enterprise Hybrid Cloud Delivered

Michelle Kerby Director, vCloud Product Marketing VMware

© 2009 VMware Inc. All rights reserved

“Enterprise Hybrid” Requirements Aligned with VMware
Recent global study among CIOs and top IT decision makers Key findings:

 Requirements for Enterprise Hybrid cloud are clear; (high performance,
enterprise-level security and Quality Of Service, application portability)

 Business Agility is the top driver for cloud (75%)  Highest deployments in private clouds today; ~ 20% (and growing) using hybrid
cloud today

 88% would use cloud more if they could achieve the same or better security as
their internal datacenter

 88% rate cloud computing as priority over the next 18 months  Adoption is maturing quickly; 2/3 of respondents planning or adopting cloud today,
22% already in department and enterprise-wide deployments

 95% agree that virtualization is critical to cloud  93% agree with VMware’s definition of cloud computing

Base: 636 Total respondents; 234 US respondents; 202EMEA respondents; 200 APAC respondents Source: CIO Global Cloud Computing Adoption Survey January 2011


Enterprise Hybrid Cloud Requirements – Summary

Agility with Reliable Performance
• On-demand provisioning of virtual servers • Fast scale up at reasonable cost • Predictable, consistent SLAs

• Secure & auditable cloud infrastructure • Secure apps and user access

Application Portability
• Compatible with existing workloads • Globally consistent service across providers


VMware offers the best of both worlds with hybrid cloud



 Common platform
Common management

 Common security

Private Cloud

Enterprise Hybrid Cloud Security
Cloud Infrastructure

vCloud Service Provider

Cloud Infrastructure

Cloud Computing Moves from a Technology Discussion to a Business Decision

vCloud Enables Agility and Efficiency Across Multiple Clouds
 Increase business agility by empowering
users to rapidly deploy services on-demand through self-service portals and catalogs
Consuming Infrastructure as a Service

Optimize not only  Improve security and compliance within
how IT is delivered and managed, but  Reduce costs by more efficiently delivering resources and by consolidating also how it is and standardizing your infrastructure consumed
access controls and vShield security
multi-tenant environments with strong

Producing Infrastructure as a Service

 Enable application portability and
interoperability across clouds while leverage existing investments


Why a VMware Enterprise Hybrid Cloud
VMware Key Differentiators  Quality of Service

• vSphere is the most trusted virtualization platform, offering unique capabilities for
performance and availability

 Security
• VMware offers robust security across private and public clouds covering the platform, access
controls, and network security

 Complete, out-of-the-box solution
• VMware has the complete software stack and the IP to deliver on cloud computing today

 Compatibility and interoperability across clouds
• VMware extends your investment in vSphere to offer the benefits of cloud computing while:


Supporting both new and existing applications Operating across public and private clouds Leveraging open standards and interfaces


VMware vCloud Services Enhance Your Private Cloud Deployment
Enterprise Hybrid Cloud
Private Cloud Public Cloud
Co-Branded vCloud Services

Service Consumption
vCloud Request Manager vCenter Chargeback

vCloud Datacenter

Portability Service Delivery
vCloud Director

Security & performance for enterprises

Cross-Cloud Standards Security and Compliance
vShield Security Family vCenter Configuration Manager vCloud API Open Virtualization Format

vCloud Express
Rapid, credit card payment for developers

Cross-Cloud Management
vCloud Connector

vCloud Powered
Broad array of VMware-compatible clouds for any business need

Resource Management
vSphere vCenter Management Family


Agility: Self-Service Computing, Quickly Delivered

 Two ways to connect
• Web-based GUI – consistent with •
your private cloud Programmatic access through vCloud API

 Delegated controls
• Basic VM operations, including • • Customize the guest OS
provisioning and de-provisioning Move vApp to new VDC

 Never lose control
• Bounded by the virtual data center • Segregation Of Duties through rolebased access control


Predictable Cloud Performance

 vCloud Datacenters are given
specific performance and availability characteristics

• Backed by allocated hardware • Pre-defined SLA / response time • Availability, performance guarantees


 Uses vSphere features such as
• VMware HA • DRS and vMotion • Storage and Network I/O control


 vShield technologies built in
• Virtual firewall • Virtual layer 2 and layer 3 network



“Follow The Application” Security

   

Fully virtualized security Full virtual layer 2 networking per vApp and per Organization DHCP and NAT per vApp Virtual firewall per vApp and per Organization using vShield Edge

User Security: Authentication & Access Controls

 Authenticate Users via
Enterprise directory (LDAP)

• Secure access for multiple users per
account • No “shadow” user list to manage in the cloud • All access logged for audit trail

 Role-based access controls
• Managed delegation of •
responsibilities Essential to implement segregation of duties for security purposes


Portability: Bring Your Own Virtual Machine

 Same management experience and look & feel  Export VM as OVF from vSphere or convert VMDK to OVF  Upload & Import into vCloud Datacenter


Types of vCloud Datacenter Services You Can Buy
vCloud Datacenter
Scripts/Programs IT staff and users

 VMware certified to
be globally consistent Run any VMware OVF image Private cloud not required Self-service within boundaries of VDC Auditable security Audited with control set consistent SAS 70 and/or ISO compliance 27001 audited framework

vCloud API

VMware vCloud Director UI

    

Virtual Data Center Tiers
1. Basic “Pay-per-Use”
 Target: pilot projects and basic dynamic workloads  Pay-for-use model; no subscription

2. Committed
 Target: Workloads that need predictable performance  Subscription model; 100% resourced with 33% burstable

3. Dedicated
 Target: Workloads that need physical segregation  Subscription model; 100% dedicated resource


Compliance Framework
 Compliance Control Matrix
• ISO27001 certified, which proves that security management processes are in place, and • •
have a relevant subset of the ISO27002 controls in place; or SAS 70 Type II audits based on the same relevant set of standard set of controls Map to different frameworks and regulations such as HIPAA/HITECH, PCI, COBIT, etc.

 Ensure Customer Transparency
• Compliance Logging
o o o o o

Identity and access management User activities monitoring Change and configuration management Security and threat management Business continuity and availability management

 Ensure Customer Control
• Full self-service in managing the customer organization (users, firewall policy, etc) • LDAP authentication, potentially connect back to corporate AD

 Compliance Architecture
• Ensure the infrastructure is secure and compliant


Next steps

 Learn more about vCloud Datacenter Services
• http://www.vmware.com/solutions/cloud-computing/publiccloud/ • Contact us :
o o

Email: vclouddatacenter@vmware.com Phone: 1-877-4-VMWARE

 Conduct a cloud readiness assessment with your VMware rep or
with Terremark



Provide your feedback! Please complete our survey

View our calendar of upcoming events

A recorded version of this seminar will be available at www.eSeminarsLive.com
Hosted by: