A software-defined network: is it an evolution or a revolution in networking? The hype of SDN has been around for several years, but as yet it doesn’t seem to have managed to get much traction outside of the MSPs and Fortune 500 companies with regard to SDN, and telcos with regard to SD-WAN. When, if ever, will the SDN meltwater reach the fertile plains of the LME?
For this, we really need to look to history.
Previously Published on TVP Stragegy (The Virtualization Practice)
SDN, or software-defined networking, is taking over the world—or at least if you listened to the marketers for the main purveyors of SDN and its cousin SD-WAN, you would think so. In fact, if you just listened to the marketers, you would be feeling pretty inadequate with your local data center; your physical network with its physical firewalls, load balancers, and VPN endpoints; and the rest of the vast plethora of networking tools that keep your corporate IT running smoothly. OK, maybe not smoothly, but well enough to make sure that your company can keep the lights on and pay your salary at the end of the month.
There is no denying that SDN products like NSX from VMware, ACI from Cisco, and those from Big Switch Networks are fully capable of delivering value and simplifying administration, but the fact remains that SDN is not ubiquitous in the networks of businesses around the world.
Previously Published on TVP Strategy (The Virtualization Practice)
“I have a dream” is what Martin Luther King Jr. said, and admittedly, his was at least an order of magnitude larger than the dreams of an average company founder. But all companies start with a dream. Dreams are great: in them, you can invariably be invincible, conquer every challenge. However, such dreams can quickly turn to nightmares, if you are not careful. A startup is like a dream.
What follows is an idea or a series of ideas: a roadmap, perhaps. Not a freeway, but more of a winding country lane that is hopefully a joy to drive down. Still, it is not without danger—perhaps a mudslide is caused by a sudden deluge, or a deer, alpaca, or kangaroo suddenly runs out into the road. This is a journey into setting up a startup technology company, from the perspective of technology. Do you buy on-site infrastructure, move wholly into public cloud, or perhaps do a mixture of both? If cloud, what particular ’aaS do you partake of—platform, infrastructure, software, or any number of the other flavours that now abound?
The first mistake that the average founder makes when starting a company is to rush headlong into the making of things, be that widgets to fit a sprocket, consultancy days, or what ever else is used to generate revenue. This is expected; you are suddenly the master of your own destiny, and cash flow reigns. However, and this is important, before you even start to earn, there are many things that you should complete, apart from the obvious things like opening your business bank account, getting a good accountant, and incorporating your company. Things like choosing and setting up email, office applications, collaboration software. Timesheets, bookkeeping software, payroll. Customer records database and management.
Previously Published on TVP Strategy (The Virtualization Practice
In 2002, Defense Secretary Donald Rumsfeld gave a speech about a lack of evidence linking the government of Iraq with the supply of weapons of mass destruction to terrorist groups. This speech was remarkable for one thing only, that being the inclusion of the phase “known knowns, unknown knowns, and unknown unknowns.” These concepts finally entered common parlance. True, those in the security arena, both physical and logical, already knew and understood the terms, but now laypeople did as well.
Let me explain myself. In the IT security world, people concern themselves with known knowns, known unknowns, and unknown unknowns all the time, and each area has its security tool of choice. For example, known knowns—worms, viruses, Trojans, and other malware and vulnerabilities we are aware of—are dealt with by firewalls, IPSes, IDSes, and antivirus software. The rules of firewalls and IDS and IPS products, coupled with the signatures of antivirus tools, deal with those issues that are known. For example, firewall rules allow only the traffic that is allowed to travel to navigate the network, and antivirus rules look for particular code patterns and vaccinate and protect against them. Known unknowns are dealt with by heuristic scanning and education. It is the altogether more difficult unknown unknowns that give IT security professionals sleepless nights.
Previously published on TVP Strategy (Virtualization Practice)
They’re changing the guard at Buckingham Palace. This is a major tourist attraction in London, and the changing of the guard happens every Monday, Wednesday, Friday, and Sunday, weather permitting. “Changing the guard” is also a well-known refrain used to signify the complete change of an environment. VMware is currently undergoing such a transformation with regard to its vSphere clients and the introduction of the HTML5 client.
Originally Published on TVP Strategy (the Virtualization Practice)
CCleaner, a program owned by Avast, is the center of a major security scare. Why should you be worried? Well, this product is used by millions of Windows users worldwide to run maintenance on their registry and file systems on their consumer Windows machines. The product has had over two billion downloads in its lifetime, and according to Avast, it gets downloaded over five million times a week. More worrying is that according to Avast’s own figures, the infected product was downloaded and installed on over 2.27 million devices. Avast has removed the infected download and replaced it with a non-affected version.
If you are a user of Avast CCleaner, it is imperative that you check your version and, if you are running version 5.33, upgrade your version immediately. The cloud version 1.07.3191 was also reported as being affected; this version too has been updated.
GDPR is a new set of European regulations that, in a nutshell, set out to codify how a data holder should secure and protect any personal data that they hold. Further, it also codifies the rights of the individual regarding any data held about them. Of course, it being a European regulation, it is obviously a lot more detailed than that.
Firstly, it may be helpful to explain what the difference is between a European regulation and a European directive. Both are legally binding on member states. However, a directive leaves wiggle room for the member states to decide how the stated directive obligation is met, whereas with a regulation, the European Union (EU) dictates both the obligation and the method of fulfilling said obligation.
I recently wrote an article about a potential class action court case being brought against the President of the United States by the Knight Foundation. In the article, I posited that public servants who use their private social media accounts to make work-related statements may run the risk of causing their accounts to become public domain, considered a government mouthpiece and subject to First Amendment protections. It seems that the first salvo has been fired with regard to legal matters concerning social media and the First Amendment to the US Constitution. In the recent case Brian C. Davison v. Loudoun County Board of Supervisors, et al, heard in the US District Court for the Eastern District of Virginia, it was held that a local politician had violated the free speech rights of a constituent whom she had banned from her Facebook page. The judge said the case raised important questions about constitutional restrictions that apply to the social media accounts of elected officials. It seems that US jurisprudence is moving in the directions I alluded to in my previous post.
The law of international conflict is clear on when and how a state may invoke a state of armed conflict between sovereign nations. For example, in the US, the power to declare war is reserved for Congress, regardless of the President’s position as head of the US Armed Forces. It also dictates the reasons for which one nation may declare war on another. For example (and these are very limited), after the Second World War, the Allies, in an attempt to end the practice of armed conflict, created the United Nations. As one of the UN’s first acts, it invoked the United Nations Charter, which prohibits both the threat and the use of force in international conflicts. This has effectively made declaration of war a largely obsolete instrument in international relations. You may be wondering by this time what exactly I am blathering on about. I recently read an article in The Guardian, a UK media outlet, titled “NotPetya malware attacks could warrant retaliation, says Nato affiliated-researcher” [sic]. The title worried me, so I dove in and read the article.
1.1 Define the AWS cloud and its value proposition
Definition of the AWS Cloud
Amazon Web Services (AWS) is a secure public services platform that offers a number of services including compute power (EC2), database (RDS), storage (S3), and other functionality to help businesses scale and grow without the need to own phyiscal hardware or expensive datacenters. Many customers currently leverage AWS cloud products and solutions to build sophisticated infrastructures and applications which have increased flexibility, scalability and reliability for their businesses.
AWS Cloud provides a broad set of infrastructure services (currently there are over 100 services are available),
such as computing power, storage options, networking and databases, delivered as a utility: on-demand, available in seconds, with pay-as-you-go pricing, there is also a free tier that give 750 hours of usage a month so that you can dip your toe in.
It is available with 44 availability zones within 18 geographic regions across the world (this includes the specialist GOV region, and the two Chinese only regions. – with 5 more regions announced.
AWS have a good standard of security certification and accreditation, with data encryption at rest and in-transit, hardware security modules and strong physical security which all contribute to a more secure way to manage a company’s business’ IT infrastructure.
With the built-in capabilities for controlling, auditing and managing identity, configuration and usage which come built into the platform. Will aid customers to meet their compliance, governance and regulatory requirements.