VIRTUAL DESKTOP TOOLS
NetApp | June 08, 2022
NetApp a global, cloud-led, data-centric software company, today announced continued innovations and solutions to provide enterprises with more simplicity, more security and more flexibility for their hybrid multicloud environments.
These new capabilities include improved ransomware protection, hybrid cloud storage in a single subscription, unified management in a single user interface, and close collaboration with VMware to help transition workloads to the cloud.
As enterprises acquire public cloud services to augment their existing on-premises data centers, these combined infrastructures become more disparate, inconsistent and fragmented over time. These multicloud silos are inherently more complex to manage due to dealing with multiple disparate environments.
Today, NetApp is delivering a unified and consistent hybrid multicloud experience, allowing customers to run and manage a single platform that spans from on-premises to the world’s biggest public clouds.
“As organizations today explore the promise of hybrid multicloud environments, they are keen to avoid complexity, security, and cost efficiency challenges,” said Ronen Schwartz, senior vice president, Cloud Volumes Service at NetApp. “With NetApp’s simplified management and consumption experience, organizations can enjoy improved security, manageability, speed of operations, and cost savings - ultimately allowing them to be more responsive to the growing needs of their business by delivering capabilities faster, and keeping data available and protected no matter where it lives.”
Simple, secure, and flexible enhancements to NetApp’s hybrid cloud portfolio include:
Industry-Leading Hybrid Cloud Simplicity Experience –
By delivering everything "as a service," NetApp simplifies and optimizes hybrid cloud environments with new capabilities, including:
Hybrid cloud Storage-as-a-Service (STaaS) in a single, flexible subscription with Keystone. Organizations can flexibly move workloads to and from the cloud in a single contract.
In addition to managing and monitoring data storage, protection, governance and tiering across multicloud environments, Cloud Manager can now manage Keystone services, track software licenses, monitor infrastructure health and provide proactive recommendations that optimize costs and data protection with automated actions.
"Organizations today are looking for flexibility both on-premises as well as across cloud providers and are investing in as-a-service consumption models to help achieve this," said Scott Sinclair, practice director at ESG. "NetApp's approach with Keystone is targeted at that need; offering hybrid cloud simplicity and flexibility that allows users to accelerate their IT objectives with management, orchestration, and billing wrapped into a single subscription and experience. Keystone's transferable subscription model also supports future cloud migration planning to any major cloud provider, with enterprise-level storage capability and integrated data protection."
Cyber Resilience for Today’s Hybrid Cloud –
The rise of ransomware over the past few years is a growing problem for enterprises. IDC’s 2021 Ransomware Study: Where You Are Matters!1 found that more than one third of organizations worldwide have experienced a ransomware attack or breach that blocked access to systems or data in the 12 months prior.
With NetApp’s new, powerful, built-in cyber resilience capabilities that include anti-ransomware, data protection and security - organizations can mitigate unauthorized user access and threats to data from ransomware attacks. Customers can protect a multitude of workloads, enterprise apps, virtualized workloads and modern containerized applications against security breaches, quickly detect attacks and rapidly recover data before experiencing any impact to operations.
Accelerating Enterprise Cloud Transformation –
NetApp is empowering customers to “modernize to the cloud” using a supplemental datastore for data-intensive, storage demanding workloads running in a single or across multicloud environments. NetApp is the only cloud storage service provider today to be certified and become supported for use as an external supplemental datastore for VMware Cloud environments running in the largest public clouds.
“Organizations across all industries rely on the combination of VMware and NetApp as the platform of choice for delivering business-critical workloads, NetApp is now able to deliver the same levels of enterprise-class data management that our mutual customers have enjoyed for decades on-premises to workloads running in any of the major public clouds.”
Narayan Bharadwaj, vice president of Cloud Solutions at VMware
NetApp is a global, cloud-led, data-centric software company that empowers organizations to lead with data in the age of accelerated digital transformation. The company provides systems, software and cloud services that enable them to run their applications optimally from data center to cloud, whether they are developing in the cloud, moving to the cloud, or creating their own cloudlike experiences on premises. With solutions that perform across diverse environments, NetApp helps organizations build their own data fabric and securely deliver the right data, services and applications to the right people—anytime, anywhere.
VMware | May 16, 2022
Members of the steering group for Envoy Gateway (EG), including Envoy creator Matt Klein and representatives from Ambassador Labs, Fidelity Investments, Tetrate, and VMware, Inc., today announced their joint commitment to the project, which launched today at KubeCon + CloudNativeCon, Europe 2022, under the auspices of the Cloud Native Computing Foundation® (CNCF®). Envoy Gateway is a new effort within the Envoy proxy open source project to simplify Envoy use in cloud-native application development.
Envoy Gateway will reduce existing, redundant efforts around Envoy and make it much easier for application developers to use Envoy as a basic API gateway “out of the box” and as a Kubernetes Ingress controller. Exposing a simplified set of APIs, and implementing the Kubernetes Gateway API, EG makes it easier to extend Envoy. Developers will now have a cost-free, unfettered way to provide external access to their work in progress. At the same time, Envoy Gateway will not replace API management features currently found in commercial products.
“Envoy has achieved a great deal of success since we first released it in 2016,” said Matt Klein, founder of the Envoy proxy project. “And community has been at the heart of Envoy from the beginning. With the community-driven Envoy Gateway project, we see the opportunity to make Envoy accessible to many more users through the addition of simplified APIs and new capabilities explicitly targeted at north-south / edge proxy use cases.”
Envoy is already widely used for traffic between separate services in a microservices application—that is, east-west traffic. With Envoy Gateway, Envoy will also be easy to use for north-south traffic—traffic between an application and the outside world, as with consumers of an application’s APIs.
Envoy Gateway—Extensible Open Source Infrastructure for the Cloud-Native Future
IT organizations worldwide want to establish and use a rich, robust, modern stack of open source software for cloud-native application development and delivery, under the management of organizations such as the Linux Foundation and CNCF. Commercial offerings and projects within each IT team can then add value on top of this core infrastructure.
Envoy is fast becoming the go-to networking substrate within this modern, cloud-native stack. However, the need for API access, traffic routing, and other ingress capabilities has recently led to fragmentation in the Envoy ecosystem. Envoy Gateway will bring this needed functionality back into the main Envoy project and make it less confusing and time-consuming for developers to access Envoy.
Implementation Via Kubernetes Gateway API
Envoy Gateway will expose a version of the Kubernetes-native Gateway API, with Envoy-specific extensions. This is an expressive, extensible, role-oriented API well-suited to use by developers. Gateway API is either implemented, or in progress, for Istio, the Contour project (which originated at VMware), Emissary-ingress (which originated at Ambassador Labs), and others.
When users create Gateway API resources, they will be translated into native Envoy API calls, so Envoy and xDS, its native API, will not need to be changed to add this new support.
Advantages for Developers, Infrastructure Administrators and Business Decision-Makers
Application developers will experience the most positive impact from Envoy Gateway. They will be able to run Envoy Gateway and begin routing traffic to their applications. They will no longer need to build their own control plane, or extend an existing control plane such as a Go or Java control plane, or bring in a vendor solution at the early stages of their projects. They can just configure routes for the application and share them.
Infrastructure administrators will be able to easily offer an Envoy-native experience to application teams, without needing to adopt a vendor solution just to get basic gateway functionality. They will be able to manage instances of Envoy Gateway without interfering with developer access to them. Envoy Gateway will allow them to deliver consistent application networking capabilities across heterogeneous environments.
Executives and decision-makers will have Envoy as a standard and, we expect, widely-used solution for API access and Kubernetes ingress. They will also benefit from faster and easier development and delivery of more secure and robust software and services.
Originally created by Matt Klein and built at Lyft, Envoy is a high performance C++ distributed proxy designed for single services and applications, as well as a communication bus and “universal data plane” designed for large microservice “service mesh” architectures. Built on the learnings of solutions such as NGINX, HAProxy, hardware load balancers, and cloud load balancers, Envoy runs alongside every application and abstracts the network by providing common features in a platform-agnostic manner. When all service traffic in an infrastructure flows via an Envoy mesh, it becomes easy to visualize problem areas via consistent observability, tune overall performance, and add substrate features in a single place.
About Ambassador Labs
Ambassador Labs, the cloud native developer experience leader, enables developers to code, test, ship, and run applications faster and easier than ever. Maker of top Cloud Native Computing Foundation (CNCF) open source projects, including Emissary-ingress and Telepresence, Ambassador Labs delivers a developer control plane for Kubernetes that integrates the development, deployment, and production infrastructure for developers and organizations worldwide including Microsoft, PTC, NVidia, and Ticketmaster
About Fidelity Investments
Fidelity’s mission is to inspire better futures and deliver better outcomes for the customers and businesses we serve. With assets under administration of $11.3 trillion, including discretionary assets of $4.2 trillion as of March 31, 2022, we focus on meeting the unique needs of a diverse set of customers. Privately held for over 75 years, Fidelity employs more than 57,000 associates who are focused on the long-term success of our customers.
VMware is a leading provider of multi-cloud services for all apps, enabling digital innovation with enterprise control. As a trusted foundation to accelerate innovation, VMware software gives businesses the flexibility and choice they need to build the future. Headquartered in Palo Alto, California, VMware is committed to building a better future through the company’s 2030 Agenda.
Banyan Security | June 28, 2022
Banyan Security, a leading provider of Zero Trust Network Access (ZTNA) solutions, today revealed new research highlighting organizations’ preferences and hesitations for adopting modern remote access solutions. The independent survey was conducted by Sapio Research and engaged over 400 senior decision makers from mid- to large-sized companies in the U.S. and Canada, who are responsible for IT security and are aware of both virtual private networks (VPN) and ZTNA. The key findings from this study include:
Over half (54%) of VPN owners stated that secure remote access is a priority at this time.
VPN usage is still prevalent among a majority (90%) of security teams who have highlighted cost, time, and difficulty as reasons to not move forward with ZTNA adoption.
Almost all organizations (97%) say that adopting a zero trust model is a priority, with 93% of organizations having committed a budget to enhance their VPN or move toward ZTNA within the next year or two.
More than half (53%) of respondents have already started rolling out zero trust solutions.
Personal Devices and VPNs Do Not Mix
The last two years have shifted how we work, producing a new remote workforce that was essentially created overnight. As highlighted in this study, this has resulted in most workers – in this case 51% of respondents – using a combination of corporate and personal devices to connect to business applications and resources. Personal devices often used by less security-conscious family members. This creates a very risky environment as personal devices are easy targets for threat actors especially since IT teams cannot fully monitor activity on these devices. Additionally, personal devices are often used by other family members – particularly children – which make them even more susceptible to malware and other viruses.
Despite known security issues, VPN usage continues to thrive, with 90% of respondents currently using a VPN in some capacity for secure remote access. When access is permitted on a personal device, it creates a risky situation for not only the user, but the entire organization. VPNs lack many of the application-level access controls and integrated security that are common in ZTNA solutions. As a result, cybercriminals will often target VPNs because a single set of compromised credentials can provide all of the access needed to carry out a data breach, ransomware incident, or other attacks.
“As this study shows, VPN usage continues to be prevalent, often viewed as ‘good enough’ for remote access among organizations simply because that is what they have always used, What this doesn’t account for is the poor administrative and end user experience, not to mention that on-premises access must be handled with separate, siloed tools. We have plenty of evidence to show that legacy VPNs no longer adequately protect nor provide consistent and easy access to corporate resources for today’s ‘work from anywhere’ workforce.”
Jayanth Gummaraju, CEO & Co-Founder of Banyan Security
Key Drivers for ZTNA
A majority of the respondents (97%) stated that adopting a zero trust model is a priority for their organization, where 44% said they have plans to roll out zero trust but are in the early stages, while 53% said they have already begun to roll out zero trust solutions. For organizations who have begun to roll out ZTNA solutions, the survey revealed that secure remote access (48%), improving the end user experience (34%) and eliminating exposure to VPN vulnerabilities (34%) were the top three drivers in their decision to choose ZTNA. Unlike VPNs, ZTNA provides access on a case-by-case basis, which is decided based on user, device, and application-level access and security controls.
What’s Holding VPN Users Back from Making the Switch?
Over two thirds of organizations (69%) believe implementing a ZTNA strategy would require a large undertaking. Aside from the general familiarity and comfortable usage of their traditional VPN solution, organizations stated that cost/budget constraints are the biggest barriers (62%) for VPN users to adopt ZTNA. Thirty percent of VPN owners said that it would be difficult to implement ZTNA infrastructure in their current security environment; however, 82% of respondents stated they would likely implement ZTNA if there was an easily deployable, inexpensive option. Apathy also appears to be one of the biggest barriers preventing VPN owners from adopting ZTNA solutions with 46% of respondents stating that modern, secure remote access is not a priority at this time.
“While it is good to see that awareness of ZTNA solutions amongst IT security professionals continues to grow, the actual implementation of a ZTNA architecture is still considerably low, with just over 17% of respondents having truly begun to roll out a ZTNA strategy,” continued Gummaraju. “As we look toward a future where remote and hybrid work are the standard for most organizations, it’s encouraging to see that IT teams are looking beyond VPNs at more comprehensive zero trust network access solutions.”
The survey was conducted among 410 Senior Decision Makers from mid- to large-sized companies in the U.S. and Canada, who are responsible for IT security and are aware of both VPN and ZTNA. The interviews were conducted online by Sapio Research in April 2022 using an email invitation and an online survey, with results accurate to ± 4.8% at 95% confidence limits.
About Banyan Security
Banyan Security provides secure, zero trust “work from anywhere” access to infrastructure and applications for employees, developers, and third parties without relying on network-centric legacy VPNs. Deep visibility provides actionable insight while continuous authorization with device trust scoring and least privilege access deliver the highest level of protection with a great end user experience. Banyan Security protects tens of thousands of employees across multiple industries, including finance, healthcare, manufacturing, and technology.
VIRTUAL DESKTOP TOOLS
O-RAN ALLIANCE | June 10, 2022
The O-RAN ALLIANCE invites all interested public to join its next industry summit to be held on June 29, 2022, as an open virtual event. The 2.5-hour session will bring:
Latest updates from the O-RAN ALLIANCE leadership
Updates from the O-RAN ecosystem on RAN openness, intelligence, cloudification, and testing and integration
Live panel discussion: Accelerating industry adoption for large-scale commercialization
For more details and to join the event, please visit www.o-ran.org/events.
O-RAN Global PlugFest Spring 2022 in Progress
O-RAN ALLIANCE has been sponsoring its global PlugFests to enable efficient testing and integration for the O-RAN ecosystem. O-RAN Global PlugFest Spring 2022, first of the two PlugFests planned for this year, has been progressing at 3 venues:
Auray OTIC and Security Lab is hosting 21 participants: Alpha Networks, Askey Computer, Calnex Solutions, Foxconn, Institute for Information Industry, Inventec, IP Infusion, ITRI, JPC connectivity, Keysight Technologies, Lions Technology, LITEON, MICAS, NKG, Pegatron, QCT, REIGN Technology, Rohde & Schwarz, Sageran, VIAVI Solutions and WNC.
Telefonica, at European OTIC in Madrid, is hosting 6 participants: ADVA Optical Networking, Juniper Networks, Keysight Technologies, Precision Optical Transceivers, Ribbon and VIAVI Solutions.
AT&T and DISH are hosting participants including Analog Devices, Anritsu, Calnex Solutions, Cisco, Fujitsu, HCL, IP Infusion, ITRI, Juniper Networks, Keysight Technologies, META, NSF ARA: Living Wireless Lab, NSF PAWR: AERPAW, NSF PAWR: Colosseum, PHYTunes, Rohde & Schwarz, VIAVI Solutions, VMware and Wind River; with assistance from AT&T Lab, NSF PAWR: COSMOS Lab, NSF PAWR: POWDER Lab and University of New Hampshire Interoperability Lab.
All venues aim to conclude the spring PlugFest by end of June 2022.
23 new demos of O-RAN technology at the O-RAN Virtual Exhibition
O-RAN ALLIANCE member companies have been progressing with their O-RAN based implementations. Latest demonstrations will soon be available at the O-RAN Virtual Exhibition.
Newly added Intelligent RAN control demonstrations include:
AirHop and VMware demonstrate how automation and programmability efficiently detect and remediate PCI collisions/confusions to optimize RAN performance. The proposal is a solution to current RAN frequency planning, conflict mitigation and optimization methods which are costly and time-consuming, slowing deployment of new services and decreasing performance of existing ones.
Cellwize and VMware demonstrate how to bring programmability to any type of RAN deployment, including purpose-built RANs. As an example, we demonstrate how Cellwize’s rApp onboarded on VMware Centralized RIC optimizes EN-DC anchoring to maximize spectral usage in purpose-built RANs; leading to monetizable gains in performance.
China Mobile and Lenovo demonstrate how video experience can be optimized using an xApp to predict the available bandwidth for a UE using the RIC and radio information reported over the E2 from the network and providing this predicted bandwidth to the Application Provider to adjust and optimize the video bitrate.
Cohere and VMware demonstrate how using RAN programmability, operators can double mobile bandwidth without any changes to antennas, radio or devices. Using Cohere’s Spectrum Multiplier xApp powered by VMware Distributed RIC, now Services Providers can activate broadband in rural areas while avoiding costly changes in handsets or infrastructure.
GDCNi demonstrates its RF product with high/middle/low transceiver power, performing interoperability testing with other vendors. GDCNi has rich RAN industrial experience and provides private RAN solutions for coal mines, ports, intelligent manufacturing, agriculture, and transportation, and helps to enrich the O-RAN ecosystem.
Intel demonstrates SLA assurance demonstration with AI/ML-powered Network Slice Radio Resource Manager (NSRRM) xApp in an O-RAN RIC integrated with an Open, virtualized RAN. This demo shows operators the viability of offering revenue-generating business models with optimal radio resources.
Polte and VMware demonstrate how to leverage RAN programmability to deliver precise sub-meter UE positioning. Using cellular as prime technology (as opposed to GPS or Wi-Fi), Polte’s xApp powered by VMware’s Near Real-time RIC offers global location indoors/outdoors, while lowering cost and extending battery life of the IoT asset tracker.
Rimedo Labs demonstrates the complete integration of the Traffic Steering xApp into the open-source SD-RAN Near-Real-Time RIC from ONF. The solution highlights the opportunities to control the xApp via the policies through the A1 interface as defined by the O-RAN ALLIANCE, which enables manipulation of the behavior of the corresponding RRM algorithm based on the current strategy coming from the SMO.
Newly added Open RAN demonstrations include:
ArrayComm demonstrates its 5G Distributed Small Cell in a 5G SA E2E network showing its high performance and stability testing with measured downlink and uplink throughputs. It includes white box O-DU, Fronthaul Gateway, and O-RU. The O-DU is a single box built with NXP LX2160A and LA1201 SoC.
ArrayComm demonstrates its 5G Distributed Small Cell on a Marvell platform consisting of a Marvell CNF95O virtualized O-DU card combined with x86/Arm server, Fronthaul Gateway, and O-RU. This platform can be widely used in the capacity coverage improvement scenarios, and also can be easily deployed as distributed RAN or cloud RAN.
China Mobile and Lenovo demonstrate a CaaS platform, which followed O-Cloud specs, and pico gNB BBU respectively to form a joint test solution. Hardware construction has been completed; the first call was made in June. 5G performance will be tested in a E2E environment in next stage.
Comba showcases Open RAN Multi-band Remote Radio Unit with advanced technology that maintains a low power consumption level and better receiver sensitivity. The small form factor and improved Mean Time Before Failure performance contributes to optimized installation and maintenance cost. These features facilitate fronthaul integration with O-DU partners.
Foxconn, Auray and Calnex demonstrate O-RAN S-Plane Performance Testing with Foxconn’s O-RU in Auray OTIC and Security lab with Calnex’s Paragon-neo. O-RAN.WG4.CONF.0 has recommended the S-Plane performance test and functional test to be mandatory for O-RU S-plane testing and therefore mandatory for O-RAN/OTIC O-RU Badging.
Intel, Capgemini, AWS and others demonstrate a unified view of end-to-end 5G service orchestration from the network edge to the cloud. Demo highlights agility using service orchestration to support dynamic network slicing for new business and service capabilities - allowing continuous delivery of new services and features. It also demonstrates O-RAN Fronthaul (xRAN) Test as defined by O-RAN ALLIANCE, using a sample application created to execute test scenarios with features of the xRAN library and test external API.
IS-Wireless showcases a Multi MNO scenario supported in the form of a Neutral Host. The end-to-end Open RAN network is deployable on any cloud in an automated manner as containers and supports both Open Fronthaul Split 7.2x and 3GPP split 2.
LITEON demonstrates FlexFi indoor small cell system based on open interfaces (e.g. Open Fronthaul Interface) enabling a cost effective deployment at large scale. And we also demonstrate an O-RAN based intelligent RAN management and control solution-LiteNetics. In this Proof of Concept, we verified manage gNB via the Radio Intelligent Controller (RIC) with O1 interfaces. LITEON provides 5G products that meet customer needs.
MICAS demonstrates two O-RAN Radio Unit solutions, with one sub-6 GHz indoor small cell and one mmW small cell. Both solutions feature O-RAN's open fronthaul interface technology and enable cost-effective large-scale deployment.
Pegatron, Auray and Calnex demonstrate O-RAN Fronthaul Latency Testing with Pegatron’s O-DU/O-CU in Auray OTIC and Security lab with Calnex’s Paragon-X in network emulation mode. O-RAN.TIFG.E2E-Test.0 has recommended the xHaul latency to be mandatory for O-RAN E2E testing and therefore mandatory for O-RAN/OTIC Badging.
Rohde & Schwarz and VIAVI Solutions jointly demonstrate O-RAN open fronthaul (OFH) conformance and 3GPP pre-conformance validation of a Foxconn O-RU at Auray Lab. The Foxconn O-RU is validated by VIAVI’s automated TM500 O-RU tester with R&S SMW200A vector signal generator, R&S FSVA3000 spectrum analyzer and the R&S VSE signal analysis software. The demonstration highlights a progressive test plan including functional, interoperability, conformance and performance testing, with a single point of control for the entire testbed.
Spirent demonstrates its end-to-end Open RAN test solution enabling the ability to accomplish functional, interoperability, performance, and compliance testing with either a real or emulated UE. This demo walks through the architecture of the solution and gives an overview of the interface, reporting, and capabilities.
Spirent demonstrates a flexible, scalable, high-performance solution for comprehensively testing the CU for compliance, functionality, performance, and capacity. This demo walks through the architecture and presents an overview of the interface, reporting, and capabilities through running a test in 5G SA mode (NSA is also available).
Spirent demonstrates how O-DU is tested with multiple emulated O-RU to verify function, reliability of O-DU & test delay in fronthaul networks. A challenge for O-RAN is long-duration reliability testing. Streamblocks are usually sent once in 5G fronthaul testing. Spirent solution sends continuous traffic to emulate real-world network traffic.
Deploying a complete Open vRAN network is a daunting task. VMware and Altiostar demonstrate how to greatly reduce this effort by combining the automation capabilities of Altiostar EMS and VMware Telco Cloud Platform RAN over Intel FlexRAN TM architecture.
About O-RAN ALLIANCE
The O-RAN ALLIANCE is a world-wide community of more than 300 mobile operators, vendors, and research & academic institutions operating in the Radio Access Network (RAN) industry. As the RAN is an essential part of any mobile network, the O-RAN ALLIANCE’s mission is to re-shape the industry towards more intelligent, open, virtualized and fully interoperable mobile networks. The new O-RAN specifications enable a more competitive and vibrant RAN supplier ecosystem with faster innovation to improve user experience. O-RAN based mobile networks at the same time improve the efficiency of RAN deployments as well as operations by the mobile operators. To achieve this, the O-RAN ALLIANCE publishes new RAN specifications, releases open software for the RAN, and supports its members in integration and testing of their implementations.