VMs vs. containers Which is better for security

Techtarget | June 24, 2019

By now, security professionals are familiar with virtualization given the significant adoption both in the data center, as well as in the cloud -- the use of virtualization is almost ubiquitous at many organizations. Practitioners more commonly encounter application containerization technologies in their organizations, which include Docker, rkt and the associated orchestration technologies like Kubernetes that surround them and help scale usage. Practitioners are mandated to make technology risk decisions, and many of those decisions involve one or both of virtualization and containerization technologies. When comparing VMs vs. containers, it is natural to ask, which is more secure? These tools are not equivalent, therefore a direct security comparison isn't an apples-to-apples comparison. In the case of VMs vs. containers for security, each requires a different tool set, an understanding of vastly different security models, and familiarity with an entirely different orchestration ecosystem. It also depends on the particular use case.

Spotlight

To keep pace with large cloud companies, many enterprises are looking to achieve similar Web-scale speed, agility, and economics. As a result, their IT organizations are transforming into cloud service providers to meet the business’s demands.


Other News
VSPHERE

Lightbits Labs Wins 2022 BIG Innovation Award

Lightbits Labs | January 18, 2022

Lightbits Labs (Lightbits), the first software-defined and NVMe-based data platform for any cloud, is pleased to announce it has been named a winner in the 2022 BIG Innovation Awards presented by the Business Intelligence Group. This is recognition for the company’s unique Complete Data Platform, which is an innovative architecture of NVMe/TCP, Intelligent Flash Management, and VMware vSphere 7 Update 3 compatibility that delivers high performance, simplicity, and cost-efficiency for VMware environments. As such, Lightbits, the inventor of NVMe/TCP, is quickly becoming the defacto standard for managing, analyzing, and storing data on any cloud. Leveraging NVMe/TCP protocol and a shared storage architecture, Lightbits delivers the lowest latencies and highest scalability while delivering performance equivalent to local flash. Lightbits solves the storage challenges for cloud-centric applications with greater efficiency than proprietary appliances and when combined with VMWare vSphere is giant leap forward in delivering an end-to-end NVMe solutions ecosystem. This recognition is further validation that Lightbits fills a critical need for modern IT organizations looking to inject efficiency and agility into the data center. We invented NVMe/TCP, its native to the software, and thus delivers all the low latency and high performance of local flash. And Lightbits is the only solution available with Intelligent Flash Management for maximum cost-efficiency. So, while we may pause to appreciate this recognition, we’ll keep making BIG innovations that enable customers to efficiently leverage their IT investments to extract maximum value from their data.” Carol Platz, Vice President of Marketing, Lightbits Labs “Innovation is driving growth in the global economy,” said Maria Jimenez, chief operating officer of the Business Intelligence Group. “We are thrilled to be honoring Lightbits as they are one of the organizations leading this charge and helping humanity progress.” About Lightbits Labs Lightbits Labs (Lightbits) is leading the digital data center transformation by making high-performance elastic block storage available to any cloud. Creators of the NVMe over TCP (NVMe/TCP) protocol, Lightbits software-defined storage is easy to deploy at scale and delivers performance equivalent to local flash to accelerate cloud-native applications in bare metal, virtual, or containerized environments. Backed by leading enterprise investors including Cisco Investments, Dell Technologies Capital, Intel Capital, and Micron, Lightbits is on a mission to make high-performance elastic block storage simple, scalable and cost-efficient for any cloud. The NVMe, and NVMe/TCP word marks are registered or unregistered service marks of the NVM Express organization in the United States and other countries. All rights reserved. Unauthorized use strictly prohibited. About Business Intelligence Group The Business Intelligence Group was founded with the mission of recognizing true talent and superior performance in the business world. Unlike other industry award programs, these programs are judged by business executives having experience and knowledge. The organization’s proprietary and unique scoring system selectively measures performance across multiple business domains and then rewards those companies whose achievements stand above those of their peers.

Read More

VIRTUAL DESKTOP TOOLS

O-RAN ALLIANCE Announces Its June 2022 Industry Summit, Progress of Its Global PlugFest Spring 2022 and a New Set of O-RAN Demos

O-RAN ALLIANCE | June 10, 2022

The O-RAN ALLIANCE invites all interested public to join its next industry summit to be held on June 29, 2022, as an open virtual event. The 2.5-hour session will bring: Latest updates from the O-RAN ALLIANCE leadership Updates from the O-RAN ecosystem on RAN openness, intelligence, cloudification, and testing and integration Live panel discussion: Accelerating industry adoption for large-scale commercialization For more details and to join the event, please visit www.o-ran.org/events. O-RAN Global PlugFest Spring 2022 in Progress O-RAN ALLIANCE has been sponsoring its global PlugFests to enable efficient testing and integration for the O-RAN ecosystem. O-RAN Global PlugFest Spring 2022, first of the two PlugFests planned for this year, has been progressing at 3 venues: Auray OTIC and Security Lab is hosting 21 participants: Alpha Networks, Askey Computer, Calnex Solutions, Foxconn, Institute for Information Industry, Inventec, IP Infusion, ITRI, JPC connectivity, Keysight Technologies, Lions Technology, LITEON, MICAS, NKG, Pegatron, QCT, REIGN Technology, Rohde & Schwarz, Sageran, VIAVI Solutions and WNC. Telefonica, at European OTIC in Madrid, is hosting 6 participants: ADVA Optical Networking, Juniper Networks, Keysight Technologies, Precision Optical Transceivers, Ribbon and VIAVI Solutions. AT&T and DISH are hosting participants including Analog Devices, Anritsu, Calnex Solutions, Cisco, Fujitsu, HCL, IP Infusion, ITRI, Juniper Networks, Keysight Technologies, META, NSF ARA: Living Wireless Lab, NSF PAWR: AERPAW, NSF PAWR: Colosseum, PHYTunes, Rohde & Schwarz, VIAVI Solutions, VMware and Wind River; with assistance from AT&T Lab, NSF PAWR: COSMOS Lab, NSF PAWR: POWDER Lab and University of New Hampshire Interoperability Lab. All venues aim to conclude the spring PlugFest by end of June 2022. 23 new demos of O-RAN technology at the O-RAN Virtual Exhibition O-RAN ALLIANCE member companies have been progressing with their O-RAN based implementations. Latest demonstrations will soon be available at the O-RAN Virtual Exhibition. Newly added Intelligent RAN control demonstrations include: AirHop and VMware demonstrate how automation and programmability efficiently detect and remediate PCI collisions/confusions to optimize RAN performance. The proposal is a solution to current RAN frequency planning, conflict mitigation and optimization methods which are costly and time-consuming, slowing deployment of new services and decreasing performance of existing ones. Cellwize and VMware demonstrate how to bring programmability to any type of RAN deployment, including purpose-built RANs. As an example, we demonstrate how Cellwize’s rApp onboarded on VMware Centralized RIC optimizes EN-DC anchoring to maximize spectral usage in purpose-built RANs; leading to monetizable gains in performance. China Mobile and Lenovo demonstrate how video experience can be optimized using an xApp to predict the available bandwidth for a UE using the RIC and radio information reported over the E2 from the network and providing this predicted bandwidth to the Application Provider to adjust and optimize the video bitrate. Cohere and VMware demonstrate how using RAN programmability, operators can double mobile bandwidth without any changes to antennas, radio or devices. Using Cohere’s Spectrum Multiplier xApp powered by VMware Distributed RIC, now Services Providers can activate broadband in rural areas while avoiding costly changes in handsets or infrastructure. GDCNi demonstrates its RF product with high/middle/low transceiver power, performing interoperability testing with other vendors. GDCNi has rich RAN industrial experience and provides private RAN solutions for coal mines, ports, intelligent manufacturing, agriculture, and transportation, and helps to enrich the O-RAN ecosystem. Intel demonstrates SLA assurance demonstration with AI/ML-powered Network Slice Radio Resource Manager (NSRRM) xApp in an O-RAN RIC integrated with an Open, virtualized RAN. This demo shows operators the viability of offering revenue-generating business models with optimal radio resources. Polte and VMware demonstrate how to leverage RAN programmability to deliver precise sub-meter UE positioning. Using cellular as prime technology (as opposed to GPS or Wi-Fi), Polte’s xApp powered by VMware’s Near Real-time RIC offers global location indoors/outdoors, while lowering cost and extending battery life of the IoT asset tracker. Rimedo Labs demonstrates the complete integration of the Traffic Steering xApp into the open-source SD-RAN Near-Real-Time RIC from ONF. The solution highlights the opportunities to control the xApp via the policies through the A1 interface as defined by the O-RAN ALLIANCE, which enables manipulation of the behavior of the corresponding RRM algorithm based on the current strategy coming from the SMO. Newly added Open RAN demonstrations include: ArrayComm demonstrates its 5G Distributed Small Cell in a 5G SA E2E network showing its high performance and stability testing with measured downlink and uplink throughputs. It includes white box O-DU, Fronthaul Gateway, and O-RU. The O-DU is a single box built with NXP LX2160A and LA1201 SoC. ArrayComm demonstrates its 5G Distributed Small Cell on a Marvell platform consisting of a Marvell CNF95O virtualized O-DU card combined with x86/Arm server, Fronthaul Gateway, and O-RU. This platform can be widely used in the capacity coverage improvement scenarios, and also can be easily deployed as distributed RAN or cloud RAN. China Mobile and Lenovo demonstrate a CaaS platform, which followed O-Cloud specs, and pico gNB BBU respectively to form a joint test solution. Hardware construction has been completed; the first call was made in June. 5G performance will be tested in a E2E environment in next stage. Comba showcases Open RAN Multi-band Remote Radio Unit with advanced technology that maintains a low power consumption level and better receiver sensitivity. The small form factor and improved Mean Time Before Failure performance contributes to optimized installation and maintenance cost. These features facilitate fronthaul integration with O-DU partners. Foxconn, Auray and Calnex demonstrate O-RAN S-Plane Performance Testing with Foxconn’s O-RU in Auray OTIC and Security lab with Calnex’s Paragon-neo. O-RAN.WG4.CONF.0 has recommended the S-Plane performance test and functional test to be mandatory for O-RU S-plane testing and therefore mandatory for O-RAN/OTIC O-RU Badging. Intel, Capgemini, AWS and others demonstrate a unified view of end-to-end 5G service orchestration from the network edge to the cloud. Demo highlights agility using service orchestration to support dynamic network slicing for new business and service capabilities - allowing continuous delivery of new services and features. It also demonstrates O-RAN Fronthaul (xRAN) Test as defined by O-RAN ALLIANCE, using a sample application created to execute test scenarios with features of the xRAN library and test external API. IS-Wireless showcases a Multi MNO scenario supported in the form of a Neutral Host. The end-to-end Open RAN network is deployable on any cloud in an automated manner as containers and supports both Open Fronthaul Split 7.2x and 3GPP split 2. LITEON demonstrates FlexFi indoor small cell system based on open interfaces (e.g. Open Fronthaul Interface) enabling a cost effective deployment at large scale. And we also demonstrate an O-RAN based intelligent RAN management and control solution-LiteNetics. In this Proof of Concept, we verified manage gNB via the Radio Intelligent Controller (RIC) with O1 interfaces. LITEON provides 5G products that meet customer needs. MICAS demonstrates two O-RAN Radio Unit solutions, with one sub-6 GHz indoor small cell and one mmW small cell. Both solutions feature O-RAN's open fronthaul interface technology and enable cost-effective large-scale deployment. Pegatron, Auray and Calnex demonstrate O-RAN Fronthaul Latency Testing with Pegatron’s O-DU/O-CU in Auray OTIC and Security lab with Calnex’s Paragon-X in network emulation mode. O-RAN.TIFG.E2E-Test.0 has recommended the xHaul latency to be mandatory for O-RAN E2E testing and therefore mandatory for O-RAN/OTIC Badging. Rohde & Schwarz and VIAVI Solutions jointly demonstrate O-RAN open fronthaul (OFH) conformance and 3GPP pre-conformance validation of a Foxconn O-RU at Auray Lab. The Foxconn O-RU is validated by VIAVI’s automated TM500 O-RU tester with R&S SMW200A vector signal generator, R&S FSVA3000 spectrum analyzer and the R&S VSE signal analysis software. The demonstration highlights a progressive test plan including functional, interoperability, conformance and performance testing, with a single point of control for the entire testbed. Spirent demonstrates its end-to-end Open RAN test solution enabling the ability to accomplish functional, interoperability, performance, and compliance testing with either a real or emulated UE. This demo walks through the architecture of the solution and gives an overview of the interface, reporting, and capabilities. Spirent demonstrates a flexible, scalable, high-performance solution for comprehensively testing the CU for compliance, functionality, performance, and capacity. This demo walks through the architecture and presents an overview of the interface, reporting, and capabilities through running a test in 5G SA mode (NSA is also available). Spirent demonstrates how O-DU is tested with multiple emulated O-RU to verify function, reliability of O-DU & test delay in fronthaul networks. A challenge for O-RAN is long-duration reliability testing. Streamblocks are usually sent once in 5G fronthaul testing. Spirent solution sends continuous traffic to emulate real-world network traffic. Deploying a complete Open vRAN network is a daunting task. VMware and Altiostar demonstrate how to greatly reduce this effort by combining the automation capabilities of Altiostar EMS and VMware Telco Cloud Platform RAN over Intel FlexRAN TM architecture. About O-RAN ALLIANCE The O-RAN ALLIANCE is a world-wide community of more than 300 mobile operators, vendors, and research & academic institutions operating in the Radio Access Network (RAN) industry. As the RAN is an essential part of any mobile network, the O-RAN ALLIANCE’s mission is to re-shape the industry towards more intelligent, open, virtualized and fully interoperable mobile networks. The new O-RAN specifications enable a more competitive and vibrant RAN supplier ecosystem with faster innovation to improve user experience. O-RAN based mobile networks at the same time improve the efficiency of RAN deployments as well as operations by the mobile operators. To achieve this, the O-RAN ALLIANCE publishes new RAN specifications, releases open software for the RAN, and supports its members in integration and testing of their implementations.

Read More

VIRTUAL SERVER INFRASTRUCTURE

Scale Computing Partners with Servix to Deliver a Leading Hyperconverged Infrastructure Solution to the Brazilian IT Market

Scale | May 25, 2022

Scale Computing, a market leader in edge computing, virtualization and hyperconverged solutions, today announced its partnership with Servix, one of the largest technology integrators in Latin America. Servix will now deliver simple, reliable, affordable, and easy-to-deploy infrastructure solutions to the IT market in Brazil via Scale Computing’s award-winning HC3 virtualization platform, while simultaneously expanding its partner community in the region. Together, Scale Computing and Servix are bringing a virtualization alternative to customers and partners in Brazil. The Scale Computing virtualization platform combines servers, storage, and virtualization into a single solution to make IT infrastructure easier for organizations of every size. Whether an organization has one IT administrator or hundreds, the award-winning Scale Computing hyperconverged infrastructure eliminates complexity, lowers costs, and frees up management time. Many of today’s virtualization solutions consist of multiple vendor products, making them more complicated and expensive than necessary. Moreover, properly configuring disparate server and storage components takes up valuable department resources, and that's even before a company has installed and configured hypervisors or tested for compatibility and performance. Scale Computing’s virtualization software and appliances, meanwhile, are based on patented technologies designed from the ground up to minimize infrastructure complexity and cost. Whether an organization is considering migrating from its existing virtualization platform or is virtualizing from scratch for the first time, Scale Computing’s hyperconverged approach is the shortest path to affordable virtualization that’s easy to deploy, easy to manage, and easy to scale. “To navigate today’s complex infrastructure environments, businesses need flexibility, scalability, and resiliency. Scale Computing has a strong reputation for delivering results to IT operation leaders around the world, and we’re thrilled to be offering the HC3 solutions to Brazil. This partnership further demonstrates our commitment to providing our partners and customers with the most innovative and reliable solutions,” said Cleber Calejon, CEO, Servix. Scale Computing continues to be the top choice for organizations thanks to the simplicity, efficiency, and innovation of Scale Computing software. Automated machine learning capabilities found in the company’s solutions mean that the typical Scale Computing customer sees a reduction in on-going management costs of between 60 and 80 percent. Servix is a leading HCI integrator in Brazil, and we are proud to be partnering with an IT organization that is so forward thinking, embracing new technology as it makes sense for their customer base,” Scott Mann, VP of Sales, ROW & Global Channel Chief, Scale Computing. About Scale Computing Scale Computing is a leader in edge computing, virtualization, and hyperconverged solutions. Scale Computing software eliminates the need for traditional virtualization software, disaster recovery software, servers, and shared storage, replacing these with a fully integrated, highly available system for running applications. Using patented HyperCore™ technology, the self-healing platform automatically identifies, mitigates, and corrects infrastructure problems in real-time, enabling applications to achieve maximum uptime. When ease-of-use, high availability, and TCO matter, Scale Computing is the ideal infrastructure platform.

Read More

VPN

Frost & Sullivan Recognizes AT&T with the 2021 North American Managed SD-WAN Services Market Leadership Award

Frost & Sullivan | January 19, 2022

Frost & Sullivan recently evaluated the North American managed SD-WAN services industry and, based on its findings, recognizes AT&T with the 2021 North American Managed SD-WAN Services Market Leadership Award. The company has the largest deployment of SD-WAN sites in North America and led the 2020 market in terms of revenue share. Based on the number of contracted sites yet to be deployed and deals closed in the first three quarters of 2021, the company is well-positioned. AT&T's managed SD-WAN solutions portfolio is among the most comprehensive in the industry. It recently added Aruba Networks (Silver Peak), Palo Alto Networks, and Fortinet to its mix of existing partner vendors, which include Cisco and VMware. Customers have access to network-based SD-WAN via an AT&T FlexWareSM device, over-the-top (OTT) SD-WAN through vendor-specific appliances, or a hybrid of the two options. Security and networking continue to converge and make way for secure SD-WAN or SASE services, enabling AT&T to build a robust portfolio of SASE solutions. The company currently offers SASE solutions from Fortinet, Palo Alto Networks and Cisco, with plans to add VMware to the mix in the future." Roopa Honnachari, VP of Research, Network & Edge Most businesses deploying SD-WAN opt for managed service at all sites to enable consistent performance and address the challenges of lack of knowledge in-house and trouble with LAN discovery at branch sites. AT&T understands the level of complexity involved in designing global WANs as a long-time leader in the business network services industry. Some benefits of AT&T managed SD-WAN service include: The Expert Engineer, offering customers high-touch solution support and deep network design verification covering WAN, LAN, and applications. The Integrated Service Experience (ISE) team, acting as a single point of contact for managed services support across overlay, underlays, and security solutions, eliminating the complexity of deployment. Immediate customer response for any kind of incidents or outages. Network management tools and orchestration platform, enabling seamless service chaining, reducing uCPE price by over 50% in the last couple of years. Multiple key network functions in virtual formats (e.g., routing, WAN optimization, security, session border controllers), which reduces appliance sprawl, improves network scalability, and eases manageability. AT&T FlexWare devices eliminating the need for a separate CPE and allowing businesses to seamlessly integrate SD-WAN functionality into their WAN architectures, driving additional revenue growth and creating customer loyalty. AT&T investments in software-defined networking (SDN) and network functions virtualization (NFV) position it strongly as businesses speed up their digital strategies. AT&T's hybrid networking solutions allow customers to grow at the pace of their WAN infrastructure. It enables customers to access a range of network service options (broadband, DIA, Ethernet, wireless, IP VPN, and MPLS) with SD-WAN, driving loyalty. With its focus on building and supporting managed SASE services, the company offers a simplified and future-proofed approach to security and SD-WAN services for businesses. "This recognition from Frost & Sullivan is a testament to our approach to SD-WAN and commitment to caring for our customers as their businesses evolve," said Will Eborall, Assistant Vice President, Edge Solutions Product Marketing Management, AT&T Business. "From emerging SD-WAN technologies to existing solutions, AT&T's comprehensive portfolio, global reach and ability to scale operations is enabling customer digital transformation journeys with managed end-to-end SD-WAN services." "AT&T is the leading communication service provider in US markets with a broad range of solutions and deep expertise in the network services market. Its brand strength has earned it the highest market share in 2020 and various recognition for its excellence," said Honnachari. Each year, Frost & Sullivan presents this award to the company that has developed an innovative element in a product by leveraging leading-edge technologies. The award recognizes the value-added features/benefits of the product and the increased ROI it offers customers, which, in turn, raises customer acquisition and overall market penetration potential. Frost & Sullivan Best Practices awards recognize companies in various regional and global markets for demonstrating outstanding achievement and superior performance in leadership, technological innovation, customer service, and strategic product development. Industry analysts compare market participants and measure performance through in-depth interviews, analyses, and extensive secondary research to identify best practices in the industry. About Frost & Sullivan For six decades, Frost & Sullivan has been world-renowned for its role in helping investors, corporate leaders, and governments navigate economic changes and identify disruptive technologies, Mega Trends, new business models, and companies to action, resulting in a continuous flow of growth opportunities to drive future success.

Read More

Spotlight

To keep pace with large cloud companies, many enterprises are looking to achieve similar Web-scale speed, agility, and economics. As a result, their IT organizations are transforming into cloud service providers to meet the business’s demands.

Resources