Spring World 2015

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 27, Issue 3

Full Contents Now Available!

Jon Seals

Enhanced transformation technology creates VMware vCenter integration hub for hybrid networking management; expands capabilities of data protection policy engine

 

SANTA CLARA, Calif. – HotLink® Corporation, the market leader in transformation solutions for hybrid virtualization management, today announced the addition of HotLink CIMple™ software-defined networking (SDN) to its HotLink DR Express™ technology. CIMple SDN enables easier testing, greater automation and faster operational recovery in Amazon Web Services (AWS) following a failure in on-premise VMware data centers. Additionally, the new HotLink DR Express features enhanced backup retention and scheduling policies, as well as support for VMware vCenter and vSphere 5.5.

The award-winning HotLink DR Express is the only solution to enable low-cost, comprehensive VMware data protection by leveraging AWS for backup, replication, disaster recovery (DR) and business continuity (BC), using VMware vCenter as the single point of administration and management. Within minutes of a failure, VMware virtual machines (VMs) can be transformed and fully operational in Amazon EC2, with AWS workloads managed side-by-side with on-premise vSphere VMs inside VMware vCenter.   

The new release extends VMware vCenter capabilities to include hybrid SDN, so on- and off-premise networking can be seamlessly and holistically managed and pre-configured with VMware vCenter as the integration hub. By automatically discovering, transforming and mirroring on-premise network configurations in AWS, the new HotLink DR Express removes the complexity and labor-intensive nature of managing hybrid DR networking, maintains networking consistency across application tiers in a recovery, and enables easy DR testing without disturbing production operations. The most important benefit is that with pre-configured, automated network provisioning in AWS, VMware workloads can be accurately and automatically restored in Amazon EC2 in minutes, so operations are minimally disrupted following an on-premise failure.  

“Businesses are accelerating their public cloud spending, with data backup and disaster recovery being some of the top IaaS usage scenarios. By enabling VMware shops to leverage Amazon Web Services for business continuity, HotLink is filling in the missing link (integrated management) that really makes BC/DR achievable – from a technical and a financial perspective. HotLink’s solution appears to be as elegant as it is powerful, which makes it a solution worth investigating as part of modernizing your data protection strategy,” said Jason Buffington, senior analyst for data protection at Enterprise Strategy Group.

Many CIOs and IT managers live in a continuous state of fear that their infrastructure will fail because the process of testing backup and business continuity plans is time consuming, resource intensive and rarely done effectively. When a failure occurs – whether it is hardware failure, software bug or security breach – it can take days or weeks for IT to reconfigure the infrastructure and restore normal operations from backup. HotLink DR Express democratizes DR/BC and makes it affordable for every VMware workload by leveraging AWS as the VMware mirror site. 

“Disaster recovery and business continuity are essential for our business, but the cost of a secondary data center using a colocation provider was prohibitive,” said Scott McGillivray, VP director of Information Technology at Seattle Bank. “HotLink DR Express lets us benefit from the attractive economics of Amazon to ensure that our VMware operations continue uninterrupted, and at only a fraction of the infrastructure and personnel cost of industry alternatives.”

Features of the new HotLink DR Express include:

  • HotLink CIMple SDN: Hybrid networks spanning VMware and AWS are intuitively administered and managed in VMware vCenter. Auto-discovery, AWS transformation, granular per-VM configurations and pre-configuration of test and production DR networks enable easy setup and testing ¾ with recovery in minutes in Amazon EC2.
  • Enhanced retention policies: HotLink DR Express offers configurable consolidation options for restore points, which enables faster recovery in a failure scenario, reduced storage requirements in AWS and assistance with compliance efforts regarding discovery policies.
  • Improved backup scheduling: Enhanced VM protection scheduling allows for off-cycle or non-recurring VM backups to accommodate events such as planned upgrades, security breaches or other periodic activity.
  • Support of VMware vCenter and vSphere 5.5: As companies evaluate and migrate from prior VMware versions, HotLink DR Express now readily supports the new VMware environments.

Lynn LeBlanc, CEO and founder of HotLink, said, “Not only does HotLink make DR/BC accessible to cost-sensitive environments, we enable testing and implementing DR/BC plans to be as intuitive as day-to-day operations by seamlessly leveraging VMware vCenter management infrastructure. Our new release takes this ease-of-use even further by automating hybrid networking for the fastest possible recovery following any type of failure, whether it’s a large disaster or everyday hardware failure.”

Availability

The new version of HotLink DR Express is available on February 28 with subscription pricing at $300 per VM per year.

Supporting resources:

About HotLink Corporation

HotLink is on a mission to dramatically simplify IT management complexity with the first-ever transformation technology for heterogeneous and hybrid computing infrastructure. HotLink’s customers include organizations spanning technology, financial services, e-commerce, manufacturing, cloud service providers, education, telecommunications and more. HotLink’s advisory board includes visionary leaders from Facebook, E*TRADE, Equinix, AstraZenca, Electronic Arts, Clorox, Citrix and BMC. The company’s patented transformation technology has received many industry accolades, including: Winner of 2013 Best of VMworld awards in Public and Hybrid Cloud Computing, and Storage and Backup; 2012 VMworld Best of Show and Top Virtualization Management; Virtualization Review’s 2013 Best Cloud Application; Gartner Cool Vendor 2013 and Network World Companies to Watch 2013. HotLink is a privately held, venture capital-backed company based in Santa Clara, Calif. For more information, visit www.hotlink.com or connect with us on FacebookTwitter or LinkedIn.

Massively Scalable I/O Performance, Nanosecond-Class Latency Enable Next Generation of High Performance Data Applications

SAN JOSE, Calif. – A3CUBE Inc., a developer of advanced architectures for exascale high-performance storage systems, today announced a groundbreaking ‘brain inspired’ data plane encapsulated in a Network Interface Card (NIC) designed to bridge supercomputing benefits to the enterprise by dramatically transforming storage networking to eliminate the I/O performance gap between CPU power and data access performance for HPC, Big Data and data center applications.   

The RONNIEE Express™ data plane profoundly elevates PCI Express from a simple interconnect to a new intelligent network fabric, leveraging the ubiquity and standardization of PCIe while solving its inherent performance bottlenecks. A3CUBE’s In-Memory Network technology, for the first time, allows direct shared non-coherent global memory across the entire network, enabling global communication based on shared memory segments and direct load/store operations between the nodes. The result is the lowest possible latency, massive scalability and disruptive performance that is orders of magnitude beyond the capabilities of today’s network technologies including, Ethernet, InfiniBand and Fibre Channel. 

“Organizations struggle to keep up with the amount of traffic on traditional networks generated from a variety of sources,” said Bob Laliberte, senior analyst, ESG. “A3CUBE’s In-memory Network fabric leverages an innovative approach to transforming HPC, Big Data and data center environments in order to drive greater performance and efficiencies in the network and storage systems. A3CUBE is extending PCIe capabilities in order to deliver a next generation network that it claims will overcome traditional network bottlenecks utilizing a high performance (Nano-second latency) and massively scalable architecture.”

The innovative RONNIEE Express data plane enables exascale storage that combines supercomputing’s massively parallel operational concepts and an innovative I/O interface eliminating central switching, thanks to the support of a multi-dimensional topology like 2D/3D Torus and Hypercubes. This reduces network overhead, slashing the latency of traditional storage networking designs and introduces military grade reliability along with carrier grade data plane features. The RONNIEE Express communication mechanism creates a genuine paradigm shift in network communication that introduces a full application with a transparent memory-to-memory direct connection. The In-Memory Network discards the protocol stack bottleneck and replaces it with a direct memory-to-memory mapped socket, producing extraordinary and disruptive performance enhancements while leveraging commodity hardware.

“Today’s data center architectures were never designed to handle the extreme 
I/O and data access demands of HPC, Hadoop and other Big Data applications,” said Emilio Billi, founder and CTO of A3CUBE.  “The scalability and performance limitations inherent in current network designs are too severe to be rescued by incremental enhancements. The only way to accommodate the next generation of high performance data applications is with a radical new design that delivers disruptive performance gains to eradicate the network bottlenecks and unlock true application potential.”

A3CUBE’s first three products incorporating the RONNIEE Express product line address different data center requirements in building out an In-Memory Network fabric and include: 

RONNIEE 2S
RONNIEE 2S is a compact PCIe-based intelligent NIC designed to maximize application performance using a unique combination of hardware and software. RONNIEE 2S Eliminates conventional communications bottlenecks and provides multiple channels with <1µ and fast direct remote I/O connections with nanoseconds level latency. 

RONNIE RIO
RONNIEE RIO is the first general purpose NIC supporting Ethernet and memory-to-memory transactions in a 3D torus topology that can plug in any server equipped with a PCIe slot. This powerful data fabric is designed to deliver unmatched performances and presents a scalable interconnection fabric based on a patent pending shared memory architecture that implements the concept of distributed non-transparent bridging to greatly extend PCIe features and benefits over a next generation network architecture.

RONNIEE 3
RONNIEE 3 is a revolutionary card that is designed to extend the scalability of RONNIEE 2S and optimized for high performance data environments. The In Memory Network provides full support for memory-to-memory transactions without the usual software overhead to achieve unmatched efficiency and performance compared to ordinary interconnection fabrics available on the market today.

Follow Us:
   https://twitter.com/a3cubeInc 
   https://www.facebook.com/a3cubeinc 


About A3CUBE
A3CUBE Inc. was founded in 2012 as a result of more than five years of advanced research and development. The company has assembled an elite team of highly skilled and experienced engineers in hardware, firmware, software and system design engineering and management with proven track records of success in super computing and HPC environments. Every member of the A3CUBE team has deep-domain expertise in complex hardware-firmware product development, testing and commercialization. All A3CUBE design and development activities are internal to the company in order to maintain complete control of all aspects of the company’s products.

Service enables customers to accurately synchronize their time systems across multiple data centers

NEW YORKNYI, a New York company specializing in customized technology infrastructure solutions, today announces the first of several joint solution offerings in conjunction with Perseus Telecom, provider of ultra low-latency global connectivity. The partnership will offer NYI customers access to Perseus telecommunication services, while Perseus clients will have direct access to enterprise-class colocation and a full suite of cloud and managed services from NYI. 

The first new joint services offering called High Precision Time ™, is now available at NYI’s New York and New Jersey data centers. This next-generation offering enables customers in the financial, legal and healthcare communities to synchronize their time systems across a multitude of data centers where Perseus offers the service.

“We are committed to alleviating the complexities customers face when trying to achieve and maintain a highly accurate and provable time synchronization policy, and partnering with Perseus allows us to further that effort,” states Phil Koblence, Chief Operating Officer at NYI. “NYI continues to establish global partnerships that provide world-class infrastructure services to match the diverse needs and requirements of our customers.”

High Precision Time™ includes access to a National Institute of Standards and Technology (NIST)-certified GPS antenna, as well as Network Time Protocol (NTP) and Precision Time Protocol (PTP) connectivity with nanosecond accuracy to the Coordinated Universal Time UTC (NIST) timescale. Services include SLA reports on quality, availability and high accuracy of UTC (NIST) time with end-to-end custody, which allows proof of calibration with U.S.-certified time base for precision and compliance purposes.

“Introducing High Precision Time™ in NYI data centers is a key strategy for us, as our mutual customers will now have access to low latency connectivity to financial markets on a global scale,” states Andrew Kusminsky , Chief Operating and Strategy Officer at Perseus Telecom. “These trading firms and vendors require help to mitigate risk and meet new financial compliance guidelines, and we look forward to working with them to meet that high level of responsibility in compliance and high-precision trading.

At NYI data centers, both companies’ clients can directly cross connect to High Precision Time™. This gives customers access to NYI’s fully redundant infrastructure, cloud computing and hybrid services to support their business-critical operations and also:

  • Compliance-ready proof of government certified time through a wide range of delivery methods, such as NTP, PTP, 1PPT and GPS
  • Professional services to aid in implementing time in their environments
  • Access to a certified Stratum-1 time source
  • The ability to build global synchronization capabilities that calibrate within sub-nanoseconds to the UTC (NIST) timescale

For more information on NYI and its Infrastructure-as-a-Services offering, please visit www.nyi.net or contact salesteam@nyi.net.

 

About NYI

At NYI, we understand you’re important and so is your business. Our approach is simple, effective and unique in our marketplace. We look beyond our world-class data centers and focus on supporting customer growth and success acting as a genuine extension of your IT team. Since 1996, we have provided our customers with fully managed, highly customized infrastructure solutions built to suit their specific business and mission critical IT needs. Our customers view us as a true partner; always available for round-the-clock support from a team they know and trust.

Company’s Cloud Security-as-a-Service Suite Honored at RSA Conference

SAN FRANCISCO, Calif.Alert Logic, a leading provider of Security-as-a-Service solutions for the cloud, today announced that it has won Most Innovative Cloud Security Product as part of Cyber Defense Magazine’s New InfoSec Technologies Awards, presented at the RSA Conference.

The Cyber Defense Magazine’s New InfoSec Technologies Awards program recognizes companies that have a unique and compelling value proposition. Judges are CISSP, FMDHS, or CEH-certified security professionals who independently review and vote on candidates.

Taking top honors, Alert Logic’s Security-as-a-Service suite is designed to protect applications, networks, and systems in the cloud, offering a combination of detection and protection technologies integrated with security content, analytics, and monitoring services delivered through a fully-managed service. Benefits include:

  • Native Public Cloud Support: The company’s intrusion detection, vulnerability scanning, log management, and web application firewall solutions run natively in leading public cloud environments, supporting key cloud capabilities such as auto scaling.
  • Hybrid Data Center Support: Alert Logic secures hybrid IT environments by providing customers with the same security solutions across multiple environments – physical, virtual, private, and public clouds. This comprehensive data center security eliminates the need for multiple disparate toolsets. Customers have a global view of security across all infrastructure and environments. 
  • Managed Security Services: Solutions are delivered as a managed service focused on security and compliance outcomes using proactive intelligence. Analysts in the Alert Logic Security Operations Center monitor customer environments 24x7 and respond to alerts that are analyzed and correlated within the company’s proprietary security intelligence platform. 
  • Security Research: The Alert Logic Security Research team manages both custom security content for its 2,400-plus customers as well as third-party feeds from leading security organizations; allowing for global threat visibility and an integrated view of security across all layers of the application stack. 

“While traditional security products provide technology and some content, they typically require the customer to undertake the integration, management, and monitoring work required to make it a useful solution. Alert Logic takes a unique approach by allowing its Security-as-a-Service suite to help customers quickly deploy security in their hybrid environments and ensure ongoing monitoring and remediation,” said Misha Govshteyn, Alert Logic Co-Founder and Chief Strategy Officer. “It is gratifying to be recognized for our distinction within the industry.”

Cyber Defense Magazine is written by ethical, honest, passionate information security professionals for IT Security professionals. The publication’s mission is to share cutting edge knowledge, real world stories and awards on the best ideas, products and services in the information technology industry. The publication’s second print edition has launched at RSA Conference USA 2014.

Additional Resources Available:
Blog
@alertlogic on Twitter
LinkedIn

About Alert Logic
Alert Logic, the leading provider of Security-as-a-Service solutions for the cloud, provides solutions to secure the application and infrastructure stack. By integrating advanced security tools with 24×7 Security Operations Center expertise, customers can defend against security threats and address compliance mandates. By leveraging an “as-a-Service” delivery model, Alert Logic solutions include day-to-day management of security infrastructure, security experts translating complex data into actionable insight, and flexible deployment options to address customer security needs in any computing environment. Built from the ground up to address the unique challenges of public and private cloud environments, Alert Logic partners with over half of the largest cloud and hosting service providers to provide Security-as-a-Service solutions for business application deployments for over 2,400 enterprises. Alert Logic is based in Houston, Texas, and was founded in 2002. For more information, please visit www.alertlogic.com.

Tripwire has released the results of an extensive analysis of security vulnerabilities in small office/home office (SOHO) wireless routers. As part of the research, Tripwire sponsored a study of 653 IT and security professionals and 1,009 employees who work remotely in the US and UK

Collectively, this research strongly shows that critical security vulnerabilities are endemic across the entire SOHO wireless router market, and a surprising number of IT professionals and employees who work remotely do not use basic security controls to protect their wireless routers.

SOHO wireless router security vulnerabilities present significant cyber security risks to employees and enterprise networks.

...

http://www.continuitycentral.com/news07105.html

SSE Telecoms has launched the third and final eBook in its data centre sins series. ‘The definitive buyer’s guide for de-risking co-location projects’ includes a checklist of requirements for organizations to compare the different data centre tiers with their organization’s risk profile.

Numerous risks are inherent in data centre design and as a result, business decision makers tasked with selecting an appropriate facility to house their critical information should be aware of all the potential pitfalls and how to avoid them.

The new eBook builds on the knowledge readers will have gained in the first two eBooks – ‘7 deadly data centre sins: how to recognise them’ and ‘7 deadly data centre sins: how to mitigate them’ – offering impartial advice on how best to compare and contrast commercial data centre facilities, and to determine which approach and tier level is most appropriate to their business’s needs.

To download any of the above eBooks go to http://www.ssetelecoms.com/library/

The Committee of Sponsoring Organizations of the Treadway Commission (COSO) has published a new thought paper, ‘Improving Organizational Performance and Governance: How the COSO Frameworks Can Help’, developed to illustrate how the enterprise risk management and internal control frameworks can contribute to enhancing organizational performance and governance for sustainable success.

The paper was co-authored by Protiviti Managing Director James DeLoach and IMA (Institute of Management Accountants) President and CEO Jeffrey C. Thomson, CMA, CAE.

Since its inception in 1985, COSO has provided thought leadership and guidance on internal control, ERM, and fraud deterrence. Its landmark frameworks, Internal Control – Integrated Framework (2013) and Enterprise Risk Management – Integrated Framework (2004), offer a blueprint for helping organizations ensure effective controls and proficient risk management. The new thought paper provides a holistic approach to relating these frameworks to governance, strategy setting, and management processes.

Read the document (PDF).

The everyday consumer assumes that when they make a purchase, either online or in the checkout line, their card data is handed off to a trusted source, with security in place to protect them. They don’t see the complicated ecosystem that exists to process that transaction, nor fully understand the security mechanisms that may or may not be in place. To them, a transaction is a swipe of card, a signing of receipts (or entry of a PIN) and the swift deduction of funds from their account. It’s clean, simple and efficient.

The rotating door of data breaches with large retailers is proof that security in the payment ecosystem is anything but simple. Not only do they understand the potential harm of a breach to their own business, but they invest heavily in security mechanisms to prevent breaches from happening.  With an estimated 110 million customer records stolen in one breach alone, it’s clear that the security strategy retailers are following is ineffective.

...

http://www.corporatecomplianceinsights.com/encryption-and-the-payment-ecosystem/

CIO — Security can be an acute pain point for CIOs. There might be nothing that causes more sleepless nights than ensuring the security of an organization's data and systems. Specialists fortify the network perimeter with firewalls and IDPSs, segment the network and perform regular audits and rigorous assessments. They also classify data and isolate critical files, and follow best practices regarding least privilege and security policies.

Unfortunately, these efforts are vulnerable to the actions of undereducated or malicious users. In its 2013 global, the Ponemon Institute estimates that the average total cost of a data breach in the United States is just over $5.4 million. Roughly 67 percent of the incidents resulted from a malicious or criminal attack or a system glitch, but 33 percent are attributed to the human factor, such as a negligent employee or contractor. It can all start with a single click on the wrong link in an email or trusting an imposter.

...

http://www.cio.com/article/748511/How_to_Test_the_Security_Savvy_of_Your_Staff

It’s kind of like the old question; ‘If a tree falls in the forest and no one is there to hear it, does it make a sound?’ A disaster isn’t a disaster if there’s no measureable impact. No impact to people’s perception of the situation. No impact to people’s lives. If there is a large fire but there is no people or property (facilities, IT equipment etc.) or processes involved – either by fighting the fire or being impacted by the fire – is it still a disaster? There are no fire fighters and no burning buildings, which have no people being impacted so is it still a fire worth tracking and determining the impact and disaster level? No, because there is no measureable impact.


There will be arguments that state yes, it is a disaster because of the damage it can still cause (i.e. the environment) but if no one is involved how do you know it’s a disaster? There’s nothing that tells you it’s a disaster; nothing to point towards to say ‘this’ is the reason for the fire being a disaster because when the large fire is discovered it’s impact isn’t known…yet

...

http://stoneroad.wordpress.com/2014/02/22/when-us-a-disaster-considered-a-disaster/