A Close Look at Cisco Unfied Service Delivery Architecture for Cloud Services

Cisco Unified Service Delivery provides service providers like you with the technologies to fully integrate, secure and virtualize their service delivery infrastructures in an unique way. With Unified Service Delivery and a next-generation IP network,  CISCO Unified Service Delivery combine the data-center and their IP network together to provide end-to-end delivery of services like video, collaboration or cloud services.


If you, as a service provider, adopt the traditional data center, it may not be profitable in the long run due to 46 percent compounded annual growth rate of international traffic. Cisco Unified Service Delivery incorporates famous data center products such as the Cisco Unified Computing System and the Cisco Nexus Switch, with a new data centre optimized configuration of Cisco's flagship router, the Cisco CRS-1 Carrier Routing System, and Cisco's wide range of IP NGN products.

Advantages:

• CISCO Unified Computer System combines compute, network, storage access and virtualization resources in a single  system that can reduce IT infrastructure costs and complexities.
• The Cisco Unified Service Delivery solution is optimized to enable virtualization within the data centre, between data centres and across the IP NGN.
• As per Synergy Research, CISCO Unified Delivery system produces between 5.49 and 6.99 times the four-year cumulative savings in operating expenditures on virtualized video infrastructure and between 5.3 and 5.86 times the savings in capital expenditures.
• Cisco CRS-1 platform is designed for the needs of the carrier network, the Cisco Nexus 7000 Switch is the data-center-class switching platform combining Ethernet, IP and storage capabilities across one unified network fabric.
• The implementation of compute and storage resources can be significantly improved because services are moved from legacy system onto the Unified Service Delivery (USD) platform.
• Synergy Research further reports that CDN provides better power efficiency by a factor of 2.

Perils of mobile cloud

In early October, Long Beach communications manager Kimiko Martinez discovered that her T-Mobile Sidekick phone had lost her 1,200 address-book contacts, photos dating back five years, and three years' worth of financial information.
The data was stored on Microsoft's Sidekick service. In early October, T-Mobile said it lost the data of thousands of users of its Sidekick smartphone after a computer problem at Microsoft. Microsoft said it's working to restore the data.
The glitch gave Martinez more than a few headaches. Since losing her calendar entries, she's missed three meetings. Many phone numbers are still AWOL. "I just have to start all over again," she said. There's another upshot: Martinez, 31, said she's shopping for a new smartphone--and another service provider.
Outages at Hotmail, Gmail
As the computer industry creates hardware devices, Web sites, and mobile-phone software that increasingly rely on data stored on remote servers, the potential for waylaid data is becoming a more common problem as well.
Both Microsoft's Hotmail and Google's Gmail have experienced outages this year. Last year, some users had trouble gaining access to Apple's MobileMe service, which syncs up Apple owners' e-mail, contacts, and calendars across Macs and iPhones. BlackBerry maker Research In Motion has experienced service outages as well. "I wouldn't be surprised to hear of another, similar snafu with another vendor," said Shaw Wu, a senior analyst with Kaufman Bros. who covers Apple, RIM, and other hardware vendors.
Cloud computing services for backing up smartphone data may be especially vulnerable. For one, the market is populated with green startups that could go out of business and take users' data with them, said Charles Fitzgerald, a vice-president at Decho, an EMC unit that provides PC and mobile storage services to Vodafone Group and China Telecom. "There are a lot of fly-by-night players in this space," said Fitzgerald, who spent 19 years at Microsoft and left last year.
"Not all clouds are equal"
Consumers may also have trouble retrieving data over slower wireless networks or backing up data over the air in areas with spotty connectivity. That means saving SMS messages, photos, and address book entries can be prone to delays and outages. Vendors' backup policies for wireless devices can also vary widely. "Not all clouds are created equal," said Fabrizio Capobianco, CEO of Funambol, which makes software that helps Vodafone and other carriers back up users' data.
Another problem is that mobile-phone data tends to be landlocked. Most mobile-phone cloud services also don't let users move information from one service to another. For example, data stored on Best Buy's (BBY) free mIQ storage service, launched Oct.12, can't yet be moved to another provider's service. Best Buy's technology partner, Dashwire, may add the capability in the future, said CEO Ford Davidson. "That's something that will emerge as a problem that needs to be solved; there's no answer now," he said.
To be sure, users of PC software have long contended with hard disk crashes and other technical problems that can eviscerate data. And cell phones are always vulnerable to being dropped, stolen, or lost, which can wipe out users' stored phone numbers and other information.
Mobile cloud services are growing
But the growing popularity of smartphones, which act as mini-PCs, means service disruptions put a broader array of data at risk. Industry consultant ABI Research estimates that nearly 159 million North American consumers will use mobile cloud services by 2014, up from 13 million in 2008.
Companies including T-Mobile, Nokia, Best Buy, Microsoft, Apple, Google, and Salesforce.com (CRM) all offer cloud computing services for mobile phones. ABI estimates North American revenue from such services will reach US$6.6 billion in revenue in 2014, compared with US$519 million last year.
Eventually, mobile cloud services could constitute an even bigger market than services that back up users' data from their PCs. Smartphones house much less on-board memory than full-fledged computers. And users are gravitating toward wireless services that let them share information across their phones, PCs, and even TV sets. "Mobile devices will be the way most users interact with cloud computing," said Alex Stamos, founding partner at data security consultant iSEC Partners, which counts Google as a client.
Extra backup spells higher fees
You get what you pay for, said some technology vendors. Many mobile backup services are free, or cost just a few dollars per month--not enough to subsidize extensive data backup and sophisticated encryption. "You have less transparency about how data is being secured and saved," said Stamos.
Businesses that pay higher monthly fees tend to get more peace of mind. Salesforce.com's business users pay up to US$195 a month for the Web-based customer management software, and Salesforce backs up their data on two sets of servers, plus magnetic storage tape. "We spend hundreds of millions of dollars on our data centers," said Chuck Ganapathi, senior vice-president of products for Salesforce. "Good data protection costs money." Yet even Salesforce's users have experienced temporary service disruptions.
Charging consumers more for rock-solid backup may prove difficult. "It will be harder and harder to charge consumers for mobile cloud services," said Funambol's Capobianco. Best Buy said it hopes to make money from its storage service by pitching users on mobile-phone applications and memory cards and showing them links to Best Buy's online store. The retailer also hopes subscribers will return to its stores to buy additional phones. "It's the extra things you do when you are not the incumbent [that count]," said Scott Moore, a vice-president of marketing at Best Buy Mobile.
Up to the user
Ultimately, the task of protecting mobile-phone data may fall to users. Sidekick customer Martinez now backs up all of her important information on her iPod and e-mails it to her Gmail account for safe measure. "If I have [my data] on enough virtual platforms, they are not going to all crash at the same time," she said. Or so consumers can only hope.

Apple's new data center foreshadows a cloudy future

Apple's new data center project is so big that it begs the question of whether Apple is simply planning for the growth of its current services or if it has more ambitious plans in the works.

We've heard about Google, Microsoft, and Amazon going on a data center building spree. It's one of the worst kept secrets in the technology business--even though all three attempt to be as discreet about it as possible.
Nevertheless, it makes perfect sense for them. Their cards are on the table. We know they plan to invest heavily in Web-based services over the next decade.
On the other hand, reports that Apple is about to break ground on a new data center in Maiden, North Carolina that is even bigger than the behemoths being built by Microsoft, Google, and Amazon is startling, to say the least. Let's take a look at what we know about Apple's new data center and speculate on what Apple might be planning for it.
Apple's east cost IT hub
On his Cult of the Mac blog, Leander Kahney has a good interview with Rich Miller from Data Center Knowledge about Apple's big plans in North Carolina.
Here's what we know so far:

• Location: Town of Maiden in western North Carolina, 40 miles northwest of Charlotte
• Size: 500,000 square feet on roughly 200 acres of land
• Purpose: Will serve ostensibly as Apple's east coast IT hub, with its west coast hub in Newark, CA (109,000 square feet)
• Timing: Expected to break ground with bulldozers in mid-August
• Cost: US$1 billion over 10 years
• Staff: 50 full-time employees
• Bandwidth: Dual fiber lines
• Cost of electricity: 4-5 cents per kilowatt hour from Duke Energy (vs. 7-12 cents per kilowatt hour in California)
• Alternate location: Virginia lost the bidding war with North Carolina over tax breaks and electricity costs

Miller said:

"The early site plans indicate Apple is planning about 500,000 square feet of data center space in a single building. That would place it among the largest data centers in the world. For comparison purposes, Apple's existing data center in Newark, California is a little more than 100,000 square feet. Most new standalone enterprise data centers are in the range of 100,000 to 200,000 square feet. So this would qualify as a big-ass data center."

The only other data centers that are on this scale are Microsoft's new Chicago data center, the Phoenix ONE data center, and the SuperNAP data center in Las Vegas. All three of those have a little over 400,000 square feet of space dedicated to data center use.
Miller also added, "The companies that are building the biggest data centers tend to also have the biggest cloud ambitions."
An Apple-shaped cloud?
So the natural question is what Apple plans to do with all of this data center space? The fact that the new data center is likely to be five times larger than Apple's west coast data center is the most curious part. It makes sense for Apple to have bi-coastal data center redundancy and to plan for growth in its online services (MobileMe, App Store, iTunes Music Store), but that alone will not consume enough storage and server cycles to justify a tripling or quadrupling of Apple's data center capacity.
Thus, a build-out with this kind of scale suggests that Apple has bigger plans in the works. Here are what I consider to be the four most logical possibilities:

1. Video library expansion: Apple has already started renting and selling movies and TV shows on-demand via iTunes. The online rental business is set to explode over the next five years, so Apple probably sees a ton of opportunity here. However, video is a resource hog in storage and CPU cycles so a significant upgrade in capacity would make sense if Apple is moving in this direction.
2. Online document storage: With iDisk and MobileMe, Apple has already dabbled in online storage for end users. Google is expected to blow this open any day now (and has been for years), but Apple may see an opportunity to provide Macs, iPods, and iPhones with some basic online storage capability (with the option to purchase more) to greatly simplify storage, transfers, and backups for users. This could also come into play with the long-rumored Apple tablet, which would likely have minimal local storage and might need a cloud storage option for archiving a library of songs, videos, or files.
3. Web-based software suites: Most of the Web-based applications currently available are still very rudimentary. However, there are signs that more powerful apps are coming. Adobe's online version of Photoshop is slick. The forthcoming Web version of Microsoft Office is very powerful. With advanced Javascript and AJAX, the tools are now there for more sophisticated cloud-based apps. For Apple, that could mean that it's time to take its iLife and iWork suites and turn them into Web-based applications that expand even beyond the Mac, and even beyond the PC, to smartphones.
4. Digital library build-out: One of the possibilities for Apple's rumored tablet device is that it's meant to primarily be a reading device. That means not only reading Web sites and blogs, but magazines and books as well. If that's the case, Apple may be preparing for a massive a build-out of a digital content library that it would peddle through iTunes. In some ways, this has already started with the books and magazines now being sold through the iPhone App Store thanks to new capabilities in the iPhone 3.0 software.

The most likely scenario is the video expansion. However, the digital library build-out would be the most revolutionary concept, so that night be a shiny object that Apple is chasing.

HP and Canadian arm of GS1 announce cloud-based recall service

TELECOMWORLDWIRE via COMTEX) --solutions provider HP (NYSE:HPQ) announced on Monday along with the Canadian arm of GS1 the development of a cloud-based recall service that traces and removes potentially harmful food products from the supply chain.

No financial details were disclosed.

According to the company, the GS1 Canada Product Recall service will run on the HP cloud computing platform for manufacturing. Food and consumer products organisations can use the service to reduce errors, decrease the amount of time it takes to respond to a recall and lower the costs associated with managing the recall process.

The service will offer businesses: handling, disposal and reimbursement instructions to accelerate the recall process; the ability to customise alerts and target specific retailers with relevant information; a traceable security and audit trail to ensure compliance; as well as built-in security that sends notifications to authorised users and targeted retailers.

The service, developed in conjunction with HP Labs, consists of HP software, services and infrastructure as well as the Microsoft .NET Framework.

GS1 is a non-profit organisation dedicated to improving supply chain efficiencies.

VMware Ready to Challenge Microsoft With SpringSource, Cloud Foundry

VMware has finally joined Microsoft, IBM and Oracle as one of the four horsemen in the market for platforms for building, running and managing corporate and cloud applications. With its SpringSource acquisition, VMware can now compete with specialized platform-as-a-service offerings like Microsoft’s Azure. In addition, SpringSource’s introduction of Cloud Foundry yesterday makes a crucial connection between deploying Spring-based and other Java applications in the enterprise and the cloud while giving developers an increased ability to manage their applications in a self-service mode.
Before the SpringSource acquisition, VMware faced potentially diminishing returns by putting a layer that manages virtualization on ever more of the enterprise infrastructure. That layer, which VMware pioneered and dominated, cracked open Microsoft’s control of the hardware by sliding a hypervisor underneath the operating system.

Check out our latest GigaOM Pro report, “What VMware’s SpringSource Acquisition Means for Microsoft” (subscription required).

But the other role of an operating system, and the source of Microsoft’s continuing control over the market, comes from the company’s ownership of application platforms and developer tools. With SpringSource, VMware controls the application framework used by 2 million Java developers and half of all enterprise Java projects. In a research note we wrote over at GigaOM Pro (subscription required), we discuss how both VMware and Microsoft have the pieces to pursue the industry’s shared vision.
The idea behind the shared vision is to offer a single, integrated platform as a service (PaaS) by which the applications have several new layers of intelligence where all the pieces fit together more intelligently. The integration makes it possible for developers to tell administrators what their performance, availability and security needs are in the design of the application itself. It also makes it possible for developers or administrators to push a button to deploy and manage the system on an internal or external cloud with these “set and forget” instructions.
Handicapping the race
VMware now looks to be ahead of Microsoft technically for several reasons. Microsoft’s Azure is still in Community Technology Preview and will likely stay there until late fall. In addition, Microsoft web applications, those developed in Microsoft’s ASP.NET in particular, require modification before they can work in Azure. And most importantly, Redmond’s original design goal for Azure was to use cloud scalability to ensure enterprise compatibility. To be fair, Microsoft has the largest developer community and will be able to move a great many of them to its Azure-based PaaS platform as it makes it more compatible with its enterprise products.
IBM and Oracle serve the other half of the Java community with JEE application frameworks and servers. They’re in similar positions, but JEE has been losing ground in custom and web applications to simpler substitutes like Spring. Packaged enterprise applications, however, are still JEE-centric and will likely remain that way. IBM and Oracle so far have not offered a clear path to the cloud from applications developed for their JEE servers. To move to the cloud, developers need to know how to manage applications. Even though Oracle’s Weblogic server runs on Amazon, someone needs to deploy the application to the new environment and manage the Amazon platform. IBM made some confusing announcements several weeks ago, saying the container that deploys the application, in the form of a virtual appliance, is incompatible between the enterprise and the cloud. And one side runs VMware and the other runs Xen. For IBM customers working with Amazon, however, Big Blue’s strategy is more like Oracle’s.
Recalibrating PaaS as a market
PaaS got a big readjustment with VMware’s SpringSource acquisition and Cloud Foundry introduction because the moves highlight a new view of PaaS as mainstream. Before, most PaaS offerings were tied to SaaS applications or proprietary platforms. Salesforce.com positioned Force.com as a general-purpose application platform, even though it had its own security, workflow, look and feel, programming language, pricing model, and regulatory choices. Google’s AppEngine, on the other hand, was designed so developers could exploit the benefits of building applications that run on a practically infinite number of inexpensive machines. Existing enterprise developers are trained in building applications that scale up on a much smaller number of big machines, a very different skill set from what Google’s offering required. In the future, PaaS is likely to have two mainstream approaches:

1. Corporate and ISV developers will leverage the PaaS offerings of SaaS vendors like Workday or Salesforce.com. But the attraction will be to integrate these systems with complementary or legacy systems, like recruiting for HR. Standalone applications, like Coda’s financials on Force.com, are unlikely to be common on these platforms because vendors would be tying their business and technology future to one vendor with too little benefit to show for it.
2. PaaS offerings from service providers based on VMware/SpringSource, Oracle and IBM (which surely will run on VMware in some cloud scenarios), and Microsoft’s Azure are going to look far more like seamless extensions of enterprise deployments. These will be the mainstream platforms for new, “greenfield” applications. The SpringSource acquisition and Cloud Foundry sure shine a strong spotlight on this direction.

Increasing calls for Asean to boot out Myanmar

PETALING JAYA: Political leaders and civil advocates here have called for the Association of South-East Nations (Asean) to suspend Myanmar’s membership over the military junta’s conviction of pro-democracy leader Aung San Suu Kyi.
Umno Youth chief Khairy Jamaluddin wanted Asean to immediately suspend Myanmar’s membership.
“The verdict is widely viewed as the culmination of a sham trial designed to prevent Suu Kyi from participating in planned elections next year,” he wrote on his blog on Tuesday not long after the guilty verdict was handed down.
“Recent developments in Myanmar represent a black mark in Asean’s history. The Suu Kyi verdict is a disgusting stain on Asean’s reputation, one that must be removed quickly and decisively.
“An immediate suspension of Myanmar’s membership in the regional bloc is the only option open for Asean to save it from being found guilty by association with the Myanmar junta,” he said.
On Tuesday, a Myanmar court convicted Suu Kyi, a Nobel Peace laureate, of violating the terms of her house arrest by allowing an uninvited American to stay at her home. She was sentenced to three years in jail, but this was commuted to 18 months’ house arrest.
The 64-year-old opposition leader has spent about 14 of the last 20 years in detention, mostly under house arrest.
In GEORGE TOWN, the DAP also called for Myanmar -- also known as Burma -- to be suspended from Asean until all charges and sentences against Suu Kyi were dropped.
Party international secretary Liew Chin Tong urged the Myanmar government to observe the Asean Charter relating to the promotion and protection of human rights and fundamental freedoms, reports ANDREA FILMER.
“The DAP calls on the Burmese government to observe the protection of human rights spelt out by the Asean Charter and for the immediate release of Aung San Suu Kyi and other political prisoners.
“We also propose that Myanmar be suspended from Asean until the sentence is overturned and all charges against Suu Kyi are dropped,” Liew, who is also Bukit Bendera MP, said in a statement on Wednesday.
He said that the commuting of Suu Kyi’s sentence of three years’ imprisonment to one-and-a-half years under house arrest was “no consolation” as she has effectively been disqualified from the elections due in Myanmar next year.
“We have no doubt that these charges are entirely trumped-up, politically motivated and an affront to democracy, human rights and international rules of law,” he said.
In KUALA LUMPUR, the National League for Democracy Party Myanmar urged the Malaysian Government to put more pressure on Myanmar’s military junta so that Suu Kyi could be released immediately and unconditionally.
“This will make her available to contest for next year’s election ... we also want the election to be free and fair,” a member of the league here, Kyaw Myo Maung, told reporters on Tuesday, according to Bernama.

Five Tips from Hackers on Cloud Computing

While many companies are considering moving applications to the cloud, the security of the third-party services still leaves much to be desired, security experts warned attendees at last week's Black Hat Security Conference.

The current economic downturn has made cloud computing a hot issue, with startups and smaller firms rushing to save money using virtual machines on the Internet and larger firms pushing applications such as customer relationship management to the likes of Salesforce.com.

Yet, companies need to be more wary of the security pitfalls in moving their infrastructure to the cloud, experts say.

"Guys at the low end are using (cloud infrastructure) to save money, but the danger is that the guys at the top end start to use it without any auditing," says Haroon Meer, technical director at security firm SensePost, who discussed his team's research into some aspects of Amazon's Elastic Compute Cloud (EC2) at the Black Hat security conference.

[ For timely data center news and expert advice on data center strategy, see CIO.com's Data Center Drilldown section. ]

Their experiments showed that companies frequently do not scan the third-party machine instances available from some providers. A malicious instance could easily be created as a Trojan horse to gain access to a company's internal network, Meer said.

With those pitfalls in mind, here are five lessons from the presentations at Black Hat.

1. Cloud offers less legal protection Companies need to realize that data in the cloud is subject to a lower legal standard in terms of search and seizure. The government, or an attorney focused on discovery, may be able to subpoena the data without a search warrant.

Cloud providers are more concerned with protecting themselves and not the client, says Alex Stamos, a principal security consultant at iSec Partners, so don't expect the legalese in service agreements to favor your company.

"All of these (cloud-services) companies have very active and very well-trained legal departments," Stamos said. "And as a result, the agreements you agree to when you sign up for these services, basically promise you absolutely nothing."

If someone breaks in because of the provider's mistake, the client agrees not to hold the firm responsible. If there is a data loss because of a data center failure, the provider are not obligated to do anything for you, Stamos says.

It would be nice, he adds, if there were language that said they will attempt to help you.

"It would be nice if they had language in there that said if there is a security breach, we will try to give you a hand up," he says. "This seems to be where there is a disconnect between the cold heartless world of the lawyers, and the nice warm security (ethics) of the company."

2. You don't own the hardware Companies who want to audit their providers and do their own testing need to remember that they don't own the hardware. Conducting a vulnerability scan or a penetration test requires the explicit permission of the cloud-service provider, Stamos warns. Otherwise, the client is hacking the providers' systems.

While some service agreements, such as Amazon's, specify that the client can conduct testing of their software running on the provider's systems, getting explicit permission is key, he says.

"The recommendation ... is that, if you are asked to pen-test applications in the cloud, they (the legal experts) recommend that you get permission from someone at the company," he said. "Because certainly, by the letter of the law the legal ownership of those machines is very important."

3. Strong policies and user education required While cloud computing offers companies immense benefits, such as allow access to data from anywhere and removing maintenance headaches from the IT staff, the always-on service also means that phishing attacks that hit workers at home could threaten the company.
Thus, educating users about the dangers, not only to themselves but to their company, is key, said iSEC's Stamos.

"It is very difficult to teach all the non-technical users in your company about how to not be phished, but the fact of the matter is, with software-as-a-service, phishing attacks are going to be something that stops being a personal issue and starts becoming a enterprise-wide security issues," he said.

4. Don't trust machine instances When using a virtual machine from a provider, such as the third-party instances created on Amazon's Elastic Cloud Computing (EC2) infrastructure, companies should never trust the system, says SensePost's Meer.

The company's researchers scanned a number of pre-configured instances and found authentication keys in the caches, credit-card data and the potential for malicious code to be hidden within the system. Yet, they found most of their customers did not consider the security implications of using a machine image created by the third-party developer.

"Some customers have based an entire authentication server off of pre-configured images," SensePost's Meer said.

Companies should either create their own images for internal use, or protect themselves technically and legally from potentially malicious third-party developers, Meer says.

5. Rethink your assumptions In all cases, when considering security, corporate information-technology managers need to reconsider their assumptions in the cloud.

For example, when deploying an application to run on a computing instance in a virtualized data center, features that rely on random number generation will not necessarily work as expected. The problem is that virtual systems have much less entropy than physical ones, so random numbers could be guessable, iSEC's Stamos says.

"You need to consider the non-obvious," he says.

Microsoft's Drag-And-Drop Windows Azure Cloud

By John Foley

Citing an unfavorable change in tax laws, Microsoft is moving its Windows Azure cloud from a data center in Washington state to one in Texas. It's an interesting new twist in the cloud computing market—moving a cloud across state lines in response to the regulatory climate.
In a blog post on its Windows Azure site on Tuesday, Microsoft revealed that it's moving Azure-based apps from its Northwest region, citing "a change in local tax laws." According to an article on DataCenterKnowledge.com, Microsoft faces a 7.9% tax on new data center gear, following a period in which it apparently paid no such tax. In February, SeattlePI.com reported that a tax exemption could be worth more than $1 billion to Microsoft and other data center operators in Washington.
Michael Manos, the former GM of Microsoft data center services and now senior VP with data center specialist Digital Realty Trust, suggests that we're witnessing the beginning of "a cat and mouse game that will last for some time on a global basis." In a blog post, Manos provides examples of how government regulation can affect data center location and cost, and he makes the point that laws and regulations can change after a data center gets built. What then?
The answer is to move the data center or, in the case of Microsoft, to move the services that represent the data center's biggest area of growth, its Windows Azure cloud services. (Azure is due for availability in November.) "The 'cloud' will ultimately need to be mobile in its design," Manos writes.
Moving the data center itself would be an extreme measure, though within the realm of possibility. While at Microsoft, Manos helped conceive a blueprint for modular data centers that can be assembled like Lego blocks and, presumably, disassembled and reassembled.
A more feasible approach, and the one that Microsoft appears to be taking, is to move the cloud computing software layer and associated data, while leaving the physical servers in place. Manos uses the metaphor of the data center as a "folder." If data center operators were able to drag and drop clouds from one folder (data center) to another, it would make them less vulnerable to changing conditions, including laws, taxes, customer demographics, even wars and natural disasters.
Cloud architects and cloud users have already begun to think in terms of geographic location, as evidenced by Amazon Web Services' "regions" and "availability zones." And Microsoft gives early adopters of Azure a degree of control over where their apps and data are stored. Given Microsoft's impending cloud shift, Azure users are being instructed to disable the "USA-Northwest" option for any new applications they build. In migrating Azure to a different data center, Microsoft is taking the concept of the movable cloud to the next level.
Want to see what a cloud data center looks like? Here's our image gallery of Microsoft's San Antonio data center, the new home of the Azure cloud. The photos were taken by InformationWeek's Nick Hoover last year on a walk-through of the facility.

To keep applications humming in virtualized environments, you must move beyond manual monitoring and management. Find out about that and more in our digital supplement on virtualization and the cloud, part of InformationWeek’s Green Initiative to reduce our carbon footprint.. Download the supplement here (registration required).

Deployment to the cloud: Logical servers and compliance agents

loud-based technologies can be a great solution for lowering costs and increasing elastic capacity, but not for every situation. In this TechRepublic post, IT guru Rick Vanover introduces the concept of logical servers.

Getting started with cloud technologies is no easy task. Traditional IT infrastructures of all sizes, brick-and-mortar IT if you will, are challenged to decide what can go to a cloud.
FastScale Technology recently released FastScale Composer Suite Enterprise Edition 3.0 for cloud technology deployment. FastScale Composer Suite is a tool that creates logical servers to help organizations abstract clouds. This is because a cloud can be used internally with a technology like VMware's vSphere or externally with Amazon Web Services.
FastScale Composer Suite does a brilliant job in helping IT professionals rationalize this important distinction. FastScale's vice president Jerry McLeod said in a recent conversation, "Separate what you want to build from where you want to build it." Simply put, that makes a logical server the transportable object to go to a cloud solution. I really like that explanation, as the application and functionality are what we are focused on.
The Composer Suite product does one better than most solutions out there in that a just enough operating system, or JeOS (pronounced juice), is used to deploy logical servers to the cloud. A JeOS build removes all the unnecessary components of a logical server to allow it to function only as required. This comes into play for an upcoming feature with the product. Though not yet available, FastScale is working diligently with compliance-software companies to bundle agents with the logical servers to go to the cloud.
The compliance agents will score a logical server's classification for regulatory compliance such as PCI, HIPAA, or COBIT. The compliance metric or score is calculated for the logical servers. Using JeOS architecture will aid greatly, as many unnecessary elements of the original operating system are not inherited to the logical server. Figure A shows a logical server being provisioned and the associated options selected.
Figure A

Click to enlarge figure.

Logical servers with Composer Suite can be built in Linux and Windows. The current Windows support is for Windows Server 2003 logical servers, with Windows Server 2008 support forthcoming.
Overall, a tool such as Composer Suite makes cloud provisioning easier for organizations to work with a proof of concept or migration. I’ll be sure to follow up here on the forthcoming compliance agent that will be bundled into the cloud-hosted logical servers.

NASA's Next Mission: Cloud Computing

As NASA prepares for the return of space shuttle Endeavour and, beyond that, its next-generation Aris moon rocket, NASA's IT experts are thinking about what's next for the agency's data centers. An early adopter of cloud computing, NASA could play a central role in the U.S. government's move to virtualized, on-demand IT resources.
As I reported in May, NASA's Ames Research Center has begun creating a cloud computing environment called Nebula. Led by NASA Ames CIO Chris Kemp, the project is fairly well along. NASA has created a detailed IT architecture, and there's even a Nebula Web site, nebula.nasa.gov.
The Nebula cloud is in limited beta test now, and NASA is accepting applications from interested parties that want to give it a try. Take note: NASA is making Nebula available not just to its own staffers, but to employees and contractors of other federal agencies.
That's significant because it positions NASA to eventually provide cloud services beyond its own internal needs. Is that a good idea? NASA is asking itself the same question. "NASA as a service provider takes us into a new realm," Mike Hecker, NASA's associate CIO for architecture and infrastructure, told Nextgov.com. "We're still debating if that's a good idea or not." According to Nextgov.com, NASA has discussed the possibility with the Office of Management and Budget, which is where Federal CIO Vivek Kundra works.
This gets to the concept of cloud computing "nodes," which InformationWeek has touched on several times recently. (See "US Agencies Think About Establishing Cloud Nodes" and "How Government's Driving Cloud Computing Ahead.") The basic idea is that the feds would devise a common cloud architecture, and agencies like NASA would link their clouds together in one, big, interoperable uber-cloud.
There's reason to believe that NASA is well suited to support a major cloud node. It tends to be a more compute-intensive organization than most U.S. civilian agencies and more open than defense and intelligence agencies. What's more, the cyclical nature of NASA's missions would seem to lend itself to the cloud model, with spikes and dips in computing activity. Presumably, NASA sometimes has spare compute cycles and other IT infrastructure that could be shared in a fashion similar to Amazon Web Services.
NASA's IT team has demonstrated high interest in cloud computing, which means there's no huge organizational barrier to overcome to make this happen. Tom Soderstrom, CTO of NASA's Jet Propulsion Lab, has been on the road visiting cloud computing practitioners as a way of coming up to speed. And NASA Goddard CIO Linda Cureton has been urging her counterparts not to wait, but to take their first steps toward cloud computing. Apparently, Cureton's message is getting through.