|By Sameer Mohile||
|November 19, 2012 07:45 AM EST||
Enterprise IT has experienced a rapid evolution over the past few years. Cloud has revolutionized storage and brought with it a host of new and emerging information security challenges. Consumer adoption of mobile technology has forced enterprise networks to operate in a multi-platform environment in which the technology is largely selected, procured, and controlled without the advice or consent of IT. Of the many lessons learned in recent years, perhaps the most crucial is that IT must take a proactive approach to adopting emerging technologies, rather than being forced to react to and mitigate the inevitable fire drills. Of the transformative technologies now gaining traction in the enterprise, Virtual Desktop Infrastructure (VDI) has stayed relatively under the radar, but is nonetheless poised to play an integral role in the ongoing IT evolution. This article will discuss the benefits of integrating VDI into the new data center, and the factors enterprise IT departments must consider when evaluating if and when to bring on a VDI solution.
While the origins of virtualization reside in the drive for server consolidation, VDI is fast becoming a staple in the new data center. Today's evolving network takes virtualization well beyond servers to a means of centralizing IT, beginning with desktop PCs and expanding to encompass the wireless computing devices proliferating throughout the enterprise, including smartphones and tablets. The expansive adoption is evident in the numbers. According to a report published in September 2012 by VisionGain titled "The Cloud-Based Virtual Desktop Infrastructure Market 2012-2017,"the VDI market was expected to grow to $11.2 billion by the end of 2012.
The advantages of VDI, particularly for large enterprises, are clear. For one, VDI solutions reduce desktop support and management costs by bringing a wide array of devices and operating systems into a single control solution. For another, they also enable energy saving and green initiatives by lower overall energy requirements of virtual desktops. Moreover, VDI offers business continuity and disaster recovery capabilities as well as a means to secure data in the data center, which is paramount when meeting compliance and security regulations.
Progressive IT departments at colleges, law firms and retail establishments have quickly caught on to the potential of VDI to radically streamline enterprise networking. The business and technical efficiencies involved with VDI are relatively simple and straightforward in exchange for the significant improvements VDI can deliver to network manageability, security and energy efficiency.
Before an enterprise undertakes the transformation to VDI, however, data center managers must understand the potential network impact from a performance standpoint, while maintaining key criteria such as cost savings, delivery of multiple converged services, and power efficiency.
VDI Deployments and Network Security
Network security is of paramount importance in today's business environment, and the emergence of VDI in the network has enhanced today's security, namely network identity, by simplifying, centralizing and driving security within the network rather than the PC OS. Security for yesterday's network meant complex "application layer" elements of sign-on security such as LDAP directories, strong authentication, and Single Sign-On (SSO) systems. With the VDI network, traditional operating systems are eliminated, but IT must still require and implement user log on, secure policies, visibility and monitoring in order to ensure security across the network.
The Energy Efficient Network
The amount of energy consumed by data centers is enormous, and growing in tandem with the burgeoning amounts of electronic data being created and stored by enterprises the world over. At the same time, enterprises are increasingly called to task to demonstrate their Corporate Social Responsibility (CSR), one aspect of which is reducing their carbon footprint. The efficiency of the networking equipment deployed therefore directly impacts a data center's ‘green' credentials. As energy costs rise and CSR gains public and government mindshare, reducing energy consumption has become a focal point for many enterprises, and VDI plays an integral role in this process. By centralizing resources and bringing in much higher speeds at the port level, VDI significantly improves the energy efficiency of the network. Rather than deploying multiple tiers and distributed Gigabit Ethernet LANs, suddenly the horsepower is consolidated into a single core layer providing the bandwidth necessary for all VDI connections. This allows much higher density 10 Gigabit Ethernet port modules on chassis type switches to easily collapse all traffic into just a few network switches. VDI implementations also contribute to energy savings at the device level. By enabling IT to easily manage smartphones and tablets operating on multiple platforms, energy-gobbling desktops can be replaced with these smaller, more energy efficient mobile devices. In the end, VDI is highly efficient, more powerful and easier for IT to manage.
Converging Voice and Video for VDI Deployments
Once the considerations for bandwidth and system centralization have been addressed, the issue of carrying converged media (mixed voice, video and data) comes to the fore. Just like traditional networks, the VDI network backbone still must handle convergence flawlessly so that all users have a consistent, predictable experience. Critical activities such as IP phone calls and collaboration, e-learning activities using IP video, customer call centers, to name but a few, all depend on the network for a seamless, quality experience, and when implementing a VDI solution, IT must ensure that this remains and priority. In order to ensure this consistency and predictability, the network has to not only be equipped with 10 Gigabit and Gigabit to the edge, it also needs the intelligence, Quality of Service (QoS) and ultra-low latency switching, to seamlessly deliver voice and video traffic to users based on predetermined priorities.
Maintaining and Enhancing Security for Enterprise VDI Deployments
As enterprise networks increasingly adopt virtualization technology, there is a growing demand on IT to successfully meet the networking challenges posed by a highly dynamic virtual environment. On the one hand, VDI is a superior tool enabling users to access the network via multiple mobile and computing devices operating on multiple platforms and operating systems. On the other, this diversified access creates an environment in which policy and identity management are paramount network security considerations since users can connect to the data center from any location using a variety of devices. Just as old networks were unable to handle the growing number of connecting devices, the access management and lack of identity features with old networks won't be up to par in the new virtual landscape.
Recognizing this security challenge, more and more secure government facilities are using advanced identity management to ensure compliance and security when using VDI, setting the stage for similar deployments in the private sector with large mobile workforces. Identity-aware networking, defined by Enterprise Strategy Group as "a policy-based network architecture that understands and acts upon the identity and location of users and devices," will be the solution du jour for private sector business looking to securely deploy VDI.
Identity-aware networking is an integration effort where the network gathers information from multiple existing sources then enables IT managers to use this data to build and enforce access policies. The best-of-breed network has the intelligence to dynamically collect and update information about users, devices, and location as the users connect to the VDI infrastructure and just as important, enforce policies once they are on the network. The business, regulatory compliance, and security ROI benefits available with the identity-aware network become the new norm, carrying the burden away from those that had to maintain application-layer security.
Network-based identity for VDI is associated with things like IP and MAC addresses, VLAN tags, and subnets that play a role in device authentication, VPNs, and IPSEC. With VDI, network layer security takes over. It is based on a number of inputs, including the user-id and role of the user, specific device characteristics and capabilities, and user/device location. Identity-aware networking wants to know if the user is logging on from a trusted or untrusted network, or whether a user is accessing the network from a wired port or over Wi-Fi. Furthermore, network access policies may need to change from one location within a facility to the next.
With most deployments, the IT department will strive to meet the needs of varying mobile users and disparate devices. At the network level, more granular network access policies based upon user roles, device types, and physical locations are required. The network then has to scale bandwidth, handle converged communications appropriately and bring network layer security policy that is not tied to any single device or application.
There are significant advantages to VDI, including a more centralized streamlined, and energy efficient network, but before implementing VDI, enterprise IT must ensure that the necessary protocols are in place to preserve network security in this new virtual environment. VDI demands an identity approach and a more aware network in order to satisfy security and compliance requirements. Only when data center managers closely examine the network's role in meeting key criteria such as cost savings, power efficiency, user and device identity, and ease-of-use can VDI truly progress towards becoming a new norm in computing.
JFrog has announced a powerful technology for managing software packages from development into production. JFrog Artifactory 4 represents disruptive innovation in its groundbreaking ability to help development and DevOps teams deliver increasingly complex solutions on ever-shorter deadlines across multiple platforms JFrog Artifactory 4 establishes a new category – the Universal Artifact Repository – that reflects JFrog's unique commitment to enable faster software releases through the first pla...
Oct. 7, 2015 03:00 PM EDT Reads: 553
Saviynt Inc. has announced the availability of the next release of Saviynt for AWS. The comprehensive security and compliance solution provides a Command-and-Control center to gain visibility into risks in AWS, enforce real-time protection of critical workloads as well as data and automate access life-cycle governance. The solution enables AWS customers to meet their compliance mandates such as ITAR, SOX, PCI, etc. by including an extensive risk and controls library to detect known threats and b...
Oct. 7, 2015 03:00 PM EDT Reads: 101
Ten years ago, there may have been only a single application that talked directly to the database and spit out HTML; customer service, sales - most of the organizations I work with have been moving toward a design philosophy more like unix, where each application consists of a series of small tools stitched together. In web example above, that likely means a login service combines with webpages that call other services - like enter and update record. That allows the customer service team to writ...
Oct. 7, 2015 02:45 PM EDT Reads: 335
Several years ago, I was a developer in a travel reservation aggregator. Our mission was to pull flight and hotel data from a bunch of cryptic reservation platforms, and provide it to other companies via an API library - for a fee. That was before companies like Expedia standardized such things. We started with simple methods like getFlightLeg() or addPassengerName(), each performing a small, well-understood function. But our customers wanted bigger, more encompassing services that would "do ...
Oct. 7, 2015 02:30 PM EDT Reads: 539
Clearly the way forward is to move to cloud be it bare metal, VMs or containers. One aspect of the current public clouds that is slowing this cloud migration is cloud lock-in. Every cloud vendor is trying to make it very difficult to move out once a customer has chosen their cloud. In his session at 17th Cloud Expo, Naveen Nimmu, CEO of Clouber, Inc., will advocate that making the inter-cloud migration as simple as changing airlines would help the entire industry to quickly adopt the cloud wit...
Oct. 7, 2015 01:30 PM EDT Reads: 605
The APN DevOps Competency highlights APN Partners who demonstrate deep capabilities delivering continuous integration, continuous delivery, and configuration management. They help customers transform their business to be more efficient and agile by leveraging the AWS platform and DevOps principles.
Oct. 7, 2015 01:15 PM EDT Reads: 116
Our guest on the podcast this week is Jason Bloomberg, President at Intellyx. When we build services we want them to be lightweight, stateless and scalable while doing one thing really well. In today's cloud world, we're revisiting what to takes to make a good service in the first place. Listen in to learn why following "the book" doesn't necessarily mean that you're solving key business problems.
Oct. 7, 2015 12:00 PM EDT Reads: 2,195
Apps and devices shouldn't stop working when there's limited or no network connectivity. Learn how to bring data stored in a cloud database to the edge of the network (and back again) whenever an Internet connection is available. In his session at 17th Cloud Expo, Bradley Holt, Developer Advocate at IBM Cloud Data Services, will demonstrate techniques for replicating cloud databases with devices in order to build offline-first mobile or Internet of Things (IoT) apps that can provide a better, ...
Oct. 7, 2015 11:45 AM EDT Reads: 486
Culture is the most important ingredient of DevOps. The challenge for most organizations is defining and communicating a vision of beneficial DevOps culture for their organizations, and then facilitating the changes needed to achieve that. Often this comes down to an ability to provide true leadership. As a CIO, are your direct reports IT managers or are they IT leaders? The hard truth is that many IT managers have risen through the ranks based on their technical skills, not their leadership ab...
Oct. 7, 2015 11:00 AM EDT Reads: 857
Despite all the talk about public cloud services and DevOps, you would think the move to cloud for enterprises is clear and simple. But in a survey of almost 1,600 IT decision makers across the USA and Europe, the state of the cloud in enterprise today is still fraught with considerable frustration. The business case for apps in the real world cloud is hybrid, bimodal, multi-platform, and difficult. Download this report commissioned by NTT Communications to see the insightful findings – registra...
Oct. 7, 2015 11:00 AM EDT Reads: 222
Application availability is not just the measure of “being up”. Many apps can claim that status. Technically they are running and responding to requests, but at a rate which users would certainly interpret as being down. That’s because excessive load times can (and will be) interpreted as “not available.” That’s why it’s important to view ensuring application availability as requiring attention to all its composite parts: scalability, performance, and security.
Oct. 7, 2015 11:00 AM EDT Reads: 371
“All our customers are looking at the cloud ecosystem as an important part of their overall product strategy. Some see it evolve as a multi-cloud / hybrid cloud strategy, while others are embracing all forms of cloud offerings like PaaS, IaaS and SaaS in their solutions,” noted Suhas Joshi, Vice President – Technology, at Harbinger Group, in this exclusive Q&A with Cloud Expo Conference Chair Roger Strukhoff.
Oct. 7, 2015 10:00 AM EDT Reads: 376
As we increasingly rely on technology to improve the quality and efficiency of our personal and professional lives, software has become the key business differentiator. Organizations must release software faster, as well as ensure the safety, security, and reliability of their applications. The option to make trade-offs between time and quality no longer exists—software teams must deliver quality and speed. To meet these expectations, businesses have shifted from more traditional approaches of d...
Oct. 7, 2015 08:45 AM EDT Reads: 162
As the world moves towards more DevOps and microservices, application deployment to the cloud ought to become a lot simpler. The microservices architecture, which is the basis of many new age distributed systems such as OpenStack, NetFlix and so on, is at the heart of Cloud Foundry - a complete developer-oriented Platform as a Service (PaaS) that is IaaS agnostic and supports vCloud, OpenStack and AWS. In his session at 17th Cloud Expo, Raghavan "Rags" Srinivas, an Architect/Developer Evangeli...
Oct. 7, 2015 08:00 AM EDT Reads: 133
What Is Emergent About Emergent Architecture? By @TheEbizWizard | @DevOpsSummit #DevOps #BigData #API
All we need to do is have our teams self-organize, and behold! Emergent design and/or architecture springs up out of the nothingness! If only it were that easy, right? I follow in the footsteps of so many people who have long wondered at the meanings of such simple words, as though they were dogma from on high. Emerge? Self-organizing? Profound, to be sure. But what do we really make of this sentence?
Oct. 7, 2015 08:00 AM EDT Reads: 381
Last month, my partners in crime – Carmen DeArdo from Nationwide, Lee Reid, my colleague from IBM and I wrote a 3-part series of blog posts on DevOps.com. We titled our posts the Simple Math, Calculus and Art of DevOps. I would venture to say these are must-reads for any organization adopting DevOps. We examined all three ascpects – the Cultural, Automation and Process improvement side of DevOps. One of the key underlying themes of the three posts was the need for Cultural change – things like t...
Oct. 7, 2015 05:00 AM EDT Reads: 314
There once was a time when testers operated on their own, in isolation. They’d huddle as a group around the harsh glow of dozens of CRT monitors, clicking through GUIs and recording results. Anxiously, they’d wait for the developers in the other room to fix the bugs they found, yet they’d frequently leave the office disappointed as issues were filed away as non-critical. These teams would rarely interact, save for those scarce moments when a coder would wander in needing to reproduce a particula...
Oct. 7, 2015 05:00 AM EDT Reads: 277
In today's digital world, change is the one constant. Disruptive innovations like cloud, mobility, social media, and the Internet of Things have reshaped the market and set new standards in customer expectations. To remain competitive, businesses must tap the potential of emerging technologies and markets through the rapid release of new products and services. However, the rigid and siloed structures of traditional IT platforms and processes are slowing them down – resulting in lengthy delivery ...
Oct. 7, 2015 05:00 AM EDT Reads: 989
In a report titled “Forecast Analysis: Enterprise Application Software, Worldwide, 2Q15 Update,” Gartner analysts highlighted the increasing trend of application modernization among enterprises. According to a recent survey, 45% of respondents stated that modernization of installed on-premises core enterprise applications is one of the top five priorities. Gartner also predicted that by 2020, 75% of
Oct. 7, 2015 04:00 AM EDT Reads: 274
It is with great pleasure that I am able to announce that Jesse Proudman, Blue Box CTO, has been appointed to the position of IBM Distinguished Engineer. Jesse is the first employee at Blue Box to receive this honor, and I’m quite confident there will be more to follow given the amazing talent at Blue Box with whom I have had the pleasure to collaborate. I’d like to provide an overview of what it means to become an IBM Distinguished Engineer.
Oct. 7, 2015 04:00 AM EDT Reads: 174