Vulnerabilities / Threats // Insider Threats
10/4/2010
11:53 AM
50%
50%

KT Launches Large Scale Private Cloud

Leading Korean telecom partners with Cloudscaling to develop platform for data-intensive mobile services.




Slideshow: Amazon's Case For Enterprise Cloud Computing
(click for larger image and for full photo gallery)
KT, Korea's largest fixed-line operator and its second largest mobile carrier, has launched the nation's first large-scale, private cloud. It will serve as a platform for data-intensive services to devices such as smartphones and tablet PCs, as well as to deliver computing infrastructure to its internal enterprise.

"Telcos should focus on the explosion of data from smartphones, the Internet, and multimedia. We should prepare for continued data growth in the future. There will be many opportunities to provide applications supporting this data explosion. We think cloud is the right technology solution to accomplish this," said Jung-sik Suh, senior VP, cloud services business unit, at KT.

Telecommunications provider KT elected to partner with San Francisco-based Cloudscaling, in part because of the service provider's use of commodity hardware, open source software, and automation, said Suh.

"The leaders in cloud technology are Internet companies, not telcos or enterprise IT companies," he said. "We wanted a cloud computing partner that understood our vision for cloud services, which is a cost-competitive offering at a high quality of service."

By using a private cloud, KT can eliminate systems that require the manual management of virtual servers, moving instead to automated management -- a more cost-effective and efficient approach, according to the company. In fact, the first phase will consolidate 9,800 servers onto the new cloud infrastructure, KT said.

"KT's approach to cloud computing is bold," said Randy Bias, CEO and founder of Cloudscaling. "Modeling their cloud computing architecture after the most efficient and lowest-cost public cloud providers should allow them to leapfrog regional competitors who are building clouds based on enterprise architectures."

Other partners include Intel, Citrix, Nexenta, Cloud.com, and SP Korea, according to Cloudscaling.

"We used commodity hardware to keep the up-front and ongoing [capital expenditure] costs down. The software stack is based heavily on free and/or open source software to lower the license costs. The system was designed for failure," said Bias. "Cloud infrastructure must be highly available, which means hardware and software failure should not interrupt the service. These loosely coupled services should be automatically provisioned, deployed, and managed."

The Cloudscaling team brings together experience building and managing cloud infrastructures at companies such as Amazon, GoGrid, Yahoo, Engine Yard, and Puppet Labs, and has teleco and service provider clients around the world.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: "I've seen worse.  Last week Tim had a dragon."
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.