Vulnerabilities / Threats // Insider Threats
1/18/2011
09:31 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Verizon To Continue Rapid Cloud Ramp

The firm will rapidly expand its cloud offerings, with platform-based services, customer relationship management, and enterprise resourcThe telecom provider will expand its cloud computing offerings with platform-based services, and upcoming CRM and ERP apps.e planning launching in 2011.

Top 10 Cloud Stories Of 2010
(click image for larger view)
Slideshow: Top 10 Cloud Stories Of 2010

Verizon Business rapidly expanded its cloud capabilities last year, and plans to do the same in 2011. It's not previously been seen as a prominent name in cloud computing, but its enhanced capabilities indicate that may be about to change.

It started out in 2009 offering simple infrastructure as a service, like Amazon's EC2. Later this year, it will move beyond infrastructure into platform-based services and start offering customer relationship management (CRM) and enterprise resource planning (ERP) applications online as software as a service (SaaS). Not only is it bringing increased capabilities, but its customers are bringing increased demands, as they broaden the role Verizon's Computing-as-a-Service (CaaS) plays in their operations.

"We are seeing very broad use-cases," said Patrick Verhoeven, Verizon manager of cloud services, as business workloads become more production-oriented and less dominated by Web site applications or software test and development.

Verhoeven doesn't look under the lid of customers' workloads, but he suspects a few are making use of Verizon's ability to guarantee Payment Card Industry (PCI)-compliant infrastructure to customers. PCI-compliant architectures in the cloud are gaining new credibility as Amazon Web Services announced it had achieved PCI compliance on Dec. 7, which would allow credit card transactions to take place there. Verizon had its own audited and compliant infrastructure in place as of Aug. 18.

"Customers still have to undergo a third-party audit to ensure their systems connected to the cloud are compliant. But knowing the (cloud) infrastructure is already compliant makes that easier," said Verhoeven.

Verizon's CaaS cloud is managed following IT Infrastructure Library guidelines and is audited for SAS 70 compliance. Part of Verizon's approach to cloud users this year will give them not only fast, automated provisioning of servers, but also the ability to conduct secure transactions in an environment managed to established standards. One result is that Verizon moved out of the also-ran category on Dec. 22 into the Gartner "Leaders" so-called magic quadrant. Other leaders include Rackspace, Terremark, Savvis, and AT&T, according to Gartner. Amazon Web Services with EC2 is shown as leading the pack in the "Visionaries" quadrant.

In addition, Verizon is one of a handful of suppliers named a first-tier implementation partner by VMware, which means Verizon had adopted VMware's vCloud compatibility software and can run VMware ESX Server virtual machines. Since VMware is the most widely distributed virtualization software in the enterprise, a VMware-compatible cloud might have a broader market appeal than ones that run only their own brand name.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-2595
Published: 2014-08-31
The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, enables MSM_CAM_IOCTL_SET_MEM_MAP_INFO ioctl calls for an unrestricted mmap interface, which all...

CVE-2013-2597
Published: 2014-08-31
Stack-based buffer overflow in the acdb_ioctl function in audio_acdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges via an application that lever...

CVE-2013-2598
Published: 2014-08-31
app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory ...

CVE-2013-2599
Published: 2014-08-31
A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.3.x enables debug logging, which allows attackers to obtain sensitive disk-encryption pas...

CVE-2013-6124
Published: 2014-08-31
The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as demonstrated by changing the permissions of an arbitrary fil...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.