Risk
9/1/2010
11:58 AM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

Product Watch: Verizon, VMware Team Up With Hybrid Cloud Service

New Verizon service offers private public-cloud option

Verizon and VMware have joined forces to offer a hybrid cloud computing service that combines virtualization for a private public-cloud infrastructure for enterprises.

The new Computing as a Service (CaaS) enabled by VMware vCloud Datacenter offering is currently in field trials, and will be offered in beta in the fourth quarter and for general availability in the first quarter of 2011. The offering lets organizations move their private data center to the public cloud in a secure way, according to the two vendors.

"The service itself—the infrastructure—is secure," says Mathew Lodge, senior director of cloud services for VMware. "The security policy in VMware follows the application around wherever it goes in the cloud."

VMware's Lodge says the service uses virtualization to bridge existing IT applications into the cloud. This lets organizations get better connectivity, reach, and delivery to their customers and users, he says.

The Verizon hybrid cloud service also lets organizations move applications back and forth from the physical data center and the cloud. "One of the things we hear [from customers] is 'how do I get my data back and my apps out of the cloud?'" for temporarily shifting apps for seasonal or capacity reasons, Lodge says.

"This offering is clearly aimed at giving enterprises more robust tools to build their own private cloud environments to alleviate their concerns about the security risks associated with today’s public cloud services," says Jeffrey Kaplan, managing director at THINKstrategies.

Verizon points to hotel firm InterContinental Hotels Group, which has been testing the move of some of its apps to the cloud, depending on peak busy seasons like the holidays or vacation timeframes. "We must have the elasticity in our computing infrastructure that cloud delivers while, at the same time, use our current IT configurations and applications," said Bates Turpen, senior vice president of global operations for IHG.

VMware is also working with other service providers on similar offerings, the companies say.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0485
Published: 2014-09-02
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object in (1) common.py or (2) local.py in backends/.

CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5136
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services Platform 1.2_3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.