Risk
9/1/2010
11:58 AM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

Product Watch: Verizon, VMware Team Up With Hybrid Cloud Service

New Verizon service offers private public-cloud option

Verizon and VMware have joined forces to offer a hybrid cloud computing service that combines virtualization for a private public-cloud infrastructure for enterprises.

The new Computing as a Service (CaaS) enabled by VMware vCloud Datacenter offering is currently in field trials, and will be offered in beta in the fourth quarter and for general availability in the first quarter of 2011. The offering lets organizations move their private data center to the public cloud in a secure way, according to the two vendors.

"The service itself—the infrastructure—is secure," says Mathew Lodge, senior director of cloud services for VMware. "The security policy in VMware follows the application around wherever it goes in the cloud."

VMware's Lodge says the service uses virtualization to bridge existing IT applications into the cloud. This lets organizations get better connectivity, reach, and delivery to their customers and users, he says.

The Verizon hybrid cloud service also lets organizations move applications back and forth from the physical data center and the cloud. "One of the things we hear [from customers] is 'how do I get my data back and my apps out of the cloud?'" for temporarily shifting apps for seasonal or capacity reasons, Lodge says.

"This offering is clearly aimed at giving enterprises more robust tools to build their own private cloud environments to alleviate their concerns about the security risks associated with today’s public cloud services," says Jeffrey Kaplan, managing director at THINKstrategies.

Verizon points to hotel firm InterContinental Hotels Group, which has been testing the move of some of its apps to the cloud, depending on peak busy seasons like the holidays or vacation timeframes. "We must have the elasticity in our computing infrastructure that cloud delivers while, at the same time, use our current IT configurations and applications," said Bates Turpen, senior vice president of global operations for IHG.

VMware is also working with other service providers on similar offerings, the companies say.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2009-5142
Published: 2014-08-21
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb 1.09 and earlier, as used in Mimbo Pro 2.3.1 and other products, allows remote attackers to inject arbitrary web script or HTML via the src parameter.

CVE-2010-5302
Published: 2014-08-21
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING.

CVE-2010-5303
Published: 2014-08-21
Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb before 1.15 (r85), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to $errorString.

CVE-2014-3562
Published: 2014-08-21
Red Hat Directory Server 8 and 389 Directory Server, when debugging is enabled, allows remote attackers to obtain sensitive replicated metadata by searching the directory.

CVE-2014-3577
Published: 2014-08-21
org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Three interviews on critical embedded systems and security, recorded at Black Hat 2014 in Las Vegas.