Transformation Infrastructure

Second Government Cloud Computing Survey

By G C Network | April 1, 2009

Earlier this week I had the pleasure of presenting at the Sys-con International Cloud Computing Expo in New York City. My presentation, The View from Government Cloud Computing Customers, reviewed…

Navy NGEN and Cloud Computing

By G C Network | April 1, 2009

I spent half of today in downtown DC at the Navy Next Generation Enterprise Network (NGEN) Industry Day.  In case you’re not familiar with NGEN, this project will be the follow-on…

An Ontology for Tactical Cloud Computing

By G C Network | March 25, 2009

This week I’ve had the pleasure of presenting at two fairly unique conferences. On Tuesday I was in San Diego at the Simulation Interoperability Standards Organization (SISO) Workshop. SISO is…

Federal Cloud Computing Roadmap

By G C Network | March 24, 2009

ServerVault, a long time provider of IT hosting services to the Federal government, has been discussing cloud computing quite a bit with their current (and future) customers.  The repetitive nature…

Booz Allen Hamilton Lays Out Path To Cloud

By G C Network | March 23, 2009

Now that cloud computing is seen as a viable technology for the government marketplace, management consulting leader Booz Allen Hamilton is now providing cloud transition guidance. In his article “Cloud…

Is Sun Rising or Setting?

By G C Network | March 19, 2009

Today was strange. First Sun announces it’s open cloud computing platform. Sun Unveils Open Cloud Computing Platform “Sun on Wednesday announced plans to offer its own Open Cloud Platform, starting…

A Conversation with Emil Sayegh, Mosso General Manager

By G C Network | March 16, 2009

Last week, Mosso announced their new “Cloud Server” and “Cloud Sites” offerings. They also exited “Cloud Files” from beta, positioning themselves as a challenger to Amazon. With this as a…

Playing the Cloud Computing Wargame

By G C Network | March 12, 2009

Today at FOSE I tried my hand at balancing traditional IT, hybrid cloud offerings and commercial cloud offerings on a craps table. Just to set the scene, the Booz Allen…

Vivek Kundra Nominated for Federal CIO

By G C Network | March 10, 2009

Mr. Kundra’s quote from the Wall Street Journal says it all: “I’m a big believer in disruptive technology. If I went to the coffee shop, I would have more computing…

7th SOA for E-Government Conference

By G C Network | March 5, 2009

On April 28, 2009, Mitre will be holding its biannual SOA for E-Government Conference. This conference is one of the region’s premier opportunity for federal managers and MITRE Subject Matter…

Hybrid IT enables a composable infrastructure which describes a framework whose physical compute, storage, and network fabric resources are treated as services.

Resources are logically pooled so that administrators need to physically configure hardware to support a specific software application, which describes the function of a composable architecture.

This type of transformative infrastructure is foundational to contemporary agile business because a hybrid IT environment, private clouds, public clouds, community clouds, traditional data centers, and services from service providers must be integrated and interconnected.

Composable infrastructures can build new revenue-generating products and services faster while simultaneously addressing the key inhibitors to change, which include the following:     

  • General concerns regarding lack of adequate hybrid infrastructure security     
  • The false impression that cloud cannot support the operational/performance requirements of critical applications (e.g., SAP and Oracle)     
  • Management challenge presented by multi-cloud environments contracts that will include varying levels of governance and service-level agreements (SLAs)     
  • The need to match employee management skills across various cloud platforms 

Composable infrastructure architectures have two major functions. They must be able to disaggregate

and aggregate resources into pools and compose consumable resources through a unified API.

Fifth-generation (5G) wireless networks will significantly enhance the current mobile network environment. These new networks will use multi-access edge computing (MEC) to extend composable enterprise infrastructures to the network edge, a capability broadly referred to as edge computing.

To support this future IT-operating environment, enterprise content and application developers need to collaborate with telecommunications network operators to gain access to edge services.

Using this architecture, “Internet of Things†(IoT) applications can respond in real time to local events and use cloud capabilities for all other data processing functions.

Edge computing application design development model has three locations:     

  • Client    
  • Near server     
  • Far server  

An end-to-end IT service designed to operate in an IoT environment follows this model also but with different reference names or components:      

  • Terminal device component     
  • Edge component(s)     
  • Remote component(s) 

The IoT architecture emphasizes the distribution of components. In this environment, network services (i.e., routers, firewalls, load balancers, XML processing, and WAN optimization devices) are replaced with software running on virtual machines.

To ensure secure operations, key cybersecurity tasks include the following:     

  • Securing the controller as the centralized decision point for access to the Software Defined Network (SDN)     
  • Protecting the controller against malware or attack     
  • Establish trust by protecting the communications throughout the network by ensuring the SDN controller, related applications, and managed devices are all trusted entities     
  • Creation of a robust policy framework that establishes a system of checks and balances across all SDN controllers     
  • Conducting forensics and remediation when an incident happens in order to determine the cause and prevent reoccurrence  

Network Function Virtualization (NFV) establishes a virtualized networking environment dedicated to providing different network services. If NFV is used, the SDN can also act as a hypervisor for NFV virtual machines.

Approaches for implementing cybersecurity protections include the following:     

  • Embed security within the virtualized network devices     
  • Embed security into the SDN servers, storage, and other computing devices 

The Zero Trust security model is centered on the belief that organizations should not trust anything inside or outside their perimeters. This model requires verification of anything and everything trying to connect to its systems before access is granted. The Zero Trust approach uses existing technologies and governance processes in securing the enterprise IT environment.

When designing and deploying transformational solutions across enterprise, cloud, 5G networks, MEC environment, and the Zero Trust paradigm must be extended to include all associated SDNs.

Read more about digital transformation and transformation infrastructure: grab a copy of my new book, Click to Transform, out today!

Posted in

pwsadmin