Hoofer's blog

CIS Hardened Images for Red Hat Enterprise Linux Now Available in Microsoft Azure Marketplace

Grazed from CIS

CIS recently released CIS Hardened Images for Red Hat Enterprise Linux 7 and Red Hat Enterprise Linux 6 into the Microsoft Azure Marketplace, an online store providing applications and services for use on Microsoft Azure. CIS Hardened Images are virtual machines preconfigured according to the security recommendations of the CIS Benchmarks. In the past year, CIS has released a total of 18 CIS Hardened Images for various operating systems into the Azure Marketplace and the Azure Government Marketplace.

Hardening is the process of limiting potential vulnerabilities that can be exploited by hackers and cyber criminals. The CIS Benchmarks are a set of consensus-based recommendations developed by cybersecurity experts around the world to improve cybersecurity defenses for various technologies. While operating systems can have hundreds of vulnerabilities by default, CIS Hardened Images are preconfigured to strengthen security, reduce system build costs, and help accelerate workload deployment time. 

Startups lead the field in Cloud Management Platform Market

Grazed from WhatMatrix
 
WhatMatrix, the independent technology comparison and analysis site, today announced the publication of its second Landscape analysis report. The Cloud Management Platforms (CMPs) Landscape report finds that start up companies with a dedicated focus on CMP lead the larger, more established companies in this field of technology.

The report, authored by category consultant Ephraim Baron, highlights a flourishing market. The WhatMatrix CMP Comparison launched just two years ago with five vendors, it now compares eleven. While established solutions such as Cisco CloudCenter and VMware vRealize Automation continue to be solid overall performers with many market leading features, the number one solution in the comparison leaderboard is CloudBolt, with Morpheus Data in second place.

"The WhatMatrix CMP Landscape report is unique due to our focus on detailed technical criteria," explained Ephraim Baron, category consultant at WhatMatrix. "This report helps organizations drill into specific use case scenarios to best determine which CMP will best meet their business needs. No other industry analysis provides this granular level of guidance."
 

Amazon and Google Leap Up the Rankings for U.S. IoT Projects

"U.S. IoT Reality Check" report finds an increasingly competitive environment for IoT vendors, in consideration for IoT projects by U.S. firms. While the complexity of managing legacy processes and juggling IoT platforms are growing pain points for U.S. firms.

Other key findings from the newly released U.S. analysis include:

  • Microsoft and Mobile Operators remain the top two vendors in consideration for IoT deployments among U.S. firms.
  • IBM is closing in on Mobile Operators, having improved to 3rd position, up from 5th in 2017.
  • Amazon has jumped into 5th position from outside the top 10 in 2017; while Google has also improved and now sits in the top 5 ranking.
  • Figure 1 illustrates the top 5 vendors considered for IoT deployments by U.S. firms, as ranked by IoT decision makers in 10 vertical markets.

As a core part of Strategy Analytics IoT Strategies service, the U.S. Enterprise IoT Deployment Survey provides detailed analysis of the status of the IoT industry, including:

Alibaba Cloud and myDevices Partner to Launch Turnkey IoT Solutions in China

Grazed from myDevices and Alibaba Cloud

myDevices, Inc. today announced the availability of turnkey Internet of Things (IoT) solutions, in partnership with the IoT Business Unit of Alibaba Cloud, the cloud computing arm of Alibaba Group. myDevices will market and sell IoT in a Box solutions in China through Alibaba Cloud's existing reseller distribution network. These remote monitoring solutions protect important assets for small businesses and large enterprise customers across a wide variety of industries for use cases in the commercial refrigeration and facility management vertical markets.

"Integrating myDevices' IoT Solutions with Alibaba Cloud and the LinkWAN network exponentially accelerates the adoption of the Internet of Things for businesses of all sizes across China through our vast distribution ecosystem," said Wang Yunci, Marketing Director of the IoT Business Unit at Alibaba Cloud. "By offering custom and expandable, commercially-ready solutions, this initiative will enable our direct and partner sales channels to thrive as well."

These enterprise ready IoT Solutions powered by myDevices combine an Ethernet or cellular connected gateway, over 95 sensor types, device management, LinkWAN network server, and an iOS/Android mobile application that provides key features for remote monitoring such as automating sensor data recordings, email and SMS text alerts, and reporting. Pre-packaged and ready-for-sale solutions are deployed in minutes with built-in provisioning technology and can scale to adapt to a multitude of use cases instantly.

HITRUST Program Addresses Security Risks and Inefficiencies When Leveraging Cloud Service Providers

Grazed from HITRUST

To address the growing misunderstandings, risks and complexities when leveraging service providers, HITRUST is introducing a new program to clarify the roles and responsibilities regarding ownership and operation of security controls while automating and streamlining the assurance process when security controls are shared or inherited.

Protecting sensitive information is a challenge for any organization and even more so for organizations that leverage service providers. The risks associated with control failures by third party service providers - such as cloud hosting, platform-as-a-service, or a business process outsourcer - continue to increase as customers don't fully understand their responsibilities, coupled with the complexity of assessing security control effectiveness when control responsibility is shared.

The HITRUST Shared Responsibility Program will remove the guesswork, ambiguity and confusion in understanding the roles and responsibilities between customer and their service provider relating to shared and inherited controls by outlining data governance, information risk management and regulatory compliance requirements in clear, concise language.

SIOS Technology Showcases Early Adaptation of Machine Learning for High Availability Challenges in the Cloud at AWS Summit

Grazed from SIOS

SIOS Technology Corp., the industry pioneer in providing intelligent application availability for critical workloads, today announced that it will showcase advanced research in the application of Machine Learning (ML) aimed at lowering cloud costs while optimizing High Availability (HA) for critical applications operating in the cloud at AWS Summit in Atlanta, GA on September 13 in Booth #612. SIOS is an exhibiting Silver Sponsor.

"The move from datacenter to the cloud is well underway for many applications, but the migration of critical applications based on SAP, SQL Server and Oracle has just begun," said Jerry Melnick, president and CEO, SIOS Technology. "At SIOS, we have a long history delivering HA software to ensure availability and we've developed leading-edge machine learning solutions to help IT understand and optimize computing infrastructures. At the show, we'll give attendees a peek into the future of how these technologies used together can deliver the confidence and cost savings that will be essential for operating in the cloud."

Cloudera Launches an End-to-End, Open, Modular IoT Architecture with Red Hat and Eurotech to Accelerate IoT Deployments

Grazed from Cloudera

Cloudera, Inc., the modern platform for machine learning and analytics optimized for the cloud, announced the launch of an end-to-end, open source Internet of Things (IoT) architecture in collaboration with Red Hat and Eurotech. Enterprises now have a modern IoT architecture that is scalable, secure, and technologically advanced without vendor lock-in. 

Organizations that bought into proprietary IoT platforms are finding themselves tied to limited functionality, locked into a particular vendor, and unable to scale. Enterprises have had to piece together multiple vendors' solutions, manage all of the complexities of integration, and deal with security risks of the patchwork, only to end up with incompatible connectivity, a rigid architecture from black box solutions, and minimal interoperability. These setbacks cause businesses to miss out on technological advances such as machine learning, real-time decision-making, and cloud/hybrid flexibility.

Cloudera with Red Hat, the world's leading provider of open source software solutions, and Eurotech, a long-time leading provider of industrial embedded hardware, have collaborated to develop an end-to-end architecture that is based on open standards and is integrated, flexible and runs on multi- or hybrid-cloud environments. This architecture is designed to provide the foundational components that organizations need to quickly and securely roll out IoT use cases.

 

ParkMyCloud and CloudHealth Technologies Announce Integration for Optimized Cloud Cost Management

Grazed from ParkMyCloud and CloudHealth

ParkMyCloud, the leading enterprise platform for continuous cost control in public cloud, and CloudHealth Technologies, trusted cloud management platform provider, today announced that they have furthered their partnership with a technology integration that provides customers with end-to-end multi-cloud cost control and visibility.

More than $12.9 billion will be wasted on unused cloud resources this year - which means public cloud users have an immediate need for automated savings and governance. Customers leveraging ParkMyCloud and CloudHealth's integrated solution are empowered to reduce this cloud waste - in fact, customers already using both platforms currently save an average of more than $25,000 monthly on their cloud bills.

 

WhiteHat Adds Deeper Artifical Intelligence Capabilities for Sentinel DAST Solution for DevSecOps

Written by David Marshall

WhiteHat Security announced that new, artificial intelligence (AI) software is being added to WhiteHat Sentinel Dynamic, its dynamic application security testing (DAST) solution, which draws from a data lake of 95 million identified vulnerabilities.  The enhancements will enable WhiteHat to provide high levels of accuracy in the shortest timeframe, which can traditionally only be achieved through fully automated testing with additional human verification.  Though human verification is always available to WhiteHat clients, the company will now offer fully AI-enabled verification, taking just seconds.  This will allow developers to create secure web applications at the fast pace demanded by modern businesses. 

AppSec teams are constantly caught between the need for proper security testing and the ability to allow developer teams to meet strict deadlines. AI software will dramatically decrease threat vector identification times and improve the efficiency of false positive identification. As a result, businesses will increase the speed at which developers are made aware of potential application security vulnerabilities and deliver real-time security risk assessments.

Can a single Virtual Volume (VVol) span different physical arrays/devices?

 

If you were to pose this question, "Can a single Virtual Volume (VVol) span different physical arrays/devices?" to your storage vendor or to VMware support today, you'd likely receive the following answer: "No. vSphere does not support this."

Nevertheless, with the VMware certified, universal vSphere APIs for Storage Awareness (VASA) provided from DataCore, you can easily achieve that with full VMware support and without VVol certified hardware today.  Use of local discs alone, or in combination with other storage arrays as part of the Virtual Volumes datastore, would even be sufficient.

Watch this on-demand webinar to discover:

  • How to setup such a solution in real life
  • How to implement auto-tiering across different arrays