martes, 28 de octubre de 2014

New “Cloud Security Services” by SVTCloud & Tissat

Tissat, empresa especializada en el outsourcing de servicios de misión crítica, ha suscrito un acuerdo estratégico con SVT Cloud Services, empresa de soluciones para el mundo empresarial en Internet, para poder ofrecer conjuntamente servicios de Cloud Security (Centro Global de Operaciones de Ciberseguridad) a empresas.
 
Cloud Security está ubicado en Walhalla, uno de los centros de proceso de datos más avanzados de Europa por su Arquitectura, Eficiencia Energética,  Seguridad y Calidad que permite ofrecer a sus clientes la confianza que ofrece un centro Tier IV, certificado por el Uptime Institute; además de estar avalado con certificaciones en Seguridad: ISO 27.001, Gestión de Servicios: ISO 20.000,  Gestión de calidad: ISO 9.001, Medio Ambiente: ISO 14.001, Eficiencia Energética: ISO 50.0001 y Sostenibilidad Energética: EA:0044 entre otras así como el Cumplimiento de los requisitos de Seguridad PCI-DSS para el alojamiento de entornos medios de pago.
 
Actualmente, las empresas se enfrentan a una gran cantidad de amenazas, (Virus, Troyanos, Botnets, Ataques de denegación de Servicio, Fugas de Información…)  que, a grandes rasgos, se podrían clasificar en: amenazas humanas y organizativas, amenazas hacia los activos de la organización, amenazas físicas y ambientales, amenazas ligadas a los recursos humanos, amenazas de Seguridad lógica y amenazas hacia continuidad de negocio.
 
En palabras de Nuria Lago, Directora de Seguridad y Calidad de Tissat, “es muy importante ser consciente de los riesgos de las empresas y estar preparados para mitigarlos en la medida de lo posible, y combatirlos en el caso de ser materializados, siendo de vital importancia la Seguridad Preventiva”.
 
Cloud Security dispone de personal especializado en Servicios de Seguridad; siendo capaz de prestar Servicios  Seguridad Perimetral gestionada para empresas, Centro de respuesta a Incidentes para empresas privadas (CERT), Auditorías de Seguridad bajo demanda (Audit as a Service), Sistemas de detección de Vulnerabilidades y Alerta Temprana, Formación on-line y  Asesoramiento, entre otros servicios disponibles en su Catálogo de Servicios de Seguridad, todos ellos disponibles también en modalidad cloud.
 
La clave de la excelencia de servicios de misión crítica es la mejora continua, disponer de tecnología puntera en Seguridad y contar con un equipo de profesionales especialistas en Seguridad (CISSP, ITIL, CISA, CISM, Auditores ISO, CEH …), algo que ya es posible gracias a la alianza estratégica de  Tissat  y SVT Cloud Services.
 
Cloud Security dispone de todas las salvaguardas necesarias para prestar sus servicios de Seguridad en modalidad “as a Service”, incluyendo, como valor añadido, Tecnología Patentada, Informes de actividad, Cuadros de Mando, etc.

lunes, 20 de octubre de 2014

“Juno” release of OpenStack has just been delivered

This post is only to remember that last Friday (October the 17th) the new version of OpenStack, named Juno, was released.
 
As Stefano Maffulli says in its e-mail to the OpenStack community, IT IS THE RESULT OF THE EFFORT OF 1.419 PERSONS, from 133 organizations, that contributed to its development. OpenStack Juno is tenth release of the open source software for building public, private, and hybrid clouds and it has 342 new features to support software development, big data analysis and application infrastructure at scale.
 
Let me make emphasis that in this new version, Sahara it’s completely integrated (it was in incubation in the previous vesion). Sahara is the Data Processing module based in Hadoop for Big Data processing suport, i.e. this module capabilities let automate provisioning and management of big data clusters using Hadoop and Spark. Big data analytics are a priority for many organizations and a popular use case for OpenStack, and this service lets OpenStack users provision needed resources more quickly.
 
Another significant advance is that the foundation for Network Functions Virtualization (NFV) has been consolidated in Juno, providing improved agility and efficiency in telco and service provider data centers.
 
Let me copy and mix from the Juno website and the Official Press Release for summarizing the main features (module by module):
  • Compute (Nova). Operational updates to Compute include improvements for rescue mode that enable booting from alternate images with the attachment of all local disks. Also, per-network settings are now allowed by improved nova-network code; scheduling updates to support scheduling services and extensibility; and internationalization updates. Key drivers were added such as bare metal as a service (Ironic) and Docker support through StackForge. Additional improvements were made to support scheduling and live upgrades.
  • Object Storage (Swift). Object Storage hit a major milestone this release cycle with the rollout of storage policies. Storage policies give users more control over cost and performance in terms of how they want to replicate and access data across different backends and geographical regions. Other new features include updated support for the Identity project (Keystone) and account to account copy feature rollout. Additional work on erasure coding within object storage continues and is expected sometime during the Kilo release cycle.
  • Block Storage (Cinder). Block Storage added ten new storage backends this release and improved testing on third-party storage systems. Cinder v2 API integration into Nova was also completed this cycle. The block storage project continues to mature each cycle building out core functionality with a consistent contributor base.
  • Networking (Neutron). Networking features support for IPv6 and better third-party driver testing to ensure consistency and reliability across network implementations. The release enables plug-ins for the back-end implementation of the OpenStack Networking API and blazes an initial path for migration from nova-network to Neutron. Supporting Layer 3 High Availability, the networking layer now allows a distributed operational mode.
  • Dashboard (Horizon). Dashboard rolled out the ability to deploy Apache Hadoop clusters in seconds, giving users the ability to rapidly scale data sets based on a set of custom parameters. Additional improvements include extending the RBAC system to support OpenStack projects Compute, Networking, and Orchestration.
  • Identity Service (Keystone). Federated authentication improvements allow users to access private and public OpenStack clouds with the same credentials. Keystone can be configured to use multiple identity backends, and integration with LDAP is much easier.
  • Orchestration (Heat). In Juno, it is easier to roll back a failed deployment and ensure thorough cleanup. Also, administrators can delegate resource creation privileges to non-administrative users. Other improvements included implementation of new resource types and improved scalability.
  • Telemetry (Ceilometer). Telemetry reported increases in performance this cycle as well as efficiency improvements including metering of some types of networking services such as load balancers, firewalls and VPNs as a service.
  • Database Service (Trove). The database service went through its second release cycle in Juno delivering new options for MySQL replication, Mongo clustering, Postgres, and Couchbase. A new capability included in Juno allows users to manage relational database services in an OpenStack environment.
  • Image Service (Glance). The Image Service introduced artifacts as a broader definition for images during Juno. Other key new features included asynchronous processing, a Metadata Definitions Catalog and restricted policies for downloading images.
  • Data Processing (Sahara). The new data processing capability automates provisioning and management of big data clusters using Hadoop and Spark. Big data analytics are a priority for many organizations and a popular use case for OpenStack, and this service lets OpenStack users provision needed resources more quickly.
 
In Tissat we’ve been testing the last beta versions and they look great, and we are starting to plan the migration IN LIVE.