When lockdown began, all industries suffered, but some were impacted even more than others. Much like travel and tourism, the transport industry in general and the cross-country passenger bus services in particular struggled to survive. Having been unable to operate at all for a period, this meant their customers and the need to keep them happy became even more important, because these businesses certainly wanted their clients to return in droves once the lockdown ended.

The forward-thinking ones have been investing in customer-facing applications as well as internal IT workloads, such as their core platform for information management, online ticketing, storage, analytics and other services.

Stone He, President, Huawei Cloud (Southern Africa), points out it is no surprise to discover that these companies are determined to continuously improve their end-user experience and provide travellers with more real-time information.

A critical foundation for doing so is cloud computing, which is why an increasing number were already shifting to the cloud even before the pandemic struck. During lockdown, cloud proved critical in making sure their business and production systems could continue to run without any impact, he says.

These organisations prioritised the development and consolidation of hybrid workloads, not only for the customer-facing systems, but also for their internal IT systems. Many are now searching for more agile, resilient and cost-effective cloud services to replace their current service providers or eliminate the need to host their own data centres.

Another key advantage of the cloud is that it helps them overcome scalability challenges related to the processing and analysis of their data, he adds. For businesses that deal with multiple national routes, thousands of passengers and any number of destinations, the sheer volume of data that needs to be processed is enormous.

This is why these entities need a world-class cloud provider that offers local hosting and more cost-efficient solutions to support their businesses.

Some key challenges a move to a locally hosted, international cloud provider can help to solve, adds He, include: significant cost reductions; access to local support services and a dedicated local cloud team; and a reduction in operational complexity.

It goes without saying that any such move would require a seamless migration, since these businesses like in most other sectors simply cannot afford to have their production workloads go down during a migration.

Asked what sort of benefits such businesses would glean from a move to a locally sited cloud data centre, He suggests it would enable access to real-time travel status updates and the opportunity to suggest alternative routes if things do go awry. Most vitally, it would allow head office to easily communicate with staff on the ground, who would have a full view of the situation. Furthermore, they can leverage the cloud to provide greater safety, thanks to real-time vehicle diagnostics, not to mention keeping track of passenger counts and, ultimately, being able to effectively deploy resources when responding to the needs of the business.

The days of maintaining and replacing on-premises servers at Intercape are over and the decision to move our production servers to cloud was made in March 2020," says Karl Rosch, IT Manager at Intercape. He continued: After investigating various platforms, the decision was made to move to Huawei Cloud and the cost and reliability of Huawei Cloud made it a very attractive offering."

Rosch also found that the transition to Huawei Cloud was seamless with the local support from a Huawei engineer who assisted with the set-up and migration project. After more than a year on the Huawei platform, the uptime has been excellent and support from the Huawei team has been outstanding, said Rosch.

The transnational transport sector is already being impacted by new disruptors like Uber, albeit that these are not direct competition yet, but these companies still need to offer the flexibility that customers exposed to ride-sharing apps have come to expect. This means a move away from the rigid approaches to timetables and scheduling of the past. The flexibility and scalability of the cloud will be a huge benefit with regard to how they manage their operations and approach their customers moving forward, explains He. Whats more, only the cloud can provide a genuine foundation to ensure easy adoption of future technology advances, particularly around machine learning and the Internet of things. Thanks to the cloud, these digital technologies can be quickly deployed, enabling these organisations to not only keep their future innovations on track, but also any potential disruptors at bay, He concluded.

Read the rest here:
Travelling to the cloud - ITWeb

Applications and databases play vital roles for organizations hosting services and consumers accessing data resources and protecting them is a top priority for any data center.

Connected to an internet full of hackers, billions of devices, and malware, networks are vulnerable to an array of web-based threats. Not long ago, the priority for network security was securing the network perimeter, but forces like remote work and the widespread adoption of cloud and edge computing make defending the perimeter increasingly tricky.

Its no longer a question of if malicious actors can gain access. Its whether theyre able to move laterally within the network when they do. As zero trust has evolved from buzzword to product in the last decade, a consensus has emerged that microsegmentation-based framework is the surest defense against the next generation of threats. To preserve server security, zero trust ensures intruders will never reach an organizations crown jewels.

Here we look at why zero trust is a significant boost to application and database security and how to adopt a zero trust architecture.

Downtime, machine failure, and cyberattacks can be devastating to organizations. When data is offline or unavailable, personnel and customers alike arent pleased. Knowing this, administrators secure the network with a suite of software and security tools to keep the network running and data available. For the data center, power redundancy and backup and disaster recovery solutions are essential protections.

Another crucial example of a network tool are traditional firewalls placed at the network edge to prevent intruders and malicious packets from gaining entry. As the perimeter has long been a cybersecurity priority, security policies inside the network and traffic between network segments changed little. As the years transformed network perimeters, accessing a network gateway has never been easier.

Also Read: SASE: Securing the Network Edge

A malicious actor can move laterally through the network with initial access, escalate privileges, and compromise sensitive data. Several attacks this year, including the SolarWinds Orion breach, showed how skilled advanced persistent threats (APT) could mask their activity while spreading malware across network systems.

In reversing the paradigm of designing devices to inherently trust other devices [allow all], zero trust calls for granular controls between network segments and eventually a day where only pre-categorized traffic is permissible [deny all]. Because SMB up to large enterprise organizations requires extensive data and application sharing capabilities, the network architects objective isnt to disrupt business-critical access instead, ensure abnormal traffic gets identified and managed.

By following the steps provided, network stakeholders can ensure that the organizations most important assets are secure, maximize visibility into network traffic, and adjust control policies to maintain regular business.

Todays network perimeter is rarely still. From the rise of remote work to the boom in endpoint devices in use, protecting an organizations attack surface is no longer entirely possible.

Network administrators need to take a birds eye view of their network and define where the most critical data and resources reside. Dubbed the protect surface, every organization has network segments vital to business continuity that likely deserve more substantial security than other segments. The Applications with client data, operational technology (OT) that controls industrial processes, and Active Directory come to mind.

With protect surfaces identified, the process of defining users and privileges begins. Who is accessing what resources? Does a user with initial access have access to the whole network segment or just a fraction of the data resources within an application?

Also Read: Top IAM Tools & Solutions for 2021

Applications and databases are responsible for storing and transmitting critical data across global networks. When resources move from defined protect surfaces, the flow, destination, device, time, location, user and role are all data points administrators need to inform next steps.

An image of how malicious actors could access your most important data and system controls will appear when analyzing how data moves. Equipped with valuable insight into traffic flows and vulnerabilities, administrators can start to test their findings.

At the heart of zero trust in practice is microsegmentation, the act of segmenting network components to ensure appropriate access levels for the relevant data resources.

The network fabric makes enforcing access betweens segments in your infrastructure seamless for data centers and software-defined data centers. By contrast, network fabrics arent ideal for microsegmentation in cloud environments. Fit for an SDDC environment, a virtual machine manager, also known as a hypervisor, can serve as an enforcement point for comprehensive network management.

And last but not least, next-generation firewalls (NGFW) are a popular choice for implementing microsegmentation because of their flexibility in deployment. Across environments, NGFWs can form a distributed internal layer of security throughout the network.

Also Read: Top Firewall (NGFW) Vendors 2021

No matter the microsegmentation route, administrators now can establish granular policy rules based on their prior findings. Essential information for establishing valid policies include clearly defining:

With the organization network mapped out, all packets, users, privileges, and protect surfaces defined, its time to configure policies to reflect an optimized security approach. Applying these policies can be one application at a time or en masse once its found successful. Administrators can then test flipping the trust switch for the first time. From allowing all to denying all traffic except whats prescribed the networks taken a giant leap.

Flipping the trust switch comes with its share of hiccups. As key personnel and clients begin using the network in its zero trust infrastructure, the IT department is sure to see a rise in technical support requests. Every request for greater access informs network and database administrators on adjusting controls to reflect the living organizations security framework. Monitor these requests and continue to track how sensitive data moves to optimize changes to policies.

Also Read: Top Rack Servers of 2021

There are no one-size-fits-all zero trust solutions. While vendors offer support, insight, and experience in implementing zero trust, a zero trust framework is custom to the organization and network it serves. With that in mind, the process for implementation described above isnt concrete. Organizations with initiative can take steps today to start the process of building a zero trust network architecture.

Zero trust covers the gamut of the OSI model to protect the organizations digital infrastructure. Implementing zero trust from network to application layers, databases, and software programs gives stakeholders the visibility to feel confident about the organizations security posture.

While an intimidating endeavor, moving towards zero trust is a process worth initiating to organize and secure your organizations data resources for years to come.

While databases and applications have long been mainstream components of the enterprise network, security services for protecting them are still a complex marketplace. To learn more about the industry, check out eSecurity Planets Top Database Security Solutions for 2021.

Also Read: Best Load Balancers of 2021

Read the original here:
Using Zero Trust Security to Protect Applications and Databases - Server Watch

Today, Google announced the planned introduction of their new set of Tau VMs, or T2D, in their Google Compute Engine VM offerings. The hardware consists of AMDs new Milan processors which is a welcome addition to Googles offerings.

The biggest news of todays announcement however was not Milan, but the fact of what Google is doing in terms of vCPUs, how this impacts performance, and the consequences it has in the cloud provider space particularly in context of the new Arm server CPU competition.

Starting off with the most important data-point Google is presenting today, is that the new GCP Tau VMs showcase a staggering performance advantage over the competitor offerings from AWS and Azure. The comparisonVMdetails are published here:

Googles SPECrate2017_int methodology largely mimics our own internal usage of the test suite in terms of flags (A few differences like LTO and allocator linkage), but the most important figure comes down from the disclosure of the compilers, with Google stating that the +56% performance advantage over AWSs Graviton2 comes from an AOCC run. They further disclose that a GCC run achieving a +25% performance advantage, which clarifies some aspects:

Note that we also tested with GCC using -O3, but we saw better performance with -Ofast on all machines tested. An interesting note is that while we saw a 56% estimated SPECrate2017_int_base performance uplift on the t2d-standard-32 over the m6g.8xlarge when we used AMD's optimizing compiler, which could take advantage of the AMD architecture, we also saw a 25% performance uplift on the t2d-standard-32 over the m6g.8xlarge when using GCC 11.1 with the above flags for both machines.

Having this 25% figure in mind, we can fall back to our own internally tested data of the Graviton2 as well as the more recently tested AMD Milan flagship for a rough positioning of where things stand:

Google doesnt disclose any details of what kind of SKU they are testing, however we do have 64-core and 32-core vCPU data on Graviton2, scoring estimated scores of 169.9 and 97.8 with per-thread scores of 2.65 and 2.16. Our internal numbers of an AMD EPYC 7763 (64 core 280W) CPU showcase an estimated score of 255 rate and 1.99 per thread with SMT, and 219 rate and 3.43 per thread for respectively 128 threads and 64 thread runs per socket. Scaling the scores down based on a thread count of 32 based on what Google states here as vCPUs for the T2D instance, would get us to scores of either 63.8 with SMT, or 109.8 without SMT. The SMT run with 32 threads would be notably underperforming the Graviton2, however the non-SMT run would be +12 higher performance. We estimate that the actual scores in a 32-vCPU environment with less load on the rest of the SoC would be notably higher, and this would roughly match up with the companys quoted +25 performance advantage.

And here lies the big surprise of todays announcement: for Google's new Milan performance figures to make sense, it must mean that they are using instances with vCPU counts that actually match the physical core count which has large implications on benchmarking and performance comparisons between instances of an equal vCPU count.

Notably, because Google is focusing on the Graviton2 comparison at AWS, I see this as a direct attack and response to Amazons and Arms cloud performance metric claims in regards to VMs with a given number of vCPUs. Indeed, even when we reviewed the Graviton2 last year, we made note of this discrepancy that when comparing cloud VM offerings to x86 cloud offerings which have SMT, and where a vCPU essentially just means youre getting a logical core instead of a physical core, in contrast tothe newer Arm-based Graviton2 instances. In effect, we had been benchmarking Arm CPUs with double the core counts vs the x86 incumbents at the same instance sizes. Actually, this is still what Google is doing today when comparing a 32vCPU Milan Tau VM against a Azure 32vCPU Cascade Lake VM its a 32 core vs 16 core comparison, just the latter has SMT enabled.

Because Google is now essentially levelling the playing field against the Arm-based Graviton2 VM instances at equal vCPU count, by actually having the same number of physical cores available, it means that it has no issues to compete in terms of performance with the Arm competitor, and naturally it also outperforms other cloud provider options where a vCPU is still only a logical SMT CPU.

Google is offering a 32vCPU T2D instance with 128GB of RAM at USD 1.35 per hour, compared to a comparable AWS instance of m6g.8xlarge with also 32vCPUs and 128GB of RAM at USD 1.23 per hour. While Googles usage of AOCC to get to the higher performance figures compared to our GCC numbers play some role, and Milans performance is great, its really the fact that we seem to now be comparing physical cores to physical cores that really makes the new Tau VM instances special compared to the AWS and Azure offerings (physical to logical in the latter case).

In general, I applaud Google for the initiative here, as being offered only part of a core as a vCPU until now was a complete rip-off. In a sense, we also have to thank the new Arm competition in finally moving the ecosystem into bringing about what appears to be the beginning of the end of such questionable vCPU practices and VM offerings. It also wouldnt have been possible without AMDs new large core count CPU offerings. It will be interesting to see how AWS and Azure will respond in the future, as I feel Google is up-ending the cloud market in terms of pricing and value.

Go here to read the rest:
Google Announces AMD Milan-based Cloud Instances - Out with SMT vCPUs? - AnandTech

DUBLIN, June 14, 2021 /PRNewswire/ -- The "Cloud Security Software Market: Global Industry Trends, Share, Size, Growth, Opportunity and Forecast 2021-2026" report has been added to ResearchAndMarkets.com's offering.

The global cloud security software market exhibited strong growth during 2015-2020. Cloud security software, also known as cloud computing security software, is employed for executing specific tasks to protect the cloud-based system, data and infrastructure. Companies nowadays transfer most of their data, applications and networks on cloud servers, which are highly distributed, dynamic and more susceptible to unauthorized access, data exposure, cyberattacks and other threats. Cloud security software provides multiple levels of control in network infrastructure to protect the privacy of the users, support regulatory compliance and establish authentication rules for individual users and devices. As a result, both government and private organizations utilize cloud storage and security software as they eliminate the need to invest in dedicated hardware and reduce administrative overheads. Looking forward, the publisher expects the global cloud security software market to grow at a CAGR of around 15% during 2021-2026.

Frequent cyberattacks and breaches have led to an increase in concerns regarding the security of information and data. Additionally, due to the dependence of organizations on cloud-based services for operations and data management, there has been a rise in the adoption of cloud security software to safeguard the integrity and continuity of resources at different levels. Apart from this, with the continuous development of innovative technology solutions using artificial intelligence and machine learning, the functionality of safety software has improved significantly. Different services such as Software as a Service (SaaS), Platform as a Service (PaaS), Infrastructure as a Service (IaaS) and private cloud have been introduced by market players for managing the security of applications and networks of an organization. For instance, IBM Cloud provides a core set of network segmentation and network security services to protect workloads from network threats. Moreover, various researchers are focusing on software testing as 'Testing as a Service' (TaaS) in cloud computing paradigm using a variety of new technologies and innovative service models with multiple features that are different from traditional software testing.

This report provides a deep insight into the global cloud security software market covering all its essential aspects. This ranges from macro overview of the market to micro details of the industry performance, recent trends, key market drivers and challenges, SWOT analysis, Porter's five forces analysis, value chain analysis, etc. This report is a must-read for entrepreneurs, investors, researchers, consultants, business strategists, and all those who have any kind of stake or are planning to foray into the cloud security software market in any manner.

Competitive Landscape:

The report has also analysed the competitive landscape of the market with some of the key players being Broadcom, Inc., TrendMicro, IBM Corporation, Cisco Systems, RSA Security, McAfee, Microsoft Corporation, Dell Corporation, Hewlett Packard Enterprise, BMC Software, Bitium, CipherCloud, Cloudpassage, Check Point Software Technologies, Fortinet, VMware, Sophos, Gemalto NV, Imperva, Inc, etc.

Key Questions Answered in This Report:

Key Topics Covered:

1 Preface

2 Scope and Methodology

3 Executive Summary

4 Introduction4.1 Overview4.2 Key Industry Trends

5 Global Cloud Security Software Market5.1 Market Overview5.2 Market Performance5.3 Impact of COVID-195.4 Market Breakup by Type5.5 Market Breakup by Deployment5.6 Market Breakup by End-User5.7 Market Breakup by Vertical5.8 Market Breakup by Region5.9 Market Forecast

6 Market Breakup by Type6.1 Cloud Identity and Access Management6.1.1 Market Trends6.1.2 Market Forecast6.2 Data Loss Prevention6.2.1 Market Trends6.2.2 Market Forecast6.3 Email and Web Security6.3.1 Market Trends6.3.2 Market Forecast6.4 Cloud Database Security6.4.1 Market Trends6.4.2 Market Forecast6.5 Network Security6.5.1 Market Trends6.5.2 Market Forecast6.6 Cloud Encryption6.6.1 Market Trends6.6.2 Market Forecast

7 Market Breakup by Deployment7.1 Public7.1.1 Market Trends7.1.2 Market Forecast7.2 Private7.2.1 Market Trends7.2.2 Market Forecast7.3 Hybrid7.3.1 Market Trends7.3.2 Market Forecast

8 Market Breakup by End-User8.1 Small and Midsize Business (SMBs)8.1.1 Market Trends8.1.2 Market Forecast8.2 Large Enterprises8.2.1 Market Trends8.2.2 Market Forecast8.3 Cloud Service Providers8.3.1 Market Trends8.3.2 Market Forecast8.4 Government Agencies8.4.1 Market Trends8.4.2 Market Forecast8.5 Others/Third Party Vendors8.5.1 Market Trends8.5.2 Market Forecast

9 Market Breakup by Vertical9.1 Healthcare9.1.1 Market Trends9.1.2 Market Forecast9.2 Banking, Financial Services and Insurance (BFSI)9.2.1 Market Trends9.2.2 Market Forecast9.3 Information Technology (IT) & Telecom9.3.1 Market Trends9.3.2 Market Forecast9.4 Government Agencies9.4.1 Market Trends9.4.2 Market Forecast9.5 Retail9.5.1 Market Trends9.5.2 Market Forecast9.6 Others9.6.1 Market Trends9.6.2 Market Forecast

10 Market Breakup by Region10.1 North America10.1.1 Market Trends10.1.2 Market Forecast10.2 Europe10.2.1 Market Trends10.2.2 Market Forecast10.3 Asia Pacific10.3.1 Market Trends10.3.2 Market Forecast10.4 Middle East and Africa10.4.1 Market Trends10.4.2 Market Forecast10.5 Latin America10.5.1 Market Trends10.5.2 Market Forecast

11 SWOT Analysis

12 Value Chain Analysis

13 Porters Five Forces Analysis

14 Price Analysis

15 Competitive Landscape15.1 Market Structure15.2 Key Players15.3 Profiles of Key Players15.3.1 Broadcom, Inc.15.3.2 TrendMicro15.3.3 IBM Corporation15.3.4 Cisco Systems15.3.5 RSA Security LLC15.3.6 McAfee15.3.7 Microsoft Corporation15.3.8 Dell Corporation15.3.9 Hewlett Packard Enterprise15.3.10 BMC Software15.3.11 Bitium15.3.12 CipherCloud15.3.13 Cloudpassage15.3.14 Check Point Software Technologies15.3.15 Fortinet15.3.16 VMware15.3.17 Sophos15.3.18 Gemalto NV15.3.19 Imperva Inc.

For more information about this report visit https://www.researchandmarkets.com/r/z2tiyg

Media Contact:

Research and Markets Laura Wood, Senior Manager [emailprotected]

For E.S.T Office Hours Call +1-917-300-0470 For U.S./CAN Toll Free Call +1-800-526-8630 For GMT Office Hours Call +353-1-416-8900

U.S. Fax: 646-607-1904 Fax (outside U.S.): +353-1-481-1716

SOURCE Research and Markets

http://www.researchandmarkets.com

Here is the original post:
Insights on the Cloud Security Software Global Market to 2026 - by Type, Deployment, End-user, Vertical and Region - PRNewswire

"As telcos virtualize their network functions while looking for more cost-effective and agile ways to deploy next generation wireless infrastructure, platforms like Google Cloud's Anthos become a key part of the equation," said Cole Crawford, founder and CEO of Vapor IO. "By delivering Anthos on Vapor IO's Kinetic Grid platform, communications service providers can deploy 5G RAN and MEC services in a multi-cloud, shared-infrastructure environment capable of delivering solutions that require ultra-low latencies."

Google Anthos on the Kinetic GridGoogle Anthos enables operators to run Kubernetes clusters anywhere, including on multiple clouds, on virtualized infrastructure, or on bare metal. Because Vapor IO's Kinetic Grid platform is neutral-host infrastructure, service providers have the choice of deploying Anthos on their own private servers or on servers owned by the public clouds or bare metal providers. The Kinetic Grid platform combines all of the economic benefits of shared infrastructure with the microsecond latencies required by 5G radio access networks.

By leveraging Google Anthos, operators can get a consistent managed Kubernetes experience across all of their environments as well as the flexibility of using their own servers or servers provided by third parties, including Google Cloud, Microsoft Azure and Amazon Web Services.

"As connectivity at the network edge increases, businesses with edge presences can increasingly benefit from cloud capabilities and applications, delivered securely and with low latency on 5G and other networks," said Tanuj Raja, Global Head, Strategic Partnerships at Google Cloud. "We're excited to partner with Vapor IO to help communications service providers deliver cloud-native applications and capabilities to these customers, across multiple networks and infrastructure."

An Edge-to-Edge Platform for the Internet We NeedTightly integrated with public and private first and last mile networks, the Kinetic Grid platform supports software-driven, real-time applications operating between locally distributed sites, capable of supporting sub-100 microsecond latencies required by 5G RAN and other services. Built as a platform for the deployment of public and private 5G, the Kinetic Grid also supports cloud providers, CDNs, IoT and immersive entertainment, and Industry 4.0 applications over shared infrastructure.

Built upon Vapor IO's award-winning Kinetic Edge architecture, currently being deployed in 36 U.S. cities, the Kinetic Grid combines software-driven networking, colocation, interconnection, and intelligence into a comprehensive, carrier-neutral platform. Because of its platform-level integration, customers can certify once and deploy everywhere. No other platform delivers edge-to-edge consistency and pre-integration of services across multiple markets.

First Deployment in Las VegasVapor IO has recently announced plans and partnerships to deliver Kinetic Grid infrastructure in Las Vegas to support a multi-party testbed for Open Grid services. As part of its efforts in Las Vegas, Vapor IO will also bring Google Anthos to the testbed environment and invite public and private 5G service providers to build upon the platform.

Supporting Resources

About Vapor IOVapor IOis developing the largest nationwide edge-to-edge networking, colocation and interconnection platform capable of supporting the most demanding low-latency workloads at the edge of the wireless and wireline access networks. The company's Kinetic Grid platform combines multi-tenant colocation with software-defined interconnection and high-speed networking. The company's technologies deliver the most flexible, highly-distributed edge infrastructure at the edge of the wireless network. Vapor IO has deployed its Kinetic Edge services in Chicago, Atlanta, Dallas and Pittsburgh, and is actively deploying in 36 additional markets. Follow @VaporIOon Twitter.

Vapor, Kinetic Edge, Kinetic Grid and Kinetic Edge Exchange are registered trademarks or trademarks of Vapor IO, Inc.

Media ContactJessica ReesPhone: +1.415.889.7444Email: [emailprotected]

SOURCE Vapor IO

See the article here:
Vapor IO to Enable 5G Services on Shared Infrastructure via Google Anthos and the Kinetic Grid - PRNewswire