| By Reuven Cohen | Article Rating: |
|
| April 12, 2010 06:17 PM EDT | Reads: |
1,999 |
To give a little more background, the Enomaly ECP HAE platform allows a remote cloud user to establish trust in a cloud provider's platform. The end customer uses Enomaly's ECP HAE client, which uses our patented technology to verify the integrity of the cloud provider's software stack. When the client is connected to an "approved" HAE-verified platform, Enomaly's HAE client displays a prominent positive verification screen indicating that the platform is safe to use. Validation can also be provided programmatically and integrated into existing application monitoring solutions and business processes engines which enables a extra level of verifiable trust when using remote cloud resources. If a remote providers environment changes for any reason you will know proactively before it's too late. HAE changes cloud security from a reactive process to a proactive one and enables a variety of new potential applications never possible before because of the lack of insight into cloud service providers' infrastructures.
What might happen if the cloud provider's hypervisor were to be tampered with? This could happen for a variety of reasons. For example, a disgruntled employee at the cloud provider might want to steal secrets from the cloud provider's customers, or there could be a malicious insider paid by a competitor to spy on the VMs of the cloud users. Similarly, the hypervisor itself may have a security vulnerability that is exploited, allowing a remote attacker outside of the cloud provider to tamper with the cloud provider's hypervisor. Since the hypervisor is the most trusted component in a cloud computing infrastructure, any loss of its integrity means an immediate and catastrophic breach of security which could easily never be detected because of the very nature of the hypervisor - it makes you or your applications see what whatever it whats you to believe. So even a exploited hypervisor will appear to be normal from the point of a virtual machine making VM based security a risky endeavor to say the least. HAE goes a long way toward solving this problem.
Enomaly HAE enables our hosting & cloud service provider customers to securely establish the integrity of the remote platform. To do this, Enomaly's HAE system uses Intel's TXT processor extensions along with a Trusted Computing Group (TCG) Trusted Platform Module (TPM) in conjunction to the Xen hypervisor. We use a mechanism called remote attestation, which until now has only been explored [mostly] in experimental research settings. Thanks in part to the work of our lead security architect, Dr David Lie, we've taken the bold step of making attestation practical by integrating it into the ECP system targeting IaaS hosting providers. HAE takes care of all the complexity of making the attestation requests, ensuring that the requests cannot be tampered with and distilling the result of the attestation requests into a simple and easy to understand safe / not safe message. More importantly, this trust can be directly integrated into existing monitoring and business processes to ensure only truly secure remote cloud environments are being utilized in a completely automated way.
ECP High Assurance Edition is available immediately to service providers interested in offering a high-security cloud computing platform to their customers. In addition to its unique security features, ECP HAE includes the industry-leading capabilities of Enomaly's ECP platform, enabling a service provider's customers to access and manage any number of virtual servers, running Microsoft Windows, Linux, Solaris, or any other operating system with the software applications of their choice. Customers can access and manage their virtual servers through a web-based dashboard, and can also automatically scale up and down their use of cloud servers through a robust API.
We are delighted to be able to deliver this uniquely differentiated offering to our service provider customers We believe the fast-growing market for cloud computing services will benefit from the improved security that service providers can offer their customers by using Enomaly ECP HAE.
Announcing The Enomaly Cloud Service Provider Edition | Twitter Me | Get Linkedin | Contact Reuven | Disclosure Policy
Published April 12, 2010 Reads 1,999
Copyright © 2010 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.
More Stories By Reuven Cohen
Reuven Cohen is Founder & CTO for Toronto based Enomaly Inc. - leading developer of Cloud Computing products and solutions focused on enterprise businesses. Enomaly's products include the Enomaly elastic computing platform, an open source cloud platform that enables a scalable enterprise IT and local cloud infrastructure platform. Cohen is a thought leader in the emerging cloud computing industry and maintains a blog at www.elasticvapor.com.
Reuven is also founder of several technology organizations;
Enomaly.com - Elastic Computing Platform (Cloud Computing),
Cloud Camp - Local Cloud Computing events,
the Unified Cloud Interface Project - Semantic Cloud Abstraction API
Cloud Interoperability Forum - Cloud Standards Group.
(twitter @ruv : Linkedin : RSS Feed)
- IT Fears Change...and Cloud Computing
- The Essential Guide to Better Release Management & Deployment
- Who Was First to Anticipate New Media's Coming Importance?
- Configuring Apache JMeter for Apex
- Jobs to Adobe: ‘Yer Stinkin’ Flash Is Over-the-Hill. Get Over It.’
- SaaS, IaaS Lead Cloud Initiative in Thailand
- Google's Economic Report Is Self-Serving Hype -Consumer Watchdog
- Configuring Apache JMeter for Oracle's ADF 11g
- Conditional Table Filters
- Presentations Now Available From Apache Lucene EuroCon Conference
- Cloudera Recognized as Leading Startup for Making Hadoop Accessible
- IBM’s Dustin Amrhein to Present at Cloud Expo Silicon Valley
- IT Fears Change...and Cloud Computing
- FalconStor Announces HyperFS™ File System for Media and Entertainment Market
- The Essential Guide to Better Release Management & Deployment
- Who Was First to Anticipate New Media's Coming Importance?
- Innovation on Ulitzer - An Enterprise Cloud Migration Factory
- Commercial Add Ons to Open Source Software: aheadWorks and Magento
- UEC: Bundling Linux Image
- links for 2010-04-07
- Liquavista launches Display kits to enable customers to develop application & designs
- If You’re Saying Goodbye to Your Server, Bring Some Tissue
- General Telecom Announces RouteNGN’s Expanded Least Cost Routing Capabilities
- BLADE Network Technologies CEO Vikram Mehta and NASDAQ OMX CTO Mats Andersson to Address "The Race to Zero Latency in High Frequency Trading" in Keynote Session at High Performance Computing Financial Markets
- Web Services Using ColdFusion and Apache CXF
- The Top 250 Players in the Cloud Computing Ecosystem
- Eclipse "Pollinate" Project to Integrate with Apache Beehive
- Red Hat Named "Platinum Sponsor" of Virtualization Conference & Expo
- Apache's Tomcat 5.5 is First Release Ever to Use Eclipse JDT Java Compiler
- Beehive Code Now Available in Apache
- An Introduction to Ant
- "Beehive" Now Officially an Open Source Project: Apache Beehive
- SourceLabs Completes Open Source Java Middleware Platform With Apache Tomcat
- Apache Announces Jetspeed 2.0 Open Source Enterprise Portal
- How to Build RIAs with Apache Derby and Grizzly Comet
- Apache Geronimo To Miss August 6 Launch Date Target






























