Monday, August 25, 2008
Cloud Computing: More Storms Ahead
Technology Strategy from the Inside Out: Virtualization, Security, Networking, Cloud Computing and other game-changing topics.
Posted by: gregness
August 25, 2008
The biggest threat to the promise of cloud computing to appear this summer wasn’t the failed trademark attempt by Dell, but rather brilliant research by a leading white hat security researcher. Dan Kaminsky discovered how a well-known and widespread vulnerability in DNS servers could be exploited in seconds and turn any one of millions of servers directing Internet traffic into a cybercrime gold mine in mere seconds.
Note: For those unfamiliar with cloud computing, or the delivery of software and other IT-related functionality as a service, you can read more at Archimedius. Some leading technology players involved or associated with cloud computing include: Google, Microsoft, Dell, VMware and Amazon.
As a result July and August saw unprecedented DNS media attention. Yet the discovery of a DNS exploit was only part of the story. Events soon unfolded that took the exploit from specialized security blogs (like Rational Survivability and Matasano, where the exploit leaked).
When the exploit inadvertently leaked (ahead of the disclosure timeline established to allow service providers ample time to patch their systems) the news quickly spread throughout more generalist blogs and even into mainstream media, including front page coverage in the NY Times referenced at Archimedius on July 31.
The Linux Journal published one of the best high level technical explanations of the exploit and why it matters. Despite the release of a patch and the heroic actions on the part of internet service providers, issues remain.
While the business press dwells on Dell, Microsoft, Google and a handful of key players making investments and strategic moves based on the eventuality of cloud computing, some of us in security and networking are all too aware of the storm clouds. You can read about the security issues at the newly established Infoblox DNS Security Center, with news, developments and resources hand-picked by leading experts.
Dan Kaminsky has openly labeled the patch just applied to protect the DNS vulnerability a temporary fix:
I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work done to prevent the issue.
- Nathan McFeters, ZDNet
Unfortunately, it is likely that the DNS summer exploit story will fall back beneath the headlines in coming months; yet the vulnerability will still exist and it will likely require more patches on an ongoing basis. That will place an unprecedented level of demands on the management of the DNS infrastructure, the backbone of the Internet. That infrastructure is made up of millions of servers updated and managed manually. That is a serious problem.
An IDC report sponsored by Microsoft concluded that hardware costs were only a small fraction of the cost of operating a server (see page 5 for the IDC breakdown). Staffing expenses (management) and downtime constituted 75% of a server’s total cost of ownership, according to the April 2007 paper by Randy Perry and Al Gillen. More manual updates will impact both management and availability, the leading cost components before the DNS exploit discovery.
Internet integrity is a critical requirement for cloud computing. It requires a very high level of trust to use an online application for commercial and even personal uses. More management and availability challenges will further increase the cost of internet integrity while introducing new risks. The DNS exploit and the recognition that the recent patch is only a short term measure suggests that internet integrity may be more at risk than ever.
There’s More
A few days ago I discovered this YouTube piece by Cisco promoting green data centers and couldn’t help but to take notice of the points made about other server costs, including power. Cloud computing could suck up huge amounts of energy if cloudplexes are not virtualized properly and managed efficiently. For all of the opportunities posed by cloud computing it is obvious that substantial technical burdens remain before servers will follow the moon In pursuit of cheap electricity.
While low cost electricity and VMotion are important requirements for cloud computing, Internet integrity is the table stake: few will trust IT services from an unknown source. That is why the rise of cloud computing will depend upon the continued success and evolution of utility-grade core network services. Without network integrity the economics of software as a service will always be limited to low value consumers using low value services.
You can read my disclaimer at: About ARCHIMEDIUS.
http://gregness.wordpress.com/2008/08/25/cloud-computing-more-storms-ahead/
blog comments powered by Disqus
About CherryPal for Everyone (CP4Every1 or CPFE)
CP4Every1 is constantly crawling the web (on human hands and knees) to find unique information of value regarding green technology, cheap and reliable connectivity, personal, portable and sustainable industry developments, future and social/cultural transformative technology, political relevance and news that is NOT just another re-posting of the same press release pushed out by the industry.
Please note that all copyrights and links to original material are provided and respected. NO robots were used to post content.
Your comments are invited.
Please note that all copyrights and links to original material are provided and respected. NO robots were used to post content.
Your comments are invited.
Search
Scroll to bottom for Google Custom Search Results
Search Results
Other CherryPal Brand Angel Blogs
-
זקפה: היבט חיוני של בריאות מינית גברית - זקפה – התהליך הפיזיולוגי המאפשר לגבר להשיג ולשמור על פין מוצק ונוקשה, חיוני לקיום יחסי מין. זוהי תגובה טבעית ולא […] הפוסט זקפה: היבט חיוני של בריאות מינ...7 months ago
-
Download EPUB manual electrico kenworth t800 Reader PDF - *Free Read manual electrico kenworth t800 ebooks Free PDF* Read manual electrico kenworth t800 Paperback Open Library Rеаd thrоugh Frее Bооkѕ Onlіnе ...3 years ago
-
This feed has moved and will be deleted soon. Please update your subscription now. - The publisher is using a new address for their RSS feed. Please update your feed reader to use this new URL: *http://maggie-mcgary.squarespace.com/blog?f...4 years ago
-
RunAsDate - http://www.nirsoft.net/utils/run_as_date.html There’s this simple piece of software that lets me specify what day I want to run an app as. Never again wil...7 years ago
-
Daftar Harga Kamera Nikon Terbaru - Harga Kamera Nikon - Satu diantara camera type saku atau camera pocket memanglah sekarang ini tengah digemari, pasalnya camera dengan type ini tawarkan de...7 years ago
-
"Okay, get him out of here." -Santa, A Christmas Story - As a parent, most traditional Christmas activities aren't high on my priority list. Yes, it's fun to go pick out a Christmas tree; however, I buy the firs...9 years ago
-
Dear Microsoft, - You don’t know me though I have been one of your earliest and most avid users, from MS-BASIC on the…9 years ago
-
Descargar Manual Abreviado de Estadistica Aplicado a la Investigacion - Descargar Manual Abreviado de Estadistica Aplicado a la Investigacion El Manual Abreviado De Estadistica Aplicado A La Investigacion oftens ser maravilloso...10 years ago
-
Technilife has moved - Slowly, as I get my services out of Google's free clutches and transfer them over to services that i'm paying for ... technilife has joined that queue. Th...11 years ago
-
RESUME FOR THE PEOPLE - RESUME FOR THE PEOPLE Simple resume writing tips that will get you noticed Details, details… Does your resume read like a “to do” list? Do you try to cram ...14 years ago
-
Things you can do with Linux: Program Your DVR - I'm not a Linux person. I approach a new OS with trepidation. My memory stretches back to the days of frequent OS crashes -- at least the bomb on the Mac w...15 years ago
-
The Bing - "no-pain-no-gain" - We have introduced the Cherrypal netbook - the Bing - at the Sundance Film Festival today, Friday 1/16/2009. First though, today is my Dad's birthday - he...15 years ago
-
Actual Pictures of my CherryPal - A blog reader requested pictures of my CherryPal and here they are, taken with my phone. You can see the black box it arrived in that has the picture of...16 years ago
-
What is Cloud Computing??? - Here is an interesting article that talks about Cloud Computing. What it is? How does it work? Applications? Privacy and security concerns? Impact to the c...16 years ago
-
-
-
-
-