Beyond VDI: Why Thin-Client Computing and Virtual Desktop Infrastructures Aren t Cutting it

Similar documents
Desktop Virtualization in the Educational Environment

Week Overview. Installing Linux Linux on your Desktop Virtualization Basic Linux system administration

Enterprise-class desktop virtualization with NComputing. Clear the hurdles that block you from getting ahead. Whitepaper

Windows Server ,500-user pooled VDI deployment guide

ORACLE VIRTUAL DESKTOP INFRASTRUCTURE

Red Hat Satellite Management and automation of your Red Hat Enterprise Linux environment

Red Hat Network Satellite Management and automation of your Red Hat Enterprise Linux environment

Acronis True Image 2015 REVIEWERS GUIDE

Desktop Virtualization. The back-end

An Oracle White Paper August Higher Security, Greater Access with Oracle Desktop Virtualization

Kaspersky Endpoint Security 10 for Windows. Deployment guide

Freshservice Discovery Probe User Guide

Endpoint protection for physical and virtual desktops

Desktop Virtualization Strategy

Endpoint protection for physical and virtual desktops

How To Use A Vmware View For A Patient Care System

Product Brief. DC-Protect. Content based backup and recovery solution. By DATACENTERTECHNOLOGIES

PHD Virtual Backup for Hyper-V

Server-centric client virtualization model reduces costs while improving security and flexibility.

VIRTUAL DESKTOP I SOLUTIONS

isheriff CLOUD SECURITY

Secure Remote Control Security Features for Enterprise Remote Access and Control

Centralized Mac Home Directories On Windows Servers: Using Windows To Serve The Mac

Data Centers and Cloud Computing

Acronis Backup Product Line

Parallels Virtuozzo Containers

BITDEFENDER ENDPOINT SECURITY TOOLS

PRPL: A Virtual Data System. Monica Lam Stanford University

Symantec IT Management Suite 7.5 powered by Altiris

VDI can reduce costs, simplify systems and provide a less frustrating experience for users.

AUTOMATED DISASTER RECOVERY SOLUTION USING AZURE SITE RECOVERY FOR FILE SHARES HOSTED ON STORSIMPLE

Storage Sync for Hyper-V. Installation Guide for Microsoft Hyper-V

<Insert Picture Here> Enabling Cloud Deployments with Oracle Virtualization

Data Centers and Cloud Computing. Data Centers. MGHPCC Data Center. Inside a Data Center

How bare-metal client hypervisors will mean the end of agent-based Windows management

Protecting the Irreplacable. November 2013 Athens Ian Whiteside, F-Secure

Debunking the Top 10 CloudHosted Virtual Desktop Myths

Course overview. CompTIA A+ Certification (Exam ) Official Study Guide (G188eng verdraft)

Acronis Backup & Recovery for Mac. Acronis Backup & Recovery & Acronis ExtremeZ-IP REFERENCE ARCHITECTURE

Technical Brief. Userful Multiplatform Desktop Virtualization Software

Maximizing Your Desktop and Application Virtualization Implementation

2.6.1 Creating an Acronis account Subscription to Acronis Cloud Creating bootable rescue media... 12

BTEC First Diploma for IT. Scheme of Work for Computer Systems unit 3 (10 credit unit)

Easily integrate Mac into Microsoft System Center

This presentation covers virtual application shared services supplied with IBM Workload Deployer version 3.1.

Intel Cyber-Security Briefing: Trends, Solutions, and Opportunities

Backup & Disaster Recovery Appliance User Guide

Where are Organizations Today? The Cloud. The Current and Future State of IT When, Where, and How To Leverage the Cloud. The Cloud and the Players

MaaS360 Mobile Service

How To Get A Client Side Virtualization Solution For Your Financial Services Business

How To Use Attix5 Pro For A Fraction Of The Cost Of A Backup

Data Centers and Cloud Computing. Data Centers

A+ Guide to Software: Managing, Maintaining, and Troubleshooting, 5e. Chapter 3 Installing Windows

Simplify the Deployment and Management of Desktop Virtualization & VDI Technologies. Terry Lewis Solutions Architect

Citrix XenDesktop Architecture and Implementation on ProLiant Servers

Mobile App User's Guide

VMware Horizon DaaS: Desktop as a Cloud Service (DaaS)

ORACLE OPS CENTER: PROVISIONING AND PATCH AUTOMATION PACK

McAfee Public Cloud Server Security Suite

Charter Business Desktop Security Administrator's Guide

What s New with VMware Virtual Infrastructure

MOC 10324A: Implementing and Managing Microsoft Desktop Virtualization

VIRTUALIZATION SECURITY IN THE REAL WORLD

Citrix Provisioning Services Administrator s Guide Citrix Provisioning Services 5.1 SP2

Introducing FUJITSU Software Systemwalker Centric Manager V15.1.1

Leading by Innovation McAfee Endpoint Security The Future of Malware-Detection: Activate protection on all Layers outside the Operating System

Virtualization. Dr. Yingwu Zhu

Compulink Advantage Online TM

Cloud Appliance. Dr. George Wang, EVP Institute for Information Industry Taipei, Taiwan

Release Notes. Cloud Attached Storage

Dell Desktop Virtualization Solutions Enterprise Offering Overview

An Analysis of Propalms TSE and Microsoft Remote Desktop Services

Backup Exec System Recovery Management Solution 2010 FAQ

NCS 330. Information Assurance Policies, Ethics and Disaster Recovery. NYC University Polices and Standards 4/15/15.

That Point of Sale is a PoS

Enterprise Desktop Solutions: VMware View 4.5

Symantec Endpoint Protection

Virtualization of CBORD Odyssey PCS and Micros 3700 servers. The CBORD Group, Inc. January 13, 2007

Small Business Server Part 1

Sun Virtual Desktop Infrastructure solutions solving common desktop. problems. Sun Virtualization Solutions

Advanced virtualization management for Hyper-V and System Center environments.

Symantec Endpoint Protection

Citrix Lab Manager 3.6 SP 2 Quick Start Guide

Compulink Advantage Cloud sm Software Installation, Configuration, and Performance Guide for Windows

Getting Started with ESXi Embedded

How To Use Tsplashbox On A Pc Or Mac Or Mac (For A Pc) With A Windows 7 Computer (For Mac) Or Mac) With Tsplatro (For Pc) Or Ipad (For Windows) With An

Kaseya IT Automation Framework

Novell Open Workgroup Suite

Hardware/Software Guidelines

alcatel-lucent vitalqip Appliance manager End-to-end, feature-rich, appliance-based DNS/DHCP and IP address management

Terminal Server Software and Hardware Requirements. Terminal Server. Software and Hardware Requirements. Datacolor Match Pigment Datacolor Tools

Better protection for customers, and recurring revenue for you!

Transcription:

Beyond VDI: Why Thin-Client Computing and Virtual Desktop Infrastructures Aren t Cutting it Dr. Monica Lam Co-founder and Chief Scientist, MokaFive Inc. Professor of Computer Science, Stanford University

Desktop Virtualization: Road to Discovery DATE INSTITUTION CONCEPTS 1999 w. Sun Labs Sun Rays 2000 2001 Stanford Collective Computing Utility (VDI) ($3M, NSF) 2002 2003 Virtual Appliances for Deploying & Managing Software (LISA 2003) 2004 2005 MokaFive LivePCs: ($3M, Vinod Khosla) 2006 MokaFive LivePC Lab: ($15M, Highland Capital, Khosla) 2007 2008 MokaFive DaaS Desktop-as-a-Service Platform Stanford POMI 2020: Programmable Open Mobile Internet ($10M from NSF) Copyright 2008 Moka5 Inc. 2

1999: Central Management & Mobility with Sun Rays Interactive Performance of SLIM: A Stateless Thin-Client Architecture. Schmidt, Lam, Northcutt, SOSP, 99. Copyright 2008 Moka5 Inc. 3

2000: OS Virtualization Inspired: Linux Zap [ 02] Solaris Zones [ 04] Microsoft Windows in the future? Supporting Ubiquitous Computing with Stateless Consoles & Computation Caches. Schmidt, Stanford Ph.D. Thesis, 2000 Copyright 2008 Moka5 Inc. 4

2001: Virtual Desktop Infrastructure Copyright 2008 Moka5 Inc. 5

2003: LivePCs http server or LivePCs = Secure, managed VM images in the cloud PCs (Windows, Linux, Mac PC) are generic platforms USB flash: personalized cache as a network accelerator Supports disconnected operation The Collective: A Cache-Based System Management Architecture, US Patent, Lam et al, 2003 & NSDI, 2005 Copyright 2008 Moka5 Inc. 6

LivePC Creator/Player Copyright 2008 Moka5 Inc. 7

MokaFive Professional DaaS VM 1 Network VM 2 VM 3 VM 1 VM 3 VM 2 VM 3 VM 1 VM 2 Copyright 2008 Moka5 Inc. 8

Top Three Myths Around VDI 3. Thin-client computing reduces the hardware cost Copyright 2008 Moka5 Inc. 9

Cost of End-Point Hardware Thin-client hardware: $300 + $60 a year (no monitor) PC: $499 (no monitor) Intel Pentium Dual Core 1.86 GHz, 2GB M, 160 GB SATA drive Consumerization of PCs: $0 Let the employees use their own computers Copyright 2008 Moka5 Inc. 10

Moving desktops to data centers? Server virtualization in data centers: Consolidation reduces cost and energy Desktop virtualization in data centers? Additional cost: data center operation Servers: 4-10 users per processor (Terminal services: 40 users per OS) Storage: 5GB per user Energy; rent; labor Copyright 2008 Moka5 Inc. 11

Cost of Server Operation The Superbowl effect Must provision for the important moment Superbowl for TV networks, final projects at school 9 to 5 for companies? Redundancy to guard against a single-point of failure Google docs (July 8, 2008: 45 minutes) Amazon EC2 (July 20, 2008: 8 hours) Resource allocation and management among clusters LivePCs: an http server can support thousands of users Copyright 2008 Moka5 Inc. 12

Top Three Myths Around VDI 3. Thin-client computing reduces the hardware cost 2. Central management => centralized execution Copyright 2008 Moka5 Inc. 13

Security and Management, commtouch, May 2008 Number of active zombies per day: 10-15 millions Typical number of zombies in a single botnet: 10,000 200,000 New zombies that come alive every 24 hours: 200,000-500,000 Typical Zombies Activities: Spam, phishing, malware, command & control, data theft, click fraud, DDoS Spam activity on the Internet accounted for by zombies:120 billion messages daily Stealthy security breaches are harmful! Copyright 2008 Moka5 Inc. 14

System Admin with Virtual Machines VMs by themselves do not improve management VMs: complete machines on a platter Virtual machines holistic management Virtual machines outside-the-box security control Central management > centralized execution Physical security security Copyright 2008 Moka5 Inc. 15

Administration Work Flow Multi-Platform Support Online and Offline Use (Cache-On-Go) Faster Launch (Streaming & Predictive Fetch) LivePC Creation Tools One-Click Post MokaFive LivePC Desktop System & User State Separation (Rejuvenation) Server Network Laptop Portable Devices Automatic & Incremental Updates via RSS (Slim Transfer & Auto Subscription) Copyright 2008 Moka5 Inc. 16

MokaFive System Architecture User data Admin-controlled MokaFive-controlled Copyright 2008 Moka5 Inc. 17

Securing the End Points with Encrypted Keys Hardware / software: Encryption Revocation Self-destructs after 10 incorrect password guesses Hardware only: Self-destructs if physically tampered Copyright 2008 Moka5 Inc. 18

Holistic Management Delivering a mirror of a golden image Rejuvenate system disk by default Incremental updates Image provisioning Software deployment Software updates Software rollback Lockdown New services (e.g. encryption) Revocation Copyright 2008 Moka5 Inc. 19

Minimizing Virtual Image Sprawl A single virtual image for employees in the same dept Running on different hardware Different user states Copyright 2008 Moka5 Inc. 20

Separation of System and User State User state customization: a separate virtual disk for user state Machine customization Domain join Active Directory with group policy Cached credentials Local environment customization USB and network printer pass through Copyright 2008 Moka5 Inc. 21

Outside-the-Box Security Quick patching Only touched blocks that need to be fetched Can recall patches easily if necessary Recover from zero-day vulnerabilities Automatic rejuvenation Viruses in the user state: Defense-in-depth; clean with new anti-virus/os Only way to get rid of all root kit attacks Baremetal version eliminates keylogging Copyright 2008 Moka5 Inc. 22

Top Three Myths Around VDI 3. Thin-client computing reduces the hardware cost 2. Central management => centralized execution 1. Central management => bad user experience Copyright 2008 Moka5 Inc. 23

Overheads of Virtual Desktop Infrastructure VM Multiplexed VM Remote display Copyright 2008 Moka5 Inc. 24

Main Frame to PC/Laptop Revolution VDI is a Throw Back to Main Frame Days Allows occasional disconnection from the network Fast and cheap hardware Interactive applications 3D graphics: Google earth USB peripherals Personal Computer -- personal control: hw, applications Question: Why Not? Copyright 2008 Moka5 Inc. 25

MokaFive: Eat your cake and have it too Security Quality of Life Copyright 2008 Moka5 Inc. 26

New Frontier: Security + Quality of Life Security Information leakage Data breach disclosure 12000 lost laptops per week in airports Encryption statutes SOX HIPPA IP Foreign travel Quality of Life Portability Platform of choice Macs, EEEPC Personalization Performance Green initiative Work from home Corporate LivePCs on Consumer PCs Copyright 2008 Moka5 Inc. 27

Use Cases Business: HR staff s home access to employee data Disaster recovery: a backup PC in your pocket HMO: Patient data access in clinics, hospitals, homes Law firm: Proprietary client info &software access University: Labs for running different courses ISV: Demos on customers machines Copyright 2008 Moka5 Inc. 28

Future Use Cases Hotels Internet cafes Consumers Copyright 2008 Moka5 Inc. 29

Stanford POMI 2020 Project: Programmable Open Mobile Internet mainframe mini workstation PC laptop phone 10x cheaper, 10x more users Copyright 2008 Moka5 Inc. 30

Technological Trends Convergence of broadband, wifi, cellular, wimax Convergence of PC, CE, phones computation internet media games communication Copyright 2008 Moka5 Inc. 31

Three-Tier Architecture SERVERS Internet PC/TVs Personalize the generic PC, Borrow the power, display, keyboard, memory, PHONES My key, cache, window into my digital ID, digital personality, digital assets, and the internet Copyright 2008 Moka5 Inc. 32

Conclusion: Virtual Desktop as a Service Pioneered Virtual Desktops Optimized for DaaS The Collective 15 patents pending Creator Wizard Create Users free to work anywhere Online & offline X-platform Isolation (Secure and Confidential) Lifecycle of Desktops as a Service Deliver One click post and subscribe Faster launch Maintain & Control Incremental update Rejuvenation Revocation, AAA & Encryption BareMetal Copyright 2008 Moka5 Inc. 33

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information