Security and Billing for Azure Pack Presented by 5nine Software and Cloud Cruiser
Meet our Speakers Symon Perriman VP of Business Development 5nine Software symon@5nine.com @SymonPerriman Paul Zinn Senior Product Manager Cloud Cruiser paulz@cloudcruiser.com @pzmusician 2
Key Topics for Today Understanding Windows Azure Pack Security & Protection for Windows Azure Pack Chargeback & Billing for Windows Azure Pack Integrating Solutions for Windows Azure Pack Discussion 3
Understanding Windows Azure Pack poll #1
Development Management Identity Data Virtualization
Microsoft Azure Customers IT Admin Microsoft 6 Azure
Windows Azure Pack - Tenant Customers IT Admin 7
Windows Azure Pack - Admin Customers IT Admin 8
Windows Azure Pack Customers IT Admin Windows Azure Pack 9
Azure Pack Services Service Management REST API Web Platform application Services (PaaS) Infrastructure Services (IaaS) Reliable Messaging Virtual Networking SQL Server & MySQL Database (DBaaS) 5nine Cloud Security (SECaaS) Cloud Cruiser 10
Security & Protection for Windows Azure Pack poll #2
Meet 5nine Software Founded in 2009 Headquartered in Chicago, with staff in an additional 14 regions worldwide, including 9 MVPs More than 68,000 Hyper-V users globally, representing companies and datacenters of all sizes The #1 leading solutions provider of security & management applications for Hyper-V 5nine Cloud Security Agentless firewall, antivirus, and intrusion detection security for Hyper-V, System Center and Azure Pack 5nine Manager - Integrated Hyper-V and Cluster Management for SMBs 5nine V2V Easy Converter - Free VMware to Hyper-V virtual machine migration tool Visit www.5nine.com for more info 9x. 12 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
A Suite of Virtualized Security Tools for Hyper-V Security designed specifically for Hyper-V virtual machines, disks, networks and hosts Regulation now have requirements for virtualization Hackers now know how to exploit virtualization Firewall Antivirus / Antimalware Active Network Detection Intrusion Detection Standard datacenter security practices are still needed Physical security, BitLocker, VPN, Active Directory, etc. 13 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Automatically & Immediately Protect Everything Hosted environments are never secure A single security breach can ruin your reputation and business Security for virtualized environments is different It is impossible to guarantee security using traditional endpoint protection Requires installation Slows deployment Complicates management Virtualized environments are dynamic Virtual machines Virtual disks Virtual networks 14 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
How 5nine Cloud Security Works 15 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Host-Based Protection for Firewall, AV/AM & IDS 16 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Host-Based Protection for Firewall, AV/AM & IDS 17 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Abstract & Hide Security from Users The public is renting your hardware Remove the burden of security from the tenants Manage security for the tenants Update signatures for the tenants Ensure the tenants cannot disable security Accidently Purposely with bad intentions Centrally manage security Cisco Snort 18
Guarantee Isolation & Resource Access Isolation and privacy is critical in a cloud An admin should not access a tenant s VM A VM cannot affect the host A VM cannot affect another VM Use Quality of Service (QoS) or throttling for memory, CPU, network & storage bandwidth Avoid Denial of <Resource> attacks 19 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Protect All Virtual Networks Traditional security protect traffic between hosts Does not protect traffic between VMs on the same host Threats can spread if one tenant becomes infected Virtual Network Types External Internal Private Network Security Appliance 20 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Use a Single Solution for all VMs Intercept traffic before it gets to the VM Manage traffic at the network protocol level TCP, UDP, GRE, ICMP, IGMP, etc. 21 Hyper-V Guest OS List: aka.ms/hypervguestos 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Use a Single Solution for all VMs Intercept traffic before it gets to the VM Manage traffic at the network protocol level TCP, UDP, GRE, ICMP, IGMP, etc. Server Windows Server 2016 Windows Server 2012 R2 Windows Server 2012 Windows Server 2008 R2 Home Server 2011 Small Business Server 2011 Windows Server 2003 tenant Windows 10 Windows 8.1 Windows 8 Windows 7 Windows Vista Windows XP Linux & UNIX CentOS Debian FreeBSD Oracle Linux Red Hat RHEL SUSE Ubuntu 22 Hyper-V Guest OS List: aka.ms/hypervguestos 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Active Detection of Incoming Threats Immediately identify incoming threats Unencrypted traffic HTTP (more coming soon) Automatically alert admins Email PowerShell Event Logs 23 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Fast AV Scanning with No Performance Impact Agent-based scanning causes scanning storms Decreases VM performance for all tenants Reduces VM density on the hosts 5nine uses its proprietary Change Block Tracking (CBT) driver Scan only changed blocks on the disk Scan up to 70x faster 24 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Automate Security Task Management PowerShell support Task scheduling Enables scalability Ensures consistent SLAs Eliminates human error For tasks with high resource utilization, stagger the action to avoid performance impact 25 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Enterprise High-Availability for Security 5nine Cloud Security Management 5nine Console 5nine PowerShell Azure Pack Extension SCVMM 5nine Cloud Security Management Server / VM Redundant Management Group Branch Office 5nine Sync Hyper-V Hosts & Clusters SQL Server SQL Server SQL Server 26 SQL Cluster 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Protection from Inbound, Outbound & Internal Threats 5nine Cloud Security Management Server / VM Public Internet 100 90 80 70 60 50 40 30 20 10 0 Unusual Normal Traffic 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 Hyper-V Hosts SQL Server 27 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
System Center Virtual Machine Manager Plugin Centralized virtualization security management through SCVMM Full 5nine Cloud Security integration Integration with the SCVMM Console, Network Services & Logical Switch Free add-on for 5nine Cloud Security 28 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Azure Pack Security as a Service (SECaaS) Azure Pack allows you to run Azure IaaS services in your datacenter Improved security for your infrastructure and your tenants Differentiate & monetize your services by offering secure VMs Simplify security management for tenants through on/off buttons Firewall, Active Network Detection & Intrusion Detection Preconfigure firewall templates for different VM roles Free add-on for 5nine Cloud Security 29 2015 Cloud 5nine Cruiser Software Inc. www.cloudcruiser.com www.5nine.com
Demo: 5nine Cloud Security
How to Acquire 5nine Cloud Security www.5nine.com or Sales@5nine.com Cloud Security: http://www.5nine.com/cloudsecurity Licensing options Licensed per 2 CPUs Flexible pricing based on VM density Service provider licenses (per VM / month or per VM / year) Includes the Kaspersky Lab or ThreatTrack plus Cisco Snort license Sales direct or through resellers, distributors, partners & solution integrators 31
Chargeback & Billing for Windows Azure Pack
Meet Cloud Cruiser Founded in 2009 Headquartered in Silicon Valley Industry-leading financial management solution for hybrid cloud Customers include the largest enterprises and service providers in the world 33
Cloud Cruiser Overview Cost analytics for the hybrid cloud Single solution to price, bill for cloud usage, and optimize spend Broadest scope of collectors Most sophisticated cloud analytics 34
Cloud Cruiser Overview Cost analytics for the hybrid cloud Deep partnership with Microsoft First embedded partner solution for Windows Azure Pack Plus integrations to Azure public cloud, System Center, Hyper-V 35
Cloud Cruiser Overview Cost analytics for the hybrid cloud Deep partnership with Microsoft Integrations to industry-leading public/private clouds, apps, databases, and more 36
Financial Management for Microsoft Hybrid Cloud Windows Azure Pack (WAP) Azure Azure Public Azure Manage usage and costs of WAP resources, such as VMs, website and database instances WAP $ $ Manage IT spend across your public cloud assets like compute, storage, data, networking, & apps HYBRID CLOUD poll #3 SINGLE TENANT 37 MULTI TENANT
Microsoft customer needs 57% 59% 47% 44% of total surveyed of public cloud users of cloud adopters of cloud adopters Improve forecasting Compare costs across clouds Implement chargeback/billing Match supply and demand 38 Microsoft Ignite May 2015 Survey Results
Why is this so hard? service providers Diverse cloud offerings plus managed services, such as security, backups, help desk multiple services enterprises Mix of public, private, and traditional IT services Complex pricing required for different services, bundles, promotions, and customers complex financial models No consistency across vendor bills and internal spreadsheets big manual effort Hard to scale as you acquire more customers multiple clients No ability to map consumption to organizational structure (departments, divisions, projects) 39
Cost Management for Enterprises & Service Providers ANALYTICS FOUNDATION Enterprise Service Providers COST TRANSPARENCY AUTOMATED CHARGEBACK DECISION ANALYTICS BUDGETS & ALERTS AUTOMATED BILLING SELF-SERVICE REPORTING TRENDS & FORECASTS PROFIT ANALYSIS MULTI-SOURCE COLLECTORS FLEXIBLE DATA TRANSFORMATION FLEXIBLE PRICING CUSTOM DASHBOARDS 40
Demo: Cloud Cruiser
Integrating Solutions for Windows Azure Pack
Benefits of Adding Cloud Cruiser & 5nine Software Completes the Microsoft cloud solution stack with best-in-class IT financial management and security Protects your cloud investment Automates security and financial controls which saves money, time, & risk Provides 24x7 visibility into the health of your cloud Improves customer satisfaction and trust Provides additional revenue opportunities 43 2015 5nine Software Inc. www.5nine.com
Case Study: Monetizing Value-added Services Track and bill for 5nine security products, such as firewall and intrusion detection 44
Resources Cloud Cruiser Cloud Cruiser Product Overview: http://www.cloudcruiser.com/product/ Cloud Cruiser for Azure Pack: http://www.cloudcruiser.com/partners/microsoft/ Microsoft Virtual Academy: Cloud Cruiser for Azure Pack: http://www.cloudcruiser.com/resource/video-microsoft-partner-solutionscloud-cruiser-express-for-windows-azure-pack/ Datasheet: Cloud Cruiser for Windows Azure Pack http://www.cloudcruiser.com/wp-content/uploads/2013/10/solution- Brief_Microsoft-Azure-Pack1.pdf Webcast: Microsoft Hybrid Cloud: Best of Both Worlds http://www.cloudcruiser.com/resource/webcast-microsoft-hybrid-cloud-bestboth-worlds/ 5nine Software 5nine Cloud Security: http://www.5nine.com/cloudsecurity 5nine Cloud Security Azure Pack Extension: http://www.5nine.com/5nine-security-for-hyper-v-product.aspx#azure Microsoft Virtual Academy: 5nine Cloud Security for Azure Pack: https://channel9.msdn.com/series/windows-azure-pack-partner- Solutions/10 Whitepaper: Challenges of Securing Hosted Hyper-V Multi-Tenant Environments: http://www.5nine.com/docs/brien_posey_securing_hosting_hyper_environ ment.pdf Upcoming webinars: www.5nine.com/webinars 45 2015 5nine Software Inc. www.5nine.com
Thanks for joining us today! Let s connect! Cloud Cruiser info@cloudcruiser.com www.cloudcruiser.com @CloudCruiserInc 5nine Software info@5nine.com www.5nine.com @5nine_Software 46 2015 5nine Software Inc. www.5nine.com