Hybrid Deployments

Busting three VMware security myths about migration to the cloud

Share this post:

When discussing IBM Cloud for VMware Solutions with partners and customers, I repeatedly encounter three common misconceptions about the security of their workloads in IBM Bluemix’s dedicated private cloud infrastructure. I’d like to take a moment to clear up the myths surrounding VMware security in the cloud.

Myth #1: “My workload could be compromised by other workloads running on the same hardware.”

Occasionally, security vulnerabilities are reported against various hypervisors. While public cloud providers are quick to patch these vulnerabilities, it is fair to be concerned about the security of shared servers. But with IBM Bluemix bare metal infrastructure, your VMware workload runs on dedicated servers that are not shared with other customers, and you have full control of the hypervisor installed on the bare metal machine. You can rest assured that no other workload is sharing your server.

Myth #2: “My communications could be compromised by other workloads sharing the same network.”

While public clouds do not provide segregation of network traffic, the IBM Bluemix infrastructure dedicated private cloud provides dedicated network VLANs to segregate your network traffic from all other customers. You can rest assured that your network traffic is not visible to other workloads. For access to your VMware workload, several public and private connectivity options are available for you to connect to your intranet or even the Internet at your discretion.

Myth #3: “My data resides on shared storage infrastructure.”

Regulatory and industry standards may require you to prove the location of your data or to audit all access to it. This can be difficult in public clouds that use a shared storage infrastructure. By contrast, IBM Cloud’s VMware Cloud Foundation offering uses VMware vSAN technology in combination with local storage on your IBM Bluemix bare metal instances to provide highly available fault-tolerant dedicated storage. VMware vSAN virtualizes and mirrors the disks on the bare metal servers themselves to provide a virtual shared data store spanning the systems. Your data remains on your physical servers at all times.

IBM Bluemix for your VMware workloads

If you’ve despaired of using public cloud infrastructure due to VMware security concerns, why not take a second look at IBM Cloud for VMware Solutions on IBM Bluemix’s dedicated private cloud? I also encourage you to explore IBM Cloud Secure Virtualization, which combines Intel and HyTrust technologies to add workload encryption, access control and auditing, and geofencing capabilities to your VMware cloud.

If you want to know more about the security of VMware in the cloud, get in touch and we’ll explain how we ensure security and compliance for your workloads.

Senior Technical Staff Member and Master Inventor

More Hybrid Deployments stories

What’s included in the IBM Cloud Developer Tools CLI version 1.3.3

This release is to comply with a mandatory security and reliability update of the backend services that the IBM Cloud Developer Tools CLI uses for creating and managing applications. You will need to update to version 1.3.3 by May 16, 2018 in order to continue to access services on the IBM Cloud.

Continue reading

Kubernetes versions in IBM Cloud Container Service

We are excited to announce the availability of Kubernetes v1.10.1 for your clusters that are running in IBM Cloud Container Service. You can easily update your cluster without the need for deep Kubernetes knowledge. When you deploy new clusters, the default Kubernetes version is now v1.9.7, or you can choose to immediately deploy v1.10.1. IBM Cloud Container Service now supports the latest four Kubernetes versions: v1.7, v1.8, v1.9, and v1.10. Please note that following our n-2 version support model, v1.7 will soon be deprecated.

Continue reading

IBM Cloud Support: An integrated client experience

As part of the next phase of our cloud journey, I am very pleased to announce the launch of our converged IBM Cloud Support offerings. The changes we've made are acontinual improvement of our Client experience, as we continue to listen to our Clients to deliver a high value Client experience on IBM Cloud.

Continue reading