Vblock Acceleration Solution
ServiceMesh Background
•
ServiceMesh’s Agility Platform is an application-centric, enterprise-ready, cloud management
platform that delivers policy-driven governance, security, and lifecycle management.
•
Global presence with headquarters in Los Angeles and offices in Austin, London, New York
City, Sydney, and Washington D.C.
•
Customers include some of the world’s largest and most sophisticated companies in financial
services, health care, consumer goods, and other IT-intensive industries:
Sample Customers
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
Sample Industry Recognition
2
Journey to Cloud IT Transformation
Optimize variable-tofixed costs by project
Redundant service options
with low switching costs
Fully transparent and
auditable service usage
Compressed SDLC and
tool chain automation
Self-service access and
on-demand provisioning
Transparent linkage of
demand, capacity, and costs
Launch initial
private cloud
Broadly adopt utility cost
model with chargeback
Improve asset
utilization and ROI
IaaS and PaaS
standardization
Policy-driven
cloud governance
Defer data center
build outs
Virtualize
Private Cloud
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
Hybrid Clouds
Everything-as-a-Service IT
3
Journey to Cloud IT Transformation
Optimize variable-tofixed costs by project
Vblock Acceleration
Redundant service options
with low switching costs
Fully transparent and
auditable service usage
Compressed SDLC and
tool chain automation
Self-service access and
on-demand provisioning
Transparent linkage of
demand, capacity, and costs
Launch initial
private cloud
Broadly adopt utility cost
model with chargeback
Improve asset
utilization and ROI
IaaS and PaaS
standardization
Policy-driven
cloud governance
Defer data center
build outs
Virtualize
Private Cloud
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
Hybrid Clouds
Everything-as-a-Service IT
4
ServiceMesh Agility Platform™
A single, consolidated platform to enable on-demand, self-service IT
operating models for Global 2000 enterprises
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
5
Take your Vblock investment beyond infrastructure to
higher value platforms and applications
Applications
Platforms
 Easily on-board complex platform and
application topologies for rapid time-tovalue
 Enable self-service, on demand access to
cloud service portfolios to improve business
agility
 Enforce security zones and workload isolation
with high-level policies that reduce
operational complexity
 Ensure governance and security compliance
to mitigate risk
 Manage application SLAs including auto-scaling
 Provide resource tracking, chargeback, and
cost transparency
 Maximize Vblock utilization and ROI
 Enable enterprise hybrid-cloud strategies
and cloud-based IT operating models
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
6
6
Maximize Vblock utilization
Develop
Test
Release
Operate
Role-based access controls
including federated identity
management
Customize environments to
address needs of each SDLC stage
Dev
Test
Staging/Production
Enforce security zones and
workload isolation with highlevel policies
Manage application SLAs
including auto-scaling
Enforce of Standard Operating
Environments (SOEs)
Enable diverse workloads to co-exist with multiple trust levels,
security models, operational requirements, and governance
constraints on the same Vblock host using high level policies to
maximize Vblock utilization and return on investment.
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
7
7
Rapidly on-board complex platforms and applications
1. Create stacks/templates

Make complex
business applications
cloud portable

Import existing VMs

Enable vendor
contestability
Agents/Utilities
OS &
Platforms
Governance
Code
Embedded
agents, utilities,
and packages
Workload
Configuration
Golden Image
Stateful content for a
specific target environment
Stateless foundation
deployable anywhere
Firewall
Load Balancer
Web
Servers
App
Servers
2. Assemble multi-tier topologies
Assemble multi-tier application topologies
and govern their orchestration and delivery.
Database
Servers
Master
Slave
3. Portable across different clouds
Provide portability across heterogeneous
private and public clouds
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
8
Policy-driven governance is an enterprise
requirement
With Policy-Driven Governance and
Orchestration
Without Policies:
Governance and Lifecycle
Management
Approval Delays
Wrong Permissions
Unsecured Data
No Audit Trail
Policies control
access to selfservice resources
Wrong Environment
Policies optimize placement of workloads
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
9
Single consolidated control point for enterprise
cloud governance
 Regulatory compliance policies
Rights & Permissions
 SLA policies including autoscaling
 Security zones policies for each
SDLC stage
 Enforcement of Standard
Operating Environments (SOEs)
 Workload placement policies
 Backup and failover policies
 VM quotas and scheduling
 Metering/charge back policies
Orgs
Policy
Applications & Platforms
Code
Data
App Config.
Agents/Utilities
Middleware
OS
Policy
Policy
Governance/Security
 Fine-grain access control policies
Projects
Dev Policies Ops Policies
 Monitoring/auditing policies for
each SDLC stage
Roles
Infrastructure Automation
 Much more…
Other
Clouds
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
Policy
10
Enterprise governance made simple with a
powerful, extensible policy engine
• Custom policy creation based on an extensible meta-model
• Visual policy editor to create complex, business level policies
Fine-grain policy
enforcement across a
broad range of objects
Edit via a drag-and-drop palette or XML code
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
11
Create self-service portals for standardized
portfolios of “as-a-service” offerings
Plan
Develop
Test
Release
Existing
Tools
Operate
 Self-service portal
 REST API
Sample
“as-a-service”
portfolio:
 Unified governance
 Federated identity
management
Common Application
Platforms
•
•
•
•
•
Standardized Packages
MS SQL Server DBaaS
MS IIS.NET
Red Hat Enterprise Linux
webLogic
others…
•
•
•
•
•
•
VPN clients
Monitoring agents
HIDS
Anti-virus
Virtual Firewalls
others…
3rd-Party PaaS/SaaS
Custom PaaS
•
•
•
•
•
• Preferred platforms and
infrastructure customized to
specific enterprise needs
• Elastic, portable, and secure
Cloud Foundry
Salesforce.com
Intuit
Google Apps
others…
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
12
Enterprise-grade reporting, auditing and
chargeback
Roll-up or drill-down into groups, projects,
environments, instances, etc.
Comprehensive audit trail
Cost reporting and chargeback
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
13
Comprehensive security for business critical
applications in the cloud
Secure encryption keys
Secure access
• Internal Agility Platform key store
• External key stores
• Federated Identity Management
Secure logs for auditing
Secure data in transit
Secure instances from breaches
Governance
Infrastructure
(Vblock)
Zoned Security
• Pluggable Host Intrusion Detection
Systems (HIDS):
• Pluggable Antivirus
• Hypervisor kernel firewalls
• Host Firewalls
• Secure VPN tunneling with multi-cast
and static IP assignment support
• Proxy integration
• VLAN management
• Virtual DHCP
Encrypt Driver
Secure data at rest
• Runs on cloud native block storage
infrastructure
• File system encryption
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
14
Leverage your existing IT ecosystem
Terremark
HP Cloud
Amazon
Fujitsu
QualysGuard (scanning/detection) CSC
Savvis
VLAN mgmt (Juniper)
Azure
Rackspace
ClamAV
Dell
McAfee AV
External
VMFS
VPN
Cloud
Security
NFS
(OpenVPN,
Swift
Amazon
Storage
VPC)
Amazon S3
File system encryption
vSphere/vCenter
(Win/Linux/Solaris)
vCloud Director
Eucalyptus
IaaS
Internal
OpenStack
Cloud
Microsoft System
Center
Hadoop
SAP
Cloudstack
Apprenda
External Key Store (SafeNet, Cryptsoft)
Host Intrusion detection
(OSSec, Commercial, Juniper)
RSA ClearTrust
Active
Directory
LDAP
Kerberos
SAML
Host Firewalls
(IPtables/Windows firewalls)
Netegrity
Oracle OAM
Proxy integration
(Socks/HTTPS)
Identity
Mgmt
Microsoft System
Center Ops Mgr
HP
NIMC
Ganglia
Collectd
Performance
Monitoring
PaaS
Splunk
Chef
BMC
Hypervisor-based firewalls
(Vmsafe, Juniper)
IBM WebSphere
Configuration
Management
Oracle WebLogic
.NET
Puppet
DNS
Microsoft System
Center Config Mgr
NTP
Cloud Foundry
Network
Services
Load Balancer (F5)
Subversion
DHCP (InfoBlox)
Git
Development
Tool Chain
vFabric
Orchestration
Reporting/
Chargeback
SaaS
Eclipse
Team Foundation
Server
Jira Visual Studio Ariba
SAP
Jaspe
Jenkins CI
r
Pureshare
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
HP Operations
Orchestration
Microsoft
System Center
Orchestrator
Cisco Process
Orchestrator
Blade Logic
Salesforce.com
Google Apps
15
15
Rapid Time to Value
Case Study: Global Financial Services Company
Challenge
• Run “IT like a business” to enable greater business agility, full IT cost
transparency, and an IT service portfolio that is globally competitive.
ServiceMesh Solution
• Rapidly enable an on-demand, self-service IT operating model that
includes the provisioning of multi-tier platform and application
topologies to a Vblock-based private cloud.
“My vision for this
organization is to enable us
to compete for any business
we want against any
competitor, and give them
all the tools necessary for
them to win that business.
And that’s what we’re
doing.”
Results
• Custom dev platform provisioning time reduced by 99% (from 76
days to less than 24 hours).
• Rapid time-to-value, taking just 68 days from green field installation
to roll-out of a self-service catalog of fully governed, on-demand
development platforms used by business unit dev teams.
–Vice President, Global
Financial Services Company
New self-service provisioning of dev platforms < 1 day
Old platform provisioning process = 76 days
Time to create and roll-out new selfservice dev platform portfolio = 68 days
0
Time in days
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
16
Our Technology
• A Single, Purpose-built Platform
– Modular and natively developed for consistent delivery and
management of enterprise cloud applications and service portfolios.
• Enterprise Grade Policy & Governance Engine
– Enables the creation and enforcement of an unlimited range of custom
governance, compliance and security policies.
– Visual policy editor – drag and drop
• Cloud Application Migration Scoring & Planning
– Migrate existing business applications and virtual machines to fully
governed hybrid cloud environments in an automated, systematic manner.
• Integrated Application Release Automation
– Increase the speed and frequency of software releases and accelerate
DevOps initiatives.
• Fastest Implementations
– Rapid deployment and time-to-value.
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential.
17
Thank You
For more information, find us at:
servicemesh.com
@servicemesh
servicemesh.com/blog
18
Backup
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
19
Dev
Test
 Rapidly on-board complex platform and
application topologies
Staging
Auto-scale
Platforms and Apps
Take your Vblock investment beyond infrastructure to
higher value platforms and applications
 Enable self-service, on demand access
including federated identity
management
 Ensure governance and security compliance
 Enforce security zones and workload isolation
based on high-level policies
 Manage application SLAs including auto-scaling
 Provide resource tracking and chargeback
 Maximize Vblock utilization and ROI
 Enable enterprise hybrid-cloud strategies
Copyright © 2012 ServiceMesh, Inc. Proprietary and Confidential
20
20