VMware vCloud Air: Security Infrastructure and Process Overview

VMware vCloud Air: Security Infrastructure and Process Overview Formerly known as vCloud Hybrid Service

Cloud Provider vs. Customer Responsibilities

Service Provider

Customer

Responsibility of Security

Threat Model for Cloud Services

Our Mantra - Bring Your Own Security

Options for our customers

Bring your existing security along with your workloads Work with our security

Extend your security with the same solutions that work for you today INTEGRATE Common security controls that span private and public clouds, linking them seamlessly.

Seamless Networking: VMware vCloud® Air™ Is Just Another Remote Site

vCloud Air

Same Networking & Management Constructs

Same Security Policies

Your Data Center

BYO security policies and IPV4 layer 3 address spaces

Highly available edge gateways

Configure networking at granular levels

Flexibility Freedom Resiliency

Software-Defined Data Center

vCloud Air Is Just Another Site – Security

The Same Security Policies

Integrated L4-7 services for

Firewall/NAT, IPSec VPN, Load Balancers, VXLAN

gateways

Your Data Center vCloud Air

Data Center Extensions that Integrate Seamlessly

Primary

Regional Office

US Data Centers

EMEA Data Centers

vCloud Air Shared Responsibility– Security

vCloud Air Security Operations – Cycle of Security

Intrusion Detection

Geo/Political, Disasters

(Natural and Man Made)

Insider Threats

Public Reports/Exploits Internal Reports

Incident Response

OSINT (Intelligence)

Confidential 8

Complete Cloud Security

•  vCloud Network and Security •  IPSec VPN tunnel •  Firewall, switching, routing •  DHCP, NAT

•  MyVMware integration •  Secure SSO •  Multiple levels of authentication

•  Role Based Access Control

•  Shared responsibility •  App traffic encrypted in VPN

tunnels

•  Completed Certifications: •  SSAE16 SOC1/2 Type 2 •  ISO27001:2005 •  HIPAA

Infrastructure Application

Network User

vCloud Air Certifications and Examinations

Compliance Examinations and Security Certifications

ISO 27001:2005 SOC 1 Type 2 (SSAE 16) SOC 2 Type 2

HIPAA/HITECH

AT101 Reports available with a Signed NDA

For the latest certifications, go to: http://vcloud.vmware.com/service-offering/security-compliance

Go To VMware Cloud Academy

•  See a video of this presentation and others to learn more about vCloud Air

•  Condensed VMworld jump start presentations delivered by technical subject-matter experts

•  Free and ungated to learn at your own pace

•  All videos under 15 mins!

•  Test your knowledge by taking a quiz

•  Download vCloud Air eBook and other assets and tools

http://vcloud.vmware.com/cloud-academy

Thank You

VMware vCloud Air: Security Infrastructure and Process Overview

Software

Transcript of VMware vCloud Air: Security Infrastructure and Process Overview

vCloud Networking Poster: VMware, Inc....Title vCloud Networking Poster: VMware, Inc. Author VMware, Inc. Subject Download this Poster to find information about VMware vCloud Networking,

VMware - vCloud Hybrid Services

VMware NSX indownload3.vmware.com/vcat/vmw-vcloud-architecture-toolkit...Architecting Tenant Networking with VMware NSX in VMware vCloud Director 8 | VMware vCloud® Architecture Toolkit

Unleash the IaaS Cloud - viktorious.nl · Unleash the IaaS Cloud About VMware vCloud Director and more ... VMware vCloud VMware EC2 vCloud VMware vFabric Windows Google App VMforce

VMware vCloud Air Network Program - Insight NL...The VMware vCloud Air Network Program enables partners to invest in VMware infrastructure on a monthly subscription basis, driving

Architecting VMware vSAN 6.2 for VMware vCloud Air Network...Architecting VMware Virtual SAN 6.2 for VMware vCloud Air Network 7 | VMware vCloud® Architecture Toolkit™ for Service

Architecting a VMware vCloud® Availability for vCloud ... · Note Refer to the Architecting a VMware vCloud Director Solution for VMware Cloud Providers white paper 1 for vCloud

VMware vCloud Director / Connector

VMware vCloud Director

VMware vCloud Architecture Toolkit Architecting a …...VMware vCloud Architecture Toolkit Architecting a VMware vCloud © 2013 VMware, Inc. All rights reserved. Page 9 of 159 List

vCloud NFV Reference Architecture - VMware vCloud NFV 2 · OSS/BSS Working Domain VNF Working Domain OSS/BSS Physical Infrastructure VNF VNF VNF NFV Infrastructure Working Domain

H11208: Storage Tiering for VMware vCloud Environments · Storage Tiering for VMware vCloud Environments 3 . EMC VNX, VMware vCloud Director, vCenter Chargeback Manager. Table of

Using vRealize Orchestrator with vCloud Availability …...Using VMware vRealize Orchestrator with VMware vCloud Availability for vCloud Director © 2017 VMware, Inc. All rights reserved.

What’s New with VMware vCloud Director 9 · What’s New with VMware vCloud Director 9.1 Feature Overview . What’s New with VMware vCloud Director 9.1 What’s New with VMware

VMware vCloud Director 5.1 Evaluation Guide · TECHNICAL WHITE PAPER / 5 VMware vCloud Director 5.1 Evaluation Guide The Journey to Private Cloud Cloud-based infrastructure environments

VMware vCloud Architecture Toolkit Architecting a VMware ...download3.vmware.com/vcat/vcat31_documentation_center/Architecting a vCloud/3a...Architecting a VMware vCloud provides guidance

vCloud Architecture Toolkit: VMware, Inc. · Architecting a VMware vCloud . Version 2.0.1 . October 2011 . VMware vCloud Architecture Toolkit ... 2.3 vCloud Infrastructure Logical

VMware vCloud Director Infrastructure Resiliency Case Study · VMware vCloud Director Infrastructure Resiliency Case Study Purpose and overview VMware vCloud® Director™ 1.5 (vCloud

VMware vCloud Architecture Toolkit Software Tools · VMware vCloud® Architecture Toolkit Software Tools Version 3.0 September 2012 . VMware vCloud Architecture Toolkit ... VMware

VMware vCloud Air Network Product Usage Guide - rhipeinfo.rhipe.com/onboarding/wp-content/uploads/sites/21/2017/05/... · VMware Availability for vCloud Director ... The VMware vCloud