Military image via FreeImages
What do you hope comes of the CNMF sharing malware to VirusTotal? One expert shares his thoughts on the decision in this week’s roundup.
1. U.S. Cyber Command malware samples to be logged in VirusTotal – Michael Heller (SearchSecurity)
The Cyber National Mission Force will share unclassified U.S. Cyber Command malware samples to VirusTotal and one expert hopes there will be more action taken to help researchers.
2. Kubernetes on VMware gains a lifeline with Heptio acquisition – Beth Pariseau (SearchITOperations)
VMware’s Heptio buy brings it Kubernetes chops that will help it make a multi-cloud bid, but it will struggle to raise its profile in open source container management, industry watchers predict.
3. Google Cloud Scheduler brings job automation to GCP – Chris Kanaracus (SearchCloudComputing)
Google’s Cloud Scheduler managed service assists with job execution and management for cloud workloads, and it evens another score with AWS and Azure.
4. Cisco, AWS team up for Kubernetes hybrid cloud deployments – Chris Kanaracus (SearchAWS)
Kubernetes users pick up another option for container orchestration in hybrid deployments in the form of a product bundle from Cisco and AWS.
5. Dell EMC VxRail HCI builds on VMware Cloud Foundation – Garry Kranz (SearchConvergedInfrastructure)
Dell EMC builds on VMware Cloud Foundation and plans to offer a new two-node VxRail entry point, with a flexible VMware vSAN license. Dell EMC also adds VMware integration to VxBlock.
IBM image via FreeImages
What are your top questions about this deal, as a Red Hat or IBM customer? Find out why customers should believe that Red Hat will remain independent in this week’s roundup.
1. IBM, Red Hat customers should watch acquisition closely – Chris Kanaracus (SearchCloudComputing)
IBM said Red Hat will remain independent after its $34 billion deal goes through, and there are reasons for customers to believe that.
2. The first sandboxed antivirus is Windows Defender – Michael Heller (SearchSecurity)
Microsoft created the first sandboxed antivirus solution in its latest Insider version of Windows Defender for Windows 10, moving proactively to harden the product against attacks.
3. Electric Cloud boosts DevOps orchestration, visibility – David Carty (SearchSoftwareQuality)
As enterprises increase their DevOps tooling investments, Electric Cloud aims to position itself as an orchestrator for the disparate teams and technologies within an organization.
4. NetApp Cloud Volumes gives new wrinkle to OnTap file storage – Garry Kranz (SearchStorage)
NetApp appends services to Data Fabric that aim to help enterprises flexibly manage their data between local storage and public clouds, including AWS, Azure and Google.
5. PASS Summit 2018 spotlights new demands on SQL Server DBAs – Craig Stedman (SearchSQLServer)
This year’s PASS Summit comes as SQL Server 2019 looms and the cloud becomes a bigger factor. PASS board member Tim Ford talks about key trends ahead of it.
Artificial image via FreeImages
How will your organization use new NLP and AI-powered features from Tableau? Check out the new features in the company’s BI and data visualization platform in this week’s roundup.
1. Tableau new features include NLP, AI, machine learning – Mark Labbe (SearchBusinessAnalytics)
Tableau unveiled AI and NLP tools intended to improve users’ experience with its BI platform by adding smart capabilities to Tableau 2019, now out in a public beta.
2. Zero-day jQuery plugin vulnerability exploited for 3 years – Michael Heller (SearchSecurity)
A zero-day in jQuery File Upload could affect thousands of projects because the jQuery plugin vulnerability has existed for eight years and actively exploited for at least three years.
3. IBM eyes services bid with Multicloud Manager – Darryl Taft (SearchCloudComputing)
Organizations that run applications in a multi-cloud environment could benefit from IBM’s Kubernetes-based management platform that supports on-premises and other cloud platforms.
4. Commvault web interface getting a major overhaul – Johnny Yu (SearchDataBackup)
At Commvault Go, the data protection vendor introduced a revamped user interface with machine learning-powered analytics and smarter storage usage reporting.
5. Updated Oracle Gen 2 Cloud aims to challenge cloud leaders – Jack Vaughan (SearchOracle)
With enhancements to its Autonomous Database technology and cloud infrastructure security services, Oracle is trying to gain ground on Amazon and other cloud rivals.
Healthcare image via FreeImages
How would blockchain technology help your healthcare organization? Find out how three companies are changing the industry in this week’s roundup.
1. News roundup: 3 new blockchain in healthcare use cases – Valerie Silverthorne (SearchHealthIT)
Three companies see the promise of blockchain in healthcare in this week’s news roundup. Here’s the latest from Change Healthcare, MTBC and Ambrosus.
2. Pentagon data breach exposed travel data for 30,000 individuals – Michael Heller (SearchSecurity)
The Department of Defense said a Pentagon data breach exposed travel records for approximately 30,000 military and civilian personnel, but the investigation is still in progress.
3. IBM hopes Domino version 10 gives the platform new life – Ed Scannell (SearchSoftwareQuality)
IBM looks to improve its position in the collaboration software market with a buffed-up version of its venerable Domino platform that supports mobile applications.
4. Commvault Activate package turns insight into action – Johnny Wu (SearchDataBackup)
Commvault’s Activate, consisting of data analysis tools announced earlier this year, now allows users to learn about their unstructured data and effectively take action with it.
5. Open source tool simplifies Kubernetes on AWS – Trevor Jones (SearchAWS)
AWS added an open source tool to manage infrastructure directly through Kubernetes. But the software is targeted at AWS assets, so don’t expect it to help with portability.
Trying to keep from sinking under the squirming, sprawling, overstuffed stack of cloud-native computing projectsCloud Computing, Kubernetes
Cloud image via FreeImages
By James Kobielus (@jameskobielus)
If you’re having trouble keeping the cloud-native computing stack in clear focus, you’re not alone. Of course, you should be following what emerges from the working groups of the Cloud Native Computing Foundation (CNCF), which is the principal community defining the growing open-source stack for containerized computing environments.
When following CNCF, the shortcut has been to focus on the development of Kubernetes, which was the first project to achieve “graduated” status and, of course, near-universal adoption among cloud service and solution providers. Kubernetes is far and away the most widely adopted CNCF project, being implemented currently in 34 certified vendor distributions and 21 hosted platforms that are commercially available. As detailed here, Kubernetes has been implemented by vendors of all the leading infrastructure-as-a-service, container, and Linux platforms. Among managed cloud solution providers, Alibaba Cloud, AWS, Cisco. Microsoft, Google, IBM. Oracle, Red Hat, and VMware all have their respective Kubernetes engines.
At first glance, it may seem like Kubernetes alone is a complete ecosystem for cloud-native computing. It is the core of cloud-native microservices that are platform agnostic, dynamically managed, loosely coupled, distributed, isolated, efficient, and scalable.
Kubernetes continues to mature as it leverages containers, orchestrations, service meshes, immutable infrastructure, and declarative APIs. It provides an exceptionally rich API that abstracts an evolving, sprawling, and complex set of concepts, tools, extensions, add-ons, proxies, objects, orchestration/packaging charts, storage, policies, statefulness, and configuration, networking, and administration settings. And it supports deployment over a wide range of cloud-native platforms at the nodes, cluster, and federation levels, enabling execution of containerized microservice workloads on diverse public cloud, on-premises, and bare metal environments.
But Kubernetes is not the sum total of cloud-native computing, and one would be naïve to consider it, even in its unforked kernel, as providing any assurance of multi-platform, multi-vendor interoperability.
For starters, Kubernetes’ huge range of implementation and management options makes it difficult to set up and configure. This excessive complexity places a significant burden on IT solution vendors and enterprise tech administrators, who have the unenviable task of having to sift through myriad details and make it all work together seamlessly.
Exacerbating the complexities is the fact is the huge range of CNCF-certified Kubernetes distributions and hosted PaaS services on the market. On many if not most of these, vendors have patched and extended the Kubernetes kernel and integrated it with various Linux OS and container management platforms in order to stand up useful cloud-native capabilities in production settings.
But Kubernetes is just one component of a much larger, more complex cloud-native stack in the making. There many other cloud-native open-source projects (either “incubating” or “sandbox”) under CNCF’s purview that need to come to fruition before the Kubernetes-hubbed stack can be considered feature-complete, production-ready, or fully mature.
So far, the only other CNCF project has achieved graduated status so far is Prometheus, an open-source environment for monitoring Kubernetes clusters and containerized microservices. Projects still incubating at CNCF include Helm (package management), Fluentd (logging), gRPC (remote procedure call), Containerd and Rkt (container runtime), CNI (networking), Envoy and Linkerd (service mesh), OpenTracing and Jaeger (distributed tracing), Notary (security), TUF (software update), Vitess and Rook (storage), CoreDNS (service discovery), and NATS (messaging).
With respect to Kubernetes or any other project in the CNCF stack, even when it has attained “graduated” status, the current kernel of that project may not support the degree of interoperability, reliability, security, performance, scalability, and other attributes required in every cloud-native computing scenario. Under such circumstances, it may be necessary for vendors and/or users to “fork”—in other words, extend, supplement, or otherwise modify the open-source code–in order to stand up production-grade cloud-native computing deployments. Under those circumstances, CNCF must double down its efforts to evolve the kernels of the impacted projects in order to eliminate the need for the forked distributions. In so doing, CNCF would be advancing its core objective of ensuring platform-agnostic cloud-native interoperability up and down the stack throughout the industry.
Still, it would be shortsighted to imagine that CNCF is the sole industry forum for promoting multiplatform cloud-native interoperability. If what you’re containerizing and orchestrating are data-centric applications, you’ll need to pay attention to the diverse industry initiatives to rearchitect various enterprise DBMS, Hadoop, Spark, machine learning DevOps, TensorFlow DevOps, inferencing, stream computing, object storage, block storage, and multi-cloud storage platforms around Kubernetes and its sibling projects All of this industry activity is happening outside CNCF’s purview, but it’s just as important to the dream of a completely cloud-native application stack.
Yet another complicating factor for cloud-native professionals is the wide range of open-source projects that may take root in vendor solutions and enterprise deployments without becoming official CNCF projects. In particular, I’m thinking of Istio (microservice connection, security, and control mesh), Kubeflow (for DevOps workflows on containerized machine learning apps), Virtual Kubelet (for event-driven, stateless, serverless access to orchestrated, containerized microservices), and KubeVirt (building, modifying, and deploying applications residing in both containers and virtual machines in a shared environment). You won’t find any of these called out by CNCF as being projects under active development in its working groups.
If your head isn’t spinning in trying to understand where this new cloud-native ecosystem is headed, you’re just not paying attention.
Artificial image via FreeImages
How has your company used assistive AI to improve existing processes? Find out why focusing on augmented human intelligence may yield the best business results in this week’s roundup.
1. Augmented human intelligence: Using AI to streamline business process – Kassidy Kelley (SearchCIO)
CIOs are under tremendous pressure to use AI technologies. A recent survey shows why focusing on augmented human intelligence may yield the best business results.
2. Paul Vixie wants to stop malicious domains before they’re created – Rob Wright (SearchSecurity)
Farsight Security’s Paul Vixie says his company’s new research into domain name lifespans and causes of death shows the need for new policies and action to curb malicious domains.
3. PyTorch 1.0 brings developers closer to cloud services – Darryl Taft (SearchSoftwareQuality)
The release candidate version 1.0 of Facebook’s PyTorch deep learning framework enables developers to more easily include machine learning in their applications.
4. ONUG conference to highlight cybersecurity and data protection – Jennifer English (SearchSoftwareQuality)
At the ONUG fall conference on Oct. 22 to 23, attendees will learn how enterprises can secure assets in a digital economy and how automation, cybersecurity and data protection fit in.
5. Arcserve cloud platform eyes comprehensive business continuity – Paul Crocetti (SearchDisasterRecovery)
The Business Continuity Cloud brings together the spectrum of Arcserve’s technologies. Through the web-based user interface, users can perform most jobs in a few clicks.
Data image via FreeImages
How do you think the merger of Cloudera and Hortonworks will affect your use of Hadoop? Find out why the new company may be more competitive with AWS and Google in this week’s roundup.
1. Cloudera-Hortonworks merger narrows Hadoop users’ options – Jack Vaughan (SearchDataManagement)
Hadoop users will have fewer choices as big data rivals Cloudera and Hortonworks unite. But the new company may be more competitive with AWS and Google.
2. Facebook GDPR fate uncertain following data breach – Michael Heller (SearchSecurity)
Facebook’s GDPR consequences are still up in the air following a data breach, as Irish regulators are waiting on more information before determining if the social network will face a fine.
3. Finding internal data science talent: The right stuff – Andy Metzger (SearchCIO)
Fierce competition for data science talent means that CIOs need to look internally for the requisite skills. On the list: curiosity, domain expertise, emotional intelligence.
4. IBM pushes automation, NLP in Cognos Analytics 11.1 update – Mark Labbe (SearchBusinessAnalytics)
Cognos Analytics’ new features include an AI assistant that responds in natural language, predictive analytics capabilities and tools for better data storytelling.
5. Kaseya cloud backup expands with Spanning acquisition – Johnny Wu (SearchDataBackup)
Kaseya’s cloud backup capabilities now extend to Office 365, Salesforce and G Suite, thanks to the acquisition of cloud-to-cloud backup specialist Spanning Cloud Apps.
Robotics image via FreeImages
Do you agree that machine learning will help solve security problems? Find out why many security pros think AI and machine learning are the keys to many of the issues they face in this week’s roundup.
1. AI and machine learning expected to solve security problems – Madelyn Bacon (SearchSecurity)
A global Ponemon survey of security professionals found that many believe artificial intelligence and machine learning technology will improve enterprise and IoT security.
2. SQL Server 2019 preview brings Hadoop, Spark and AI into DBMS – Jack Vaughan (SearchSQLServer)
A SQL Server 2019 preview brings Hadoop and Spark into the fold, positioning the database as an all-purpose data portal. Azure Cosmos DB also gets an update.
3. Nasuni storage adds lower-cost cloud archive service option – Carol Sliwa (SearchStorage)
Newly packaged Nasuni Cloud File Services offers a low-cost archive option as part of an effort to expand beyond high-end NAS and collaboration into traditional file and archive workloads.
4. Microsoft embraces Azure cloud platform as its strategic heart – Ed Scannell (SearchCloudComputing)
Microsoft’s showcase of Azure-based offerings asserts the cloud at the heart of the company’s future, and further cements its position against cloud archrival AWS.
5. Imanis Data 4.0 introduces autonomous backups, NoSQL support – Johnny Yu (SearchDataBackup)
Imanis enables the protection of NoSQL databases with no human intervention through new SmartPolicies, along with automated RPO-based backup and improved ransomware detection.
Computer security image via FreeImages
How do you manage digital risk with DevOps security? Find out how DevSecOps can transform IT in time to avert disaster in this week’s roundup.
1. DevOps security takes on the dark side of digital transformation – Beth Pariseau (SearchITOperations)
Without better organizational discipline, digital businesses are at risk for massively disruptive data breaches and attacks. Can DevSecOps transform IT in time to avert disaster?
2. NSS Labs lawsuit takes aim at CrowdStrike, Symantec and ESET – Rob Wright (SearchSecurity)
In an antitrust lawsuit, NSS Labs accused some of the top antimalware vendors in the industry, including CrowdStrike and Symantec, of conspiring to undermine its testing efforts.
3. Credit card giants step up AI fraud detection – Mark Labbe (SearchEnterpriseAI)
While Capital One and Mastercard delve into AI and machine learning to detect credit card fraud, IBM joins the ranks of AI vendors with AI bias detection tools.
4. At HR Technology Conference, Walmart says virtual reality works – Patrick Thibodeau (SearchHRSoftware)
Virtual reality may be on the cusp of mainstream adoption for HR. It provides an engaging learning experience for employees, according to one early adopter: Walmart.
5. New Cisco headsets, room displays integrate with Webex – Jonathan Dame (SearchUnifiedCommunications)
Cisco expanded its endpoint portfolio this week with the release of new wireless Cisco headsets and room displays.
Computer Application image via FreeImages
What do you think of how Trend Micro is handling the situation? Find out why the company’s latest admission raises even more questions in this week’s roundup.
1. Trend Micro apps fiasco generates even more questions – Michael Heller (SearchSecurity)
In addition to other Trend Micro apps banished from the Mac App Store for gathering data inappropriately, the company has admitted to publishing the Open Any Files app.
2. Containers key for Hortonworks alliance on big data hybrid – Jack Vaughan (SearchDataManagement)
Hortonworks is joining with Red Hat and IBM to work together on a hybrid big data architecture format that will run using containers both on the cloud and on premises.
3. HR chatbots from Google, IBM to be in the spotlight at HR Tech 2018 – Patrick Thibodeau (SearchHRSoftware)
The growing use of AI-related technologies in HR may increase reliance on big tech vendors. But that isn’t keeping the smaller vendors from developing their own tools.
4. CEO: Veeam database exposure fixed, investigation launched – Paul Crocetti (SearchDataBackup)
Veeam co-CEO Peter McKay said there’s ‘no excuse’ for the exposure of a marketing database and millions of email addresses. He said the company is being proactive in its response.
5. Federal privacy regulations usher in the age of tech lawmakers – Kassidy Kelley (SearchCIO)
Big tech and privacy advocates are lobbying for dramatically different federal data privacy rights. CIOs should pay attention to whom — and what — the legislation seeks to regulate.