Industry Issues Resolved.
REASONS FOR MULTIPLE CLOUDS – The reasons organizations turn to multiple clouds vary widely. The problem areas fall into five categories:
- A need for specific cloud services.
EWI (PXC-ghost) allows the customer to tailor their application layer allowing all other layers to be managed through a long term partnership ethos to help in standardisation and long term reduction of costs. PXC Ghost becomes a controller node allowing the API to become the source of control and not the service.
See diagram below.
- “Bottom-up” cloud demand.
EWI (PXC-ghost) enables the bottom-up demands removing lock-in and supplier network limitations.
- Avoidance of lock-in.
No lock-in. EWI (PXC-ghost) provides the ability to grow with other suppliers and we have all the tools to orchestrate and automate all workloads, with the view of long-term savings including flexibility on data portability
- Cost reduction.
EWI (PXC-ghost) run the peering exchange with the view of reducing costs and reducing repetitive work by orchestrating and automating all manual processes, the power of owning the network layers and application layers regardless of the supplier is network gold.
- Specific customer or regulatory requirements.
EWI (PXC-ghost) assist the customers to meet all of its regulatory requirements as they own all the network layers and can control it from a development and operational perspective.
what it’s like to manage dissimilar systems and platforms. But dealing with multiple clouds — particularly those that include a broad range of Platform as a service (PaaS) functionality — raises the ante, because they are essentially vast ecosystems of services. Developers and/or lines of business within organizations have been known to go off on their own to build cloud applications or consume public cloud services without IT’s knowledge, let alone blessing.
Quoted Industry Issues
- “I hate to use the word governance because I know that has a negative connotation,” said Ryan Brown, chief enterprise architect for cloud at Visa. “I’m not saying to put handcuffs on my developers if they say something new is great in Cloud XYZ, but we need to have some guardrails.”
- “Look, ‘governance’ is the right word, but we’ve also got to play that up against agility,” added Aon’s Putcha. “I did try, to be honest, to be very heavy-handed and governance oriented, and we just didn’t move fast, because then we have 20 people with an opinion and a decision by committee, and absolutely nothing took place.” That clampdown was in response to “people going off on their own”, which led to wasted money and effort along with the risk of exposing data in unmanaged cloud ecosystems.
- Today, Putcha has taken a middle path: policy-driven, self-service automation. “You get to do whatever you want within this space, but we limit the blast radius,” he said.
- “There’s good governance and bad governance,” said Richard Wiedenbeck, CIO at the insurance company Ameritas, who, like Brown, prefers to avoid the G-word due to its “negative connotations.” Instead, he said, “We have a sign we put up that says, ‘We want to make well-informed, thoughtful and purposeful decisions about technology balancing cost, risk and value.’ That’s a mantra for everybody. It can’t be, ‘I just want my thing.’”
EWI (PXC-ghost) delivering “minimum viable governance.” We achieve, through orchestration and zero-touch provisioning a billing system that is transparent by the minute, hour or day of usage.
Every cloud has its own way of doing things, resulting in a lack of interoperability.
Quoted Industry Issues:
- Eddie Contreras, chief information security officer and executive vice president at Frost Bank, lamented that “you get these really good vendors, and they have some really good development platforms, but they don’t work well with others.”
- Sankara Ramakrishnan, principal architect at MetLife, agreed: “If you want to move from one vendor’s platform with a capability to another vendor’s platform … you virtually have to rewrite those applications.”
- Likewise, FINRA Chief Information Officer Steve Randich has a substantial investment in an AWS analytics implementation that, for practical purposes, can’t move anywhere else. “It would be very difficult for us to take all of our big data processing and 200 petabytes of data and move it over to Azure without major re-architectures and major re-automation and rebuilding our security infrastructure, among many other things,” he said.
- “There is a lack of standardisation today,” asserted Fiserv’s Singh. “I think we all feel and see that. A workload running in an X manner on one cloud platform will run in a different manner on another. If you had standards, that would obviously be a propellant for anybody to get ready to embark on this journey of multi-cloud.”
EWI PXC Answers:
- EWI (PXC-ghost) standardises all the interconnect with a central API, by working with a standard peering exchange will open up more opportunities for clients to expand their risk across multiple vendors.
- With EWI (PXC-ghost) you won’t have to rewrite the apps, as they will conform to a standard API and interconnect, we level the field by allowing our customers to focus on the development at layer 7 level and we take care of all the other levels, Encryption, Layer 3 with layer 2, More Capacity, Single Interconnect for all suppliers, no more moving just distributing with the customer in control, zero downtime on a change.
- EWI (PXC-ghost) allows the customer to expand its analytics across other vendors, this is the real power of our API, they can focus on. Building IP with allowing analytics to expand into another supplier’s domain, we make this happen as we control all layers of the network for the customer, the power of true IaaS is EWI-PXC (PXC-ghost).
- EWI’s (PXC-ghost) platform allows the customer to standardise all suppliers, they are no longer subjected to lock in or when a supplier changes a part of its infrastructure. The peering exchange platform will take care of any network change risks as part of the service; we essentially turn the multi-cloud gateway into an internal extension of the corporate network.
“Cloud providers should start exposing their services as APIs or simply adopt some industry standard so we could adopt these functions” across cloud providers, said Gautam Roy, senior vice president and chief technology officer at the insurance provider Unum.
“I actually don’t think we’re going to see a lot of standardization from the different cloud providers,” said Walt Carter, chief data officer and chief information officer for Homestar Financial. “I don’t see them going away from their current strategies of locking us into their services. Any drive toward portability and flexibility is going to have to come from us.”
Regardless, in the immediate term, adopting evolving open-source solutions that work across multiple clouds can help. “I think the main thing, when we look at designing a solution architecture, is to look at the open-source competence as much as we can rather than a specific vendor implementation,” said FINRA’s Randich.
EWI PXC Answers:
EWI (PXC-ghost) with its open standards platform addresses all of this and identifies a huge untapped market across a lack of interoperability.
Data Portability Problem Statement:
Thanks mainly to open-source applications, application portability is at least becoming feasible. Porting data from one cloud to another, however, is a headache. Part of the problem is the way cloud providers encourage customers to upload data while charging heavily for data going out. The other difficulty is architectural: How do you distribute and synchronize data that might be used for multiple applications across multiple clouds?
EWI (PXC-ghost) with its layer 3 network extensions, allows a customer to extract data using its corporate resources or a resource that is outside of the network at a much-reduced cost, this can be achieved through our ability to apply high compression and build a dynamic internet backbone to accommodate the move. With EWI-PXC you can drip feed the application in its new home to soften the blow to the cost, this allows for a stream of data with a set priority to move based around the operational need of the data which is current, there is no delay to moving and we now remove the cost to a more predictable cost over a longer time, essentially, we reduce the old supplier into a backup mechanism and the new supplier as the go-live within the software dev cycle.
Opportunities that EWI (PXC-ghost) brings:
Aon’s Putcha said. “You are going to end up investing a lot of time managing and securing your data. We don’t yet have a solution to move data around.”
“The data part is now where the real complexity is starting to run into things,” said Dell Technologies’ Lewis, “especially in governed and regulated industries, and especially when you’re starting to think about the volume of data and also the proportion of cost that a platform typically takes up with the movement of data back and forth. If you want to start to have the true portability of applications, obviously, the data has to go with the application.”
Problem Statements: How customers handle the issue of multi-cloud security
Paul Hamman, senior vice president of cybersecurity at the bank holding company Truist Financial, Said: “If we haven’t run the service through our service adoption framework where we start to provide patterns on how to use the service securely and also map it over to controls for compliance reasons, then we essentially disable the service,”.
Quoted Industry Issues
- For Fiserv’s Singh, the challenge is clear. “In a multi-cloud environment, how do we ensure that our overall security fabric that we have at an enterprise level gets mapped to the distributed workloads across various geographies?” he asked. “Also, at the same time, what is that consistent and repeatable manner with which our associates — or anybody, for that matter — are accessing those environments?”
- “We have billions of dollars of transactional data as it relates to the mortgages coming through the Freddie Mac system,” explained Bhavini Amin, vice president for single-family business services at Freddie Mac. “For us, information security is our number-one priority, so we need to use the right controls, the strong processes internally to make sure that we can take advantage of a multi-cloud strategy.”
- For Manish Desai, senior information risk officer for BNY Mellon, the emphasis is on compliance across multiple clouds. “We look at this from a data residency perspective and from a regulatory standpoint,” he said. “We know that the regulatory regime is getting more and more strict. That is where the focus is.”
- At Frost Bank, Contreras is focusing on privacy mandates. “I think that’s going to help us understand what some of our expectations are from a risk perspective,” he said. “So, when you’re in a cloud, when you’re geolocated or when you’re sharing data, privacy [should be considered] at the design stage.”
EWI’s (PXC-ghost) platform allows the different IT groups and business teams to put a workload in any cloud environment they want with the same security policies, and then be able to move that workload around as needed. Peering exchange as a standard platform providing fast encrypted connections, allows the customer to apply policies and we orchestrate that policy into a complex series of Restconf, Netconf and yang models, this maintains security standards per customer and allows the customer to enable services again and remain compliant.
- By using the blockchain with predictable computational resources,
- we are more secure than PKI for example,
- we remove unsafe lookups,
- we remove insecure NTP protocols and unsafe DNS lookups,
- which in turn will remove the risk of manipulated dates.
We replace it with securely connecting to our atomic clock and obtaining a secure timestamp, we then implement our contract state from the exchange and apply our Merkle proofing from the previously mined pool classified as a secure hash.
Cloud Management Problem Statements:
The complexity of maintaining multiple clouds with all their intricacies and differences can be exhausting. So why not consolidate all of that management in one place?
- “The panacea … is to have that single pane of glass and know that, when I’m building this application, that I can move that workload to where it makes the most sense,” said Visa’s Ryan Brown.
- Unum’s Gautam Roy echoed that sentiment. “We need governance, control, monitoring, and security to be abstracted to a single pane of glass so that we can use it seamlessly across various clouds,”
- Paul Hamman at Truist Financial has had a similar dream for some time. “I was thinking about this eight, nine years ago, when we were first starting out, that it would be great if I could have something that automatically moved my workload to whoever was providing the cheapest virtual machine.”
- True, multi-cloud management solutions already exist. But Jeff Farinich at New American Funding has looked at several commercial offerings — including Morpheus, CloudBolt, and Flexera’s Optima — and has found that “each of those products has some gaps, and there’s no great solution.”
- Allstate’s Chris Gates sees the need for better multi-cloud management solutions as well, although he wonders about scale. “I think there’s a lot of small to medium-sized businesses that would benefit heavily from having that service,” he said. “Larger enterprises, I think, just have to figure out how to take responsibility.”
EWI (PXC-ghost) deliver that platform to centralise all management into one exchange.
- EWI (PXC-ghost) delivers that single pane of glass. We are open standards, and we allow all data structures to be interfaced with Grafana, Reporting systems, open daylight for interfacing with any application that requires a stream of data to manage the operation of that data e.g., we can mirror anything on the network and allow it to be pushed to your SOC with no impact to your operation or SLA.
- As above
- Instead of moving workloads, EWI enable you to build a new application on a different platform and stream the data until the move is complete or you use the existing supplier as a backup and restore service or an archive.
- EWI (PXC-ghost) closes the gap as it is building an extension to the cloud network and building layer 3 controls with your on-prem network, they are now the same. Moving data is purely down to building a new app and migrating, this can be orchestrated and automated as a standard for future moves.
- EWI (PXC-ghost) has nailed the scaling of all services; we have a minimum rack capability of 6.4Tbps scalability only limited by rack space.