Journey to Securing Public and Hybrid Cloud Deployments
Nov 29, 2016
Everyone agrees: IT infrastructure has, for the last several years, been migrating inexorably toward the cloud. When did that long journey start? How far have we come? And how much further do we have to go? Let’s take a look back at the history of the cloud.
Prior to 2005, virtually all enterprises built their own physical data centers, which demanded large upfront costs. The concept of virtualization began gaining traction around 2007, and enterprises slowly started moving parts of their physical data centers to private clouds using either Linux KVM or VMware hypervisors.
With the introduction of Amazon’s Web Services (AWS), small enterprises and startups, lured by the pay-as-you-go model of the public cloud, led the move. Larger organizations soon followed.
Fast forward to 2016, where virtually every conversation with an IT customer includes the word “cloud.” While public clouds initially seemed to be the “Holy Grail” for future data centers, the cost of operating such an infrastructure became prohibitive as more resources and features were utilized. Enterprises with large investments in physical data centers and private cloud deployments, or smaller enterprises utilizing some portion of their infrastructure 100% of the time, eventually learned that a hybrid cloud was the most cost-effective approach.
Figure 1: Enterprise migration to cloud
Securing the cloud adds another dimension of complexity due to the ever-evolving sophistication of attacks and the rapid adoption of new technology. As a result, security solutions themselves must continuously evolve without becoming a hindrance to business operations. For larger organizations, this means they need a solution that:
* Protects existing investments
* Deploys and enforces uniform security policies across the entire network
* Reduces training costs
The needs are different for smaller organizations. They require:
* A comprehensive, all-in-one security solution
* Ease of management (with an intuitive user-interface)
* Support for IT automation (dev-ops friendly).
Juniper Networks® vSRX virtual firewall (on AWS) extends the advanced security features available in physical data center/private cloud deployments to AWS environments while addressing the limited security and lack of multi-site VPN in native AWS deployments. By providing some of the normally paid-for features such as VPN, NAT, etc. in AWS, vSRX can significantly reduce monthly AWS costs and reduce total cost of ownership (TCO).
Also, by utilizing only half the CPU resources of the nearest competitor, vSRX further reduces operating costs—savings that multiply as scale increases. A single-pane-of-glass management solution (Juniper’s Junos Space Security Director) for both physical and virtual firewalls, along with programmatic APIs and carrier-class routing capabilities, increases the value proposition of using a hybrid cloud solution from Juniper.
To learn more about how Juniper can help enterprises secure public (AWS) / hybrid cloud deployments, read this Solution Brief and watch this video below.