Discussion on:
View:
Show:
Given that a bunch of certifications has been included, I would add CSA (Cloud Security Alliance) and it's CCM (Cloud Controls Matrix) to the certifications you should ask for.
I'll be sure to include it in future comparisons. For those who are interested, here is the link for the CCM: https://cloudsecurityalliance.org/research/ccm/#_overview
Great article, but just when I thinking of IaaS and SaaS, actually are we IT professionals are digging our grave ? when services and infrastructures all move over, business actually can actually CUT OUT our existence in the company, and when users can easily config anything they want, which mean only 1 or 2 IT staffs would be more than enough... what about the rest of us ? go back to work as a clerk or work in other industries ?
Zerigo offers public cloud services like the ones that you are reviewing. Zerigo also offers DNS and monitoring services as well. Aside from the public cloud offerings, 8x8 has a highly available enterprise cloud offering and a dedicated cloud offering as well.
Great article and comparison Thoran!
Are you planning to include Dell's vCloud in the next iteration? I think its out of the pilot phase now.
http://content.dell.com/us/en/enterprise/by-service-type-cloud-services-cloud-hosting/
Are you planning to include Dell's vCloud in the next iteration? I think its out of the pilot phase now.
http://content.dell.com/us/en/enterprise/by-service-type-cloud-services-cloud-hosting/
Thoran, this was a great article and I can really appreciate the approach you have taken to compare each provider across common dimensions. While i absolutely respect your view, I believe this may highlight an opportunity for Tier 3 to better clarify some of the security features of our platform which may not have been apparent in your research but are commonly brought out when we are working with enterprise customers.
Tier 3 believes strong security is the cornerstone of our business relationship with our customers. As a result, we place the highest possible level of focus on security for the systems they entrust to us with the goal of meeting or exceeding our customers own security policies. Some highlights from our security capabilities include:
SSAE16 audited, support for HIPAA and PCI compliance
Full session state based Juniper firewalls
o The perimeter is protected by a series of redundant Juniper SRX series firewalls which employ Unified Thread Management (UTM) technology.
o We isolate the virtual machine with zone-based firewalls, where each customer service runs on its own private VLAN.
o IDS and IDP on external data transmission. For complex environments customers also can enable IPSEC at the operating system level to encrypt all network traffic.
o We provide Microsoft Forefront for all customers.
In addition to real-time monitoring and NOC support, we perform monthly Nessus vulnerability scans of all customer environments (may be performed more frequently upon request) and work with customers for remediation of any identified vulnerabilities.
Private VLAN and VPN connections for all environments. Customers can also use secure connections such as Persistent\User VPN, Direct Connection, or MPLS.
Access: Role-based approach to authentication and authorization with permissions set explicitly per resource type. Access to the Control System is only via username and password. All actions performed through the Control System are logged and auditable.
Another area of the comparison which may not have fully captured the breadth of capabilities that Tier 3 makes available to its customers would be around Monitoring.
We offer two levels of monitoring at no additional cost to our customers:
Self service - Monitors exist for Bandwidth, CPU, Memory, Disk, Ping and can be set directly with our Control Portal or API.
NOC configured - Our NOC leverages an industry leading, comprehensive monitoring solution which we leverage for clients that require more complex monitoring (e.g. Exchange, SQL Server, etc). A customer simply submits a ticket through the control portal requesting any of the following monitors .(http://help.tier3.com/entries/21080248-monitors-that-are-supported and our NOC will promptly configure the monitoring for a severs or groups of servers. This complex monitoring into the control portal in the coming months.
System administrators can apply an overarching set of monitors that cascade down groups of servers. These settings can be easily overridden on a per-group or per-server basis to generate unique monitoring policies.
In addition to the infrastructure monitoring, users of the Tier 3 Web Fabric (PaaS) environment instantly get access to the industry-leading application monitoring framework from New Relic (http://www.tier3.com/blog/web-fabric-app-monitoring). This service is provided at no charge and gives users sophisticated insight into how their web applications are performing.
Custom alerts can be configured for either monitoring solution at no additional cost.
Again, I really like the article and your approach, and appreciate this opportunity to provide additional clarity into the Tier 3 public offering.
Regards and Thanks,
Bryan Thompson
VP of Product Management
Tier 3
Tier 3 believes strong security is the cornerstone of our business relationship with our customers. As a result, we place the highest possible level of focus on security for the systems they entrust to us with the goal of meeting or exceeding our customers own security policies. Some highlights from our security capabilities include:
SSAE16 audited, support for HIPAA and PCI compliance
Full session state based Juniper firewalls
o The perimeter is protected by a series of redundant Juniper SRX series firewalls which employ Unified Thread Management (UTM) technology.
o We isolate the virtual machine with zone-based firewalls, where each customer service runs on its own private VLAN.
o IDS and IDP on external data transmission. For complex environments customers also can enable IPSEC at the operating system level to encrypt all network traffic.
o We provide Microsoft Forefront for all customers.
In addition to real-time monitoring and NOC support, we perform monthly Nessus vulnerability scans of all customer environments (may be performed more frequently upon request) and work with customers for remediation of any identified vulnerabilities.
Private VLAN and VPN connections for all environments. Customers can also use secure connections such as Persistent\User VPN, Direct Connection, or MPLS.
Access: Role-based approach to authentication and authorization with permissions set explicitly per resource type. Access to the Control System is only via username and password. All actions performed through the Control System are logged and auditable.
Another area of the comparison which may not have fully captured the breadth of capabilities that Tier 3 makes available to its customers would be around Monitoring.
We offer two levels of monitoring at no additional cost to our customers:
Self service - Monitors exist for Bandwidth, CPU, Memory, Disk, Ping and can be set directly with our Control Portal or API.
NOC configured - Our NOC leverages an industry leading, comprehensive monitoring solution which we leverage for clients that require more complex monitoring (e.g. Exchange, SQL Server, etc). A customer simply submits a ticket through the control portal requesting any of the following monitors .(http://help.tier3.com/entries/21080248-monitors-that-are-supported and our NOC will promptly configure the monitoring for a severs or groups of servers. This complex monitoring into the control portal in the coming months.
System administrators can apply an overarching set of monitors that cascade down groups of servers. These settings can be easily overridden on a per-group or per-server basis to generate unique monitoring policies.
In addition to the infrastructure monitoring, users of the Tier 3 Web Fabric (PaaS) environment instantly get access to the industry-leading application monitoring framework from New Relic (http://www.tier3.com/blog/web-fabric-app-monitoring). This service is provided at no charge and gives users sophisticated insight into how their web applications are performing.
Custom alerts can be configured for either monitoring solution at no additional cost.
Again, I really like the article and your approach, and appreciate this opportunity to provide additional clarity into the Tier 3 public offering.
Regards and Thanks,
Bryan Thompson
VP of Product Management
Tier 3
I noticed that the ordering of vendors changed. Is there a reason or is it random?
Thanks Thoran for a great comparison of cloud services.
I signed up for both Amazon and OpSource, just to start somewhere.
According to Your article Amazon should be way more costly then OpSource.
But when I use OpSource's own cost estimator it gets more expensive than Amazon!
What am I missing?
I signed up for both Amazon and OpSource, just to start somewhere.
According to Your article Amazon should be way more costly then OpSource.
But when I use OpSource's own cost estimator it gets more expensive than Amazon!
What am I missing?
Amazon's price on my comparison is based on an average across all of their "zones" and Linux / Windows OS. This means that, on average, the price is higher; however, if you look at an individual zone and compare it to another provider, you may get a different cost. Another thing to keep in mind is that Amazon has "Free Tiers" for most of its offerings, so you might be paying for the server, but not the storage space or data transfer.
If you input on the cost estimator for OpSource a server with the same characteristics as the one I mentioned (1 CPU, 2GB of RAM, default 10GB disk space) it will come out at a $67.89 price; the storage cost, however, is much higher ($0.22 vs $0.19 for Amazon).
The logic behind the comparison is that, at the limit, you'll basically be paying the per GB storage cost, and not relying on any "default" internal storage. The same goes for data transfer.
If you input on the cost estimator for OpSource a server with the same characteristics as the one I mentioned (1 CPU, 2GB of RAM, default 10GB disk space) it will come out at a $67.89 price; the storage cost, however, is much higher ($0.22 vs $0.19 for Amazon).
The logic behind the comparison is that, at the limit, you'll basically be paying the per GB storage cost, and not relying on any "default" internal storage. The same goes for data transfer.
It's great to have a list of IaaS providers to compare their services. Yet many people don't even know whether they need IaaS services or cloud benefit more of a private cloud.
** Link: http://www.cloudtec.ch/en/cloud-readiness
If you need a vendor independent readiness assessment, specially tailored for SME companies. There is a free cloud readiness assessment that gives you an instant result. Each section will be given a score along with tips and recommendations that are based on your provided answers. In addition, an overall readiness score will be generated. It helps you to get started???
** Link: http://www.cloudtec.ch/en/cloud-readiness
If you need a vendor independent readiness assessment, specially tailored for SME companies. There is a free cloud readiness assessment that gives you an instant result. Each section will be given a score along with tips and recommendations that are based on your provided answers. In addition, an overall readiness score will be generated. It helps you to get started???
Why isn't Wipro Data Center Services cloud offering (iStructure) not on the list of cloud vendors?
- Keyboard Shortcuts:
- Prev
- Next
- Toggle
