Secure Multi-Tenancy for Cloud Architecture with NetApp, Cisco, and VMware

Traditionally, guaranteeing application isolation requires dedicated, isolated hardware. Secure multi-tenancy enables you to partition a virtualized, shared infrastructure while ensuring security in cloud computing. Data is securely isolated, and workload performance is maintained.

The Challenge of cloud adoption
Today's IT infrastructure too often suffers from siloed server and storage resources — leading to low utilization, gross inefficiency, and an inability to respond quickly and flexibly to changing business needs.

The arrival of cloud computing — and the adoption of cloud architecture to deliver IT as a service (ITaaS) in data centers of all types — promises to overcome these limitations and reduce future IT spending by as much as 47%.

However, lack of confidence that data and applications will be securely isolated has been a major impediment to adoption of cloud based, multi-tenancy data centers:

  • Large enterprises need to isolate HR records, finance, customer credit card details, and so on.
  • Organizations must make sure of separation of business unit applications and data.
  • Outsourced development requires separate areas for each development activity.
  • Healthcare organizations must make sure of patient record confidentiality.
  • Universities need to partition examinations, enrollment details, and commercial research.
  • Telcos and service providers must separate billing, CRM, payment systems, reseller portals, and application hosting environments.
  • Financial organizations need to isolate client details and partition trading, wholesale, and retail banking.
  • Governments must partition records for taxation, welfare, healthcare, education, and so on.

How can you be certain that applications, data, and customers are securely isolated as you migrate critical applications to an infrastructure in which servers, networks, and storage are all shared resources?

A Secure, Enterprise Cloud Architecture: Secure Multi-Tenancy
NetApp, Cisco, and VMware have partnered to create a unique enterprise cloud architecture that includes all server, storage, and networking hardware and software to facilitate sharing, reuse, and dynamic resource allocation. Our secure multi-tenancy architecture takes the risk out of transitioning to a cloud infrastructure while delivering the advanced capabilities you need to succeed.

Key features include an efficient, always-on infrastructure with elastic scalability; integrated data protection; advanced automation; and the ability to transparently migrate both applications and data across the infrastructure. We've brought together years of combined experience to create a secure multi-tenancy environment in which separate applications or customers can share the same server, storage, and networking infrastructure with complete isolation so sensitive information is never compromised.

The individual technologies are — by themselves — the best the industry has to offer. Together, these technologies offer unique synergies that greatly simplify the deployment and management of IT infrastructure and applications with:

  • Unmatched end-to-end security and isolation in virtualized, shared environments
  • Simplified, unified cloud architecture
  • Lower cost
  • Greater business agility
  • Less risk

Three Industry Leaders: One Purpose Built Cloud Architecture
The traditional approach to guaranteeing application isolation requires dedicated, isolated hardware. A cloud infrastructure demands strict isolation between different clients, business units, departments, security zones, and layers in three-tiered Web architectures — as well as the ability to separate production operations from QA, development, and so on. Secure multi-tenancy enables you to partition a shared infrastructure in whatever way makes sense for your business. Data and data access are securely isolated, and workload performance is maintained.

To create our purpose-built architecture, NetApp, Cisco, and VMware took a holistic approach that allows data storage, network fabric, and virtual servers to be efficiently shared. In a multi-tenant environment, VMs or groups of VMs are securely isolated from other VMs or groups of VMs using VMware vShield zone technology in conjunction with the Cisco Nexus 1000V. Once securely isolated, VMs are connected to NetApp storage systems through a network that is segmented and secured using the Cisco Nexus family of products. The NetApp storage vFiler™ units to which they connect are also securely isolated from other vFiler units using NetApp® MultiStore® technology, which results in a secure isolated storage system.

This purpose-built cloud architecture have been carefully tested, characterized and documented via a Cisco Validated Design that includes design and deployment guides. We underwent this validation process so that customers can have peace of mind knowing that this solution can be implemented with the least amount of risk to their business.

Getting Started on Secure Multi-Tenancy Cloud Architecture
To learn more about our enterprise cloud solution, see the press release . The first step to maximizing data center performance is an objective evaluation of your current infrastructure capabilities. NetApp, Cisco, and VMware have partnered to provide you with a specialized set of consulting services to help you make data-driven decisions and to get to your desired results. For a comprehensive view of our consulting services, see our Secure Multi-Tenancy Services datasheet . As a first step, engage us in a NetApp Enterprise Transformation Workshop and then talk with your Authorized Professional Service Partner or NetApp representative about enrolling.