Infrastructure-as-code templates are source of cloud infrastructure weaknesses

TechCentral.ie | February 06, 2020

In the age of cloud computing where infrastructure needs to be extended or deployed rapidly to meet ever-changing organisational needs, the configuration of new servers and nodes is completely automated. This is done using machine-readable definition files, or templates, as part of a process known as infrastructure as code (IaC) or continuous configuration automation (CCA). A new analysis by researchers from Palo Alto Networks of IaC templates collected from GitHub repositories and other places identified almost 200,000 such files that contained insecure configuration options. Using those templates can lead to serious vulnerabilities that put IaC-deployed cloud infrastructure and the data it holds at risk. “Just as when you forget to lock your car or leave a window open, an attacker can use these misconfigurations to weave around defences,” the researchers said. “This high number explains why, in a previous report, we found that 65% of cloud incidents were due to customer misconfigurations. Without secure IaC templates from the start, cloud environments are ripe for attack.”

Spotlight

The incredible thing about urban life is the convenience it offers. As the world goes digital, it is innovation that makes lives easier and better. And KONE Corporations aspires to take this innovation to the next level. The company is on a quest to reimagine urban life and discover new business opportunities on the way. They de

Spotlight

The incredible thing about urban life is the convenience it offers. As the world goes digital, it is innovation that makes lives easier and better. And KONE Corporations aspires to take this innovation to the next level. The company is on a quest to reimagine urban life and discover new business opportunities on the way. They de

Related News

Hyper-Converged Infrastructure

Cloudflare Helps Companies Reduce Their IT Infrastructure's Carbon Footprint By Up To 96% by Moving To The Cloud

Business Wire | September 26, 2023

Cloudflare, Inc. (NYSE: NET), the security, performance, and reliability company helping to build a better Internet, today shared a new independent report published by Analysys Mason that shows switching enterprise network services from on premises devices to Cloudflare’s cloud-based services can cut related carbon emissions up to 78% for very large businesses to up to 96% for small businesses. The report is one of the first of its kind to calculate potential emissions savings achieved by replacing enterprise network and security hardware boxes with more efficient cloud services. Global Internet usage accounts for 3.7% of global CO2 emissions, about equal to the CO2 emissions of all air traffic around the world. The Internet needs to reduce its overall energy consumption, especially as regulators continue to implement the Paris Climate Accord, including plans to transition to a zero emissions economy. The European Climate Law requires that Europe’s economy and society become climate-neutral by 2050, with a target of reducing net GHG emissions by at least 55% by 2030, compared to 1990 levels. Regulators in the United States and the European Union, among others, have also announced plans to require companies to disclose climate-related information including carbon emissions resulting from their operations and supply chains, as well as climate related risks and opportunities. Finally, among the Fortune Global 500, 63% of companies now set 2050 targets for emissions reductions. Companies large and small will increasingly be looking to reduce carbon throughout their supply chains, particularly their IT infrastructure. “The best way to reduce your IT infrastructure’s carbon footprint is easy: move to the cloud,” said Matthew Prince, CEO and co-founder, Cloudflare. “At Cloudflare, we’ve built one of the world’s most efficient networks, getting the most out of every watt of energy and every one of our servers. That’s why, with Cloudflare, companies can help hit their sustainability goals without sacrificing security, speed, performance, or innovation.” The Analysys Mason study found that switching enterprise network services from on premises devices to Cloudflare services can cut related carbon emissions up to 96%, depending on the current network footprint. The greatest reduction comes from consolidating services, which improves carbon efficiency by increasing the utilization of servers that are providing multiple network functions. On premises devices are designed to host multiple workloads and consume power constantly, but are only used for part of the day and part of the week. Cloud infrastructure is shared by millions of customers, often all over the world. As a result, cloud providers are able to achieve economies of scale that result in less downtime, less waste, and lower emissions. Furthermore, the Analysys Mason study found that there are additional gains due to the high Power Usage Effectiveness of cloud data centres, and differences in the carbon intensity of generation in the local electricity grid. ​“Happy Cog is a full-service digital agency that designs, builds, and markets experiences that engage our clients and their audiences. We’ve relied on Cloudflare for many of those websites and apps because it's secure, reliable, fast, and affordable – but also aligns with many of our clients’ sustainability roadmaps and goals,” said Matt Weinberg, Co-Founder and President of Technology at Happy Cog. “Switching our clients from their previous on premises or other constant-usage infrastructure to Cloudflare's network and services has let them be greener, more efficient, and more cost effective. It's ideal when you can offer your clients a solution that covers all their needs and provides a delightful experience now, without having to compromise on their longer term priorities.” About Cloudflare Cloudflare, Inc. (www.cloudflare.com / @cloudflare) is on a mission to help build a better Internet. Cloudflare’s suite of products protect and accelerate any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was awarded by Reuters Events for Global Responsible Business in 2020, named to Fast Company's Most Innovative Companies in 2021, and ranked among Newsweek's Top 100 Most Loved Workplaces in 2022.

Read More

Application Infrastructure

Fermaca Networks Partners with Gold Data to provide Networks Services to US and Mexican Customers

Businesswire | July 06, 2023

Fermaca Networks (FN), a purpose built Infrastructure provider seeking to utilize the most unique right of way for purposes of being a leading provider of Long Haul Dark Fiber infrastructure in Mexico, announces its Partnership with Gold Data that will allow both companies to leverage complementary strengths in the marketplace. In addition, Gold Data is acquiring an undisclosed number of Fiber Pairs in Fermaca Networks phase 1 route (FN-1) which originates in El Paso, Texas and traverses multiple cities in Mexico and reaches as far South as Queretaro and Guadalajara. “FN’s core strengths complement those of Gold Data perfectly and we are excited about the opportunity to align our values,” stated Edgar Mosti, CRO, Fermaca Networks. “The skillsets and experiences of the two companies work synergistically and clients originating from either partner can expect a smooth and successful joint solution for fiber requirements throughout the areas they serve. We are sharply focused on our clients’ success, and we believe this partnership will benefit our mutual and prospective customers.” We are excited to also welcome Gold Data into the Fermaca Fiber Partners (FFP) program in which Gold Data will play a key role. We are excited to acquire fiber pairs in Fermaca's network, Gold Data complements its state-of-the-art topology network that is revolutionizing Mexico's demanding connectivity market. We are supporting this market with an offer from several international networks. "With this new underground route, it allows us to increase Gold Data's reliable footprint in addition to our 'Gold Data 1' backbone submarine cable. Also, we are very happy to join Fermaca Fiber Partners, who will provide extended networks to all Fermaca customers," says Renato Tradardi, CEO, Gold Data Group. About Gold Data Gold Data is a multinational award-wining technology company, which focuses on telecommunications infrastructure and services. We provide direct connectivity through the Americas and the Caribbean, interconnecting more than 156 PoPs, 76 data centers with presence in 35 countries in Latin America and the Caribbean. Gold Data relies on its strategic PoPs, diverse subsea capacity and its fully-owned network to deliver the complete end-to-end solution to and from Latin America and the Caribbean for MNCs, global carriers, OTT and content provider customers. About Fermaca With roots going back 60 years, Fermaca Dreams is a conglomerate of companies focused on developing and executing key infrastructure projects in Mexico. With proven track record, a successful history of partnerships, and a strong and professional management team, Fermaca Dreams companies are committed to the highest standards in project development, execution and operation.

Read More

Application Infrastructure, Windows Systems and Network

Tachyum Unveils Path to Sustainable Green Datacenters

businesswire | July 27, 2023

Tachyum™ announced today the release of the white paper, “Tachyum Prodigy – Solution for Data Centers that are Hungry for Energy,” explaining how Prodigy®, the world’s first Universal Processor, is ideally suited to help overcome increasingly excessive energy use in data centers. Data centers are among the most energy-demanding facilities in the world. A report by the International Energy Agency (IEA) indicates that 3% of global electricity use comes from data centers and data transmission networks. Data centers are expected to consume 20% of the world's energy supply by 2025 as the demand for digital services continues to grow. Tachyum’s white paper details how Prodigy delivers disruptive innovation for data centers with unprecedented power efficiency by unifying the CPU, GPGPU and TPU into a single processor die, enabling groundbreaking performance while removing the need for power-hunger, costly accelerators. The white paper further shows how this compares to other data center solutions with higher performance/watt than both CPUs and GPUs; up to 4.4x higher performance/W than Intel 8490-H for cloud computing; and up to 13.4x higher performance/W than Nvidia H100 for generative AI. “Keeping pace with the energy demands of today’s hyperscale data centers is simply not attainable,” said Dr. Radoslav Danilak, founder and CEO of Tachyum. “Additionally, massive growth from the rapid adoption of AI can only be accomplished by enabling a single hardware platform, like Prodigy, that can handle multiple workloads and avoids the time and energy from separate, custom-built solutions. Those reading the white paper will see that this approach makes the most sense and will become more evident as power demand increases.” Prodigy provides both the high performance required for cloud and HPC/AI workloads within a single architecture. As a Universal Processor offering utility for all workloads, Prodigy-powered data center servers can seamlessly and dynamically switch between computational domains. By eliminating the need for expensive dedicated AI hardware and dramatically increasing server utilization, Prodigy reduces CAPEX and OPEX significantly while delivering unprecedented data center performance, power, and economics. Prodigy integrates 128 high-performance custom-designed 64-bit compute cores, to deliver up to 4x the performance of the highest-performing x86 processors for cloud workloads, up to 3x that of the highest performing GPU for HPC, and 6x for AI applications. About Tachyum Tachyum is transforming the economics of AI, HPC, public and private cloud workloads with Prodigy, the world’s first Universal Processor. Prodigy unifies the functionality of a CPU, a GPGPU, and a TPU in a single processor that delivers industry-leading performance, cost, and power efficiency for both specialty and general-purpose computing. When hyperscale data centers are provisioned with Prodigy, all AI, HPC, and general-purpose applications can run on the same infrastructure, saving companies billions of dollars in hardware, footprint, and operational expenses. As global data center emissions contribute to a changing climate, and consume more than four percent of the world’s electricity—projected to be 10 percent by 2030—the ultra-low power Prodigy Universal Processor is a potential breakthrough for satisfying the world’s appetite for computing at a lower environmental cost. Prodigy, now in its final stages of testing and integration before volume manufacturing, is being adopted in prototype form by a rapidly growing customer base, and robust purchase orders signal a likely IPO in late 2024. Tachyum has offices in the United States and Slovakia.

Read More