Private Cloud Security Considerations Guide-Security Design Considerations

This section of the Private Cloud Security Considerations Guide covers a number of security design considerations that you will need to think about and options for making the best decisions for securing your private cloud deployment. Table of Contents 4 Private Cloud Security Considerations    4.1 Security Foundation Considerations    4.2 Infrastructure Security Considerations   … Read more

Private Cloud Security Considerations Guide-Security Challenges

This section of the Private Cloud Security Considerations Guide covers a number of security design challenges that you will need to address when considering options for making the best decisions for securing your private cloud . Table of Contents 5 Private cloud Security Challenges    5.1 Resource Pooling Security Considerations    5.2 Broad Network Access… Read more

Private Cloud Security Considerations Guide–Introduction and Overview

The purpose of this document is to provide you with design considerations and architectural view for designing effective security within a private cloud environment. Table of Contents (this article) 1 Introduction    1.1 Document Audience    1.2 Document Purpose  2 Introduction to Private Cloud Security 3 Private Cloud Security Domain    3.1 Conceptual Design   … Read more

TechEd 2013–The Road to TechEd with End to Edge and Beyond

Yuri Diogenes and I have been working behind the scenes for the last six months to find the best presentations possible for the TechEd 2013 Architecture (ARC) track. We’ve been lucky to suffer from an embarrassment of riches, as there were so many good presentations to choose from that we didn’t have much trouble finding… Read more

Secure the Private Cloud with Hyper-V PowerShell – Part 2

In our first blog of this series, Using PowerShell to Protect Your Private Cloud Infrastructure, we defined the essential characteristics of cloud computing, briefly discussed some cloud security challenges, and started exploring network protection by using platform capabilities in Windows Server 2012. The first network security scenario we described covered protection against eavesdropping attacks by… Read more

Windows Azure Virtual Networks and IKE Versions

Have you heard about Windows Azure Infrastructure Services? If not, then you’re in for a treat! Windows Azure Infrastructure Services enable you to put your virtual machines in the cloud. There are a lot of reasons why you might want to do this. Maybe your datacenter is at capacity and you need to stand up… Read more

Infrastructure-as-a-Service Product Line Architecture Guidance

In a joint effort between Microsoft product development and Microsoft Services, the Infrastructure-as-a-Service (IaaS) Product Line Architecture (PLA) has been created to help organizations develop and implement private cloud infrastructures quickly while reducing complexity and risk. The IaaS PLA utilizes the core capabilities of the Windows Server operating system, Hyper-V, and System Center to deliver… Read more

Security Series: Using PowerShell to Protect Your Private Cloud Infrastructure – Part 1

In this first part of our three part series on using PowerShell to help secure your cloud infrastructure, Yuri Diogenes and I (Tom Shinder) will talk about how you can secure data in flight within your cloud infrastructure using SMB 3.0 encryption. The ability to secure the data moving over the cloud infrastructure network is… Read more

TechEd 2013-Josh Adams-Yuri Diogenes-Tom Shinder on Cloud Infrastructure Design

It’s been fun introducing the sessions in the Architecture Track at TechEd North America and Europe. Now I’d like to tell you about one of the session that I’m presenting in. In the session Architecting a Cloud Infrastructure: A Practical Design Scenario I will be presenting with Josh Adams and Yuri Diogenes. Many of you… Read more

Azure Site to Site VPN Fails to Transmit Data–Tales of NAT Traversal

Yuri Diogenes and I have recently been working on a project that includes connecting an on premises network to a Windows Azure Virtual Network. In order to do this, you need to establish a site to site VPN connection between your corporate network and the Azure Virtual Network. To do this in a supported fashion,… Read more