The Changing Face of Security in an SDDC

摘要

As per Wikipedia, Software-defined data center (SDDC) is a vision for IT infrastructure that extends virtualization concepts such as abstraction, pooling, and automation to all of the data center's resources and services to achieve IT as a service (ITaaS). In a software-defined data center, "all elements of the infrastructure - networking, storage, CPU and security - are virtualized and delivered as a service." Despite the many benefits that companies can and are achieving by adopting Software Defined Data Centers (SDDCs), virtualization throws up many new security and compliance challenges. Legacy physical data center security architectures are rigid and complex. "Traditional" security depends on physical devices deployed on the perimeter of the private data center. These physical devices rely on state full inspection and are therefore blind to the complex security-related activity inside virtual infrastructure, whose networks they can't see.