Categories
Cloud Native Storage Encryption Security VMware vSphere

vSphere 7.0, Cloud Native Storage, CSI and encryption support

A common request we’ve had for the vSphere CSI (Container Storage Interface) driver is to support encryption of Kubernetes Persistent Volumes using the vSphere feature called VMcrypt. Although we’ve had VM encryption since vSphere 6.5, this was a feature that we could not support in the first version of the CSI driver that we shipped […]

Categories
Encryption Security Storage VMware VSAN vSphere

New steps to use HyTrust KMIP with vSAN Encryption

I’m back in the lab this week, looking at some of the newer features around vSAN. As part of this, I needed vSAN Encryption enabled, so I downloaded the latest HyTrust KeyControl appliance as this has an easy to use KMIP Server. This new version is 4.2.1,  and it has a few new steps compared […]

Categories
deduplication Encryption Kubernetes Security Storage VMware VMware Cloud on AWS VSAN

A closer look at VMware’s latest Cloud Launch

Today VMware has another cloud launch update, and this one is significant for many reasons. Our underlying goals of VMware Cloud are many. From an infrastructure perspective, the goal is to provide operational consistency no matter where the application is running, whether this is from an automation, security or governance perspective. But one thing that […]

Categories
Encryption Flash iSCSI Storage Storage I/O Control Storage vMotion VAAI VAIO vCenter Server VMDK VMFS VMware VMworld vSphere

VMworld 2017 Session on vSphere 6.5 Core Storage now on YouTube

A quick note to let you know that the session that I delivered on day 1 of VMworld 2017 is now available on YouTube. The session is entitled “A Deep Dive into vSphere 6.5 Core Storage Features and Functionality” and I delivered this with Cody Hosterman of Pure Storage. Judging by the feedback, and the […]

Categories
Encryption Security VMware VSAN vSphere

Deploying a new HyTrust KMS on vSphere 6.5

Many regular readers will be aware of new encryption features added recently to VMware’s portfolio, such as vSAN  data-at-reset encryption and vSphere VM encryption in vSphere 6.5. I had to return to a configuration task that I hadn’t done in a while, which was the deployment of a new Key Management Server (KMS) on my […]

Categories
Encryption ESXi Security Storage VMware VSAN vSphere

Does enabling encryption on vSAN require on an-disk format change?

vSAN 6.6 shipped earlier this year. It comes with a new on-disk format to support, among other things, data at rest encryption (also known as DARE). This is version 5 of the on-disk format. I’ve been asked this question a number of times over the past week, so I thought I would quickly write a […]

Categories
Cloud Native Applications Containers Docker Encryption Kubernetes Snapshots Storage

A closer look at Portworx

Last month I had the opportunity to attend DockerCon17. One of the break-out sessions that I attended was from a company called Portworx. Portworx provide a solution for stateful docker container storage, which is what caught my interest. There are lots of companies who have already created docker volume plugins for their existing storage solutions, […]