HP Cloud Services, Cloud Pricing and SLAs
Lead Analyst: Cal Braunstein
Hewlett-Packard Co. (HP) announced the HP Cloud Compute made generally available in Dec. 2012 while the HP Cloud Block Storage cloud entered beta at that time. HP claims its Cloud Compute has an industry leading availability service level agreement (SLA) of 99.95 percent. Amazon Inc.'s S3 and Microsoft Corp.'s Windows Azure clouds reduced their storage pricing.
Focal Points:
- HP released word that the HP Cloud Compute moved to general availability on Dec. 5, 2012 and will offer a 99.95 percent monthly SLA (a maximum of 22 minutes of downtime per month). The company extended the 50 percent discount on pricing until January. The HP Compute cloud is designed to allow businesses of all sizes to move their production workloads to the cloud. There will be three separate availability zones (AZs) per region. It supports Linux and Windows operating systems and comes in six different instance sizes, with prices starting at $0.04/hour. HP is currently supporting Fedora, Debian, CentOS, and Ubuntu Linuxes, but not Red Hat Enterprise Linux (RHEL) or SUSE Linux Enterprise Server (SLES). On the Windows side, HP is live with Windows Server 2008 SP2 and R2 while Windows Server 2012 is in the works. There are sites today on the East and West coasts of the U.S. with a European facility operational in 2013. Interestingly, HP built its cloud using ProLiant servers running OpenStack and not CloudSystem servers. Meanwhile, HP's Cloud Block Storage moved to public beta on Dec. 5, 2012; customers will not be charged until January at which time pricing will be discounted by 50 percent. Users can create custom storage volumes from 1 GB to 2 TB. HP claims high availability for this service as well and claims each storage volume automatically is replicated within the same availability zone.
- Amazon is dropping its S3 storage pricing by approximately 25 percent. The first TB/month goes from $0.125 per GB/month to $0.095 per GB/month, a 24 percent reduction. The next 49 TB prices per GB/month fall to $0.080 from $0.110 while the next 450 TB drops from $0.095 to $0.070. This brings Amazon's pricing in line with Google Inc.'s storage pricing. According to an Amazon executive S3 stores well over a trillion objects and services 800,000 requests a second. Prices have been cut 23 times since the service was launched in 2006.
- In reaction to Amazon's actions Microsoft's Windows Azure storage pricing has again been reduced by up to 28 percent to remain competitive. In March 2012 Azure lowered its storage pricing by 12 percent. Geo-redundant storage has more than 400 miles of separation between replicas and is the default storage mode.
Google GB/Mo |
Google Storage pricing |
Amazon S3 pricing | Amazon GB/mo | Azure storage pricing - geo-redundant |
Azure storage pricing - local-redundant |
First TB |
$0.095 |
$0.095 |
First TB |
$0.095 |
$0.070 |
Next 9 TB |
$0.085 |
$0.080 |
Next 49 TB |
$0.080 |
$0.065 |
Next 90 TB |
$0.075 |
|
|
||
Next 400 TB |
$0.070 |
|
Source: The Register
RFG POV: HP's Cloud Compute offering for production systems is most notable for its 99.95 percent monthly SLA. Most cloud SLAs are hard to understand, vague and contain a number of escape clauses for the provider. For example, Amazon's EC2 SLA guarantees 99.95 percent availability of the service within a region over a trailing 365 day period – i.e., downtime is not to exceed 250 minutes (more than four hours) over the year period. There is no greater granularity, which means one could encounter a four hour outage in a month and the vendor would still not violate the SLA. HP's appears to be stricter; however, in a NetworkWorld article, HP's SLA only applies if customers cannot access any AZs, according to Gartner analyst Lydia Leong. That means customers have to potentially architect their applications to span three or more AZs, each one imposing additional costs on the business. "Amazon's SLA gives enterprises heartburn. HP had the opportunity to do significantly better here, and hasn't. To me, it's a toss-up which SLA is worse," Leong writes. RFG spoke with HP and found its SLA is much better than portrayed in the article. The SLA, it seems, is poorly written so that Leong's interpretation is reasonable (and matches what Amazon requires). However, to obtain credit HP does not require users run their application in multiple AZs – just one, but they must minimally try to run the application in another AZ in the region if the customer's instance becomes inaccessible. The HP Cloud Compute is not a perfect match for mission-critical applications but there are a number of business-critical applications that could take advantage of the HP service. For the record, RFG notes Oracle Corp.'s cloud hosting SLAs are much worse than either Amazon's or HP's. Oracle only offers an SLA of 99.5 percent per calendar month – the equivalent of 2500 minutes or more than 40 hours of outage per month NOT including planned downtime and certain other considerations. IT executives should always scrutinize the cloud provider's SLAs and ensure they are acceptable for the service for which they will be used. In RFG's opinion Oracle's SLAs are not acceptable at all and should be renegotiated or the platform should be removed from consideration. On the cloud storage front overall prices continue to drop 10 percent or more per year. The greater price decreases are due to the rapid growth of storage (greater than 30 percent per year) and the predominance of newer storage arrays versus older ones. IT executives should be considering these prices as benchmarks and working to keep internal storage costs on a similar declining scale. This will require IT executives to retain storage arrays four years or less, and employing tiering and thin provisioning. Those IT executives that believe keeping ancient spinning iron on the data center floor to be the least cost option will be unable to remain competitive against cloud offerings, which could impair the trust relationship with business and finance executives.
More Risk Exposures
Lead Analyst: Cal Braunstein
Hackers leaked more than one million user account records from over 100 websites, including those of banks and government agencies. Moreover, critical zero-day flaws were found in recently-patched Java code and a SCADA software vendor was charged with having default insecurity, including a hidden factory account with password. Meanwhile, millions of websites hosted by world's largest domain registrar, GoDaddy.com LLC, were knocked offline for a day.
Focal Points:
- The hacker group, Team GhostShell, raided more than 100 websites and leaked a cache of more than one million user account records. Although the numbers claimed have not been verified, security firm Imperva noted that some breached databases contained more than 30,000 records. Victims of the attack included banks, consulting firms, government agencies, and manufacturing firms. Prominent amongst the data stolen from the banks were personal credit histories and current standing. A large portion of the pilfered files comes from content management systems (CMS), which likely indicates that the hackers exploited the same CMS flaw at multiple websites. Also taken were usernames and passwords. Per Imperva "the passwords show the usual "123456" problem. However, one law firm implemented an interesting password system where the root password, "law321" was pre-pended with your initials. So if your name is Mickey Mouse, your password is "mmlaw321". Worse, the law firm didn't require users to change the password. Jeenyus!" The group threatened to carry out further attacks and leak more sensitive data.
- A critical Java security vulnerability that popped up at the end of August leverages two zero-day flaws. Moreover, the revelation comes with news that Oracle knew about the holes as early as April 2012. Microsoft Corp. Windows, Apple Inc. Mac OS X and Linux desktops running multiple browser platforms are all vulnerable to attacks. The exploit code first uses a vulnerability to gain access to the restricted sun.awt.SunToolkit class before a second bug is used to disable the SecurityManager, and ultimately to break out of the Java sandbox. Those that have left unpatched the vulnerabilities to the so-called Gondvv exploit that was introduced in the July 2011 Java 7.0 release are at risk since all versions of Java 7 are vulnerable. Notably older Java 6 versions appear to be immune. Oracle Corp. has yet to issue an advisory on the problem but is studying it; for now the best protection is to disable or uninstall Java in Web browsers. SafeNet Inc. has tagged a SCADA maker for default insecurity. The firm uncovered a hidden factory account, complete with hard-coded password, in switch management software made by Belden-owned GarrettCom Inc. The Department of Homeland Security's (DHS) ICS-CERT advisory states the vendor's Magnum MNS-6K management application allows an attacker to gain administrative privileges over the application and thereby access to the SCADA switches it manages. The DHS advisory also notes a patch was issued in May that would remove the vulnerability; however, the patch notice did not document the change. The vendor claims 75 of the top 100 power companies as customers.
- GoDaddy has stated the daylong DNS outage that downed many of its customers' websites was not caused by a hacker (as claimed by the supposed perpetrator), but that the service interruption was not the result of a DDoS attack at all. Instead the provider claims the downtime was caused by "a series of network events that corrupted router tables." The firm says that it has since corrected the elements that triggered the outage and has implemented measures to prevent a similar event from happening again. Customer websites were inaccessible for six hours. GoDaddy claims to have as many as 52 million websites registered but has not disclosed how many of the sites were affected by the outage.
RFG POV: Risk management must be a mandatory part of the process for Web and operational technology (OT) appliances and portals. User requirements come from more places than the user department that requested the functionality; it also comes from areas such as audit, legal, risk and security. IT should always be ensuring their inputs and requirements are met. Unfortunately this "flaw" has been an IT shortfall for decades and it seems new generations keep perpetuating the shortcomings of the past. As to the SCADA bugs, RFG notes that not all utilities are current with the Federal Energy Regulatory Commission (FERC) cyber security requirements or updates, which is a major U.S. exposure. IT executives should be looking to automate the update process so that utility risk exposures are minimized. The GoDaddy outage is one of those unfortunate human errors that will occur regardless of the quality of the processes in place. But it is a reminder that cloud computing brings with it its own risks, which must be probed and evaluated before making a final decision. Unlike internal outages where IT has control and the ability to fix the problem, users are at the discretion of outsourced sites and the terms and conditions of the contract they signed. In this case GoDaddy not only apologized to its users but offered customers 30 percent across-the-board discounts as part of their apology. Not many providers are so generous. IT executives and procurement staff should look into how vendors responded to their past failures and then ensure the contracts protect them before committing to use such services.
Surprises at IBM, Infosys and Microsoft
Lead Analyst: Cal Braunstein
IBM Corp. announced second quarter financial results with lower revenues but improved profits while Infosys Ltd. had weaker than expected first quarter 2013 results. In other financial news, Microsoft Corp. reported mixed fourth quarter and fiscal year 2012 results.
Focal Points:
- IBM reported second quarter revenues of $25.8 billion, a drop of three percent year-over-year. However, net income on a GAAP basis increased by six percent to $3.9 billion from the previous year's quarter. Asia Pacific and the BRIC countries showed single digit growth while all other geographies declined. Europe/MidEast/Africa delivered the worst performance with a nine percent decline, although using a constant currency basis the revenues were flat. Similarly, the services sectors (GBS and GTS) were off four and two percent respectively from the same quarter last year. Global Financing and Software were flat while the Systems and Technology Group (STG) experienced a nine percent fall in revenues year-over-year. IBM's Smarter Planet initiative saw its revenues increase more than 20 percent in the quarter while its Power Systems gained market share through competitive displacements. Year-to-date IBM states its growth market revenues were up nine percent year-over-year while business analytics revenues grew 13 percent and cloud revenues doubled year-over-year. The company also saw its gross profit margins climb by 1.5 percentage points.
- Infosys had less than stellar results for its first quarter 2013. While revenues grew 4.8 percent to $1.75 billion and IFRS net income climbed eight percent to $416 million year-over-year, on a sequential quarter basis, the company saw revenues drop by one percent and profits slide by more than 10 percent. Repeat business accounted for 99.1 percent of sales; the top 10 clients were responsible for 25.3 percent of the revenues. Utilization levels excluding trainees have been slowly dropping from 77.8 percent over the 12 months ending June 2011 to 71.6 percent in the current quarter. The split between onsite and offshore dropped slightly from 25.5 to 74.5 percent in the year ago quarter to 24.7 to 75.3 percent in the first quarter 2013. Attrition improved slightly to 14.9 percent. All geographic sector revenues declined with the exception of North America, which grew by 1.6 percent sequentially. As expected, Europe was the worst performer with a decline of 8.1 percent sequentially.
- Microsoft announced fourth quarter 2012 revenues of $18.1 billion, an increase of four percent from the previous year's quarter. On a GAAP basis the company reported its first net loss of $492 million due to writing off $6.2 billion for its 2007 aQuantive acquisition. For the full fiscal year Microsoft reported revenues of $73.7 billion, a five percent jump from its fiscal year 2011 revenues. On a GAAP basis net income was $17 billion, a 26 percent decrease from the prior year. The Server and Tools business revenue grew 13 percent for the fourth quarter and 12 percent for the full year while the Business Division revenue increased 7 percent for the fourth quarter and full year reflecting continued momentum in Office 2010 sales. The Windows and Windows Live Division revenue declined 13 percent for the fourth quarter and 3 percent for the full year whereas the Online Services Division revenue advanced 8 percent for the fourth quarter and 10 percent for the full year reflecting growth in its search business. The Entertainment and Devices Division revenue jumped 20 percent for the fourth quarter and 8 percent for the full year, mostly due to the addition of Skype.
RFG POV: Most vendors note the difficulties that lie ahead over the next few quarters due to Euro zone problems, a slowdown in China, and a weak economy in North America as well as fears over oil prices and Middle East crisis. How well enterprises will do will depend upon the sector(s) they are in, the geographies they serve, and the agility and innovation of the firm. IBM, which has huge backlogs, is able to plow forward through the good times and bad. Its STG products continue to fluctuate depending upon age of the systems but overall IBM is on track to deliver against its five year growth plan. On the other hand, Infosys is failing to keep up with some of its outsourcing competitors and may be running into a management of growth problem. The drop in its utilization levels is a further indication that backlog and revenue management is not mapping to usage at the desired mix. Thus, while this is an overall corporate issue, the company still maintains tremendous customer loyalty and repeat business rate. In that the company is seeing weakness in most of its markets, IT executives should be more aggressive in negotiating blended rates and the overall deal. Microsoft marches on and continues to grow its enterprise businesses. The Windows business is impacted by the decline in PC sales (and growth in the Apple Inc. iPad market). There is the perception that enterprise business will improve when Windows 8 comes out later this year but that is unlikely. While slightly more than 50 percent of enterprises are on Windows 7, the other half are on Vista and XP. It takes years before companies migrate to new releases and the move to Windows 8, in that it is designed more for the personal world and tablets than the business world, most likely will not happen for most companies. RFG expects the majority of firms will wait for Windows 9. However, RFG does expect Skype and Yammer to be leverageable in the enterprise space but it is unclear whether or not Microsoft can leverage these cloud services to get organizations to move to its other cloud offerings. IT executives will continue to have more and more business platform alternatives available to them and therefore should not feel locked into Microsoft. Given that, IT executives should carefully analyze their business software requirements and negotiate for the best deals. Since Microsoft pricing can be complex and expensive, IT executives should consider using outside assistance (from RFG or elsewhere) to simplify the experience and obtain the best contractual prices and terms.
Big Buys Shifting Markets
Lead Analyst: Cal Braunstein
Microsoft Corp. announced two acquisitions – for $1.2 billion it bought the enterprise social networking vendor Yammer Inc. and Perceptive Pixel Inc. (PPI), a giant touchscreen maker, for an undisclosed sum. Elsewhere, Dell Inc. said it intends to acquire Quest Software Inc. for $2.4 billion while Ingram Micro Inc. is purchasing BrightPoint Inc. and Micron Technology Inc. is buying Elpida Memory Inc.
Focal Points:
- Microsoft pushed further into the enterprise arena by announcing its intent to purchase Yammer, a cloud services company that provides enterprise social networking, for $1.2 billion. Yammer is a San Francisco-based company with more than five million registered corporate users. Microsoft intends to fold Yammer into its Office Division but the unit will continue to report to the current CEO David Sacks. CEOs Ballmer and Sacks acknowledged Microsoft plans on integrating Yammer's technology with Office, Office 365, Dynamics (CRM) and Skype. Nonetheless, Microsoft will continue to offer Yammer as a standalone cloud service, too. Additionally, Microsoft has acquired Perceptive Pixel, a provider of large multi-touch displays for an undisclosed sum. The company sells 27-, 55-, and 82-inch LCDs and recently announced the first-ever simultaneous pen and touch technology for its devices. Microsoft has not made any statements about its plans for the unit. The New York-based company was founded in 2006 by Jeff Han, a renowned pioneer in multi-touch technology.
- Dell won the bidding war for Quest Software, a provider of access management, data archiving, database, performance and systems tools, with its bid of $2.4 billion. The purchase price was a 44 percent premium to its March 8th closing price – the date when the acquisition talks first began with Insight Venture Partners. Quest is based in Aliso Viejo, CA and, according to Dell, has 3,850 employees of which 1,279 are software engineers in its R&D organization and 1,440 are direct sales representatives. The company also brings along 4,000 channel partners, which were responsible for 40 to 45 percent of sales. Quest had revenues of $858.2 million in 2011, a year-over-year growth rate of 11.9 per cent but net income fell in half to $43.9 million. Gross margins are at 86 percent and the company has more than 100,000 customers worldwide. Once the deal closes, the Quest software should compose approximately 72 percent of Dell's software revenues.
- Ingram Micro spent $840 million for specialist wireless device and services distribution company, BrightPoint. Founded in 1989, BrightPoint had fiscal year 2011 sales of $5.2 billion, up 44 percent year-over-year. The distributor employs 4,000 people in facilities across 24 countries and claims to have 25,000 B2B customers worldwide. Company executives stated the acquisition enabled the firm to achieve its objective of expanding into the mobility market. Meanwhile, Micron acquired the bankrupt and debt-ridden Japanese DRAM manufacturer Elpida for approximately $2.5 billion. The acquisition doubles Micron's DRAM market share to 24 percent, second only to Samsung Group. With this purchase the DRAM supplier market is now limited to three main providers: SK Hynix Inc., Micron, and Samsung.
RFG POV: With Skype and Yammer Microsoft now has some heavyweight brand names in the cloud computing space that it can potentially leverage. These cloud services should help the company sell its other cloud services as well as its other unified communications offerings. However, Yammer will not be part of the upcoming Office 2013 release. When it gets folded into the Office roadmap has yet to be determined. The PPI deal appears to be designed to be incorporated into the Surface tablet product set. What makes this most intriguing is that Microsoft is building its own hardware products and may be planning to become totally vertically integrated. This shift may not sit well with the company's long-time business partners, thereby further narrowing the set of vendors that will offer Windows 8 smartphones and tablets. Microsoft is changing its business model and striking out into uncharted horizons, without ensuring it has its back protected by its channel partners. IT executives need to pay attention to the shifts in the business model and pricing arising from the new strategy so that the enterprise is not caught of guard when contract negotiation time arrives. Dell now has a $1 billion software business that it can add to its hardware products and services offerings. The Quest Software tools mesh well with the Dell brand in that they are good price performers and they are complementary to the other Dell software offerings. IT executives can now expect Dell to claim to be a full-service provider and sell bundled offerings wherever it can. In that software margins tend to be large, Dell can maintain its least-cost image through nicely bundled packages while applying pressure to the software margins of its competitors. IT executives should take advantage of Dell's move into the enterprise software management space. Consolidation continues apace in the channel and supplier markets as well, with the Ingram Micro and Micron purchases. This may be good news for the vendors but it may slow the drop in DRAM prices and may actually allow Ingram Micro to increase their prices through cross- and up-selling and bundling the services. With the base storage technologies of hard drives and DRAM memory consolidating into sets of three providers, the previous glut and drought cycles may be coming to an end and price cutting may become less dramatic. If this occurs, IT executives will end up spending more on storage than previously projected, which could strain budgets.
On the Mobile Platform Horizon
Microsoft Corp. announced it will brand its own Windows 8 tablet designed to compete with Apple Inc.'s iPad while also offering PC-like flexibly and connectivity. Elsewhere, Apple's new MacBook Pro sheds weight and gains a high-resolution display. Lastly, Research in Motion, Ltd. and Nokia Corp. have their businesses unravel a bit while they try desperately to reinvent themselves.
Focal Points:
- In an announcement that came as a surprise to most observers this week, Microsoft showcased its new Surface tablet design in hardware that will be Microsoft branded. Not to be confused with a tabletop touchscreen design of the same name from the company a few years back, the tablet-sized Surface comes in two flavors running different versions of Windows 8. The mainstream Surface runs Windows 8 RT and is powered by ARM-based processors from Nvidia Corp. while the higher-end version will run Windows 8 Pro and uses Intel Corp. Ivy Bridge processors. Both devices will feature 10.6 inch screens, have built-in kickstands, magnetized screen covers that double as keyboards with a touchpad, and USB ports for connecting to peripherals. The Surface running Windows 8 RT will come in 32 GB and 64 GB storage variants, has dimensions similar to Apple's iPad at 9.3 millimeters thick, weigh 1.5 pounds, and is priced to compete with similar tablets. The Windows 8 Pro version will weigh more and be priced higher than the Windows 8 RT offering and will offer 64 GB and 128 GB storage sizes. Though a firm launch date was not announced, availability for the ARM-based Surface should coincide with the Windows 8 launch in October and the Pro version should begin within a few months thereafter.
- Apple updated its MacBook Pro notebook this week by showcasing a slimline 0.71-inch aluminum unibody design more similar to the MacBook Air than the model it replaces. The MacBook Pro's "showstopper" is the inclusion of a 15.4-inch "retina" high resolution display similar in clarity to those on Apple's latest iPad and iPhone models. Apple has decided to drop its 17-inch display MacBook Pro and is expected to introduce a 13-inch variant with the retina display late this year. Being in the top position in the MacBook line, new models will feature quad-core Intel i7 Ivy Bridge processors, battery life lasting up to a claimed 7.5 hours, memory configurations between 8 GB and 16 GB, solid state disk (SSD) storage in three flavors ranging from 256 GB to 768 GB. As with most Apple hardware designs, the notebooks are not designed to be user-upgradable and require specialized tools to service or upgrade the battery, RAM, and SSD. Pricing starts at $2,199 for the model with a 2.3 gigahertz (GHz) processor, 8 GB RAM, and 256 GB of flash storage.
- Both RIM and Nokia suffered votes of "no confidence" this week as the companies struggle to survive in evolving smartphone and tablet markets. A Toronto-based equipment supplier for RIM announced that it is discontinuing manufacturing services for BlackBerry devices over the next three to six months and will take a $1 billion charge due to unsold equipment. The smartphone company's response was somewhat evasive as it noted making "changes to our supply chain as part of wider efforts to improve the efficiency and cost effectiveness." As RIM continues to prepare for the launch of forthcoming BlackBerry 10-based devices slated for release in October, the company said it will shed around 2,000 jobs – 11 percent of its workforce – to save $1 billion by its 2013 fiscal year. Similarly, Nokia detailed a series of sweeping changes that included shedding 10,000 jobs, reducing research and development efforts, and replacing some senior executives. Moody's Investors Service, Inc. slashed Nokia's credit rating to "junk" after the announcement.
RFG POV: Microsoft's new Surface tablet is a Hail Mary to bolster support for the company's Windows 8 platform across smartphone, tablet, and PC screens. As Windows 8 offers the same Metro UI interface and compatibility for UI designed apps across platforms, the company hopes that the flagship Surface offering will get users and enterprises excited enough to begin adoption en masse. Surface itself is compelling in both Windows 8 RT and Pro variants; however, it is the Pro version with its notebook-replacement capabilities that are the most compelling for enterprise users. Though Microsoft's hardware history is littered with failures including the Kin smartphone and Zune music player, the Surface's design is a compelling one particularly with the inclusion of full-fledged Office apps. The company is way behind competitors Apple and Google, Inc. in developing its app ecosystem and will need to invest heavily in developer subsidies to ensure the mobile devices are a hit. IT executives can hedge their bets by sticking to a pilot of the Pro version only as it supports all mobile and desktop applications and should limit usage of the RT version until use cases prove themselves. Apple's new MacBook Pro is a genuine thing of beauty with its slim all-aluminum casing, large retina display, and extremely portable 4.5 pound weight. The company's push forward with design has removed several desirable features including an on-board optical drive, Ethernet adapter, and Firewire port. Those corporations supporting "bring your own device" (BYOD) philosophies will no doubt see new MacBook Pros in the enterprise, but mainstream enterprises will wish to avoid the notebooks for all but a small percentage of staff. While it is attractive and functional, IT executives will find that enterprise Mac acquisition costs are double those of Windows-based products and that support is more costly and complex given the closed design. Lastly, the continued challenges facing RIM and Nokia are likely just at the precipice of what it holds for the firms. Both lost their thought leadership position years ago, and while BlackBerry still retains a small league of supporters in security-minded firms, Nokia's loyalty is all but gone. Supplier and cash challenges will plague both companies for the foreseeable future and both have their pinned their hopes on glorious rebirths coinciding with the launch of new operating system platforms in the fall. IT executives should recognize that these Phoenixes are highly unlikely to rise from the ashes and while product support and valuable assets including patents and networking technologies may live on, both companies have expiration dates.