Green Data Centers: Federal Government Insights Part 5

January 11th, 2010 by admin 1 comment »

previous post: Part 4 – Data Center Power and Cooling

Conclusion

Today’s data centers are not built with energy efficiency in mind. It is true that uptime is the main concern of any data center manager and owner but when energy bills become overwhelming, it is high time to think how to reduce them. Green technology is one of the proven ways to save on energy.

There are many steps you can take in order to make your data center green. Consolidation, virtualization, power management, energy efficient equipment (especially power supplies), and cooling are the top priority areas towards a greener data center. If you make improvements in any or all of them, you will see how this affects your energy consumption in a positive way and you will also make your contribution to save the environment.

1 comment »

Posted in Green Data Center, Green IT

Tags:

Green Data Centers: Federal Government Insights Part 4

January 11th, 2010 by admin 1 comment »

previous post: Part 3 – Consolidation and Virtualization

Power Management

Power management is a really powerful way to decrease energy consumption. Ironically, power management tools are widely available and most often even now you have them in your data center, but they are not put to use. In some cases the reason for that is very simple – there are no internal rules to tell administrators when to turn power management on and administrators don’t want to take the risk to do it without formal authorization.

Properly administered power management can decrease power consumption by 20-25% or even more. Though it varies from one data center to the next, generally the load is much lower at night and at weekends and it is safe to turn power management on.

Some of the power management solutions that are built-in the operating system are good and even if you don’t have the budget to purchase dedicated power management systems, these built-in solutions are more than nothing. There is no doubt that dedicated, smart power management solutions are better but as a quick fix even built-in power management solution do a great job.

In addition to the operating system, hardware also has power management abilities. These power management abilities vary from one model to the next but generally for processors, motherboards, and monitors the presence of power management technology has already become a standard feature.  If your hardware has such features, you should definitely turn them on because this alone can cut your energy bill by 20-30% or more.

Energy Efficient Equipment

Power management is done best with energy efficient equipment. Today there is hardly a server or other data center equipment, which doesn’t include energy efficient parts. Usually it is CPUs, motherboards, SSD drives, and RAM that are designed to be energy efficient.

Energy efficient equipment might be more expensive to purchase but the cost savings it will generate in the long run will pay off. This is why you should always opt for energy efficient equipment when you buy new machinery or upgrade the existing machines.

High Efficiency Power Supplies

Power supplies are a special case of energy efficient equipment. A power supply might look like a secondary component because unlike CPUs or RAM it does no computational task but energy inefficient power supplies can waste more energy than any other part in the data center.

Power supplies are vital because they can waste almost 50% of the power. This means that your equipment gets only half of the energy because the rest is wasted by the power supply! But this is not all – in addition to wasting energy, power supplies need approximately the same amount of energy in order to be cooled. This way it turns out that a substantial part of the energy used in your data center goes for powering power supplies and cooling them!

In addition to low efficiency power supply, which wastes a substantial part of the energy, many servers run with 600-watt power, while they actually need only 300 watts. This is an additional energy leak and it should be one of the first points you must focus on when trying to make your data center a green one.

High efficiency power supply might cost a bit more than their traditional counterparts but the savings a high efficient power supply can generate for a year could be times its price. There is no need to say that cheap is more expensive, so don’t buy cheap power supplies, which are real energy monsters.

Cooling

Powering the equipment is only half of all the costs for energy in a typical data center. Cooling is another major expense because all the equipment generates a lot of heat and this heat must be dealt with. Air conditioning and other cooling devices also consume electricity, thus contributing to your energy bill.

Cooling expenses can be decreased in many ways. For instance, if you choose your location in an area where there is natural cooling (i.e. a colder place), this can help to reduce the cooling expenses.

The hot aisle/cold aisle concept is also a step in the direction of a greener data center. This concept means that you arrange computers in such a way that the rears of one row of computers face the rears of the adjacent row. Heat is ventilated through the rear of computers and this is where you cool more. The front of computers doesn’t generate heat and as a result demands less cooling.

last post: Conclusions

1 comment »

Posted in Green Data Center, Green IT

Tags:

Green Data Centers: Federal Government Insights Part 3

January 11th, 2010 by admin 2 comments »

previous post: Part 2 – How to Make Your Data Center Green

Consolidation

One of the first steps you need to take in order to make your data center greener is to consolidate. In a typical data center it is not an exception to see servers, which are running at 10% to 15% utilization. 100% utilization (if possible at all) is risky, especially in the long run and you can’t afford to utilize your machines that much but if you consolidate two, three, or more machines into one, this immediately translates into two, three or more times less energy to power and cool them.

In addition to heavily under-utilized servers, there are also idle servers. Idle servers don’t perform any useful job but they still consume energy.  Idle servers could constitute up to 30% of all servers and if there is no way to monitor them and turn them off when they are not in use, this drastically increases your energy bill.

If an idle server is a more recent one, chances are that it uses some sort of power management, which means that its energy consumption is lower but still even with the best power management solutions, an idle server can consume up to 30-35% of the energy it needs when fully utilized.

Consolidating idle and under-utilized servers might not look like a big deal. However, when you have in mind that each server costs at least $500-600 a year in terms of electricity, and you have hundreds of servers, the savings you can achieve by reducing the number of running servers is considerable. What is more, this consolidation will in no way impact your operations negatively, so the dilemma is not whether you pay to have the job done or save money but the dilemma is if you want to pay when no job is done or not.

Virtualization

Virtualization is one of the technologies, which can make the most for the success of your green efforts. Virtualization allows to consolidate multiple logical servers or storage devices into one physical unit and is by far the most efficient consolidation technique.

Virtualization requires special software, which as a rule is not free. VMWare is the leading provider of virtualization solutions for data centers and its products are designed with energy efficiency in mind. In addition to VMWare’s products, there are many other free and paid virtualization products and if your budget can’t provide for a paid virtualization solution, you could consider some of the free, open source ones.

Virtualization is becoming a de facto standard for a data centers and there are hardly many data centers where no virtualization solution is implemented. Of course, this doesn’t mean that virtualization is a panacea because it does introduce some problems (for instance there are applications, which require a dedicated machine and misbehave when virtualized) but generally virtualization is one of the major approaches to a greener data center.

Next: Part 4 – Power and Cooling

2 comments »

Posted in Green Data Center, Green IT

Tags:

Green Data Centers: Federal Government Insights Part 2

January 11th, 2010 by admin 2 comments »

How to Make Your Data Center Green

previous: part 1 – Introduction and Why Go Green

Achieving a greener data center is hardly a task you can do overnight but each step in the right direction counts.  Some of the steps towards a greener data center require investment (i.e. the purchase of new, energy efficient equipment, or virtualization licenses) and generally these steps require planning in advance and a substantial timeframe to implement them but most of the other steps are relatively easy to do and require no to little investment.

However, the most important is that going green starts with the commitment to it. If you and your employees are not conscious that green is better, no high-end equipment and no force on earth will make your data center greener. Going greener should be the result of a conscious effort, not the result of a forced decision or imitation (everybody else does it, so I must do it as well).

Some of the steps in the greener direction are one-time steps (i.e. purchasing of new energy-efficient equipment), while others are ongoing tasks (i.e. power management). In some cases it makes sense to modify internal data center rules and regulations and to include provisions for green operations. For instance, it makes sense to have formal rules as to why should power management be turned on/off, so that data center employees don’t have to make guesses.

next: Part 3 – Green Data Center Consolidation and Virtualization

2 comments »

Posted in Green Data Center, Green IT

Tags:

Green Data Centers: Federal Government Insights Part 1

January 11th, 2010 by admin 1 comment »

Going green is one of the most important trends in IT in recent years. The green trend affects technologies and equipment of all kinds but probably one of the areas where its impact is most tangible is data centers. Data centers are known for their lavish energy consumption. This lavish energy consumption presents endless opportunities to introduce new technologies and polices in order to make data centers greener.

President Obama recently signed Executive Order 13514 which outlines sustainability goals for the US government.  “In order to create a clean energy economy that will increase our nation’s prosperity, promote energy security, protect the interests of taxpayers, and safeguard the health of our environment, the federal government must lead by example,” Obama wrote in the order.

Jeff Stewart, the electronics stewardship coordinator for the Department of Energy said, “It’s going to make all of look at what we do with IT with a new eye.”  The order requires that 95% of new acquisitions be either Energy Star compliant or Federal Energy Management Program compliant.

The necessity to make data centers greener is indisputable and in some cases it is also a matter of regulatory compliance. The steps a data center can take in the green direction are numerous and while some of them are not cheap, many of the steps are easy to do and require no investment at all. This guide will give you a basic idea about why it is important to make your data center green, as well as some of the steps you need to take in order to achieve this goal.

Why You Need a Green Data Center

Greener data centers are not just the latest fashion trend. It is true that eco-friendliness matters for all kinds of products – from food, to clothes, to automobiles, to computers – but the drive towards greener data centers stems not only from the fact that data centers want to follow the latest trends, but it is mainly due to the fact that data centers are among the largest energy consumers.

A data center consists of hundreds and thousands of computers and other equipment. As a rule, this equipment is always on and it needs energy. Energy consumption is constantly on the rise and as computers become more and more powerful, this trend is expected to continue. It is not an exception for high-end equipment to demand more than 30 kilowatts per rack.

However, powering equipment is only part of the energy expenses at a data center. The other part, which could be as substantial as powering, is cooling. Powerful machines emit a lot of heat and if this heat is not taken away, it might easily burn the equipment. This is why cooling is vital.

There are various cooling systems but most of them use electricity, which further increases the energy bill for a data center. In some cases electricity costs are the single largest expense for a data center, outnumbering even capital expenditures and labor costs. Hardware costs are times less than energy costs, which certainly must ring a bell that data centers are becoming real energy monsters.

According to Aperture, “Currently, power and cooling costs represent up to 44 percent of a data center’s total cost of ownership”. This data might seem shocking but the reality is that energy eats the financial resources of data centers. Needless to say, this situation is impossible even in a booming economy and no manager will put up with it.

Going green is one of the possible solutions to the ever increasing energy expenses problem. Green technologies can help cut energy expenses by 20-30% or even more without any disruption to the normal work of a data center. Many of these green technologies are new and are specifically designed to meet the green demands of a data center from recent years but there are also many evergreen tips on how to use less energy and perform the same amount of work.

Greener data centers are gaining more and more popularity and this is for a reason. Green data centers are not only cheaper to maintain but they are also your ecological contribution. Since data centers are among the largest energy consumers in the industry, it is obvious that when data centers as a whole consume less energy, this leads to decreased energy production, which in turn has a positive environmental effect.

Saving the environment by using less energy is not only noble. In some cases it is mandatory. There are different regulations all over the world, which impose green requirements on data centers. Therefore, even if you personally don’t care about the environment, you still need to go green because otherwise you risk pretty severe penalties.

Going green is not that difficult. If you are building a new data center, chances are that most of the equipment you will be getting is green. If you are not building a new data center, the steps you need to take are not that complex and some of the most important ones are described next.

Coming up:
Part 2: How to Make Your Data Center Green

1 comment »

Posted in Green Data Center, Green IT

Tags:

Cloud Computing: The Next Wave of Federal Computing? – Part 3 of 3

December 22nd, 2009 by admin 2 comments »

Securing The Cloud

“The primary issue with security is perception. But the cloud is more secure [than traditional systems] because it was built with security in mind.” - (Eran Feigenbaum, director of security, Google Enterprise)

Federation and the Federated Cloud

Well, it’s pretty much here today.  Take for example Salesforce.com which interoperates with Google Apps, Twitter, Facebook, and several other cloud-based services.  Many of these services have open developer APIs to integrate into their services so this type of interchange will only grow with time.

How Ready is the Federal Government?

In this writer’s humble opinion the future efficiency of the federal government will depend on economic models similar to cloud based computing solutions.  From a technology perspective, it will not be an overnight process.  Most of the big cloud services providers have free sandboxes where CIOs can test migrations of some of the applications we mentioned in part 2 of this series.

This is clearly where our government technology infrastructure (or at least a part of it) is going.  Let’s get moving.

2 comments »

Posted in Green Data Center, Green IT

Tags:

Cloud Computing: The Next Wave of Federal Computing? – Part 2 of 3

December 15th, 2009 by admin 3 comments »

Cloud Computing: Where to Start

In this post we’ll cover how the federal government should approach the notion of cloud computing.

  1. Planning – If cloud computing is where we will inevitably be in the next decade, agency CIOs should be strongly urged to make every new piece of new technology introduced into their IT environments cloud-ready.  CIOs should also be made aware of external triggers that could prompt their organizations to move applications into the cloud, such as an expiring software license.
  2. Enterprise 2.0 as a Catalyst – Collaboration tools seem the obvious place to begin enterprise cloud migrations.  These tools are made for the cloud and are relatively painless to integrate into a cloud environment.  This seems like a logical and easy first learning application of cloud computing in an agency’s IT plan.
  3. HR Applications – HR application make sense because they tend to be very seasonal.
  4. Development and Testing – see HR applications.
  5. Disaster Recovery – We’re seeing a lot of our customers moving their disaster recovery systems to the cloud.  Given the unlimited storage capacity and quick-to-live nature of cloud computing, this seems natural.

Mike Hill (IBM) has said that ITM has been spending a lot of time implementing private clouds for government and banking clients with sensitive data and workload issues.  “What we’re finding is that it’s workload driven,” Hill remarked about which applications are ready to move to the cloud.

On the short list of other applications that are cloud-ready:

  • case management
  • project management
  • economic development
  • grant management
  • service management
  • travel and tourism
  • and housing applications

Potential Pain Points

IT managers must also be made aware of the potential pain points that are associated with a cloud migration.  These include computing, network and storage infrastructure, issues with virtualization sprawl and the need for better management tools, security, and cloud federation.

Tools like IBM’s Tivoli and Microsoft’s System Center handle “islands of automation” but there is no broadly available tool that deals with the overall cloud computing issue.

Next Post: Cloud Computing and Security

3 comments »

Posted in Green Data Center

Tags:

Cloud Computing: The Next Wave of Federal Computing? – Part 1 of 3

December 9th, 2009 by admin No comments »

Vivek Kundra (the US Federal CIO)  moderated a panel of experts on cloud computing yesterday at the “Cloud Computing Shootout”.

Cloud computing is a simple concept.  It’s all about scalable and on-demand computing and storage.  Think of the ‘cloud’ as a near infinite (for practical purposes) array of servers representing an abundance of computing power and storage space.  Customers access only as much of this ‘cloud’ as they need to run their respective applications.  The paradigm shift is very similar to the virtualization you may be seeing in your data center, but on a one-step back larger scale.  Cloud computing is to data centers what virtualization is to individual  servers.

Cloud computing is not a new concept.  It’s actually been around in the internet community for quite some time.   Amazon release the first widely available cloud computing services (s3 and ec2) between 2006 and 2007.

This entry is the first of a 3 part series on Cloud Computing in the Federal Government.

The two parts in this series:

No comments »

Posted in Green Data Center

Tags:

DHS Seeking Long Term Information Assurance Solutions from Bruce McConnell

November 13th, 2009 by admin 1 comment »

The US Department of Homeland Security (DHS) will play an integral role in the future of information assurance and cyber security in the United States.  The federal government has been reluctant to deploy military resources to protecting civilian information security, so DHS has become the de-facto hub of coordination between the federal government and critical private sector network architecture.  Given the increasing public  reliance on private sector systems, we need a system of best practices to secure the nation’s information infrastructure (both public and private).

Bruce McConnell (the counselor to Phil Reitinger, Office of National Protection Programs), is tasked with answering tough questions on the topic of national cyber security (or information assurance for you military security enthusiasts out there).

The following is a transcript from an interview between McConnell and The New New Internet (TNNI) held this November:

TNNI: Could you describe a bit about your background? Why are your involved in cyber security?

Bruce McConnell: I’ve been involved in cyber security since 1985. From 1985 to 1999 I was at the Office of Management and Budget and eventually in charge of information technology policy for the government. That entailed, among other things, what was called computer security. We wrote the earliest guidance for the agencies on securing their systems. It has been a continuing interest since then.Towards the end of my stay at OMB in 1999, I was given a temporary assignment to run the International Y2K cooperation effort among governments around the world. About 120 countries participated in that effort, which was very useful from a cyber security standpoint. It was in a sense the first potential massive denial of service attack caused by a bug — the Y2K bug, and it was mitigated successfully. Y2K taught everyone about the interconnections of cyber and the critical infrastructures such as power, transportation, energy, and finance. From 2000 to 2008 I worked in the private sector with IT companies in the government IT space. Towards the end of that I served as a member of the CSIS cyber security commission, and I led one of the working groups, which got me back into cyber security in a big way. When President Obama got elected, I was pleased and honored to be offered an opportunity to serve as part of the Administration. DHS is where it’s at for cybersecurity for the civilian agencies in government and for cooperating with the private sector in the United States, so it is a great place to be.

TNNI: As a counselor to Phil Reitinger, the Deputy Under Secretary for National Protection Programs Director at the DHS, what do your duties entail and what does a typical day look like for you?

Bruce McConnell: There is no typical day. Phil is the Chief Cyber Security official in DHS; not for DHS Systems, but government-wide and for our national responsibilities. Secretary Napolitano has said, if you have questions about cybersecurity, go to Phil. My job is to help Phil always be ready to answer those questions. My real role is to step back from the day-to-day challenges that DHS faces as a very operational agency, one that is trying to protect infrastructure and cyber infrastructure and build a capability to keep those things protected over the long term. I look beyond today’s emergencies or potential emergencies and think about our strategic direction and position. One of the things that I am focusing on right now is developing the department’s strategy for securing the dotgov domain and working with the private sector going forward. I’m fitting that into the national strategy that is being developed by the White House. Phil is not only the Deputy Under Secretary; he is dual hatted as the Director of the National Cyber Security Center, which coordinates the activities of a number of different cyber security centers and watches in the federal government. I am working closely with Phil to help stand that organization up. It has been around on paper for about a year and a half, but it is just beginning to become operational. Finally, one of the things the White House Cyber Space Policy Review called for is a national public awareness campaign. The Department of Homeland Security has the lead on that under White House overall guidance and direction. I am the Project Manager for that public awareness campaign, which kicked off in October with National Cyber Security Awareness Month. It will involve a longer term effort to educate the population and critical infrastructure sectors about cyber security.

TNNI: You just mentioned National Cyber Security Awareness month. What role do you think education plays in this continuing effort to secure cyber space?

Bruce McConnell: Education is absolutely critical in securing cyber space. As the Secretary has said, cybersecurity is our shared responsibility, and there is enough to go around for everyone to do something important and useful. It ranges from individuals keeping their antivirus protection up to date and being mindful about which emails they open, to small and large enterprises securing their systems and following best practices, having contingency plans, and so forth. The IT industry has a big responsibility in providing the tools and the metrics for success. It’s a matter of getting everyone aware of what they can do, what their responsibilities are, and how those fit into the larger picture.

TNNI: There has been significant speculation recently regarding the naming of a Coordinator for Cyber Security at the White House or commonly called the “Cyber Czar.” At the launch of the National Cyber Security Awareness Month both Chris Painter currently at the White House and Phil Reitinger pointed out that the search is about selecting the best person for the position. How urgent is it to have someone in the position and is it limiting the US’s ability to effectively coordinate on cyber issues in the interim at all?

Bruce McConnell: To clarify, it is not a czar. In fact, it is a coordinator. I think that is a critical distinction. It is a matter of coordinating and facilitating cooperation among the agencies. It’s important to have the right person. I was pleased a couple of months ago when Art Coviello from RSA said that he once took seven months to find the right CFO. I think it is important that they are doing a thorough job to find the right person, and in the meantime we are coordinating and cooperating very effectively. Chris Painter and Phil and their staffs meet regularly to discuss key issues. There is a robust interagency process. I think it is working well. We are looking forward to having the Coordinator to help us set priorities, but no one is letting the grass grow under their feet. The President released a video on the White House website in October underscoring the importance of cyber security, and I think we are moving forward.

TNNI: There has also been a recent movement towards cloud computing particularly within the government space. What do you see as some of the benefits and risks associated with the cloud computing model?

Bruce McConnell: I’m fascinated by this cloud computing model. In fact I was reading an article yesterday in the Wall Street Journal about how the French are having trouble finding French words to describe cloud computing because when you say “in the cloud,” it means that you are kind of fuzzy headed in French. We have that expression also of course, but we all know that what we are talking about is that fuzzy area that on Internet diagrams. Cloud computing is the latest rebranding of building intelligence into the network. If you look over time the pendulum goes back and forth between having the intelligence at the edges of the network or in the center. In the early days you had dumb terminals, and all of the intelligence was in the mainframe. Then it migrated out to the desktop and the network was pretty thin. We go back and forth on that. So there is a lot of experience in dealing with security in the cloud, we just called it different things in the past. The cloud offers benefits and risks both from a general operational and financial perspective as well as for a cyber security perspective. Since we are talking primarily about cyber security, I’ll focus in on the latter. The benefit is that if you do it right, your security is better because you have consolidated the data and have made security less a matter of individual responsibility. It’s less complex, less a matter of reconfiguring and catching every work station, and more a matter of dealing with it at an enterprise level or in a consolidated way. That consolidation can also produce risks, in that if you do it poorly you have data and computing power that is out of your control. The data may be more vulnerable to a physical attack or cyber attack and loss. It raises the stakes for cyber security, because on a good day it is more secure, but if it is done wrong the potential losses are higher.

TNNI: The vast majority of the nation’s cyber infrastructure is still in the private sector; some people say up to 85%. What role can and should the private sector play as we look to move cyber security forward?

Bruce McConnell: The private sector has a number of roles. First, it needs to secure its own systems, and, in particular, the cyber infrastructure — the networks and the devices that are on the networks. All of that equipment and software needs security built in, not bolted on. It needs to be operated in a secure manner, especially the networks and websites that support the daily functioning of the economy and that we all, including the national security community, rely on. We are all buying our leased lines and network services from the same carriers, so it is an interdependent ecosystem. So it is their responsibility to secure their own assets both for their own business purposes and for national reasons.Second, the industry has a responsibility to offer solutions to the rest of us, the consumers, whether those be private sector consumers or government consumers: secure software, reliable and secure hardware, assured supply chains, and to offer us a suite of reliable, easy to use tools. I think those are the two main responsibilities.

TNNI: What advice would you give to the private sector; particularly government contractors as they consider the best security practices for their organizations?

Bruce McConnell: Focusing specifically on government contractors, I think one of the most useful things that is going on right now is with some of the companies in the defense industrial base. As you know, the defense industrial base is one of the critical infrastructures. It is the suppliers that supply the Defense Department and other parts of the national security community with what they need to do their jobs. The Defense Department is working with key companies in that to help them protect their critical data, because the contractors have the designs for the weapons systems that they are building and other sensitive data. So, it is critically important that that data be at least as well protected as the government’s own data. Building on that example, I would suggest that other government contractors follow that lead and work with their customer agencies to share what they are learning about threats and vulnerabilities so that the products and tools and services that the government is being delivered are as a secure as possible.

TNNI: What issue in cyber security is of greatest concern to you and why?

Bruce McConnell: One of the challenging things about cyber security is its complexity. One thing that worries me is that we are not clear enough about our priorities. One of the reasons we have that problem is that we are short on metrics. Today if you own a small business or manage a large business, and you go to your Chief Information Security Officer and say, “I have another dollar to spend on cyber security, where should I spend it in order to be most effective? Should I spend it on employee training? Should I spend it on stronger firewalls? Should I spend it on better authentication?” there are no metrics that the CSO can give that business manager to tell him, “this is where we see the most cost effective use of the marginal dollar of investment in cyber security”. That is just because the field of cyber security is still immature, so we don’t have those metrics and we don’t know, “how much will my security be increased by sending another employee to training,” versus building a stronger firewall or having longer password protection. Until we get those metrics, our decisions about investments in cyber security are going to be based on anecdote and unclear criteria, rather than a more rigorous scientific data based approach to those decisions.

1 comment »

Posted in Information Assurance

Tags: