uncompiled.com

Cisco (NASDAQ: CSCO) today announced a major advancement in Internet networking — the Cisco® CRS-3 Carrier Routing System (CRS) — designed to serve as the foundation of the next-generation Internet and set the pace for the astonishing growth of video transmission, mobile devices and new online services through this decade and beyond.

With more than 12 times the traffic capacity of the nearest competing system, the Cisco CRS-3 is designed to transform the broadband communication and entertainment industry by accelerating the delivery of compelling new experiences for consumers, new revenue opportunities for service providers, and new ways to collaborate in the workplace.

Overview:

* The Cisco CRS-3 triples the capacity of its predecessor, the Cisco CRS-1 Carrier Routing System, with up to 322 Terabits per second, which enables the entire printed collection of the Library of Congress to be downloaded in just over one second; every man, woman and child in China to make a video call, simultaneously; and every motion picture ever created to be streamed in less than four minutes.

* The Cisco CRS-3 enables unified service delivery of Internet and cloud services with service intelligence spanning service provider Internet Protocol Next-Generation Networks (IP NGNs) and data center. The Cisco CRS-3 also provides unprecedented savings with investment protection for the nearly 5,000 Cisco CRS-1 deployed worldwide. Cisco’s cumulative investment in the Cisco CRS family is $1.6 billion, further underscoring the company’s commitment.

* AT&T, one of the world’s largest telecommunications companies, recently tested the Cisco CRS-3 in a successful completion of the world’s first field trial of 100-Gigabit backbone network technology, which took place in AT&T’s live network between New Orleans and Miami. The trial advances AT&T’s development of the next generation of backbone network technology that will support the network requirements for the growing number of advanced services offered by AT&T to consumer and business customers, both fixed and mobile.

* The Cisco CRS-3 is currently in field trials, and its pricing starts at $90,000 U.S.

Highlights and Capabilities for the Next-Generation Internet:

* Unmatched Scale: With a proven multi-chassis architecture, the Cisco CRS-3 can deliver up to 322 tbps of capacity, more than tripling the 92 tbps capacity of the Cisco CRS-1 and representing more than 12 times the capacity of any other core router in the industry.
* Unique Core and Data Center/Cloud Services Intelligence: In addition to capacity requirements, the growths of mobile and video applications are creating new multidirectional traffic patterns with the increasing emergence of the data center cloud. The new Cisco Data Center Services System provides tight linkages between the Cisco CRS-3, Cisco Nexus family and Cisco Unified Computing System (UCS) to enable unified service delivery of cloud services. This intelligence also includes carrier-grade IPv6 (CGv6) and core IP/MPLS technologies that permit new IP NGN architectural efficiencies required to keep pace with the rapidly growing cloud services market. Unique capabilities include:
o Network Positioning System (NPS) — provides Layers 3 to 7 application information for best path to content, improving consumer and business experiences while reducing costs.
o Cloud virtual private network (VPN) for Infrastructure as a Service (IaaS)-enables ‘pay-as-you-go’ for compute, storage and network resources by automating Cisco CRS-3 and Cisco Nexus Inter-Data center connections for Cisco UCS.
* Unprecedented Savings: The Cisco CRS-3 offers dramatic operational expense savings and up to 60 percent savings on power consumption compared to competitive platforms. The Cisco CRS-3 also delivers significant capital expenditures savings and investment protection for existing Cisco CRS-1 customers. The new capabilities in the platform can be achieved by reusing the existing chassis, route processors, fans and power systems with the addition of new line cards and fabric. These upgrades can be performed in-service and be provided by Cisco Services to ensure a smooth transition.
* Silicon Innovation: The Cisco CRS-3 is powered by the new Cisco QuantumFlow Array Processor, which unifies the combined power of six chips to work as one, enabling unprecedented levels of service capabilities and processing power. Making this implementation even more unique is its ability to deliver capabilities with a fraction of the power required by lesser performing chipsets. The Cisco QuantumFlow Array chipset was designed to provide the new system the ability to scale with the ever increasing demands being placed on the IP NGN by the many different applications and billions of devices being used by both businesses and consumers in the Zettabyte era.

Source

The Cloud Connect conference March 15-18 will feature leaders of the NoSQL movement speaking on how to handle large data sets in the cloud. The NoSQL movement and other cloud practitioners are likely to be out in force at the Cloud Connect 2010 conference March 15-18 in Santa Clara, Calif., one of the first major gatherings of the year on cloud computing.

One of the workshop instructors March 15 will be Dwight Merriman, CEO and co-founder of gen10 and the architect of the DoubleClick ad serving system, DART. DART is now serving billions of ads a day. Merriman will instruct a first day workshop on MongoDB and why it and other no-SQL systems, such as CouchDB and Hadoop, are preferable to traditional database systems for operations in the cloud.

MongoDB is a cluster or cloud-based data management system that does not rely on relational database principles. Cloud users try to get away from relational database for operations on large data sets because SQL queries tend to consume CPU cycles and “thrash the disk” as they pull data off it.

“NoSQL” systems work with data in memory, or upload chunks of data from many disks in parallel. 10gen is a New York-based company that sponsors the MongoDB open source project and provides commercial support for it.

Alistair Croll, an organizer of the event, said Merriman is one of several cloud computing professionals recruited to speak based on their credentials as “doers” in the cloud environment.

Another is Bradford Stephens, founder of Drawn to Scale, a firm which designs systems to deal with Web-sized masses of data. He will speak on “Introduction to Big Data and Storage at Scale” at 8:15-9:15 a.m. on March 18. His co-speaker will be Florian Leibert, software engineer, research, at Twitter.

The topic “Processing Big Data” at 9:30 a.m. March 18 will feature Chris Wensel, CTO and founder of Concurrent, a supplier of tools for creating applications that execute on parallel computing clusters, and Nathan Marz, lead engineer for BackType.com, a Web site that searches blogs and social networking sites for particular topics of discussion.

“Learning from Big Data with Scalable Analytics” will be the topic of a talk at 10:45 a.m. March 18 given by Michael Driscoll, founder of Dataspora, a firm producing software for data analytics and visualization, and Ted Dunning, CTO of Deepdyve, an aggregator of medical knowledge.

The Cloud Connect conference at the Santa Clara Convention Center is organized by TechWeb and is billed as bringing cloud computing stakeholders together in one event.

“These are the people who are the experts in a given domain, the guy who wrote the thing or the guy who invented it, ” said Croll. There will be many cloud computing vendors both on the show floor and in the ranks of speakers, but Croll said the conference was seeking to make their presentations “non-partisan” and focused on their subject expertise.

Source

Brocade’s “man-on-the-street” survey at this week’s RSA conference in San Francisco, revealed that 47 percent of respondents believe their network security solutions are less than 25 percent effective in thwarting security threats. Given the frequency of new attacks on networks every day, it’s clear IT security professionals aren’t feeling prepared.

Of those polled, nearly 20 percent of those surveyed believe their company’s security policies that deal with threats or data leaks are not being enforced effectively, while 80 percent believe the policies are only being “somewhat enforced.” Therefore, regardless of how ironclad a company’s security policies are, enforcing them 100 percent of the time is impossible and can expose a company to outside threats unnecessarily.

When asked about sources of security threats and breaches, 48 percent of those polled identified individuals within their organization providing or selling sensitive information to competitive companies as their most serious security concern; this was followed by concerns about threats posed by foreign governments (15%) and hacking attacks by cyber criminals (10%). Despite the constant threat of foreign entities and governments infiltrating U.S. companies that have made headlines, most security executives’ fears are overwhelmingly focused on internal competitive threats vs. a malicious foreign attack.

Another interesting finding revealed that nearly 40 percent of those surveyed felt background checks on employees were ineffective in determining if that person could be a potential spy for a competitor or foreign government.

The survey polled 144 conference attendees that are involved in the IT security decision making process within a wide variety of industries including networking manufacturing, education, software, healthcare, telecommunications, government and finance.

Source

Authorities in Spain have arrested three men accused of operating a massive botnet composed of 12.7 million PCs that stole credit card and bank log-in data and infected computers in half of the Fortune 1,000 companies and more than 40 banks, according to published reports.

The botnet “Mariposa,” which means butterfly in Spanish, first appeared in December 2008 and grew to be one of the largest botnets ever, The Associated Press reported. It spread the Butterfly worm via removable drives, MSN Messenger, and peer-to-peer programs and targets Windows XP and older systems.

Unlike many underground hackers, the alleged ringleaders of the operation were not skilled programmers, but had contacts who were, authorities said.

“They’re not like these people from the Russian mafia or Eastern European mafia who like to have sports cars and good watches and good suits–the most frightening thing is they are normal people who are earning a lot of money with cybercrime,” Cesar Lorenza, a captain with Spain’s Guardia Civil, which is investigating the case, told the news service.

In Spain, names and mug shots of arrested citizens are not released to protect their privacy, though they were identified by their Internet aliases: “netkairo,” 31; “jonyloleante,” 30; and “ostiator,” 25. They face up to six years in prison if convicted of the hacking charges.

More arrests are expected, authorities said. The botnet is no longer operating, according to the AP report.

Source

In a US Senate Committee on Commerce, Science and Transportation hearing, security experts have expressed extreme concern about US defences against cyber-attacks. Former vice-admiral and head of National Intelligence Michael McConnell even went as far as claimingPDF that the US would be on the losing side should a hostile power launch a cyber war against it. This is not, according to McConnell, because US security staff are less talented or because its technology is inferior, but rather the US is vulnerable because it is the best networked country – for which reason it also has the most to lose.

It is precisely this state of affairs which the recently passed Cybersecurity Enhancement Act of 2009 is intended to resolve. It aims to ensure, by means of training, research and better coordination, that the government and government agencies are better protected against attacks originating from cyberspace. The Act still has to pass through the US Senate.

James Lewis of the Center for Strategic and International Studies (CSIS) also emphasisedPDF US vulnerability to attacks. According to Lewis, it is known that countries such as China and Russia are already carrying out espionage to determine how they can disable the US electricity grid. He believes that they and other countries are now in a position to be able to knock out the electricity grid in the event, for example, of a conflict over Taiwan or Georgia. However he thinks that it unlikely that China or Russia would go down this route, as it would be too great a risk politically, comparable to bombing a power plant, and would trigger a vigorous US reaction. In addition, he notes, even hostile states would suffer should, for example, Wall Street be knocked out.

However Lewis plays down concerns about terrorist attacks, saying that If terrorists were really in a position to carry out cyber-attacks, they would already have done so. The belief that they are in a position to do so, but have so far held back for whatever reason is “ridiculous”. Terrorists are, in his opinion, crazy people. Lewis warns that this situation could change if hostile powers were to provide terrorists with the requisite knowledge and skills. Lewis feels that at present, neither China nor Russia would cooperate with extremists.

Nonetheless, the US and the US economy is already being bled by constant small-scale cyber-attacks. According to Lewis, theft of important information and attacks by cyber-criminals are already doing immense damage to both business and government. If no action is taken, the patient will, Lewis told the hearing, eventually bleed to death – therefore he considers passage of the Act to be an urgent necessity.

Source

ASF Flagship Project is World’s Most Popular Web Server, Powering More than 112 Million Websites

FOREST HILL, MD, 23 February, 2010 — The Apache Software Foundation (ASF) — developers, stewards, and incubators of 138 Open Source projects — today announced the 15th anniversary of the Apache HTTP Web Server.

The ASF’s first project became the world’s most popular Web server software within the first six months of its inception. The Apache HTTP Server today powers nearly 112 million Websites world-wide.

A triumph for the all-volunteer Foundation, the Apache HTTP Server reliably delivers petabytes of data across the world’s most demanding uses, including real-time news sources, Fortune 100 enterprise portals, cloud computing clusters, financial services platforms, mission-critical military intelligence applications, aerospace communications networks, and more. The server software can be downloaded, modified and installed by anyone free of charge.

History

The Apache Server started as a fork (an independent development stream)
of the NCSA httpd, a Web server created by Rob McCool at the National Center for Supercomputing Applications. Further development to the server ceased after McCool’s departure from NCSA in 1994, so an online community of individuals was formed to support and enhance its software via email collaboration. The founding members of that community (the Apache Group) included Brian Behlendorf, Roy Fielding, Rob Hartill, David Robinson, Cliff Skolnick, Randy Terbush, Robert Thau, and Andrew Wilson.

Within less than a year of the Apache Group’s formation, the Apache server surpassed NCSA httpd as the #1 server on the Internet.

In March 1999, members of the Apache Group formed The Apache Software Foundation to provide organizational, legal, and financial support for the Apache HTTP Server. An additional goal for the Foundation was to serve as a neutral, trusted platform for the development of community-driven software.

Growth, the “Apache Way”

Beyond the Apache HTTP Server, dozens of ASF projects – from build tools to Web services to cloud computing and more – lead the way in Open Source technology.

At the ASF, community plays a vital role in the collaborative development of consensus-driven, enterprise-grade solutions. The number of projects led by the Apache community has grown from the singular Apache HTTP Server at the ASF’s inception in 1999 to nearly 140 projects today.

The ASF’s commitment to fostering a collaborative approach to development has long served as a model for producing consistently high quality software and helping advance the future of open development. Through its leadership, robust community, and meritocratic process known as the “Apache Way”, the ASF continues to gain recognition as one of the most successful influencers in Open Source.

Through the Apache Way, the ASF is able to spearhead new projects that meet the demands of the marketplace and help users achieve their business goals. With the Apache Incubator mentoring more projects than ever before, the ASF continues to meet the growing demand for quality Open Source products.

“Community Over Code”: among the Foundation’s core tenets is open collaboration through respectful, honest, technically-focused interaction. The ASF’s success is testament to its outstanding community efforts that serve as best practices widely embraced by organizations and individuals alike.

“If it didn’t happen on-list, it didn’t happen”: building upon the transparency-oriented culture of the Apache Group, whose collaboration took place on email lists, millions of messages are archived on Apache publicly-accessible mailing lists, documenting the ASF’s achievements over the past decade.

“Meritocracy in Action”: the ASF’s tagline reflects an average of 10,000 code contributions (commits) made each month. The ASF is responsible for millions of lines of code by more than 2,000 ASF Committers and countless contributors across the Open Source landscape. Nearly 500 community-driven modules have been developed to extend functionality of the Apache HTTP Server alone.

Milestones

February 23, 1994: Individual patch authors around the world are invited to join the “new-httpd” mailing list to discuss enhancements and future releases of NCSA httpd. The Apache name was chosen for this new effort within the first few days of discussion, along with basic rules for email-based collaboration and a mission to replace the existing server with a standards-based, open source, and extensible software system.

March 15, 1994: Apache-style voting created (+1, 0, -1; with ‘-1′ meaning ‘no’, ‘0′ meaning ‘neutral’, and ‘+1′ meaning ‘yes.’)

March 18, 1994: First Apache Group release (Apache 0.2)

Apache server v.1.0 was released in December 1995. Four years later, Apache HTTP Server v.1.3.0 was released, and rapidly becoming the most popular Web server on the planet.

Apache HTTP Server v.2.0 alpha was released in March 2000, with the first general availability release two years later. V.2.0 remained best-of-breed sever until the release of v.2.2.0 in December 2005, and is widely deployed across the Internet.

In February 2009, the Apache HTTP Server became the first Web server software in history to surpass the 100 million Website milestone.

The most current, best-of-breed, stable version of the Apache HTTP Server is v.2.2.14, released September 2009. Developers seeking to test new features and preview what will become stable Version 2.4 are able to do so today with the development of v.2.3.5.

Earlier this month, after ten years and more than forty revisions, the Apache HTTP Server v.1.3.x officially reached end of life status with the release of v.1.3.42. Future patches to v.1.3.x will be for critical security updates only.

The Apache HTTP Server remains the world’s most beloved Web server, forming the backbone of nearly 70% of all sites on the Internet.

Availability

The Apache HTTP Server is available for a variety of operating systems, including Unix, Linux, GNU, FreeBSD, Netware, Solaris, Windows, Mac OS X, OS/2, TPF, and eCS. In addition, the Apache HTTP Server is redistributed through many proprietary software packages such as WebSphere, Oracle RDBMS, Kylix, NetWare, and Delphi, as well as numerous Linux distributions.

All ASF projects, including the Apache HTTP Server, are available free of charge under the Apache Software License v.2.0. To download, or for more information, visit http://httpd.apache.org/

About The Apache Software Foundation (ASF)

Established in 1999, the all-volunteer Foundation oversees more than seventy leading Open Source projects, including Apache HTTP Server — the world’s most popular Web server software. Through The ASF’s meritocratic process known as “The Apache Way,” more than 300 individual Members and 2,000 Committers successfully collaborate to develop freely available enterprise-grade software, benefiting millions of users worldwide: thousands of software solutions are distributed under the Apache License; and the community actively participates in ASF mailing lists, mentoring initiatives, and ApacheCon, the Foundation’s official user conference, trainings, and expo. The ASF is funded by individual donations and corporate sponsors including Facebook, Google, HP, Microsoft, Progress Software, SpringSource, and Yahoo! For more information, visit http://www.apache.org/.

Source

Over the weekend, my cloud computing infrastructure survived a major hacking attack. Here is what happened and what it took to recover it.

This weekend my servers out in the cloud space fended off a major hacking attack across two of the systems that I have given the public access to use them. The attack started simply on Friday night as a simple series of scans to see if there was anything in the IP space that I am using. This is the fairly standard attack pattern that many information security people see every day. Thinking that this was normal I closed up shop on Friday and went home.

On Sunday I got an alert from the system that it had hung and when I went to go try to take a look at it using HTTP and SFTP the computer simply would not respond, there was no way to access it. In the control panel provided by the company I use for cloud hosting, I simply rebooted the box thinking that it was hung on a process that was keeping the box from being accessed. Over Sunday night, I got three more alerts that that the box had hung.

Monday morning when I went into work I rebooted the box again (this is a low priority box with almost no regular use over the weekend) and dove into the error logs for the box.

Over the Saturday Sunday time period someone had seriously tried to get into the computer. Over 250 gigs of access logs and over 300 gigs of error logs had almost consumed the disk space that I was using. The computer was not simply hung on a process, it had been resource starved because during the hacking attack the hacker had hit the system so hard that there were no more ports open to make a legitimate connection. They had towards the end of the attack (Sunday night) hit the computers with what looks like a simple denial of service attack at towards the end of the attack.

My thoughts on this is that, my computer survived and came back to operations with a simple reboot of the cloud computer to free up resources that had been consumed during the attack. No data was lost or stolen from the system and its role is to deliver Multi-media and provide data back to a Learning Management System. This meant the loss of some ability for the LMS but nothing that would have killed the entire system.

The 300 Gigs of error logs is over kill, the assumption was that at some point the hacker or hackers got angry enough that they could not get into the system that they simply did a Denial of Service against the box aiming to resource starve the system and cause problems for the System Administrator over the weekend. I do not think they knew it was on the cloud or that it was a simple matter of rebooting the box to restore services.

The hacker or hackers had failed in getting into the box, which is good, but resorted to DDOS to cause resource starvation as a final act. I do not think we are dealing with a true professional, but I do think we are dealing with a person who is a step above a script kiddy. They had access to an awesome level of firepower for their DDOS, we logged thousands of IP’s Sunday night. My belief on this one is that the person or persons had access to a botnet or a very large number of compromised systems to make this work.

I paid 20 cents a gig in bandwidth costs for the attack, with the 500 gigs of traffic roughly aimed at the system according to my monitor I paid 100 dollars to my cloud service provider for bandwidth consumed during the attack.

I only had temporary loss of one system because of the way that we distributed the cloud architecture across multiple systems in different data centers. As users switched over to different data centers, the system performed as architected, people were able to get their data over the weekend and nothing was truly slowed down or otherwise inaccessible during the attack.

It took two hours to go through the log files on the system to see what had happened. It took 15 minutes to generate the report to IT. This is literally the quickest I have ever gone through an attack, with clean up and with log analysis ever. It is also the cheapest attack I have ever dealt with in terms of loss or dollar costs associated with an attack ever. Which made for a fun hacking attack with a ton of data to use in the classroom and share. The good part is that a distributed architecture in this case worked which validates the way we built the cloud based system with fail over in mind, not necessarily a hacking attack induced failure of a system.

It is possible to attack a cloud computing system, and it is possible to resource starve a cloud computer, but in the longer run survivability and the ability to get to data relies on the architecture that the system was initially built around. If you are building a cloud space for your company, think in terms of survivability and fail over if a system in your cloud space fails for any reason and how to recover and still present data to the end user. Hacking attacks happen, and hackers will get angry and try to DDOS your site off the planet, how you architect your cloud space and cloud services will help you survive hackers as well as the occasional other failures in the system.

Source

Encryption is an essential element of any data protection plan. It applies from the employee desktop to the data center and the cloud, and all points in between. IT organizations are adding cryptographic measures to maintain consumer privacy, preserve data integrity, avoid data loss, prevent intrusions, and address compliance demands. Each new data protection technology contributes to a growing volume of keys that need to be managed, and fractures the hope of maintaining control.

PGP® Key Management Server provides organizations with the infrastructure and tools to manage large scale deployments of encryption keys and certificates. Instead of using proprietary standalone key repositories or custom single purpose tools, PGP Key Management Server delivers a better approach to managing encryption keys by starting with a design core around supporting different types of keys, trust models and applications.

* Pare down operational cost and complexity – Maintaining multiple key repositories requires extensive labor, resources, and expertise. PGP Key Management Server simplifies the environment with a consistent administrative interface.
* Reduce risk of unrecoverable data – Ensure that dependable key recovery methods are in place before the need arises.
* Prevent unexpected downtime – Unanticipated certificate expirations can bring business to a standstill. Automate certification updates and eliminate certificate accidents that lead to system outages.
* Stay in control – IT leaders need to know if their security policy matches reality. Key management helps organizations account for encryption keys throughout their environment and demonstrate proof of compliance.

PGP Key Management Server provides a versatile foundation to centralize management of encryption throughout the enterprise to help organizations take control over their encryption keys, strengthen security, and reduce operational cost.

Source

Internet engineers continue to enhance Internet security with the release of OpenDNSSEC, a tool which simplifies the process of signing one or more zones with DNSSEC. OpenDNSSEC handles the entire process, including secure key management and rollover issues. With OpenDNSSEC, fewer manual operations are needed by the operator.

OpenDNSSEC ensures that all the steps in signing process are done in the correct order and at the right time, making sure that nothing breaks. The issue of storing the private keys associated with DNSSEC signing has been handled using so-called HSMs (Hardware Security Modules), so that the private keys can not be leaked to an unauthorized third party.

OpenDNSSEC works in all Unix-like operating systems and is suitable both for those who will only sign a single large zone (such as top-level domains) and those who have many small zones (e.g. web hotels, ISPs).

Developed by industry leaders including .SE (The Internet Infrastructure Foundation), NLNetLabs, Nominet, Kirei, SURFnet, SIDN and John Dickinson, OpenDNSSEC will seamlessly integrate domain name security extensions (DNSSEC) into already existing IT systems without the need for organizations to change their infrastructure.

OpenDNSSEC has some known issues, but they will be fixed in a future release:

* Auditor slow for large zones
* KSK rollover requires manual timing
* Too slow when handling massive number of zones.

Source

A storage startup called Nasuni is unveiling a virtual NAS file server that runs on VMware and connects customers to cloud platforms such as Amazon’s Simple Storage Service, adding encryption to enhance security and several features to improve performance.

Nasuni was founded last year and on Tuesday is announcing the beta version of its Nasuni Filer – a so-called “cloud storage gateway.” Target customers are mid-sized companies who are interested in cloud storage, but are concerned about exposing sensitive data or suffering from high latency.

“We connect our customers to partners, people like Iron Mountain and Amazon that provide cloud storage, and we are delivering it as a file server in your virtual environment,” says Nasuni founder and CEO Andres Rodriguez, who previously founded Archivas, an online storage management software vendor acquired by Hitachi Data Systems three years ago.

Nasuni is based in Natick, Mass., with 18 employees, and has $8 million in first-round funding from North Bridge Venture Partners and Sigma Partners. Rodriguez says Nasuni has eight customers in alpha mode and is now offering the filer in a free public beta.

Nasuni’s NAS file server runs in a VMware virtual machine and integrates with either Amazon S3 or Iron Mountain remote storage services, while providing features such as encryption, caching, deduplication, automatic provisioning, and synchronous snapshots.

Accessing cloud storage introduces latency, Rodriguez says, but Nasuni allows users to work with a local cache, speeding up access to data.

“It’s quite clever,” says IDC analyst Laura DuBois. “It does address security concerns in the form of encryption of data in flight and at rest, and it also certainly addresses the concerns around availability.”

Nasuni is one of many startups building software and services that add capability to cloud platforms such as Amazon. For example, the company RightScale was founded to help customers build and clone virtual servers and manage storage in the cloud, and Symantec offers storage management for Amazon customers.

Nasuni will make its product generally available in the spring, and add more partners before doing so, according to Rodriguez. Nasuni will start charging customers after the beta trial, with fees starting around $250 a month. Although two vendors will be involved in each sale, customers would receive just one bill, which could come either from Nasuni or a partner depending on the billing model, he says.

Source