The Apache CloudStack project has announced the 4.1.0 release of the CloudStack Infrastructure-as-a-Service (IaaS) cloud orchestration platform. This is the first major release from Apache CloudStack since its graduation from the Apache Incubator on March 20 of this year.
- [Checklist] Vendor Risk Management Fundamentals
- Building and Managing an IT Security Operations Program
- How Enterprises Are Developing Secure Applications
- Managing the Risk of Post-breach or Resident Attacks
The arrival of this version of CloudStack is being described by some as proof that it is still "thriving"; the technology base itself has not had the smoothest ride since it was acquired by Citrix in 2011. But the new and improved CloudStack now includes API controls for managing the compute, networking, accounting, and storage resources for private, hybrid, or public clouds.
Bugfixes from the 4.0.x cycle have now been ironed out and the 4.1.0 release gives developers a new structure for creating RPM/Debian packages. This also completes the changeover to using Maven as a build tool.
New features include an API discovery service that allows an end point to list its supported APIs and their details. The team has added an "events framework" to provide an "event bus" with publish, subscribe, and unsubscribe semantics.
There is also a RabbitMQ plugin that can interact with AMQP servers and (perhaps most interestingly of all) new API request throttling to prevent attacks via frequent API requests.
It's a long list of new feature aspects here. Some additional points include AWS-style regions, Egress firewall rules for guest networks, plus functions for resizing root and data volumes.
In addition to the official source code release, individual contributors have also made convenience binaries available. You can find links to the convenience binaries on the download page as well.