This slide describes the background, highlights, practices, and cases of the application virtualization
Slide Overview
solution provided in Huawei FusionCloud Desktop Solution 5.3.
Intended Used for preliminary communication with VIP customers who are interested in application
Purpose virtualization.
This slide is used for preliminary communication with customers and can be revised based on
Intended Usage
customers' concern.
Heavy pressure is put on IT control and Complex distributed application Popularity of smart phones
security supervision. deployment increases costs.
Mobile office requirements
Applications and data stored on user IT personnel have to upgrade
Service outsourcing and service
devices are facing security risks. applications running on hundreds of
continuity requirements
Applications installed on user devices devices from time to time.
may conflict with each other, resulting in
slow operation or even breakdown of
devices.
Emerging IT systems are in an urgent
need of data security supervision.
Simplified IT management
Application publishing in
Windows Server seconds
Centralized deployment
without data stored locally
Desktop Secure and controllable
transmission
protocol
Mobile office
Access anytime,
anywhere
Quick fault recovery
Shortened service
Application virtualization allows multiple users to share interruption time
applications and desktops centrally managed by the Window
Server. Users can access secure applications and desktops
from any terminal without the need of installing applications.
Unauthorized users cannot view data of other Users are not allowed to modify the OS.
users.
Unauthorized users cannot view data of other users.
employees.
Secure office network of
an enterprise Internet Solution Highlights
Employees access the Internet using browsers
Solution Highlights
VM VM
Virtual application
Resources are allocated on a unified desktop cloud
publishing
platform platform to quickly deploy branch offices.
Solution Highlights
New clients do not need to be developed for mobile terminals,
costs.
HDP over SSL All applications and data of service systems are stored on the
WEB Exchange cloud, and only image data is delivered to mobile terminals.
security.
Application CRM ERP Applications are centrally upgraded and maintained on the
publishing servers
cloud, reducing maintenance workloads of applications.
AD DHCP DNS
TC Windows
LB/Gateway
server VM
HDP Agent
HDP
Windows
server
VM
Service stream
desktop cloud access
Control stream management system FusionAccess
FusionSphere management Portal
cloud OS
A FusionAccess system supports both VDI and
SBC, including:
Uniform Huawei Desktop Protocol (HDP)
Uniform management component
HDP
Transmits only application images and keyboard and mouse information other than service Transfers image changes and device support information.
data over the network. Provides 32 virtual channels to transmit different information.
Implements unified identity authentication and rights control on users, such as forbidding file Transfers keyboard scanning codes and mouse events, and
Uses SSL to encrypt transmission when users access from the extranet. Controls screens by obtaining information on the server.
[Client]
PC CRM
[Server]
Laptop
HDP Data center
Mobile
terminal SAP
Virtual
desktop
Unified O&M
Unified alarm Unified report
monitoring management
Lossless compression for non-nature pictures: Automatically identifies the non-nature pictures such as text, Windows figures, and lines
in pictures, and implements lossless compression for them. Nature pictures, such as photos and images, are compressed at an
appropriate rate.
Does not repeatedly transmit same image data: Automatically identifies the unchanged data in an image, and transmits only the changed
image data, which greatly reduces the bandwidth consumption.
Multiple image compression algorithms: Uses the optimal compression algorithm.
PSNR of non-nature pictures is higher than 50000 dB, and SSIM is 0.999955, which is nearly lossless
HDP protocol: Voice quality PESQ exceeds 3.4 and is the highest in the industry. Source voice is
accurately restored.
Page 19 HUAWEI TECHNOLOGIES CO., LTD.
Display Sound Video Login
Network status
indicator
Data transmission security is improved by encrypting data transmission and controlling the desktop transmission
channel (using HDP).
Access gateways support user authentication. The adoption of software gateways reduces costs.
Two-factor authentication is supported, including the smartcard, fingerprint, and dynamic password.
Single sign-on (SSO) of applications is supported.
In the application virtualization scenario, the HDP supports multi-session isolation. That is, one user's operations on
the keyboard, mouse, and peripherals and display- and audio-related operations are isolated from operations of other
Page 22 users based on sessions. HUAWEI TECHNOLOGIES CO., LTD.
Security Availability Compatibility Mobility
Users OS OS
Optimal resources are
selected based on loads: APS session VM VM
Lightest CPU loads servers Management
Lowest memory usage nodes
Least session connections
Quick Adaptation
Supports voice input (integrates iFlyVoice) and floating touch ball (network status
monitoring and software keyboard and mouse).
Page 25 HUAWEI TECHNOLOGIES CO., LTD.
Security Availability Compatibility Mobility
Solution
The application virtualization feature provides native Windows
applications.
The application virtualization solution integrates with mobile device
management (MDM) software, such as Huawei AnyOffice, to support SSO
of applications and provide a unified workbench.
AnyOffice provides a unique entry for users to access applications
(including desktops, Windows applications, native applications, and web
applications).
Virtual
desktop Native
applications
Customer Benefits
SaaS
Enterprise applications are integrated so that employees can easily
Windows
access the applications and work efficiency is improved.
applications
Mobile office improves office efficiency by 15% (collected from Huawei IT
department).
AD/DHCP/ HDC/LI
/WI/DB
ITA vAG/
vLB
User data storage
DNS
Application virtualization User profile roaming: User profile data of shared desktops and remote
Management cluster cluster VDI cluster
applications is stored on a third-party shared file server using the roaming
Storage network user configuration and folder redirection functions of Windows OSs.
Cloud data center
Storage
resource pool
User data storage: User personal data of shared desktops and remote
applications is stored on a third-party storage system, such as NAS.
Supports Windows Server 2008 R2 Standard Edition, Enterprise Edition, Professional Edition, and Data Center
Edition.
Supports Windows Server 2012 R2 Standard Edition, Enterprise Edition, Professional Edition, and Data Center
Edition.
Clients:
PC: Windows XP/7/8.1 OS
Windows TCs: CT5000/5100/6000/6100, GI945
Linux TCs: CT3000/3100/5000/5100/6000/6100, GI945, Sunniwell TCs. Shared desktops do not support
windowed mode.
Mobile clients:
iOS mobile clients: later than iOS 7.0
Android mobile clients: Android 4.0 or later
Test results of a project: Application virtualization provides an access rate two to six times quicker
than SSL VPN and reduces 60% bandwidth than SSL VPN.
Page 31 HUAWEI TECHNOLOGIES CO., LTD.
4 Cases Help Customers in
Business Success
Firewall Router
• Journalists cannot collect, edit, send, and publish news in real time using
Mobile terminal
Aggregation switch traditional devices that are heavy and difficult to carry.