The Virtualization Practice

Author Archive for Edward Haletky

Edward Haletky
Edward HaletkyEdward L. Haletky, aka Texiwill, is the author of VMware vSphere(TM) and Virtual Infrastructure Security: Securing the Virtual Environment as well as VMware ESX and ESXi in the Enterprise: Planning Deployment of Virtualization Servers, 2nd Edition. Edward owns AstroArch Consulting, Inc., providing virtualization, security, network consulting and development and The Virtualization Practice where he is also an Analyst. Edward is the Moderator and Host of the Virtualization Security Podcast as well as a guru and moderator for the VMware Communities Forums, providing answers to security and configuration questions. Edward is working on new books on Virtualization. [All Papers/Publications...]

Virtualization Security vendors are starting to seriously investigate the possibilities of the various introspection APIs available to the hypervisors. Introspection APIs allow security groups to now investigate the security of a virtual network, virtual machine, and other components from without. In other words, why rely on an agent within the VM to protect your network, virtual machine, or components. Instead, we can use these APIs to peer into these components from without the system to be tested.

In many ways, the IT world has gone certification happy. Nearly every job requirement lists certifications as well as length of service, however, in the realm of cloud computing and virtualization what do these certifications mean? Are they even valuable? Is there a general enough certification that covers all the hypervisors, is there a third party certification available?

The most recent Virtualization Security Podcast was on the subject of virtualization security for the SMB. Specifically cover the case where the customer wanting virtualization security could afford to purchase a hypervisor and perhaps one other security product. In the end the panelists came up with a list of suggestions for virtualization security for the SMB that are applicable to all levels of Virtualization. The panel looked at SMB security with an eye towards Availability, Integrity, and Confidentiality.

I talked extensively to Hyper9 to determine if their product would be a good fit for the SMB as most of their marketing literature is geared towards helping to manage thousands of VMs not necessarily 100s of VMs. My thoughts before talking to them is yes it would be useful, but after talking to them, I discovered some key facts that would help an SMB decide on whether or not to invest in Hyper9 which is a tool to allow you to query the VMware virtual environment for issues as well as general information.

While at RSA Conference I visited the RSA Innovation Sandbox and noticed that three out of ten virtualization security vendors were finalists:

* Altor Networks
* Catbird Security
* HyTrust

Alto Networks won the Innovation Sandbox contest and all that goes with it. Congratulations to them, but Altor’s win is actually a win for all virtualization security players. It shows that virtualization security is extremely important to the data center as well as moving forward to the cloud.

Google Circle
Join my Circle on Google+

Plugin by Social Author Bio