Virtualization Security vendors are starting to seriously investigate the possibilities of the various introspection APIs available to the hypervisors. Introspection APIs allow security groups to now investigate the security of a virtual network, virtual machine, and other components from without. In other words, why rely on an agent within the VM to protect your network, virtual machine, or components. Instead, we can use these APIs to peer into these components from without the system to be tested.
On the most recent Virtualization Security Podcast, the panel was joined by VMware’s Charu Chaubal to discuss the latest draft of the VMware vSphere hardening guide.
Veeam has introduced a new product named SureBackup. SureBackup is designed to not only use Veeam’s Backup technology to backup your virtual machines (VMs) but will also test the restoration of each of these VMs to ensure that they at least boot and at most the applications involved are actually running within the VM.
In many ways, the IT world has gone certification happy. Nearly every job requirement lists certifications as well as length of service, however, in the realm of cloud computing and virtualization what do these certifications mean? Are they even valuable? Is there a general enough certification that covers all the hypervisors, is there a third party certification available?
The most recent Virtualization Security Podcast was on the subject of virtualization security for the SMB. Specifically cover the case where the customer wanting virtualization security could afford to purchase a hypervisor and perhaps one other security product. In the end the panelists came up with a list of suggestions for virtualization security for the SMB that are applicable to all levels of Virtualization. The panel looked at SMB security with an eye towards Availability, Integrity, and Confidentiality.
There are now more players in the virtualization security product space. While at RSA Conference 2010 I walked the show floor in search of these vendors to discover what they were doing. While some vendors do not address virtualization security, the vast majority are either looking to do so or actually have a virtualization security product.
I talked extensively to Hyper9 to determine if their product would be a good fit for the SMB as most of their marketing literature is geared towards helping to manage thousands of VMs not necessarily 100s of VMs. My thoughts before talking to them is yes it would be useful, but after talking to them, I discovered some key facts that would help an SMB decide on whether or not to invest in Hyper9 which is a tool to allow you to query the VMware virtual environment for issues as well as general information.
While at RSA Conference I visited the RSA Innovation Sandbox and noticed that three out of ten virtualization security vendors were finalists:
* Altor Networks
* Catbird Security
Alto Networks won the Innovation Sandbox contest and all that goes with it. Congratulations to them, but Altor’s win is actually a win for all virtualization security players. It shows that virtualization security is extremely important to the data center as well as moving forward to the cloud.
Cloud Computing ...
• • 0 Comments
The Cisco-VMware-NetApp (CVN) was discussed on the Virtualization Security Podcast as it pertains to Secure Multi-Tenancy (SMT). This is a major concern that was also discussed at RSA Conference 2010 within the Cloud Security Alliance Summit. The question still remains how to achieve this goal however. CVN is a very good start, but as we discussed on the podcast is missing some key elements.
Join my Circle on Google+
Plugin by Social Author Bio