Posts Tagged ‘ Virtualization Security Podcast ’

Data in the Cloud: Does Information want to be Free?

November 16, 2012
By
CloudComputing

At a dinner party recently, I was asked "does information want to be free?" This question is based on information that exists within the cloud today or tomorrow: Data in the Cloud. It is an interesting question with a fairly ready answer. Information is Power, it is people not information that controls information. Granted we…

Read more »

Defense in Depth: Hardware Security

October 24, 2012
By
VirtualizationSecurity

On the last Virtualization Security podcast our guest was Robert Rounsavall, CEO of Trapezoid. Trapezoid is looking into how to alleviate supply chain security issues. In essence the security of the hardware. At many a presentation I have asked "do you trust the hardware and many times the answer is that they do another time…

Read more »

Gaining Visibility into The Cloud: Migration and Security

October 18, 2012
By
IaaSSec

On many a Virtualization Security Podcast I tend to mention that we need greater visibility into the cloud to judge whether Cloud Service Provider security measures are good enough. But why should we bother? I am not saying we should not be concerned about a cloud's security but that we should as tenants be concerned…

Read more »

Defense in Depth: Bromium vSentry for End User Computing

September 21, 2012
By
VirtualizationSecurity

On the 8/9 Virtualization Security podcast we continued our discussions on defense in depth with a look at end user computing devices, specifically laptops and end point desktops, with Simon Crosby, CTO of Bromium. While we did also discuss phones and tablets we were focused more on the technology preview that now is Bromium vSentry.…

Read more »

Defense in Depth: Authentication and Authorization

September 13, 2012
By
VirtualizationSecurity

On the 7/29 Virtualization Security podcast we continued our discussions on defense in depth. We discussed authentication and authorization with IdentityLogix. IdentityLogix provides a unique solution that correlates users and groups against VMware vSphere's own role based access control stores. In other words, IdentityLogix can identify if a user or group within active directory has…

Read more »

Defense in Depth: Intelligence Gathering

August 17, 2012
By
CloudComputing

Intelligence gathering is an oft overlooked aspect of system and data defense in depth. On the 7/12 Virtualization Security podcast we discussed new and old sources of such intelligence. We were joined by Urvish Vashi, VP of marketing, Alert Logic. Alert Logic has updated their report on cloud based security attacks. Add to this the…

Read more »

Defense in Depth: Know Your Attack Surfaces

July 12, 2012
By
VirtualizationSecurity

The 6/28 Virtualization Security Podcast we spoke about attacks, defense in depth, and compliance with Davi Ottenhiemer and Matt Wallace. Davi and Matt just published a book on how to defend your virtual environment against attack. Unlike other books, this approaches the problem from the point of view of well know attacks. It even gives…

Read more »

Defense in Depth: Firewalls within the Virtual Environment

June 18, 2012
By
VirtualizationSecurity

The 6/14 Virtualization Security Podcast we spoke about firewall placement within the virtual environment as well as storage based defense in depth. While we covered Encryption on the 5/31 podcast, in the 6/14 podcast we covered other measures when dealing with storage (which will be part of a followup post). This conversation was slightly different…

Read more »

Defense in Depth: Encryption within the Virtual Environment

June 14, 2012
By
VirtualizationSecurity

The 5/31 Virtualization Security Podcast we spoke to High Cloud Security about encryption as a defense in depth, and where to place encryption within the virtual environment. This lead to an intriguing discussion about what is actually missing from current virtual environments when it comes to encryption. We can encrypt within each VM and we…

Read more »

Featured Solutions