Virtualization Security

Virtualization Security focuses upon end-to-end security, integrity, auditability, and regulatory compliance for virtualization and clouds. Virtualization Security starts where the cloud and virtual environments begin: the end user computing device.|We follow the user through the virtual and cloud stacks until they reach the application the user wishes to use to retrieve the data that is important to them. Virtualization and cloud security is implemented where there is an intersection between user, data, and application while maintain strict control of management interfaces. As such virtualization security looks into all aspects of security devices, tools, controls, and guides that impact or can be used to secure virtual and cloud environments.

Most Recently added Virtualization Security Resources: (See More...)

Adallom: Visibility into Your SaaS Provider Instance

January 23, 2014
By
VirtualizationSecurity

Tal Klein of Adallom joined us on the January 16 Virtualization Security Podcast to discuss Adallom’s approach to logging, auditing, and generally gaining visibility within most SaaS applications. Adallom solves two longstanding problems: how can we as tenants obtain appropriate tenant-only logs of actions within a SaaS application, and how do we determine abnormal behavior…

Read more »

Privacy and the IoT

January 15, 2014
By
CloudComputing

Privacy is defined many different ways, but however you define it, when it comes to how corporations use data your privacy becomes very important. What companies do with your data may at times seem like an invasion of your privacy, but in these cases, privacy has well-defined limitations in the eyes of the law. Will…

Read more »

Something Is Wrong: It Must Be the Hypervisor!

January 8, 2014
By
VirtualizationSecurity

Something is wrong—it must be the hypervisor! If you work in any virtual or cloud environments, how many times have you heard that statement as soon as any kind of problem surfaces? Way back when during the twentieth century, as a problem deflection, the network would immediately be blamed. As we got into the twenty-first century, virtualization…

Read more »

The Security of Converged Infrastructures

January 7, 2014
By
VirtualizationSecurity

On the January 2, 2014, the Virtualization Security Podcast was joined on the spur of the moment by @Josh_Atwell, who works for VCE, to discuss the security of converged infrastructures. This was of particular interest to me due to my current research on the security of a VCE Vblock. The research got me thinking about…

Read more »

Bromium Is a King Hit to the Anti-Virus Establishment

January 2, 2014
By
VirtualizationSecurity

I had the pleasure of speaking with Simon Crosby recently. For those of you who do not recognize the name or are not familiar with XenServer, let me enlighten you. Simon was a co-founder of XenSource (now XenServer), which is a hypervisor that Citrix acquired in order to compete in the VDI (virtual desktop infrastructure)…

Read more »

Scope: It Is All about Scope

December 17, 2013
By
Scope: It Is All about Scope

When to implement security and data protection practices, or even change existing ones, is all about timing, knowledge, and scope. Deciding what to implement at any particular time requires knowledge of what needs to be fixed, and also of what the future could hold. To do this properly, you need to pay close attention to…

Read more »

Lowest-Hanging Fruit of Cloud Security

December 10, 2013
By
VirtualizationSecurity

At nearly every conference, we talk about the lowest-hanging fruit of virtualization security, but we often miss the discussion about the lowest-hanging fruit of cloud security. They are not the same. Are we talking about good SSL hygiene? That is a part of it, but there is something even more basic than that. John Dickson,…

Read more »

A Tale of Two Clouds

December 5, 2013
By
CloudComputing

Recently I have had the pleasure of discussing security with a number of cloud providers. Specifically, we talked about what security they implement and how they inform their tenants of security-related issues. In other words, do they provide transparency? I have come to an early conclusion that there are two types of clouds out there:…

Read more »

Replacing Franken-Monitors and Frameworks with the Splunk Ecosystem

December 2, 2013
By
Franken-Monitorsmall

In Beware of the Franken-Monitor, we explained how many enterprises ended up with Franken-Monitors and the dangers associated with assuming that the present state of management tools can make the transition into the software-defined data center (SDDC) and the cloud. In Getting Rid of Your Franken-Monitor, we explained how to use green-field islands to put…

Read more »

Featured Solutions