Virtualization Security

Virtualization Security focuses upon end-to-end security, integrity, auditability, and regulatory compliance for virtualization and clouds.

Most Recently added Virtualization Security Resources: (See More...)

Virtualization Related SSL MiTM Attack, chances?

December 9, 2009
By

There has been quite a bit of discussion between myself, Tim Pierson, and other with respect to SSL man-in-the-middle attack possibilities within the virtual environment. But what are the chances that such an attack will happen, or that someone would know how to perform the attack? What does the attack depend upon?

Read more »

VLANs/FCoE/CNA – Mixed Security Data on One Wire

December 2, 2009
By

Over the past year or so I have been thinking pretty heavily about the direction networking is taking within virtualization. In some ways, it appears security has been forgotten or relegated to 'encrypt' and forget. However, it takes quite a bit of knowledge and time to properly set up the backbone of an 'encrypt' and…

Read more »

NIST Cloud Computing Definitions Final

November 25, 2009
By

There has been great debate of what comprises the cloud, how to bound the cloud so that its easier to understand, and how to secure the cloud. Christofer Hoff of the Rational Survivabilty blog has been spear-heading quite a bit of discussion on cloud taxonomy in his attempts to wrap some thoughts around how to…

Read more »

Intrusion Protection and Detection within the Virtual Environment

November 18, 2009
By

Intrusion Protection Systems (IPS) differ quite a bit from Intrusion Detection Systems (IDS). An IPS is designed to modify some form of security setting when an intrusion is detected, thereby preventing the intrusion from being successful. An IDS on the other hand is just the detection component used by an IPS. Like all security tools…

Read more »

Upgrades to VMware vSphere will Impact Availability and Security!

November 5, 2009
By

I was upgrading my nodes from VMware VI3 to VMware vSphere and used the VMware Update Manager to perform the update. Given that my existing filesystems were implemented to meet the requirements of the DISA STIG for ESX, as well as availability. I was surprised to find that when the upgrade of the first node…

Read more »

Virtualizing from an Island?

October 30, 2009
By

I was recently on an island and it got me thinking of how would I move my company to the island. The company services people around the world, but would also service local to the island. Does virtualization really help me here? Why do I ask this, because an island is often prone to the…

Read more »

Should the SMB Adopt Cloud Computing?

October 22, 2009
By
Should the SMB Adopt Cloud Computing?

With the advent of VMware Go, vCloud Express, and the vCloud API, VMware's marketing message is that all SMBs should use the cloud to either deploy their free hypervisor (VMware Go), or use the Cloud to run their servers (vCloud Express). VMware claimed at VMworld that we are no longer looking for ROI with Virtualization…

Read more »

Making sense of the Virtualization Security Players (Updated)

October 12, 2009
By

The known virtualization security vendors Reflex Systems, Catbird Security, Altor Networks, HyTrust, Symantec, Trend Microsystems, Tripwire, and VMware all showed their wares at VMworld. Even Checkpoint was showing off their firewall integration within the virtualized environment. Are these really competing products or products that have unique uses within the virtual environment with just a bit…

Read more »

VMware releases SRM 4.0 – Full Support for vSphere and vCenter Linked clones

October 7, 2009
By

VMware have finally released a vSphere compatible version of SRM, and all I can say is about time. I could not believe it when vSphere was released int May without SRM support, that should have been there from day one. Well rant over what VMware goodness does the version 4.0 bring.

Read more »

Featured Solutions