Virtualization Security

Virtualization Security focuses upon end-to-end security, integrity, auditability, and regulatory compliance for virtualization and clouds. Virtualization Security starts where the cloud and virtual environments begin: the end user computing device.|We follow the user through the virtual and cloud stacks until they reach the application the user wishes to use to retrieve the data that is important to them. Virtualization and cloud security is implemented where there is an intersection between user, data, and application while maintain strict control of management interfaces. As such virtualization security looks into all aspects of security devices, tools, controls, and guides that impact or can be used to secure virtual and cloud environments.

Most Recently added Virtualization Security Resources: (See More...)

Risky Social Behaviors akin to Multi-Tenancy Risks

June 17, 2010
By

Can we use some of this Risky Social Behaviors post to aid us in finding an adequate definition for secure multi-tenancy? Perhaps more to the point it can define how we look at multi-tenancy today. On a recent VMware Communities podcast we were told two things that seem contradictory to current security thinking. The first…

Read more »

If the Virtualization Security Products had no Firewall?

June 10, 2010
By

The security companies are looking into all aspects of virtual environment introspection to label, tag, or mark all objects for compliance reasons, inspect the contents of virtual machines for asset management (CMDB), and an early form of Root Kit detection. Virtualization Security is not just about the firewall, it is about the entire ecosystem, auditing,…

Read more »

To Cloud or not to Cloud, Better Yet, What is a Cloud?

June 9, 2010
By

While doing a quick Google search to find what a Cloud is, I have found several different definitions which depend on which vendor site you pull up. One thing is for sure despite the frequent use of the term, it still means different things to different people and or companies. For my reference point I…

Read more »

Virtualization Security Technologies… Pushing the Envelope

June 4, 2010
By

During the Virtualization Security Podcast on 5/13, IBM's David Abercrombie joined us to discuss IBM's Virtualization Security Protection for VMware (VSP) which contains several exciting uses of the VMsafe API for VMware vSphere. These being: * Network: Network Monitoring, Firewall, Access Control, and a Protocol Analysis Module * Memory: Rootkit Detection

Read more »

Defining Tenants for Secure Multi-Tenancy for the Cloud

June 1, 2010
By

The panel of the Virtualization Security Podcast on 5/27/2010 was joined by an attorney specializing in the Internet space. David Snead spoke at InfoSec and made it clear that there was more to secure multi-tenancy than one would imagine. The first question was "how would you define tenant?" which I believe is core to the…

Read more »

A Couple of Tips or Tricks When Working With VMware ESX using Root

May 28, 2010
By

When working with VMware ESX there are some tips that I can share that can help you manage your environment. This tips are not anything really new or exciting but rather a reinforcement of some best practices to live by in order to improve auditing for compliance and troubleshooting. Use of the following in conjunction…

Read more »

Growth of Citrix and Hyper-V EcoSystems

May 27, 2010
By

PhD Virtual has gained its second round of funding with investment from Citrix amongst others as discussed within our post News: esXpress is no more but what does this mean for XenServer? Up until this point it looked like Citrix was out of the server hypervisor wars and backing Microsoft's Hyper-V play. Yet this looks…

Read more »

VMware Spring + Google: Dramatic PaaS Progress and New SMT Concerns

May 21, 2010
By and

Java based applications can now be moved between not only a SpringSource TC-Server Java platform on VMware vSphere, but also between the same platform on VMForce, and now Google AppEngine. This level of support from VMware, Salesforce.com, and now Google is starting to make SpringSource look like the early leading technology for PaaS Clouds. This…

Read more »

Secure Multi-Tenant Virtualization – How to get there?

May 19, 2010
By

Due to what I stated during GestaltIT’s TechFieldDay, I was invited with Bas Raayman and others to discuss Secure Multi-Tenancy (SMT) in more detail with Chuck Hollis at EMC World. In addition, during one of the Keynotes SMT was renamed from Secure Multi-Tenancy to Simple Multi-Tenancy. The current Cisco VMware Netapp solution is plainly not…

Read more »

Featured Solutions