VirtualizationSecurity

News: Public Comment for VMware Hardening Guide

VirtualizationSecurity

Just entered my mailbox, there is a new rev of the vSphere 5.1 hardening guide which was spoken about on the last Virtualization Security Podcast. This version of the hardening guide adds a much needed new feature: Profiles. Profiles define the level of security requirements based on small and medium business, enterprises, and government agencies. There is a public review for the guide over the next two weeks, so if you want to comment or read the latest draft of the vSphere hardening guide please visit http://communities.vmware.com/docs/DOC-22783.

Given the introduction of profiles some of the security hardening suggestions have also been revised and updated to meet requirements of  your level of security. No longer do you need to practice draconian measures but can meet your existing requirements. Just map your requirements to the specific profile and follow that profile’s guidance.

All in all, this is a fairly major improvement in the hardening guide. There is more to do of course, regarding scope of the guide, but some of that falls into operational issues more than actual hardening of the environment. I still worry about the connections between components and eventually I expect the guidance to cover all these requirements.

Please remember that the lowest hanging fruit of virtualization security, regardless of hypervisor, is to protect your management constructs!

Share this Article:

The following two tabs change content below.
Edward Haletky
Edward L. Haletky aka Texiwill is an analyst, author, architect, technologist, and out of the box thinker. As an analyst, Edward looks at all things IoT, Big Data, Cloud, Security, and DevOps. As an architect, Edward creates peer-reviewed reference architectures for hybrid cloud, cloud native applications, and many other aspects of the modern business. As an author he has written about virtualization and security. As a technologist, Edward creates code prototypes for parts of those architectures. Edward is solving today's problems in an implementable fashion.
Edward Haletky

Latest posts by Edward Haletky (see all)

Related Posts:

Leave a Reply

Be the First to Comment!

wpDiscuz