Virtualization Security

Virtualization Security focuses upon end-to-end security, integrity, auditability, and regulatory compliance for virtualization and clouds. Virtualization Security starts where the cloud and virtual environments begin: the end user computing device. (Read More)

We follow the user through the virtual and cloud stacks until they reach the application the user wishes to use to retrieve the data that is important to them. Virtualization and cloud security is implemented where there is an intersection between user, data, and application while maintain strict control of management interfaces. As such virtualization security looks into all aspects of security devices, tools, controls, and guides that impact or can be used to secure virtual and cloud environments.

Going to the Cloud: CAPEX, OPEX, Facilities, or People

CloudComputingOn the 11/1  Virtualization Security podcast we had no special guest but continued a conversation started at Hacker Halted this year. It is the ongoing question of whether or not Going to the cloud will cause jobs to be lost. The typical answer was stated at Hacker Halted, that people will need to cross-train with new products, etc. and then they would keep their jobs, but someone stood up and shouted out that this was hogwash. It made a lively discussion from there. So we tackled it on the podcast as well. Will people loose jobs Going to the Cloud? If so how can this be prevented? What do you as IT professionals need to do, to plan your careers while going to the cloud? Continue reading Going to the Cloud: CAPEX, OPEX, Facilities, or People

Defense in Depth: Hardware Security

VirtualizationSecurityOn the last Virtualization Security podcast, our guest was Robert Rounsavall, CEO of Trapezoid. Trapezoid is looking into how to alleviate supply chain security issues; in essence, the security of the hardware. At many a presentation, I have asked attendees, “Do you trust the hardware?” Many times the answer is that they do; at other times, it is that they do not. Whether you trust the hardware depends entirely on your thoughts with respect to hardware security. But what can you do about hardware security? What is the worst that can happen if the hardware is infiltrated? Continue reading Defense in Depth: Hardware Security

Gaining Visibility into The Cloud: Migration and Security

IaaSSecOn many a Virtualization Security Podcast I tend to mention that we need greater visibility into the cloud to judge whether Cloud Service Provider security measures are good enough. But why should we bother?  I am not saying we should not be concerned about a cloud’s security but that we should as tenants be concerned with clouds meeting our security, compliance, and data protection policies and requirements. Will a cloud service provider ever be able to meet a specific organizations requirements as well as the cloud service providers policies and compliance? Continue reading Gaining Visibility into The Cloud: Migration and Security

Cisco Nexus 1000v: Free unless you want Security

VirtualizationSecurityWhile not particularly new news, the next version of the Cisco Nexus 1000v will be free, unless you want the security features. This is an interesting shift from Cisco with respect to VMware vCloud Director, the Nicira purchase, furthering UCS, and Cisco within non-UCS data centers. However, given other announcements, with respect to OpenStack, perhaps this is more a play to level the playing field between cloud architectures? But what I find most interesting, is that the changes to the Nexus 1000v also align with the changes we see in the vCloud Suites from VMware. Continue reading Cisco Nexus 1000v: Free unless you want Security

Defense in Depth: Bromium vSentry for End User Computing

VirtualizationSecurityOn the 8/9 Virtualization Security podcast, we continued our discussions on defense in depth with a look at end-user computing devices, specifically laptops and endpoint desktops, with Simon Crosby, CTO of Bromium. While we also discussed phones and tablets, we were focused more on the technology preview that now is Bromium vSentry. Bromium vSentry looks to protect laptops (and other machines) from unknown and zero-day attacks in a unique hardware-assisted way. There is now a new tool in our defense in depth toolbox that meets an ever-growing need. But what is the need, and what is the tool?  Continue reading Defense in Depth: Bromium vSentry for End User Computing

Bromium vSentry a Next Generation Hypervisor to End Malware Woes?

VirtualizationSecurityDesktop security start-up Bromium announced the general availability of vSentry, at the Gartner Security and Risk Management management Summit in London today. Their first product to be based on the Bromium Microvisor designed to protect from advanced malware that attacks the enterprise through poisoned attachments, documents and websites.

Continue reading Bromium vSentry a Next Generation Hypervisor to End Malware Woes?