Skip to main content

Measuring REAL security in a Virtual Machine

The Center for Internet Security, a non-profit organization that specifies best security practices for Windows and other data center software, will be floating an early version of a "hardened" set of security guidelines for VMware's ESX Server. The center calls its guides benchmarks. They are written with a focus on security performance, not speed, as with other benchmark measures.

The guide was drafted with input from security experts, VMware, Configuresoft, and major virtualization users, said Dave Shackleford, VP of the center, in an interview.

Gartner analyst Neil MacDonald predicts that by 2009, 60% of production virtual machines will be less secure than their physical counterparts. That's because the rapid implementation of virtual machines breaks down some of the old security disciplines in the data center; the separation of duties between server administrators and security administrators is less distinct than with physical servers.

VMware's Virtual Center offers the option of VMotion, or moving a running virtual machine from one physical server to another. After the move, who has primary responsibility for that VM's security?

Many companies can't afford to have their virtual machine hypervisors, which are in direct contact with many system resources, more exposed than their physical machines to intruders or threat of malware.


Read on...
Labels:

Comments

Post a Comment

Popular posts from this blog

Get Vyatta Virtual Appliance, now VMware certified!

We all know Vyatta, don't we?

Vyatta, the leader in Linux-based networking, today announced that its open-source networking software has received VMware Virtual Appliance Certification, thereby providing customers with a solution that has been optimized for a production-ready VMware environment. The company also announced it has joined the VMware Technology Alliance Partner (TAP) Program. As a member of TAP, Vyatta will offer its solutions via the TAP program website. With the Vyatta virtual appliance for VMware environments, organizations can now include Vyatta’s router, firewall and VPN functions as part of their virtualized infrastructure.

Vyatta combines enterprise-class routing and security capabilities into an integrated, reliable and commercially supported software solution, delivering twice the performance of proprietary network solutions at half the price. Running Vyatta software as virtual appliances gives customers many more options for scaling their data centers and cons…
Post a Comment
Read more

3PAR adds native LDAP support to simplify administration

3PAR®, the leading global provider of utility storage, announced today native support for lightweight directory access protocol (LDAP). Support for LDAP enables centralized user authentication and authorization using a standard protocol for managing access to IT resources. With 3PAR’s support for LDAP, customers are able to now integrate 3PAR Utility Storage--a simple, cost-efficient, and massively scalable storage platform—with standard, open enterprise directory services. The result is simplified security administration with centralized access control and identity management.

“3PAR Utility Storage already provides us with a reliable, shared, and easy-to-use consolidated storage platform,” said Burzin Engineer, Vice President of Infrastructure Services at Shopzilla. "Now, with 3PAR support for LDAP, managing security commonly--across all our resources, including storage--is also simple and efficient.”

Press Release
Post a Comment
Read more

DeepLearningTrucker Part 1

Post a Comment
Read more