The security companies are looking into all aspects of virtual environment introspection to label, tag, or mark all objects for compliance reasons, inspect the contents of virtual machines for asset management (CMDB), and an early form of Root Kit detection.
Virtualization Security is not just about the firewall, it is about the entire ecosystem, auditing, compliance, and object management.
Search results for: vnetwork
Virtualization Security Technologies… Pushing the Envelope
During the Virtualization Security Podcast on 5/13, IBM’s David Abercrombie joined us to discuss IBM’s Virtualization Security Protection for VMware (VSP) which contains several exciting uses of the VMsafe API for VMware vSphere. These being:
* Network: Network Monitoring, Firewall, Access Control, and a Protocol Analysis Module
* Memory: Rootkit Detection
vSphere Upgrade – The Backup Saga
My Backup solutions require Windows 2003 and the Belkin FL5009 only works with Windows XP, Vista, or 7, which I found very frustrating until I discovered this post, “Setting up USB in VMware ESX and ESXi”. With only a few tweaks I was able to get the Belkin FL5009 to work as a service. The first tweak I did, was to upgrade my Windows 2003 template to Virtual Hardware version 7, which required a VMware Tools Upgrade to be done first. Once that was completed, I also added a USB device to the VM.
Virtualization Security for the SMB, Starting Point for All
The most recent Virtualization Security Podcast was on the subject of virtualization security for the SMB. Specifically cover the case where the customer wanting virtualization security could afford to purchase a hypervisor and perhaps one other security product. In the end the panelists came up with a list of suggestions for virtualization security for the SMB that are applicable to all levels of Virtualization. The panel looked at SMB security with an eye towards Availability, Integrity, and Confidentiality.
Virtualization Security Product Space Heating Up!
There are now more players in the virtualization security product space. While at RSA Conference 2010 I walked the show floor in search of these vendors to discover what they were doing. While some vendors do not address virtualization security, the vast majority are either looking to do so or actually have a virtualization security product.
Cisco – VMware – NetApp an Interesting Approach to Secure Multi-Tenancy
The Cisco-VMware-NetApp (CVN) was discussed on the Virtualization Security Podcast as it pertains to Secure Multi-Tenancy (SMT). This is a major concern that was also discussed at RSA Conference 2010 within the Cloud Security Alliance Summit. The question still remains how to achieve this goal however. CVN is a very good start, but as we discussed on the podcast is missing some key elements.