|
[IMAGE] [IMAGE] [IMAGE] [IMAGE]
[IMAGE] [IMAGE] [IMAGE] [IMAGE]
[IMAGE] [IMAGE] Virtualization (continued)
[IMAGE]
[IMAGE] [IMAGE] [IMAGE] [IMAGE]
[IMAGE]
[IMAGE] [IMAGE] [IMAGE] [IMAGE]
It may be more complex than that. Maintaining--or even knowing--the correct configuration requirements may be problematic.
"There could be conflict when I change configurations and patch, given the complexity of SAN, virtualization software and the OS," says Dennis Moreau, CTO of Configuresoft. "Best practices have focused on each layer in isolation, but what's best for storage may not be for an application."
This means thinking in terms of dynamic situations, in which one gold standard for a given OS or application doesn't necessarily apply.
"IT has to connect dots across the components," says Moreau. "How do virtual components impact each other?"
"Security is not a problem perceived by customers; they're focused on performance and achieving consolidation," says XenSource's Crosby. "The bad guys are not paying attention yet, but this will increase as the number of virtual machines increases."
Neil Roiter is Information Security senior techn...
To continue reading for free, register below or login
To read more you must become a member of SearchSecurity.com
ology editor.
Virtual World Tools
Just a handful of vendors are offering specialized VM-specific security products, anticipating what may be a growing market. They include:
Reflex Security
www.reflexsecurity.com
Reflex Virtual Security Appliance (VSA) profiles virtual network state, assets and communications, providing antivirus/antispyware protection, network discovery and network policy enforcement for VMs on the host machine.
Blue Lane
www.bluelane.com
Blue Lane VirtualShield takes a different approach, protecting unpatched, out-of-date and offline VMs. It discovers VMs, ports, applications and protocols, and applies corrective action against traffic that could exploit vulnerabilities.
StillSecure
www.stillsecure.com
StrataGuard Free IDS/IPS is available free of charge as a VMware virtual appliance. Its Cobia Unified Network Platform is an open-source software platform that provides multiple security services across physical and virtual networks. It can be installed on standard servers or as a VMware virtual device.
[IMAGE]
[IMAGE] [IMAGE] [IMAGE] [IMAGE]
[IMAGE]
[IMAGE]
|
 |
|
