Virtualization security gains traction while IT budgets shrink
Virtualization security was one of the hottest trends emerging from the RSA Conference 2008. In this edition of Security Squad, the SearchSecurity.com editorial team looks back at the RSA Conference. The team also discusses the latest PCI updates and whether some companies get caught up in the overcompliance mentality leading to security holes and ultimately a data breach. Finally, the team ponders whether IT security budgets could be affected in an economic downturn.
(4:24) Virtualization security hot topic at RSA Conference 2008.
| Virtualization security, PCI DSS and shrinking IT budgets|| |
(9:04) The Hannaford breach and the overcompliance mentality.
(12:48) PCI Council issues guidance on Web application security.
(16:49) IT security budget tightening in an uncertain economy.
Next version of PCI DSS due in September: PCI Security Standards Council GM Bob Russo says tweaks and clarifications are expected in the areas of wireless and application security.
PCI Council issues clarification on Web application security
: The PCI Security Standards Council released documentation hoping to reduce a tide of confusion over enforcement of application firewalls and code reviews.
VMware to release APIs to security vendors under VMsafe: VMware plans to release application program interfaces as part of VMsafe so security vendors could design software interoperable with its virtualization technology.
The security benefits and risks of virtualization: IT shops are looking at virtualization as a way to improve data security and make patch deployments more efficient. But IT pros and analysts say there are security risks as well.
RSA Conference begins as companies tighten security budgets: Analysts say security pros attending RSA Conference 2008 are shifting priorities as a result of flat budgets and a dismal economy.
RSA Conference 2008 news coverage: SearchSecurity.com and Information Security magazine editors were in San Francisco to bring you the most detailed coverage of RSA Conference 2008.
Information Security podcasts: Visit SearchSecurity's podcast archive.