Security Management Strategies for the CIO
Email Alerts
-
Server virtualization security best practices guide
This virtual machine security guide outlines server virtualization security best practices and weighs the pros and cons of different virtual server security methods. Resource Guide
-
Guarding against virtualization security risks and vulnerabilities
You can limit virtualization security risks and vulnerabilities by understanding attack vectors. This section of our virtualization security guide helps you prevent attacks. Resource Guide
-
Virtual security: Developing a plan and procedures
This section of our virtual security guide covers how to design and execute a plan to protect your server virtualization infrastructure's sensitive information. Resource Guide
-
Hyper-V virtualization security guidelines and tips
Data centers can't depend solely on Microsoft for Hyper-V security. You can implement several configurations and procedures to secure Hyper-V virtualization. Resource Guide
-
VMware security: Protecting a VMware environment
There are several ways to improve VMware security to protect a VMware environment from hackers and exploits. In this section, we show you how. Resource Guide
-
VMware security best practices guide
Without the proper VMware security, your entire IT infrastructure could be at risk. VMware security best practices can keep your environment safe. Resource Guide
-
Quiz: Virtualization and compliance
How much have you gleaned from this Virtualization and compliance Security School lesson? Test you knowledge of cloud compliance best practices and the future of virtualization compliance. Quiz
-
Eye On: Virtualization Security
SearchSecurity.com's "Eye On" series examines a security topic each month. In May, the series explores virtualization security and the technologies and methodologies available to reduce vulnerabilities and improve virtualization processes. Article | 25 May 2011
-
Reduce virtualization security risks by thinking physical, experts say
Firms reassessing their virtualized infrastructure should apply the same security best practices they’ve been using to secure their physical systems. News | 25 May 2011
-
LynuxWorks demonstrates enterprise platform for secure virtualization
LynuxWorks demonstrated its enterprise platform for secure virtualization running on multiple devices and using ValidEdge Network Malware Security (NMS) LynxSecure. Article | 15 Feb 2011
-
Emerging theme at RSA Conference 2011 may be 'mostly cloudy'
Security vendors at RSA Conference 2011 need to be more specific about the security technologies they are aiming at the cloud, industry analysts say. Article | 10 Feb 2011
-
Amazon Web Services security evangelist quits
Steve Riley, Amazon's cloud security guru, has quit the company. Where did he end up, and what's the next move for Amazon Web Services? News | 25 Jan 2011
-
Juniper acquires Altor for virtual machine security
Juniper Networks acquired Altor Networks in a $95 million deal to sell its virtualization security technologies alongside security appliances that protect physical systems. Article | 06 Dec 2010
-
Don't fight cloud computing technology, says Symantec's Thompson
Security professionals should embrace the inevitable shift to cloud computing, Symantec Chairman John Thompson says. Article | 17 Nov 2010
-
Researchers develop malware detection for hypervisor security
New software called HyperSentry stealthily detects malware in the hypervisor running virtual environments and alerts administrators to respond to a compromise. Article | 23 Sep 2010
-
How will Intel buying McAfee affect the desktop virtualization industry?
If the acquisition results in a new generation of chipsets, it could be a very big cloud computing play. News | 23 Aug 2010
-
Customers pleased with Google Enterprise desktop security
Google Enterprise desktop customers praise the platform and tout its security and privacy features. News | 21 Jun 2010
- See More: News on Virtualization Security Issues and Threats
-
Four VDI security concepts for every virtual desktop deployment
Traditional IT security measures don’t always apply well to virtual desktop infrastructures; apply these four VDI security concepts. Tip
-
How to connect virtual environments to DMZ network architecture
Connecting virtualized environments to DMZ network architecture creates new challenges. Network managers must learn new design methodologies to protect virtual traffic in the DMZ. Tip
-
Hypervisor security planning: Guidelines
With proliferation of server virtualization, hypervisor security is an emerging concern. Though theoretical, we look at the risks and mitigation measures. Tip
-
Auditing virtualization: Security training for infosec pros
This chapter discusses auditing virtualized environments, and begins with an overview of common virtualization technologies and key controls. Tip
-
Security in virtualization: IDS/IPS implementation strategy
Considering virtualization? Take into account that your IDS or IPS may not work the same way in a virtualized environment as it does in a physical one. Expert Dave Shackleford explains how to address this potential problem. Tip
-
How to maintain network control plane security
Use access control lists and secure configurations to maintain the security of your organization's network control plane. Tip
-
Installing and configuring vShield Zones
VMware addressed virtual machine security concerns in vSphere 4.0 with the release of vShield Zones. Learn how to install and configure it for your VMware infrastructure. Tip
-
VMware vShield Zones: What it is and how it works
One of the new technologies VMware released with vSphere is a security tool called vShield Zones. Learn how it works in the first part of this three-part series. Tip
-
How to find virtual machines for greater virtualization compliance
When it comes to compliance and virtualization, security vulnerabilities and privacy concerns are not the only issues of interest to auditors. Managing internal virtual machines can be a major security and compliance hurdle, particularly in environme... Tip
-
Safely implementing VMsafe-aware virtual appliances in your data center
VMsafe-aware virtual appliances can subject a virtualization environment to security risks, but smart administration can help you avoid a breach. Tip
- See More: Tips on Virtualization Security Issues and Threats
-
JeOs and the benefits of a virtual security appliance
A virtual security appliance offers enterprises a number of benefits, including an optimized operating system that simplifies patch management. Answer
-
Cloud computing providers and PCI virtualization requirements
How should an enterprise approach its cloud computing providers following the debut of the PCI virtualization requirements? Charles Denyer explains. Answer
-
Can the VMware PCI Compliance Checker assess my compliance posture?
The VMware PCI Compliance Checker claims to assess the compliance of a VMware virtual environment. Does it work? Charles Denyer has the answer. Answer
-
Virtualized behavior-based monitoring: Improving performance visibility
Learn about virtual behavior-based monitoring tactics, which allow for easy anomaly detection and can help defend a virtualization infrastructure. Answer
-
Security/virtualization concerns: Where to place a firewall connection
Is it worthwhile to place signature-based blocking technology before a firewall connection? Learn more in this expert response from Anand Sastry. Ask the Expert
-
Virtualization security concerns: The threat of hypervisor malware
What is hypervisor malware, and how worried should enterprises employing virtualization be about it? Threats expert Nick Lewis explains. Ask the Expert
-
Windows Server 2008 migration: Is it essential?
While many experts say the Windows Server 2008 operating system is Microsoft's most secure OS yet, expert Michael Cobb explains why a migration may not be essential for all companies. Ask the Expert
-
Should VMware vulnerabilities in JRE impede implementing virtualization?
Could recent VMware vulnerabilities in JRE hamper virtualization implementation? In this expert response, Michael Cobb explains that VMware attacks are theoretical at this point and shouldn't stop you from implementing virtualization if your risk ass... Ask the Expert
-
How to implement virtual firewalls in a complex network infrastructure
If your enterprise has a complex network infrastructure, it might be necessary to implement virtual firewalls or multiple security contexts. Network security expert Mike Chapple explains the pros and cons of doing so. Ask the Expert
-
Learn about enterprise strategy for server virtualization single sign-on
Virtualization is a technology that's taking off, but how can information security professionals know how it will interact with their existing networks and applications? In this identity and access management expert response, learn how virtualizing a... Ask the Expert
- See More: Expert Advice on Virtualization Security Issues and Threats
-
AV storm
An AV storm is the performance degradation that occurs when antivirus software simultaneously scans multiple virtual machines (VMs) on a single physical host. Definition
-
Revitalizing endpoint security with VDI desktops
Implementing VDI desktops provides an opportunity to re-architech endpoint security and management. Learn how in this supercast with Eric Ogren. Video
-
PCI encryption, virtualization standards: Interpreting PCI guidelines
Get expert advice on understanding the PCI encryption requirements and virtualization guidance in this video. Video
-
Integrating virtual-aware security technologies
In this video presentation, enterprise information security expert Dave Shackleford offers an overview of the key enterprise virtualization security product segments on the market today and key considerations for when to consider them. Video
-
Countdown: Top 5 issues involving data loss and the virtualized cloud
In this podcast, learn the issues to consider when moving data into the cloud and how to work with your provider on security. Podcast
-
Who should secure virtual IT environments? (Part 2)
Popular security blogger Chris Hoff and Citrix CTO Simon Crosby discuss whether security companies or virtualization vendors should be responsible for the security of virtual environments. Video
-
Who should secure virtual IT environments?
Security blogger Chris Hoff and Citrix CTO Simon Crosby discuss whether security companies or virtualization vendors should be responsible for the security of virtual environments. Video
-
Black Hat DC 2009: Joanna Rutkowska on Intel TXT flaws
In this session excerpt, researcher Joanna Rutkowska explains flaws discovered in current Intel Trusted Execution Technology (TXT) implementations and how they can be exploited. Video
-
Virtualization: Disruptive technologies part 2
Security pros Chris Hoff, Rich Mogull and Dino Dai Zovi discuss the greatest benefits virtualization can offer enterprises, as well as some strategies for anticipating threats to virtualized environments. Video
-
Virtualization: Disruptive technologies part 1
Virtualization promises enterprises amazing cost-saving benefits, but what about the inherent security threats? In part one of this panel, Chris Hoff, Rich Mogull and Dino Dai Zovi discuss the greatest threats to virtualized environments, including s... Video
-
Virtualization: Disruptive technologies part 4
Is there a future for vendors offering security solutions for virtualized environments, or will security eventually be almost entirely built-in? Experts Chris Hoff, Rich Mogull and Dino Dai Zovi discuss. Video
- See More: Multimedia on Virtualization Security Issues and Threats
-
Four VDI security concepts for every virtual desktop deployment
Traditional IT security measures don’t always apply well to virtual desktop infrastructures; apply these four VDI security concepts. Tip
-
Revitalizing endpoint security with VDI desktops
Implementing VDI desktops provides an opportunity to re-architech endpoint security and management. Learn how in this supercast with Eric Ogren. Video
-
JeOs and the benefits of a virtual security appliance
A virtual security appliance offers enterprises a number of benefits, including an optimized operating system that simplifies patch management. Answer
-
Cloud computing providers and PCI virtualization requirements
How should an enterprise approach its cloud computing providers following the debut of the PCI virtualization requirements? Charles Denyer explains. Answer
-
Can the VMware PCI Compliance Checker assess my compliance posture?
The VMware PCI Compliance Checker claims to assess the compliance of a VMware virtual environment. Does it work? Charles Denyer has the answer. Answer
-
AV storm
An AV storm is the performance degradation that occurs when antivirus software simultaneously scans multiple virtual machines (VMs) on a single physical host. Definition
-
Virtualized behavior-based monitoring: Improving performance visibility
Learn about virtual behavior-based monitoring tactics, which allow for easy anomaly detection and can help defend a virtualization infrastructure. Answer
-
PCI encryption, virtualization standards: Interpreting PCI guidelines
Get expert advice on understanding the PCI encryption requirements and virtualization guidance in this video. Video
-
How to connect virtual environments to DMZ network architecture
Connecting virtualized environments to DMZ network architecture creates new challenges. Network managers must learn new design methodologies to protect virtual traffic in the DMZ. Tip
-
Eye On: Virtualization Security
SearchSecurity.com's "Eye On" series examines a security topic each month. In May, the series explores virtualization security and the technologies and methodologies available to reduce vulnerabilities and improve virtualization processes. Article
- See More: All on Virtualization Security Issues and Threats
About Virtualization Security Issues and Threats
Get advice from the experts on all things virtualization security, such as virtualization management, tools, products, training and software. Also Learn how the emergence of virtualization products and technology affect enterprise security.