Cloud Connect brings together the entire cloud eco-system to better understand the transformation we're experiencing and promises to be the defining event of the cloud computing industry. Learn about the latest cloud technologies and platforms from thought leaders in Cloud Connect’s comprehensive conference.
Let's catalog Gartner's observations first: 1. Virtualization software--such as hypervisors--represents a new layer of privileged software that will be attacked and must be protected.
2. The loss of separation of duties for administrative tasks, which can lead to a breakdown of defense in-depth.
3. Patching, signature updates, and protection from tampering for offline VM and VM "appliance" images.
4. Patching and secure confirmation management of VM appliances where the underlying OS and configuration are not accessible.
5. Limited visibility into the host OS and virtual network to find vulnerabilities and assess correct configuration.
6. Restricted view into inter-VM traffic for inspection by intrusion prevention systems (IPSs).
7. Mobile VMs will require security policy and settings to migrate with them.
8. Immature and incomplete security and management tools.
Their observations to fall into three categories:
1) Not new to virtualization (3,4--same as regular hardware appliances and other hotspare devices)
2) Useful, but obvious (1,7,8)
3) Only true if the admins aren't paying attention, or the architecture is poorly designed (2, 5, 6)
Incidentally, BlueLane--with their "virtual IPS"--has got to be ecstatic with No.6 since they're the only vendors marketed squarely at that space right now. Jordan Wiens NWC Contributing Technology Editor
Currently we allow the following HTML tags in comments:
Single tags
These tags can be used alone and don't need an ending tag.
<br> Defines a single line break
<hr> Defines a horizontal line
Matching tags
These require an ending tag - e.g. <i>italic text</i>
<a> Defines an anchor
<b> Defines bold text
<big> Defines big text
<blockquote> Defines a long quotation
<caption> Defines a table caption
<cite> Defines a citation
<code> Defines computer code text
<em> Defines emphasized text
<fieldset> Defines a border around elements in a form
<h1> This is heading 1
<h2> This is heading 2
<h3> This is heading 3
<h4> This is heading 4
<h5> This is heading 5
<h6> This is heading 6
<i> Defines italic text
<p> Defines a paragraph
<pre> Defines preformatted text
<q> Defines a short quotation
<samp> Defines sample computer code text
<small> Defines small text
<span> Defines a section in a document
<s> Defines strikethrough text
<strike> Defines strikethrough text
<strong> Defines strong text
<sub> Defines subscripted text
<sup> Defines superscripted text
<u> Defines underlined text
Network Computing encourages readers to engage
in spirited, healthy debate, including taking us to task.
However, Network Computing moderates all comments posted to our site,
and reserves the right to modify or remove any content that it determines to be derogatory,
offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM.
Network Computing further reserves the right to disable the profile of any commenter participating
in said activities.
RSS
Email
Print
Share
