Careers & Certifications

10:55 AM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

VMware Touts Virtualization For Datacenter Security

Hypervisor-based security would be like Goldilocks -- "not too hot, not too cold" -- when it comes to halting malware and intruders well inside the enterprise perimeter, say VMware leaders at Interop.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Charlie Babcock
50%
50%
Charlie Babcock,
User Rank: Apprentice
4/10/2014 | 5:13:27 PM
This is a strong vantage point. Do any security experts agree?
Stratustician makes a good point, Build firewall-like functionality into the virtual switch. It's the right place for it and you're flying blind without it.
Stratustician
50%
50%
Stratustician,
User Rank: Apprentice
4/10/2014 | 11:55:16 AM
Re: This is a strong vantage point. Do any security experts agree?
Personally, I think it makes sense that as virtualization becomes more prevalent to leverage the virtual switches to act as traffic cops, much in the way a firewall would work.  That being said, there is still a need for tools like IDS/IPS to inspect internal traffic that gets past the physical network.  This is really the key issue with virtualization, the abstraction of hardware means that if traffic can get past the physical security tools, unless there are virtual network security policies in place, you really can't see what's going on internally.  The trick is to have an internal traffic cop that can detect valid from unauthorized traffic and can then react accordingly.  It makes total sense to build these from internal hypervisor functionality provided they have the right security policies to be able to understand what the traffic itself is.
Charlie Babcock
50%
50%
Charlie Babcock,
User Rank: Apprentice
4/4/2014 | 6:33:38 PM
This is a strong vantage point. Do any security experts agree?
This is a new vantage point from which to apply security. Do security experts agree that it's a good field position or would they say better to stop the threat at the perimeter? I think you can see and do more at the hypervisor. You can tell what bad intentions are up to at that point. It's too easy to dismiss this as VMware thinking up more work for the hypervisor.
Hot Topics
5
Have You Hugged Your Sysadmin Today?
Susan Fogarty, Editor in Chief,  7/25/2014
3
Cisco DevNet Focuses On Developers
Marcia Savage, Managing Editor, Network Computing,  7/21/2014
1
IT Budgets Up In 2015, Hiring Tepid
Robert Mullins 7/25/2014
White Papers
Register for Network Computing Newsletters
Cartoon
Current Issue
Video
Slideshows
Twitter Feed