Security - Baseline
Home arrow Security arrow 5 Laws of Virtualization Security















Renew Your Subscription

Security



5 Laws of Virtualization Security



By Baselinemag
2008-04-30
Article Views: 16486
Article Rating:starstarstarstarstar / 1

  Table of Contents:
  1. 5 Laws of Virtualization Security
  2. Rules of the Game
  3. Putting the Laws into Practice
  4. Security Benefits
  5. Attacking Virtualization
  6. The Impact on Risk
  7. Security Safeguards

Virtualization technology can deliver cost savings and improve IT performance, but it also introduces new security concerns.  In this summary of a Burton Group report, security expert Pete Lindstrom examines the security considerations unique to virtualized IT environments.

Rate This Article:
Poor Best
Add This Article To:

5 Laws of Virtualization Security


( Page 1 of 7 )

The virtualization of clients and servers—and the impact it has on networks and storage—is a hot topic in IT. As a result, it’s also a hot topic in security.

There are multiple perspectives on how virtualization impacts security. Some claim that virtualization’s isolation properties make it beneficial to security, while others say the added complexity of the overarching management software—known as the hypervisor—and the opportunity to “escape the virtual machine (VM)” are detrimental to security.

As with any new technology as broad and comprehensive as virtualization, such security concerns are critical. In addition, the combination of technical details and marketing messages from vendors can create a potent cocktail of ambiguity about the real impact these new architectures have on risk management and security.

Beyond the superficial discussions of hypervisor-based rootkits and discovery techniques are the very real issues of allocation of information assets and the relative impact on threats and vulnerabilities. Indeed, virtualization comes with its own set of unique security considerations. The appropriate protection response to these inherent security characteristics is a measured approach that carefully considers the impact on the existing IT infrastructure; a factored analysis of threats, vulnerabilities and consequences; and an understanding of the impact on existing security solutions.




 
 
>>> More Security Articles          >>> More By Baselinemag
 



Sponsored Links
  • Get up and running in as quickly as 30 days with BI. Learn how today.

  • FREE Securing Smartphones & Tablets for Dummies Book from Sophos
  • 5 New Technologies That Will Change Enterprise ITAdvertisement
  • Build an IT Infrastructure That Delivers the Future
     
    		•
     
    FEATURED SPONSORED ARTICLES
    FEATURED SPONSORED VIDEOS

     

    Related Content

    Articles Labs/How-To Multimedia


    LATEST STORIES
    - Speech Recognition Speaks To Businesses
    - Eight Ways Top Companies Beat the Competitio...
    - Your Online History Jeopardizes Your Career
    - Things that Make Your CEO Nervous
    - 10 Ways to Work With People You Hate


     

     

    Advertisement
    rss graphic
           Baseline Newsletters

    Baseline:  

    Issue Index | Contact Us | About | Magazine Customer Service | Navigation Guide

    Quick Links:  

    Project Planners | Enterprise Resource Planning | Network and Online Security | Data Analysis | Process Management | Storage Devices| Link to Us

    Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
    Tech RSS Feeds | White Papers | Tech Podcasts | Tech Video | VARs | System Builder

    Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
    eWEEK | Enterprise Network Security | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
    Publish | Security IT Hub | Strategic Partner | TechDirect | Technology White Papers | Windows for Devices

    Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
    Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | igrep

    Use of this site is governed by our Terms of Use and Privacy Policy

    Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.