July 22nd, 2008, 07:42 PM
Virtualization: Security Tipping Point?
Does virtualization's new high profile warrant security worries?
Are VM Environments Open to Attack? - LinuxInsider
And that's just one example...
The mobility of virtual environments can also create a security quagmire. Virtual machines can "walk off": Since their containers can be downloaded to desktops and put on a memory stick, on which they can then leave the physical security perimeter.
"Virtualization can be implemented and systems can be as secure as if they were running in an environment natively, Eric Mandel, CEO of managed hosting services firm BlackMesh, told LinuxInsider. "The idea behind using virtualization is to carve out multiple system [images] on one physical machine. The same security concepts apply to the virtual images as they do to a native system, with the exception that the owning system has to be locked down as well. There are always security risks that have to be considered in any environment."
July 22nd, 2008, 08:50 PM
When most of the 'experts' talk about security, they focus on the hack, the vulnerable system, the workarounds. These are all very important fields of view when talking about virtualization (instance escape being a hot topic now).
But I like to look at the business continuity side as much as the technical. Everyone loves the idea of virtualization because there is a cost savings. Admins and developers take this cost savings a bit further, hitting up the lowest bidder for the hardware. Cheaper hardware is now being taxed because of the multiple functions it's performing. Next thing you know, raid arrays are failing and instead of losing one machine/capability, you're now losing 20.
|-----|Alcohol is my anti-drug |-----|
By gore in forum Miscellaneous Security Discussions
Last Post: June 13th, 2006, 04:06 AM
By tenzenryu in forum The Security Tutorials Forum
Last Post: November 4th, 2005, 06:10 PM
By XTC46 in forum Site Feedback/Questions/Suggestions
Last Post: August 24th, 2005, 07:52 PM
By SDK in forum Microsoft Security Discussions
Last Post: August 20th, 2004, 01:12 PM
By SDK in forum Miscellaneous Security Discussions
Last Post: August 5th, 2004, 06:13 PM