Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Wednesday, February 21, 2007

VMs Create Potential Risks

Those tens of thousands of virtual servers spawned from your thousands of physical ones offer no guarantee your security policies will carry over, and can leave you with a security time bomb ticking away in your data center, according to vendors and some experts.  “Virtualization is both an opportunity and a threat,” says Patrick Lin, senior director of product management for VMWare.

“But one of the key things about hypervisors is their design is simpler than the modern operating system.  On the flip side, it’s a new layer that’s another opportunity for attack,” he says.

Hypervisors are programs that allow multiple operating systems to use the same hardware.  But these programs can also breed complexity, and with complexity comes security problems.

Virtualization security solutions so far have been focused mostly on the hypervisor: IBM, for instance, recently unveiled SHype, a new secure hypervisor technology that ties security policies to virtual machines.  And VMWare’s desktop Ace software lets you lock down virtual machines, even when they are moved around.  Lin says it works like a network access control (NAC) for virtual machines.

Thomas Ptacek, a security researcher with Matasano Security, says the move to virtualization is the biggest thing happening in IT today.  “Some say virtualization of the OS doesn’t change anything, and others, that with virtualization, everything is broken,” Sequeira says.  There are more vulnerabilities in your operating system than in your virtualization software, such as VMware, Matasano’s Ptacek notes.  It’s more about how you configure your virtual architecture, where the virtual machine software is the main barrier among the different apps sharing the same physical machine.”

The underlying problem: Virtualization creates a set of dynamics in the IT infrastructure that traditional security approaches “don’t cope with well,” says Kevin Leahy, director of virtualization at IBM.

http://www.darkreading.com/document.asp?doc_id=117908&WT.svl=news2_3

Posted on 02/21
Warnings • (0) CommentsPermalink