- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
IBM researchers are developing new attack prevention technology for the company's virtualization products.
The company is set to detail the new project, codenamed Phantom, at the RSA Conference in San Francisco Tuesday.
Phantom is a joint effort between IBM's X-Force threat analysis team and the company's research division. It aims to lock down the hypervisor software that IBM systems use to manage virtual machines. "What we're doing through Phantom is we're implementing an IPS (intrusion prevention system)-- an IPS that sits at the hypervisor layer," said Kris Lovejoy, director of strategy for IBM corporate security.
IPS systems are designed to stop computer attacks as they occur, by inspecting network traffic and figuring out whether or not it is malicious.
IBM invented the concept of a hypervisor and has been selling it as part of its mainframe computers, where it could run more than one copy of the operating system at the same time. In recent years, this type of virtualization software has been promoted on Unix and PC systems as a way for corporate users to squeeze more performance out of their servers.
The problem of securing these virtualized systems promises to be one of the hot topics at this week's conference, which is the largest annual event in the security industry.
IBM researchers have already worked on ways to secure the hypervisor, but with Phantom they will be using technology acquired in IBM's 2006 purchase of Internet Security Systems, a maker of IPS devices.
The researchers are also building tools that can lock down the hypervisor itself, Lovejoy added. "The hypervisor layer was built for optimum performance, not necessarily effective security," she said. "Our customers are just looking for assurance that their virtualized infrastructure is not going to be the single point of failure."
How long those customers will have to wait before they can take advantage of this new technology is unclear. Phantom is a research project and no timeline has been set for supporting it on IBM's servers, Lovejoy said.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment