- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
LAS VEGAS — The 12th Black Hat conference convened at Caesar’s Palace last week, where the 4,500 attendees (a 12.5% increase over last year) heard about the security problems that will plague virtualized environments, why Cisco routers are more of a hacker target than ever and a detailed explanation of DNS attacks.
Attendees also found a conference show floor that was dominated by vendor booths. The booths, once a rarity at the conference, are becoming more prevalent as vendors inject themselves into the Black Hat mix. While he didn’t apologize for their presence — and noting that vendor sponsorships are important to the financial success of the conference — Black Hat founder and director Jeff Moss did distance the content of the show from the sponsors. Presenters at the show briefings present vendor-neutral material chosen solely for its value to the security community, he said during his opening remarks.
Vendor booths aside, the audience was tuned to far more weighty topics, such as the security problems that will ultimately arise out of the industry’s headlong push into virtualizing everything.
Virtualization “will not save you money, it will cost you more,” and “virtualized security can seriously impact performance, resilience and scalability,” said Christopher Hoff, chief security architect at Unisys, in an impassioned presentation. Hoff argued the user community is being sweet-talked into virtualization by an industry unmindful of the security consequences.
“Over the next 12 to 18 months, there’s a very uncomfortable set of circumstances as every vendor rushes out to say we’ve virtualized,” said Hoff in his talk, entitled “The Four Horsemen of the Virtualization Apocalypse.”
Using strong language directed at the network industry, Hoff argued that “it’s getting real messy” as Cisco, Brocade, 3Leaf, Xsigo, among others gallop off toward virtualization of basic switching infrastructures. This is being done without a clear notion of what the security consequences are for enterprise customers accustomed to wholly different topologies that include technologies such as spanning tree and STP.
“A virtual switch is just a piece of code like a hypervisor,” said Hoff about the industry’s new direction. “It’s basically Layer 2 switching modules,” adding it means you’ve collapsed the network into “a single tier” and “it all boils down to three settings in a GUI.”
Rss FeedRss Feed
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (3)
When are you going to correct this story?By Anonymous on August 12, 2008, 6:40 pmIt misquotes the presenter. See http://www.liquidmatrix.org/blog/2008/08/11/when-journalists-get-it-wrong/
Reply | Read entire comment
Stop addedBy Adam Gaffin on August 11, 2008, 9:33 amThanks for trying to read that sentence without taking a breath :-).
Reply | Read entire comment
Ah good.. Spanning Tree AND STP.By mattyohe on August 8, 2008, 2:55 pm"Using strong language directed at the network industry, Hoff argued that "it's getting real messy" as Cisco, Brocade, 3Leaf, Xsigo, among others gallop off toward...
Reply | Read entire comment
View all comments