- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
 |
Yes, says Joseph Moorcones, vice president for worldwide information security at Johnson & Johnson in New Brunswick, N.J. "Complexity of software and technology leaves us vulnerable. Millions of people out there understand technology, and all they have to do is discover one vulnerability [better than we do] and they can cause a tremendous amount of damage in a virtualized environment. Virtual machines scare me a bit because we don't understand the security issues surrounding them, and complexity is the ally of the bad guy."
Is virtualization bad for security? Place a vote and share your opinions.
No, says Michael Barrett, CISO of PayPal in San Jose, Calif. "You can look at virtualization and ask what the heck has that got to do with security? But what it enables you to do is manage a data center that has significant levels of hardware diversity by using a potentially much more stable operating system - and a more hardened one, from a security perspective. It is much easier to manage from an asset-[management] perspective. Virtualization is one of those technologies that not only improves data-center economics, but also has an almost accidental effect on improving security."
< Return to main story: CISO inner circle>
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment