Skip Links

Network World

  • Social Web 
  • Email 
  • Close

(Comma separation for multiple addresses)
Your Message:

Virtualization security needed - now!

Experts say it’s only a matter of time before malware writers weasel their way into the core of a virtual server platform. Here’s how to stop them
By Deb Radcliff , Network World , 08/20/2007
  • Share/Email
  • Tweet This
  • Comment
  • Print

For years, Inttra, an e-commerce logistics provider to the world’s largest cargo-shipping organizations, has been using virtualization on its back-end IBM mainframe and Citrix Systems servers in a secure environment. Now the Parsippany, N.J., company primarily uses IBM blade servers running virtual Linux machines. VMware’s virtualization technology on an Intel platform powers this New Data Center infrastructure.

 Other stories on this topic

Is virtualization bad for security?
Read the story (3/19/07) | Cast a vote

Virtual security virtually missing
04/18/07

Security and virtualization
03/19/07

John Debenedette, Inttra’s vice president of IT, says he believed he could keep a virtualized data-center environment secure while emulating established best practices. He’s not ready, however, to risk running virtual Web servers outside his DMZ. Nor is he ready to allow virtual machines on the endpoints, which are harder to control.

“You can follow best practices on all of your virtual machines. But at the end of the day, you’re putting a lot of trust in the virtual-machine platform layer itself,” Debenedette says. “This layer — also called the hypervisor, the virtual kernel or virtual-machine monitor — sits between the hardware and all its device drivers, including the operating system, which puts it in a very authoritative position.”

John Debenedette, Inttra

Security watchers have not confirmed any exploits at this layer; but virtual-machine-aware malware, such as RedPill, and virtual-machine rootkits, such as BluePill, are common. Debenedette rightfully frets about this new platform layer: It’s a vector into which virtual-machine malware writers are trying to break, experts say (see graphic "Danger at the hypervisor").

In this virtual environment, effective security best practices are sorely needed. In addition to physical machines, virtual machines must be managed and secured. Network defenses must be tuned to watch for rogue traffic on them. And the virtual-machine layer must be built safely and defended from up-and-coming forms of attackware.

  • Share/Email
  • Tweet This
  • Comment
  • Print

Partner Content

Gartner 2009 Magic Quadrant for Job Scheduling

Gartner has positioned BMC CONTROL-M in the Leaders Quadrant of their "2009 Magic Quadrant for Job Scheduling." The report assesses the ability to execute and completeness of vision of key vendors in the marketplace. Read a full copy today, courtesy of BMC Software.

Download whitepaper

Dell's SMART Approach to Workload Automation

Read a compelling case study by EMA, Inc. to learn how Dell uses BMC CONTROL-M to cut cost and increase productivity with workload automation.

Download whitepaper

Workload Automation Cost Savings 2 Minute Video

A major computer manufacturer uses BMC CONTROL-M and just four people to schedule and run over 85,000 jobs every month. By switching to BMC CONTROL-M, they more than quadrupled the workload without adding a single staff member.  See how in this 2-minute video overview.

Go to video

Comments (2)
Login
Forgot your account info?

RE: Virtualization security needed ? now!By frivera on August 20, 2007, 7:39 pmFYI

Reply | Read entire comment

Hardening VMWare serversBy Phil on August 22, 2007, 4:20 amWe use a programme called STAT from Patchlink - ex-Harris to harden our servers. We couldn't even attach to our VMWare boxes to attempt the hardening process. ...

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed