Welcome!

Automotive Digital Response Management

Catherine Edwards

Subscribe to Catherine Edwards: eMailAlertsEmail Alerts
Get Catherine Edwards via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Related Topics: Virtualization Magazine, CIO, Security Journal

Article

Avoid Pitfalls by Baking Security into Virtualization Deployments

Insights from SANS Virtualization Security Summit

At last week’s SAN’s virtualization security summit some 120 security managers, newly tasked with protecting their expanding virtualization environments, were eager to learn how to establish control and achieve compliance.

Whether the representatives came from the DOD and civilian agencies or large scale commercial enterprises all agreed that growth of virtualization adoption is already happening.  The cost savings in data center footprint and power consumption alone are simply too great to pass up especially given today’s economic climate.

One challenge with virtual machine (VM) proliferation, however, is that implementation standard practice does not include the provisioning of security as a compulsory step. This leaves the VM environment largely vulnerable to the same kinds of threats that physical networks are equipped to guard against. One director confided that his organization thought they had 50 virtual machines (VMs) when in fact the audit revealed a total of 250.  This means that mission critical traffic is potentially flowing among 250 VMs without any kind of inspection for policy compliance or for malicious code like viruses and worms. How can this be the case? Because traditional network security devices like firewalls and intrusion detection scanners (IDS) are blind to traffic between VMs.

This is why Altor created a purpose built solution for ensuring that the flow of mission critical traffic within virtualized environments is secure.  The Altor VF virtual firewall with on-board IDS also supports vMotion and vCenter integration so that the implementation of VM security does not detract from ease of administration.

Amir Ben-Efraim, CEO of Altor Networks and expert speaker at the SANS summit, spoke about how pitfalls could be avoided by baking security into virtualization deployments. Provisioning security into the solution can also allow for more optimal virtualization ROI. Agreeing with this, Ryan Trost, security director of Comprehensive Health Services (CHS), shared his experiences with large-scale, mission critical virtualization deployment. CHS uses the Altor VF in a mission-critical production environment to ensure compliance and confidence in intra-VM traffic flow.

While compliance is certainly a big pain point for virtualization administrators, the concern of putting a solution in place is shared by security administrators, IT operations, information security, as well as auditors and compliance officers.  All are stakeholders in enabling mission critical traffic flow on VMs.

For more information please visit www.altornetworks.com

More Stories By Catherine Edwards

Catherine Edwards is a marketing consultant.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.