Neil MacDonald

A member of the Gartner Blog Network

Archives for December, 2009


Doing Things Better With Virtualization

by Neil MacDonald  |  December 22, 2009  |  4 Comments

As I talked about in this post, virtualization will offer new and interesting ways to improve security. VM state inspection (or “Introspection”) is one of the ways that this will happen. For clients, I talk about the transformative opportunities using virtualization and introspection techniques in these two research notes from 2008 – the first research [...]

4 Comments »

Category: Next-generation Security Infrastructure Virtualization Security     Tags: , , , , ,

Virtualization Security Assessments

by Neil MacDonald  |  December 21, 2009  |  4 Comments

One of my frequent blogging topics is virtualization security. I’ve researched the issue for years and have watched the industry and enterprises deploying virtualization mature in their processes and tools. One area of interest from clients is for external third parties to come into an organization and assess the security of the enterprise’s virtualization deployment. [...]

4 Comments »

Category: Virtualization Security     Tags: ,

No Security (or Management) Controls are Absolute When Users run as Administrators

by Neil MacDonald  |  December 17, 2009  |  4 Comments

I had a discussion with a client this week on their desktop security strategy. They had ruled one vendor out because the vendor wouldn’t guarantee their security agent couldn’t be disabled by end-users running as administrators (ideally, we’d run all users with ‘standard user’ privileges and not with administrative rights, but there are reasons why [...]

4 Comments »

Category: Endpoint Protection Platform Virtualization Security     Tags: , , , , , ,

Identity-Awareness Should be a Feature, not a Product

by Neil MacDonald  |  December 16, 2009  |  3 Comments

I’ve been absent from my normal blogging routine during the month of November attending various Gartner conferences and onsite visits with clients. With travel slowing down for the holidays, there are a few posts that I’ve been meaning to get around to that I’ll tackle. Back in late August/September, I saw that yet another network access control [...]

3 Comments »

Category: Next-generation Data Center Next-generation Security Infrastructure Virtualization Security     Tags: , , ,