Archives for December, 2009
by Neil MacDonald | December 22, 2009 | 4 Comments
As I talked about in this post, virtualization will offer new and interesting ways to improve security. VM state inspection (or “Introspection”) is one of the ways that this will happen. For clients, I talk about the transformative opportunities using virtualization and introspection techniques in these two research notes from 2008 – the first research [...]
Category: Next-generation Security Infrastructure Virtualization Security Tags: Adaptive Security Infrastucture, Next-generation Security Infrastructure, Virtualization Security, VMsafe, VMware, vSphere
by Neil MacDonald | December 21, 2009 | 4 Comments
One of my frequent blogging topics is virtualization security. I’ve researched the issue for years and have watched the industry and enterprises deploying virtualization mature in their processes and tools. One area of interest from clients is for external third parties to come into an organization and assess the security of the enterprise’s virtualization deployment. [...]
Category: Virtualization Security Tags: Information Security, Virtualization Security
by Neil MacDonald | December 17, 2009 | 4 Comments
I had a discussion with a client this week on their desktop security strategy. They had ruled one vendor out because the vendor wouldn’t guarantee their security agent couldn’t be disabled by end-users running as administrators (ideally, we’d run all users with ‘standard user’ privileges and not with administrative rights, but there are reasons why [...]
Category: Endpoint Protection Platform Virtualization Security Tags: Best Practices, Endpoint Protection Platform, Information Security, Lockdown, Virtualization, Virtualization Security, Windows
by Neil MacDonald | December 16, 2009 | 3 Comments
I’ve been absent from my normal blogging routine during the month of November attending various Gartner conferences and onsite visits with clients. With travel slowing down for the holidays, there are a few posts that I’ve been meaning to get around to that I’ll tackle. Back in late August/September, I saw that yet another network access control [...]
Category: Next-generation Data Center Next-generation Security Infrastructure Virtualization Security Tags: Adaptive Security Infrastucture, Next-generation Data Center, Next-generation Security Infrastructure, Virtualization Security
