Neil MacDonald

In one of my first posts as a blogger nearly 2 years ago, I discussed the potential for disaster if a compromise in the virtualization platform (hypervisor/VMM) occurred. Last year (I was intending to comment on this at the time, but it slipped my mind), I was reading the IBM X-Force 2010 Mid-Year Trend and [...]

5 Comments »

Category: Next-generation Data Center Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: Best Practices, Cloud Security, Hypervisor Security, Information Security, Next-generation Data Center, Next-generation Security Infrastructure, Virtualization, Virtualization Security, VMware

Share

I’ve commented before that complete protection is a combination of prevention and detection and that we’ve been far too focused on the prevention side of the equation trying to prevent all malware and infections. We simply cannot stop all of the bad guys. Period. You will be and already have been breached. One of the [...]

Comments Off

Category: Beyond Anti-Virus Next-generation Security Infrastructure Virtualization Security     Tags: Adaptive Security Infrastucture, Beyond Anti-Virus, Defense-in-Depth, Next-generation Security Infrastructure, Reducing Complexity, Virtualization Security

Share

In my kick off post for 2011, I talked about the need for IT to expand the depth and breadth of patching. In the follow-on post, I talked about the need to migrate more users to run with standard user (and not administrative level) privileges. One of the challenges to both of these actions is [...]

Comments Off

Category: Application Security Information Security Microsoft Microsoft Security Windows 7     Tags: Application Security, Best Practices, Browser Security, Information Security, Microsoft, Microsoft Security, Windows

Share

Static application security testing (SAST) can be thought of as testing the application from the inside out – by examining its source code, byte code or application binaries for conditions indicative of a security vulnerability. Dynamic application security testing (DAST) can be thought of as testing the application from the outside in – by examining [...]

6 Comments »

Category: Application Security Applications     Tags: Application Security, application security testing tools, Best Practices, Defense-in-Depth

Share

One of the reasons that security tops the list of inhibitors for the adoption of public cloud computing is the concern around the use of multi-tenant infrastructure and applications. However, I believe the concerns are often overblown. Everything is multi-tenant at some level. For example, we all share the same planet and the same air. [...]

2 Comments »

Category: Cloud Cloud Security Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: Application Security, Best Practices, Cloud Security

Share

In my previous post, I kicked off 2011 with a recommendation for improving your “security bang for the buck” or quick wins for information security in 2011 – increasing patching breadth and depth. Here’s a few more to consider in 2011: In a response to this post on the value (or lack thereof) of antivirus [...]

Comments Off

Category: Beyond Anti-Virus Cloud Security Endpoint Protection Platform Windows 7     Tags: Best Practices, Beyond Anti-Virus, Cloud Security, Endpoint Protection Platform, Information Security, Lockdown, Reducing Cost, Security No-Brainer, Windows

Share

I am back from the holidays and was responding to some comments on my previous blog post on antivirus technologies and the shift to endpoint protection platforms where one of the readers had recommended disabling autorun on removable media for a quick win for information security. There are several things in information security that we [...]

Comments Off

Category: Application Security Beyond Anti-Virus Endpoint Protection Platform Information Security     Tags: Apple, Best Practices, Defense-in-Depth, Endpoint Protection Platform, Information Security, Security No-Brainer, Windows

Share