Neil MacDonald

A member of the Gartner Blog Network

Entries Categorized as 'Virtualization'


Observations from Microsoft’s Management Summit

by Neil MacDonald  |  March 22, 2011  |  Comments Off

I’ve spent the past day and a half attending Microsoft’s Management Summit in Las Vegas. From my perspective the announcement that will affect the most enterprises from a security perspective was a change in licensing related to Forefront. Some history — in 2010, Microsoft reorganized the Server and Tools Business Unit placing the Forefront Endpoint [...]

Comments Off

Category: Cloud Cloud Security Endpoint Protection Platform Microsoft Microsoft Security Next-generation Data Center Virtualization Virtualization Security     Tags: , , , , , , , ,

Securing the Cloud

by Neil MacDonald  |  March 9, 2011  |  3 Comments

The cloud isn’t one thing, so securing the Cloud won’t be one thing either. The industry has settled on a layered framework for understanding, comparing and selecting cloud-based services. Gartner’s model has these high-level layers (with subcategories in each layer): Infrastructure as a Service (compute, storage, etc) Platform as a Service (middleware-like services such as [...]

3 Comments »

Category: Cloud Cloud Security Virtualization Virtualization Security     Tags: , , , ,

NIST Publishes Its Virtualization Security Guidelines

by Neil MacDonald  |  February 10, 2011  |  Comments Off

Last week, the US National Institute of Standards and Technology (NIST) published its final virtualization security guidelines. There are already guidelines available from the Center for Internet Security, VMware, Microsoft, and Citrix as well as guidelines from the Defense Information Security Agency in the form of STIGs. NIST adds to this collective knowledge and expands [...]

Comments Off

Category: Virtualization Virtualization Security     Tags: , , , , ,

Yes, Hypervisors Are Vulnerable.

by Neil MacDonald  |  January 26, 2011  |  5 Comments

In one of my first posts as a blogger nearly 2 years ago, I discussed the potential for disaster if a compromise in the virtualization platform (hypervisor/VMM) occurred. Last year (I was intending to comment on this at the time, but it slipped my mind), I was reading the IBM X-Force 2010 Mid-Year Trend and [...]

5 Comments »

Category: Next-generation Data Center Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: , , , , , , , ,

Multi-tenancy Doesn’t Have to be bad for Security

by Neil MacDonald  |  January 14, 2011  |  2 Comments

One of the reasons that security tops the list of inhibitors for the adoption of public cloud computing is the concern around the use of multi-tenant infrastructure and applications. However, I believe the concerns are often overblown. Everything is multi-tenant at some level. For example, we all share the same planet and the same air. [...]

2 Comments »

Category: Cloud Cloud Security Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: , ,

Antivirus is Dead. Long Live Antivirus.

by Neil MacDonald  |  December 23, 2010  |  5 Comments

Signature-based antimalware detection is increasingly ineffective against an explosion in the number of malware variants as well as an increase in the number of financially motivated targeted attacks. Does this mean we get rid of antivirus technology altogether? Not at all. What it means is that we can no longer protect endpoints using signature-based mechanisms [...]

5 Comments »

Category: Beyond Anti-Virus Endpoint Protection Platform Next-generation Security Infrastructure Virtualization Windows 7     Tags: , , , , , ,

Everything You Wanted to Know About Private Clouds

by Neil MacDonald  |  December 2, 2010  |  2 Comments

I’ve just completed work with a team of analysts on a Gartner Research Spotlight focused on private cloud computing. Whether your like or hate the term “private cloud”, the trend is real. These are the types of questions you are asking us: How can we make our own enterprise data centers act more like what [...]

2 Comments »

Category: Cloud Cloud Security Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: , ,

Securing Private Clouds Requires Changes to Information Security Infrastructure

by Neil MacDonald  |  December 1, 2010  |  4 Comments

As organizations virtualize their data centers, information security has had to evolve to support this. The same will be true as data centers evolve to private clouds – security must evolve to support the needs of private cloud infrastructure. For most organizations, virtualization will provide the foundation and the stepping stone for the evolution to [...]

4 Comments »

Category: Cloud Cloud Security Next-generation Data Center Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: , , , , , , , ,

Lessons from the Windows Firewall on the Evolution of Virtualization Security

by Neil MacDonald  |  November 8, 2010  |  2 Comments

In this research note on deploying Windows 7 security features for clients, I explore in detail the security capabilities baked into Windows 7 – AppLocker, BitLocker, BitLocker To Go, the Windows Firewall, USB Port Control and so on. One question I get from clients is whether or not to use the built-in capabilities of Windows [...]

2 Comments »

Category: Endpoint Protection Platform Virtualization Virtualization Security Windows 7     Tags: , , , , ,

From Secure Virtualization to Secure Private Clouds

by Neil MacDonald  |  October 13, 2010  |  3 Comments

I’ve been out the last week travelling in preparation for Gartner’s US Symposium conference. I’ll be involved in multiple sessions (including interviewing Steve Ballmer). One presentation I’m giving is on how information security is evolving to become context aware and adaptive. Another presentation I am giving is on how cloud-based computing has the potential to [...]

3 Comments »

Category: Cloud Cloud Security Next-generation Data Center Next-generation Security Infrastructure Virtualization Virtualization Security     Tags: , , , ,