Neil MacDonald

A member of the Gartner Blog Network

Entries Tagged as 'Hyper-V'

Observations from Microsoft’s Management Summit

by Neil MacDonald  |  March 22, 2011  |  Comments Off

I’ve spent the past day and a half attending Microsoft’s Management Summit in Las Vegas. From my perspective the announcement that will affect the most enterprises from a security perspective was a change in licensing related to Forefront. Some history — in 2010, Microsoft reorganized the Server and Tools Business Unit placing the Forefront Endpoint […]

Comments Off

Category: Cloud Cloud Security Endpoint Protection Platform Microsoft Microsoft Security Next-generation Data Center Virtualization Virtualization Security     Tags: , , , , , , , ,

NIST Publishes Its Virtualization Security Guidelines

by Neil MacDonald  |  February 10, 2011  |  Comments Off

Last week, the US National Institute of Standards and Technology (NIST) published its final virtualization security guidelines. There are already guidelines available from the Center for Internet Security, VMware, Microsoft, and Citrix as well as guidelines from the Defense Information Security Agency in the form of STIGs. NIST adds to this collective knowledge and expands […]

Comments Off

Category: Virtualization Virtualization Security     Tags: , , , , ,

A Downside to Hyper-V

by Neil MacDonald  |  February 11, 2010  |  6 Comments

In my post yesterday on MS10-015, I discussed a troublesome kernel-level vulnerability that affects most versions of Windows. Most of you will remember that Hyper-V’s parent partition is based on a slimmed down version of Windows called “Server Core”. Hmmm, could it be that the parent partition is affected? Yup, it’s affected. Don’t let the […]


Category: Microsoft Security Virtualization Security     Tags: , , , ,

Virtual Appliances are Real

by Neil MacDonald  |  March 9, 2009  |  2 Comments

In previous posts, I discussed how security controls need to be virtualized to support the next-generation highly virtualized data center. I have also talked about how most of these virtualized security controls are delivered as “virtual appliances” – essentially a VM containing a preinstalled application service that you download and run on your virtual server […]


Category: Virtualization Security     Tags: , , , ,

Securing Hyper-V

by Neil MacDonald  |  March 2, 2009  |  Comments Off

Last week, Microsoft released its beta guidelines for securing Hyper-V. Prescriptive guidance is an important first step for securely deploying any virtualization solution. As many of you know, Hyper-V is based on a virtual machine monitor that runs in a “parent” partition based on Windows Server 2008’s Server Core. Although Microsoft’s hypervisor itself is thin, […]

Comments Off

Category: Virtualization Security     Tags: , , , ,

Hypervisor Attacks and Hurricanes are Inevitable, but Breaches Don’t Have to Be.

by Neil MacDonald  |  February 17, 2009  |  2 Comments

In my research on virtualization security, I am frequently asked “Aren’t attacks on the virtualization layer just theoretical?” and “Do you know of any publicly disclosed hypervisor attack that resulted in damage or the loss of information?”. This is similar to standing on one of the levees around New Orleans prior to 2005 and asking […]


Category: Virtualization Security     Tags: , ,