Quotes

1. “ The general awareness level of issues related to virtual security isn't quite where we need it to be. ”

2. “ We did originally go through a phase where we thought physical security would do. But as we started to grow our virtualization deployment, we felt we needed to make sure we were taking proactive steps to secure our customer information. ”

   By Patrick Quinn

3. “ Definitely one of our goals is to have visibility within the virtualization layer. ”

   By Kris Jmaeff

4. “ Our goals for the beta test are to increase our knowledge, obtain more insight and visibility on infrastructure, and develop pre-engagement, pre-planning ideas of what we're going to do with security in the future. This is a good opportunity to learn and be on the cutting edge of virtual security. ”

   By Kris Jmaeff

5. “ As bigger companies jump in, this signals that there is a need for these types of products. It's just a matter of time before they all have virtualized offerings of security enforcement. ”

   By Neil MacDonald

6. “ We don't believe you need to go run IPS or a copy of antivirus in the hypervisor. That would defeat the whole purpose of this layer being very thin and hardened. Rather, good configuration, vulnerability and patch management disciplines are enough at that layer. ”

   By Neil MacDonald

7. “ What vendors really are talking about now is protecting the VMs and traffic between them just as you'd protect workloads in the physical environment. ”

   By Neil MacDonald

8. “ About seven major security vendors have participated as VMsafe partners. They've developed virtualization-aware network and endpoint solutions that work through the hypervisor in a privileged fashion with high security. ”

   By Venu Aravamudan

9. “ Once this technology becomes real, in terms of a shipping product, we don't have the need for an agent in each VM. That means better performance, less to manage, lower cost and so on. ”

   By Venu Aravamudan

10. “ You can look at this model to drive solutions such as being able to detect rootkits in the files hypervisors are running on, discover credit-card and other sensitive information in VMs and check the integrity of files, for example. ”

11. “ We felt that we could really benefit by bringing those physical machines into the virtual environment and manage them while still leaving them in this protected pocket. ”

    By Parker Mabry

12. “ They compared feature to feature, looking for things like robust logging, forensics and the depth and granularity of locking down machines. ”

    By Parker Mabry

13. “ I like to tease that usually the first response we get from corporate information security is ”

14. “ We're very cognizant of who has rights to any virtual machine and keeping close track of that specifically and especially in the DMZ environment. ”

15. “ Especially at those customers with large percentages of workflows deployed on virtual servers, we clearly see a lot more discipline in adhering to our best practices and security hardening guidelines. ”

16. “ What we see clearly is that virtualization is not inherently insecure, but that it gets deployed insecurely today. But this problem will go away over the next three to four years as IT staffs, vendors, the tools and skills mature. ”

Topics Mentioned

• Microsoft
• IBM
• Cisco
• Forrester Research
• Intel
• Network World
• Trend Micro