Security August 12, 2008 10:30 AM

Five Steps to Safer Virtual Servers

By Chris Whitener, CIO.com

At last week's Black Hat conference, virtualization security was one of the hottest topics and sources of debate. If you're trying to get a grip on how your enterprise's virtualization security stacks up, consider this advice from Chris Whitener, chief security strategist, HP Secure Advantage.

1. Protect your host operating system by using server hardening tools and methodologies.

Additional OS features such as isolation capabilities and strong security between OS partitions makes it easier for you to decrease the "attack surface" of a host OS.

2. Ensure that your host OS is as secure as the guest operating system.

A virtual machine inherits all vulnerabilities of a host OS. Select a virtualization technology which provides strong security isolation (enforces distrust) between guest OS instances if needed. If organizations are concerned about malicious software in one guest OS attacking another OS, or don't have mutual trust among administrators of the different guest OSes, then the virtualization layer must be designed to enforce the idea of distrust.

3. Security policies in the host OS should reflect requirements of individual virtual machines.

Using the host OS to implement compliance requirements further enhances your assurance of compliance. It can be relied upon independently of trust in the administration of the guest OS.

4. Manage virtual processes more like you already manage your physical resources.

The host OS security lifecycle and virtual machine security lifecycle(s) must both be managed efficiently thought the data center. Ideally, the virtual infrastructure would be managed in the same way as physical resources. This includes software configuration, updates and patches, auditing and performance monitoring.

5. Stay vigilant about securely managing the physical infrastructure.

Deploying workloads on virtualized platforms make them more mobile, and provides flexibility and agility; this does not mean that the physical infrastructure can be ignored. The physical infrastructure has a critical role in supporting the good execution of those workloads, and the security of the virtualized infrastructure depends on the physical resource configuration and access control being managed securely across the data center.

Sponsored Resource:Find your perfect All-in-One printing solution from HP.

Read more like this: industry news, security, servers

Add Yours

Comments Readers reply with their ideas and expertise.

Subscribe to this discussion via email or RSS

What do you think?

Posting comment ...

Save on Printing Costs

How a print management strategy can benefit your bottom line. Read more here.

Great year-end deals
for small business!
Get 24/7 live remote AT&T Tech Support 360* service along with select Lenovo* PCs (with Intel® Core™ 2 Duo processors) and save up to 200!

Learn more
HP EliteBook* 6930p Notebook with Intel® vPro™ technology and a free HP Basic Docking Station - $641 instant savings!

Learn more
*Other names and brands may be claimed as the property of others. ©2009 Intel Corporation. Intel, the Intel logo, vPro and Core trademarks of Intel Corporation in the United States and other countries. All rights reserved.

Business News Daily

Get the latest technology news that's important to you and your business, fresh seven days a week.

Best Prices on Security Software

Norton Internet Security 2010 - 3 UsersPrice: $26.30
Norton 360 Version 3.0 - 3 LicensesPrice: $39.99
Norton Internet Security 2010 - 3 UserPrice: $26.30

Internet Security 2010Price: $31.85
Norton 360Price: $25.00
Total Protection 2010 - 3 UserPrice: $26.47

See all Best Prices on Security Software

See also: Best Prices on Antivirus Software, Best Prices on Security Devices

Latest in Business Center Blogs

Tech Audit - January 06, 2010 3:20 PM
Deliver Mobile Presentations With BlackBerry Presenter New presentation tools announced at CES let sales workers flourish in ultralight fashion.
Tech Inciter - January 06, 2010 2:00 PM
Should Google Buy T-Mobile? Rather than handset comparisons, should we be thinking about free Googlephones that deliver location-based advertising wherever we roam?
BizFeed - January 06, 2010 9:57 AM
Why a Microsoft Tablet PC is Better for Business Rumors are at a fever pitch regarding both the Microsoft and Apple tablet PC's. Both devices look slick based on speculation, but Microsoft is in a unique position to make the tablet into a valuable business tool.
Tech Inciter - January 06, 2010 8:50 AM
Six Reasons to Not Like Google's Nexus One Google's new Nexus One smartphone will not be an iPhone killer. It may not even be a Droid killer, but it may be Google's first serious and most public misstep.
BizFeed - January 05, 2010 5:11 PM
Nexus One Illustrates an Important Lesson Google's Nexus One looks awesome, but not revolutionary. The device, built on Android 2.1, does teach an important lesson, though.
Tech Inciter - January 05, 2010 3:26 PM
Report: No Upgrade Pricing for MS Office 2010 It appears there will be no special, lower-cost "upgrade" versions when Office 2010 launches.

All Blogs »

Featured Webcasts

Mobile Management: Reducing Risks and Maximizing Return
Type: audio

Company: Absolute Software

Categories: Mobile ,Networking,Security
The Advantages of Row and Rack- Oriented Cooling Architectures for Data Centers
Type: whitepaper

Company: APC by Schneider Electric

Categories: Green Tech,Networking,Virtualization

More webcasts »

Name	City

Address 1	State	Zip

Address 2	E-mail (optional)

Resource Centers

Five Steps to Safer Virtual Servers

People who read this also read:

Comments Readers reply with their ideas and expertise.

What do you think?

Save on Printing Costs

Business News Daily

Best Prices on Security Software

Latest in Business Center Blogs

Featured Webcasts

Free Whitepapers

Software and Services Whitepapers from PC World

Whitepaper Alerts

PC World's Marketplace

Sponsored Links

More from the PC World BusinessCenter

Resources

Network