Virtualisation Inspires A Security Rebirth

IT virtualisation gives data managers a chance to build a secure computing infrastructure from the ground up, according to a message EMC president Paul Maritx delivered at the RSA show in the US last week.

The show is hosted by RSA, the security division of EMC, and the lead keynote went to RSA president Art Coviello, but he only delivered vague exhortations for greater co-operation among security vendors and mild instructions for practitioners to make demands for this co-operation.

More thought-provoking ideas emerged, when Coviello handed over to taped greetings from Paul Maritz, president of VMware, the virtualisation giant majority-owned by EMC.

With IT virtualisation, data managers can build a secure computing infrastructure from the ground up, said Maritz. The next generation of VMware virtualisation technology announced 21 April, which eWEEK Labs recently took a first look at, will only add energy to the sweeping transformation of the data centre

There is every possibility that end-user systems, including desktops, laptops and handheld devices, will also be picked up in the transition as they become defined more by the ability to access data in the cloud and less as individual compute platforms.

As I write this column from the RSA conference, it’s clear that the industry is at the very beginning of this virtualisation turn. The expo floor is still covered with many familiar vendors, with products that are for the most part squarely focused on solving endpoint security problems in the physical world.

Vendors are supplying products for virtual systems that are basically software versions of their hardware products. But a few pioneers are making products from the ground up to protect virtual machines.

Altor Networks, for example, is making a firewall just for the virtual world. And Shavlik is taking advantage of its special relationship with VMware to provide patch management even to systems that are dormant.

To be clear, some IT problems, such as identity management, aren’t fundamentally changed by the advent of virtualisation. People are even more likely to forget passwords as the number of virtual machines that they access increases.

But many problems are changed by virtualisation in the data centre. Data leak prevention tools and anti-virus must now gain visibility into the internal networks used only by virtual machines. In some ways, this is a parallel of the problem presented to these same products by SSL encryption.

Finally, advances in hypervisor technology and hardware design will, for organisations running the latest versions of both, greatly reduce the processing overhead usually associated with security solutions in a virtual environment. VMware’s announcement of vSphere and Intel’s release of the Xeon 5500 processor family earlier this month, along with functionality that AMD provides in its chip sets, make it possible to provide security without a crushing performance hit.

IT managers who successfully secure their virtual environments will set the benchmark, and lay the foundation, for business success.

Cameron Sturdevant has been at the eWeek Labs since 1997 and is a data security specialist.

Cameron Sturdevant eWEEK USA 2012. Ziff Davis Enterprise Inc. All Rights Reserved.

View Comments

  • In the current economic climate, IT departments are increasingly feeling the burden of an expanding desktop infrastructure. However, by adopting desktop-based virtualisation technology, companies now have the opportunity to realise huge cost savings.

    For example, virtual thin client devices cost a fraction of the price of PCs and they also have a far longer lifespan, with a typical six year warranty. With most devices at least 90% recyclable, disposal costs are far lower as well, creating a significantly reduced lifetime cost of ownership.

    Power consumption is also lower, with thin client devices using at most 30% of the power of the PCs they replace - and that includes the proportion of server power.

    However, the real cost benefit is derived from a transformation in desktop support as thin client devices can be supported remotely, thus significantly reducing the time taken to resolve problems.

    Furthermore, with no local disk, these machines are much more robust: users cannot download and store viruses that could compromise the infrastructure; whilst vandalism, theft and the risk of losing sensitive data are also reduced.

    The ever expanding and increasingly complex desktop infrastructure is now a significant financial and resource burden for every IT department. As companies face up to tighter budgets, desktop-based virtualisation technology presents the opportunity to fundamentally transform the cost model of desktop computing, from device costs to power consumption and support.

    Yours sincerely,

    Chris de Silva

    Managing Director

    NEC Philips

    http://www.nec-philips.com

Share
Published by
Cameron Sturdevant eWEEK USA 2012. Ziff Davis Enterprise Inc. All Rights Reserved.

Recent Posts

Craig Wright Sentenced For Contempt Of Court

Suspended prison sentence for Craig Wright for “flagrant breach” of court order, after his false…

3 days ago

El Salvador To Sell Or Discontinue Bitcoin Wallet, After IMF Deal

Cash-strapped south American country agrees to sell or discontinue its national Bitcoin wallet after signing…

3 days ago

UK’s ICO Labels Google ‘Irresponsible’ For Tracking Change

Google's change will allow advertisers to track customers' digital “fingerprints”, but UK data protection watchdog…

3 days ago

EU Publishes iOS Interoperability Plans

European Commission publishes preliminary instructions to Apple on how to open up iOS to rivals,…

4 days ago

Momeni Convicted In Bob Lee Murder

San Francisco jury finds Nima Momeni guilty of second-degree murder of Cash App founder Bob…

4 days ago