Virtualization Advisor

Expert analysis and advice on server virtualization technologies, deployments and management.

RSS
All Posts | RSS

Our bloggers: Kevin Fogarty is a veteran technology journalist and analyst who has previously worked for Computerworld, Baseline, eWeek, and Illuminata. Virtualization expert Edward L. Haletky is the author of "VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers", Pearson Education (2008) and runs his own firm, AstroArch Consulting. Laurianne McLaughlin serves as technology editor for CIO, focusing on virtualization as a primary area of coverage.

Mon, June 30, 2008

Good Virtual Security Requires Better IT Teamwork

By Edward L. Haletky

Keywords: Virtual server, virtualization security

CONNECTIONS
VMware
Microsoft
Citrix
Virtualization security is not just about securing the virtual network, nor is it just about securing the virtualization server operating system.

It is about realizing that a virtualization server is a hybrid device, whether it be VMware Virtual Infrastructure 3, VMware Server, VMware Workstation, Citrix XenServer or Microsoft Hyper-V.

Virtualization servers are a mix of a hypervisor device (OS), a networking device (bridge or switch) and a storage interface.

Currently, security folks know how to harden an OS and/or they know how to protect a network bridge or switch appliance. Few know how to do both simultaneously, or how to deal with the hpervisor as a complicating factor.

Do you need a high priced virtualization security expert to do this? These experts are few and far between and you probably don't need them. What you do need is the ability to pool all your security expertise in one group and educate them on the realities of virtualization. You need to remove the barriers and fiefdoms that spring up around IT and let these folks work together.

There is often a combative and not synergistic approach when groups deal with virtualization administrators.

For example, it can be tough getting storage teams to properly layout the LUNs (logical unit numbers) involved with virtualization servers; getting network administrators to set network speeds and configure ports for virtual-server hosts, or even getting OS security administrators to understand what tools they actually need instead of requesting unnecessary access and applications.

The combative nature that prevents this kind of cooperation often stems from not only organizational issues, but also the need for a virtualization administrator to act as an administrator for storage, security and networks.

Since a virtualization server covers all three areas, virtual-server administrators need to fully understand all three, or have the help of teams from storage, security, network, and operations. While it may be possible for one person to learn everything in these arenas, it is better to utilize the existing expertise.

The answer to fixing this IT staff problem: Educate all IT teams in the realities of virtualization. Virtualization is here to stay; it is not a fad; it is a reality. Whether this is by purchasing virtualization books for your IT teams, or by providing training for your team members, somehow all teams need to speak the same language, and this includes the virtualization administrator.

The virtualization administrator is the glue that makes it all possible, so he or she also needs education in order to speak the language used by the other teams. Otherwise, you get the 'You do not know what you are talking about' approach to teamwork.
Loading...
Virtualization Vendor Matrix

Find out what vendors offer the products you need.

View the Vendor Matrix »
Virtualization ABCs

Get up to speed on virtualization.

Learn More »
Virtualization MarketSpace
MarketSpace White Papers
HP and VMware: Virtualization to consolidate server resources for maximum efficiency
 Virtualization enables proven cost savings and efficiencies. Now you can tap that power by consolidating multiple applications and heterogeneous operating systems on a single server... Learn more »
Gartner Research: U.S. Data Centers
 According to Gartner, the majority of existing US datacenters have not been designed to handle future energy demands. Strategic decisions, including the implementation of virtualization, must be made quickly... Learn more »
Gartner Research: How IT Management Can "Green" the Data Center
 Datacenters consume large amounts of energy, so it is imperative that IT management establishes energy efficiency goals and an integrated approach to energy-saving initiatives... Learn more »
 
SPONSORED LINKS
 

Stories of real businesses that Virtualized their IT environments

Consolidation: Just the Starting Point for Virtualization

7 Requirements of Data Loss Prevention

Learn About the Features of the Google Universal Search Solution.

Mission Impossible: Building the Right Project Metrics

Project Portfolio Management - Boost the Value of IT

Telepresence - A Realistic Solution Connecting a Global Workforce

Integrating ActiveRoles With IBM Tivoli Identity Manager 5.0

Quest Authentication and IBM Tivoli Identity Management

HP Webcast: Transforming the Data Center

How End-User Monitoring Can Help You Improve Customer Satisfaction

Destination: Intelligent Data Center Automation

Protecting Data in a Highly Networked World

Efficient by design: Watch this flash demo of the Quad-Core AMD Opteron Processor

HP and Oracle deploy unbreakable computing infrastructure at Replacements, Ltd.

Sheriff's Office Uses PocketCop to Access Police Databases from BlackBerry® Smartphones

The BlackBerry Solution Adds Significant Benefit to Toshiba

HP Puts Its Disaster-tolerant Capabilities to the Test

Rolling the dice with your security? Take the Self-Assessment Test now

Keep proven data center technology. Evolve with Brocade

Motorola AirDefense can identify and exterminate your rogue APs. Learn more

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

Efficient - Flexible - Compliant

Is there a secret to Sharepoint® Security? www.SharePointSecured.com

Request a Novell/Microsoft deployment workshop

Virtualization: Simplify. Automate. Lower Costs.

Improve delivery of product information to customers.

Prudential Financial Protects its Brand with Symantec

Put Enterprise Communications on Autopilot

Portfolio Management for Effective IT Governance

Unify and Conquer: The Benefits of Unified Communications.

Data Center Asset Planning - Regaining Control of the Data Center

Quest Authentication Services: Simplify Identity Management

Turn Information into a Competitive Advantage

Top 10 Ways to Protect Against Web Threats

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

The Benefits of Data Deduplication for Data Protection in the Enterprise

Reap the Benefits of Unified Communications

Renowned Engineering Institution Chooses AMD Processor-Based Servers

New research validates telepresence solutions.

Heinz Uses a Wireless, Automated, Auditing process on BlackBerry® devices

Network Immunity Manager Video

AMD. The Future is Fusion

The Future is Fusion. Only from AMD. Learn more

Industry Analyst Report: Top Hosted Exchange Vendors in 2008

Log onto Hitachi True Stories, films inspired by the next great achievement

CA delivers deeper insight into your assets, resources, projects & services so you can make more informed IT decisions

Manage your IT more effectively

Request a Novell/Microsoft deployment workshop and kit

Request a Novell/Microsoft deployment kit

 
 
RESOURCE CENTER
 
buy a link »
Ads by TechWords