Many IT teams are embarking on the virtualization and cloud computing journey. Here are a couple of reports and links that may assist teams in preparing for Virtualization and VM-Security efforts. Many papers have been written regarding security and “the cloud”. Virtualization is a must first step for the move to cloud computing, so its lessons will be fitting.
Getting a firm handle on security in the virtualization space could be a major hurdle. Symantec has predicted that decision-makers will inadvertently create security holes in their rush to virtualize their environment. Security protocols might not be a priority when the business is focused on reducing storage costs, increasing computing capability and increasing operational efficiency. Stay on top of the threats and mitigations that deal with virtualization so that the voice of reason has a chance to be heard.
2010 Virtualization Security Survey http://www.kuppingercole.com/report/ca_study_virtualization2010
2011 Virtualization & Cloud Survey http://www.symantec.com/about/news/resources/press_kits/detail.jsp?pkid=virtualizationandcloudsurvey2011
VShield Backgrounder http://blogs.vmware.com/partner/2011/09/the-virtualization-security-industry-takes-another-leap-forward-with-vshield-5.html
Trend Micro VM Security Issues http://us.trendmicro.com/imperia/md/content/us/trendwatch/researchandanalysis/final_cloud_virt_report.pdf
Trend Micro VM Security Best Practices http://us.trendmicro.com/imperia/md/content/us/trendwatch/researchandanalysis/final_cloud_virt_best_practice.pdf
Final Version of NIST Full Virtualization Security Guidelines http://www.nist.gov/itl/csd/virtual-020111.cfm