Kevin Wharram, profile picture
Uploaded byKevin Wharram
PPT, PDF566 views

Kevin wharram

The document discusses various topics related to virtualization and cloud computing including definitions, types, security issues and compliance challenges. It defines virtualization as the creation of virtual versions of hardware resources like CPU, memory and storage. The main types of virtualization covered are server, desktop, application, network and storage virtualization. Private clouds are discussed as being operated solely for an organization, while raising similar security controls as virtualization. Resources on virtualization security best practices from NIST, VMware and Cloud Security Alliance are also referenced.

Embed presentation

Downloaded 31 times
 
Welcome Kevin Wharram, CISSP, CISM, CEH, EnCE, GCFA, 27001 Lead Auditor Member of the ISACA Security Advisory Group at ISACA London Chapter My interests are in – Forensics, Virtualization and Cloud Security
What is Virtualization? Server Virtualization Analogy Virtualization Security Virtualization Compliance What is Cloud Computing? What is a Private Cloud? Private Cloud Security Agenda
What is Virtualization? Virtualization is the creation of a virtual (rather than actual) version of something, such as an operating system (OS), a server, a storage device or network resource. Source - http://en.wikipedia.org/wiki/Virtualization
What is Virtualization cont. Virtualization presents hardware resources as virtual resources: CPU Memory Storage (Disk) Network Interface (NIC)
Not a new concept First developed in the 1960s and was better known as time-sharing IBM developed the idea of a Virtual Machine Monitor (VMM) which is also know as a Hypervisor History of Virtualization
Server Virtualization Desktop Virtualization or (VDI) Application Virtualization Network Virtualization Storage Virtualization Types of Virtualization
Server Virtualization
Encapsulate OS and present “virtual hardware” Run many OS on single hardware platform Consolidate underutilized servers VMware (vSphere), Microsoft (Hyper-V), Citrix (XenServer) and Solaris Containers What is Server Virtualization?
Server Virtualization Analogy Hotel VS Holiday Home
Copyright © 2004 VMware, Inc. All rights reserved. Traditional Server Server without Virtualization Holiday Home
Virtualized Server Hotel Server with Virtualization
Desktop Virtualization
Desktop virtualization separates a personal computer desktop environment from a physical machine using a client–server model of computing Desktop virtualization is sometimes referred to as Virtual Desktop Infrastructure (VDI) What is Desktop Virtualization?
Remote Desktop (RDS) is different to VDI With (RDS), all users are sharing the same OS. With VDI, each user has their own real OS (could be dedicated or from a pool) VMware View, Citrix (XenDesktop) and Kaviza What is Desktop Virtualization cont.
Application Virtualization
Encapsulate applications (run conflicting applications on same system, i.e. IE 7 and IE8) Avoid apps corrupting (OS) Application delivery (Stream, ESD, Other) VMware (ThinApp), Microsoft (App-V) and Citrix ( XenApp) What is Application Virtualization?
Network Virtualization
Network virtualization is a method used to combine computer network resources into a single platform, known as a virtual network Not a new concept Virtual private networks (VPNs) are widely used Virtual Local Area Networks (VLANs) are a form of network virtualization What is Network Virtualization?
Physical Network
VMware Virtual Network
Storage Virtualization
Storage virtualization is the amalgamation of multiple network storage devices into what appears to be a single storage unit. Storage virtualization is often used in SAN (storage area networks). Source http :// www.webopedia.com/TERM/S/storage_virtualization.html What is Storage Virtualization?
Virtualization Security
Industry Comments ESG Research indicates that security professionals lack virtualization knowledge and best practice models for server virtualization security. Gartner survey: “ 40% of virtualization deployment projects were undertaken without involving the information security team in the initial architecture and planning stages.” Gartner analyst Neil MacDonald wrote: “Virtualization is not inherently insecure. However, most virtualized workloads are being deployed insecurely.“
Patching Disaster Recovery Investigation Forensics Virtualization Security Benefits
Virtual environment misconfiguration Processes Lack of Controls Access Controls Software Vulnerabilities Malware Virtualization Security Issues
vCenter Networking, vSwitches, Cisco Nexus 1000v, vLANs Storage Logging Monitoring VMware vSphere Security
Virtualization Compliance
New technologies introduce new components and processes causing conflict with standards and policies Internal policies and standards need to be updated to reflect virtualization technology Industry standards, PCI DSS, HIPA, etc, sometimes lag technology Compliance Issues
Controls Policies & Compliance Processes & Standards Compliance Pyramid
Cloud Computing
What is Cloud Computing? Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. Source - http://www.nist.gov/itl/cloud/index.cfm
Private cloud Public cloud Community cloud Hybrid cloud Types of Cloud Computing
What is a Private Cloud? Operated solely for an organization May be managed by the organization or a third party May exist on-premise or off-premise
Private Cloud Security Most of the virtualization controls that we spoke about earlier, would apply to the Private Cloud as you control the “Private Cloud.”
Controls Organisation Due-Diligence Processes & Standards Compliance Pyramid
Resources NIST guide to Security for Full Virtualization Technologies http://csrc.nist.gov/publications/nistpubs/800-125/SP800-125-final.pdf VMware hardening guides http://blogs.vmware.com/security/2010/04/vsphere-40-hardening-guide-released.html Cloud Security Alliance http://www.cloudsecurityalliance.org/ NIST Definition of Cloud Computing http://www.nist.gov/itl/cloud/index.cfm Center for Internet Security (CIS) Benchmarks on Server Virtualization http://cisecurity.org/en-us/?route=downloads.benchmarks Defense Information System Agency (DISA) http://iase.disa.mil/stigs/index.html
Questions? Kevin Wharram [email_address]

More Related Content

PPTX
Virtualization Security
bysyrinxtech
 
PDF
Inherent Security Design Patterns for SDN/NFV Deployments
byOPNFV
 
PDF
Virtual Networking Security - Perimeter Security
byEng Teong Cheah
 
PDF
Managing Application Config and Secrets
byEng Teong Cheah
 
PDF
Identity Security - Azure Identity Protection
byEng Teong Cheah
 
PDF
Cisco web ex cloud security
byebingeorge2010
 
PDF
Virtual Networking Security - Network Security
byEng Teong Cheah
 
PDF
Compute Security - Host Security
byEng Teong Cheah
 
Virtualization Security
bysyrinxtech
 
Inherent Security Design Patterns for SDN/NFV Deployments
byOPNFV
 
Virtual Networking Security - Perimeter Security
byEng Teong Cheah
 
Managing Application Config and Secrets
byEng Teong Cheah
 
Identity Security - Azure Identity Protection
byEng Teong Cheah
 
Cisco web ex cloud security
byebingeorge2010
 
Virtual Networking Security - Network Security
byEng Teong Cheah
 
Compute Security - Host Security
byEng Teong Cheah
 

What's hot

PDF
Make your OpenStack Cloud Self-Defending with VESPA!
bymlacostma
 
PDF
Introduction to Mod security session April 2016
byRahul
 
PPTX
Web Application firewall-Mod security
byRomansh Yadav
 
PDF
Mod Security
byAbhishek Singh
 
PDF
Node JS reverse shell
byMadhu Akula
 
PPTX
Advanced OSSEC Training: Integration Strategies for Open Source Security
byAlienVault
 
PPTX
Mod security
byShruthi Kamath
 
PPTX
Sandboxing in .NET CLR
byMikhail Shcherbakov
 
PDF
Future of Web Security Opened up by CSP
byMuneaki Nishimura
 
PPTX
Operations Management Suite
byPedro Sousa
 
PDF
Cld006 azure v_net___express_route_最新情報
byTech Summit 2016
 
PPTX
BlueHat v17 || Down the Open Source Software Rabbit Hole
byBlueHat Security Conference
 
PDF
Gets cisco security training
byqosnetworking
 
PPTX
Matriux
byPrajwal Panchmahalkar
 
PDF
Хакеро-машинный интерфейс
byPositive Hack Days
 
PDF
CDI and Seam 3: an Exciting New Landscape for Java EE Development
bySaltmarch Media
 
DOC
Strayer cis 333 entire course
byuopassignment
 
KEY
mod_security introduction at study2study #3
byNaoya Nakazawa
 
PDF
Linux Security for Developers
byMichael Boelen
 
Make your OpenStack Cloud Self-Defending with VESPA!
bymlacostma
 
Introduction to Mod security session April 2016
byRahul
 
Web Application firewall-Mod security
byRomansh Yadav
 
Mod Security
byAbhishek Singh
 
Node JS reverse shell
byMadhu Akula
 
Advanced OSSEC Training: Integration Strategies for Open Source Security
byAlienVault
 
Mod security
byShruthi Kamath
 
Sandboxing in .NET CLR
byMikhail Shcherbakov
 
Future of Web Security Opened up by CSP
byMuneaki Nishimura
 
Operations Management Suite
byPedro Sousa
 
Cld006 azure v_net___express_route_最新情報
byTech Summit 2016
 
BlueHat v17 || Down the Open Source Software Rabbit Hole
byBlueHat Security Conference
 
Gets cisco security training
byqosnetworking
 
Matriux
byPrajwal Panchmahalkar
 
Хакеро-машинный интерфейс
byPositive Hack Days
 
CDI and Seam 3: an Exciting New Landscape for Java EE Development
bySaltmarch Media
 
Strayer cis 333 entire course
byuopassignment
 
mod_security introduction at study2study #3
byNaoya Nakazawa
 
Linux Security for Developers
byMichael Boelen
 

Viewers also liked

PDF
Why Have A Digital Investigative Infrastructure
byKevin Wharram
 
PPTX
Microfix N.V. Bedrijfspresentatie
byBart_Koreman
 
PDF
8th nizo dairy conference
byastridkemper
 
PDF
David aaker-managementul-capitalului-unui-brand
byAndrada Tataruca
 
PPT
Scrisoare catre locuitorii casei "Terra'
byAndrada Tataruca
 
PPT
Kevin Wharram Security Summit
byKevin Wharram
 
PDF
2014 - AINS - the Cluster of Nutrition and Health
byIgnasi Papell Garcia
 
PPTX
Masachusetts Foreclosure can be avoided
byMassachusettsforeclosurecenter
 
PPTX
Now Massachusetts foreclosure can be stopped
byMassachusettsforeclosurecenter
 
PDF
CTNS-Technological Centre of Nutrition and Health
byIgnasi Papell Garcia
 
PPTX
Foreclosure can be avoided in a legal way
byMassachusettsforeclosurecenter
 
PPTX
About Massachusetts Foreclosure law and lawyers
byMassachusettsforeclosurecenter
 
PPTX
WHAT SHOULD YOU KNOW AOUT Foreclosure
byMassachusettsforeclosurecenter
 
PDF
Folder Tbv Email01 (2)
byKoertK
 
PPT
Scisoare catre locuitorii casei"Terra"
byAndrada Tataruca
 
Why Have A Digital Investigative Infrastructure
byKevin Wharram
 
Microfix N.V. Bedrijfspresentatie
byBart_Koreman
 
8th nizo dairy conference
byastridkemper
 
David aaker-managementul-capitalului-unui-brand
byAndrada Tataruca
 
Scrisoare catre locuitorii casei "Terra'
byAndrada Tataruca
 
Kevin Wharram Security Summit
byKevin Wharram
 
2014 - AINS - the Cluster of Nutrition and Health
byIgnasi Papell Garcia
 
Masachusetts Foreclosure can be avoided
byMassachusettsforeclosurecenter
 
Now Massachusetts foreclosure can be stopped
byMassachusettsforeclosurecenter
 
CTNS-Technological Centre of Nutrition and Health
byIgnasi Papell Garcia
 
Foreclosure can be avoided in a legal way
byMassachusettsforeclosurecenter
 
About Massachusetts Foreclosure law and lawyers
byMassachusettsforeclosurecenter
 
WHAT SHOULD YOU KNOW AOUT Foreclosure
byMassachusettsforeclosurecenter
 
Folder Tbv Email01 (2)
byKoertK
 
Scisoare catre locuitorii casei"Terra"
byAndrada Tataruca
 

Similar to Kevin wharram

PPT
Virtualization meisen 042811
byMorty Eisen
 
PPTX
Cloud Computing vs Virtualization From Desktop to Server
byFadly Rizal Ahmad Fadzil
 
PPTX
week 3 cloud computing northumbria foudation
byMarufFarhanRigan1
 
PPTX
Virtualization
bypreethipreethi35
 
PPTX
Virtualization And Containerization.pptx
bySMIT PAREKH
 
PPTX
virtualization-220403085202_Chapter1.pptx
byXanGwaps
 
PPTX
Virtualization_IoT_Cloud_Presentation_ .pptx
byaubreyubuntu
 
PPTX
Virtualization: Security and IT Audit Perspectives
byJason Chan
 
PPT
Why Security Teams should care about VMware
byJJDiGeronimo
 
PPTX
Cloud.pptx
byAjit Wadhawan
 
PPTX
Virtualization and how it leads to cloud
byHuzefa Husain
 
PPTX
Securing Virtual and Cloud Environments
byBunmi Sowande
 
PPTX
Virtualization- Cloud Computing
byNIKHILKUMAR SHARDOOR
 
PPTX
VMware Technical Overview (2012)
bySteven Aiello
 
PPTX
Virtualizaiton-3.pptx
bysebghataslamzai
 
PPT
040711 webcast securing vmachine
byErin Banks
 
ODP
VirtSec, and the Open Source impact
byKris Buytaert
 
PPTX
Campus jueves
bycampus party
 
PDF
VMworld 2014: Virtualization 101
byVMworld
 
PPTX
101 Virtualization and Private Cloud
byFazle Abbas Luqmani
 
Virtualization meisen 042811
byMorty Eisen
 
Cloud Computing vs Virtualization From Desktop to Server
byFadly Rizal Ahmad Fadzil
 
week 3 cloud computing northumbria foudation
byMarufFarhanRigan1
 
Virtualization
bypreethipreethi35
 
Virtualization And Containerization.pptx
bySMIT PAREKH
 
virtualization-220403085202_Chapter1.pptx
byXanGwaps
 
Virtualization_IoT_Cloud_Presentation_ .pptx
byaubreyubuntu
 
Virtualization: Security and IT Audit Perspectives
byJason Chan
 
Why Security Teams should care about VMware
byJJDiGeronimo
 
Cloud.pptx
byAjit Wadhawan
 
Virtualization and how it leads to cloud
byHuzefa Husain
 
Securing Virtual and Cloud Environments
byBunmi Sowande
 
Virtualization- Cloud Computing
byNIKHILKUMAR SHARDOOR
 
VMware Technical Overview (2012)
bySteven Aiello
 
Virtualizaiton-3.pptx
bysebghataslamzai
 
040711 webcast securing vmachine
byErin Banks
 
VirtSec, and the Open Source impact
byKris Buytaert
 
Campus jueves
bycampus party
 
VMworld 2014: Virtualization 101
byVMworld
 
101 Virtualization and Private Cloud
byFazle Abbas Luqmani
 

Recently uploaded

PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PDF
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PDF
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PDF
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
PPTX
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Protecting Data in an AI Driven World - Cybersecurity in 2026
byYasir Naveed Riaz
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
The year in review - MarvelClient in 2025
bypanagenda
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
Eredità digitale sugli smartphone: cosa resta di noi nei dispositivi mobili
bySpeck&Tech
 
API-First Architecture in Financial Systems
bycyy111112
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Our Digital Tribe_ Cultivating Connection and Growth in Our Slack Community 🌿...
bysanjeetmishra30
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 

Kevin wharram

  • 1.
  • 2.
    Welcome Kevin Wharram,CISSP, CISM, CEH, EnCE, GCFA, 27001 Lead Auditor Member of the ISACA Security Advisory Group at ISACA London Chapter My interests are in – Forensics, Virtualization and Cloud Security
  • 3.
    What is Virtualization?Server Virtualization Analogy Virtualization Security Virtualization Compliance What is Cloud Computing? What is a Private Cloud? Private Cloud Security Agenda
  • 4.
    What is Virtualization?Virtualization is the creation of a virtual (rather than actual) version of something, such as an operating system (OS), a server, a storage device or network resource. Source - http://en.wikipedia.org/wiki/Virtualization
  • 5.
    What is Virtualizationcont. Virtualization presents hardware resources as virtual resources: CPU Memory Storage (Disk) Network Interface (NIC)
  • 6.
    Not a newconcept First developed in the 1960s and was better known as time-sharing IBM developed the idea of a Virtual Machine Monitor (VMM) which is also know as a Hypervisor History of Virtualization
  • 7.
    Server Virtualization DesktopVirtualization or (VDI) Application Virtualization Network Virtualization Storage Virtualization Types of Virtualization
  • 8.
  • 9.
    Encapsulate OS andpresent “virtual hardware” Run many OS on single hardware platform Consolidate underutilized servers VMware (vSphere), Microsoft (Hyper-V), Citrix (XenServer) and Solaris Containers What is Server Virtualization?
  • 10.
    Server Virtualization AnalogyHotel VS Holiday Home
  • 11.
    Copyright © 2004VMware, Inc. All rights reserved. Traditional Server Server without Virtualization Holiday Home
  • 12.
    Virtualized Server HotelServer with Virtualization
  • 13.
  • 14.
    Desktop virtualization separatesa personal computer desktop environment from a physical machine using a client–server model of computing Desktop virtualization is sometimes referred to as Virtual Desktop Infrastructure (VDI) What is Desktop Virtualization?
  • 15.
    Remote Desktop (RDS)is different to VDI With (RDS), all users are sharing the same OS. With VDI, each user has their own real OS (could be dedicated or from a pool) VMware View, Citrix (XenDesktop) and Kaviza What is Desktop Virtualization cont.
  • 16.
  • 17.
    Encapsulate applications (runconflicting applications on same system, i.e. IE 7 and IE8) Avoid apps corrupting (OS) Application delivery (Stream, ESD, Other) VMware (ThinApp), Microsoft (App-V) and Citrix ( XenApp) What is Application Virtualization?
  • 18.
  • 19.
    Network virtualization isa method used to combine computer network resources into a single platform, known as a virtual network Not a new concept Virtual private networks (VPNs) are widely used Virtual Local Area Networks (VLANs) are a form of network virtualization What is Network Virtualization?
  • 20.
  • 21.
  • 22.
  • 23.
    Storage virtualization isthe amalgamation of multiple network storage devices into what appears to be a single storage unit. Storage virtualization is often used in SAN (storage area networks). Source http :// www.webopedia.com/TERM/S/storage_virtualization.html What is Storage Virtualization?
  • 24.
  • 25.
    Industry Comments ESGResearch indicates that security professionals lack virtualization knowledge and best practice models for server virtualization security. Gartner survey: “ 40% of virtualization deployment projects were undertaken without involving the information security team in the initial architecture and planning stages.” Gartner analyst Neil MacDonald wrote: “Virtualization is not inherently insecure. However, most virtualized workloads are being deployed insecurely.“
  • 26.
    Patching Disaster RecoveryInvestigation Forensics Virtualization Security Benefits
  • 27.
    Virtual environment misconfigurationProcesses Lack of Controls Access Controls Software Vulnerabilities Malware Virtualization Security Issues
  • 28.
    vCenter Networking, vSwitches,Cisco Nexus 1000v, vLANs Storage Logging Monitoring VMware vSphere Security
  • 29.
  • 30.
    New technologies introducenew components and processes causing conflict with standards and policies Internal policies and standards need to be updated to reflect virtualization technology Industry standards, PCI DSS, HIPA, etc, sometimes lag technology Compliance Issues
  • 31.
    Controls Policies &Compliance Processes & Standards Compliance Pyramid
  • 32.
  • 33.
    What is CloudComputing? Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. Source - http://www.nist.gov/itl/cloud/index.cfm
  • 34.
    Private cloud Publiccloud Community cloud Hybrid cloud Types of Cloud Computing
  • 35.
    What is aPrivate Cloud? Operated solely for an organization May be managed by the organization or a third party May exist on-premise or off-premise
  • 36.
    Private Cloud SecurityMost of the virtualization controls that we spoke about earlier, would apply to the Private Cloud as you control the “Private Cloud.”
  • 37.
    Controls Organisation Due-DiligenceProcesses & Standards Compliance Pyramid
  • 38.
    Resources NIST guideto Security for Full Virtualization Technologies http://csrc.nist.gov/publications/nistpubs/800-125/SP800-125-final.pdf VMware hardening guides http://blogs.vmware.com/security/2010/04/vsphere-40-hardening-guide-released.html Cloud Security Alliance http://www.cloudsecurityalliance.org/ NIST Definition of Cloud Computing http://www.nist.gov/itl/cloud/index.cfm Center for Internet Security (CIS) Benchmarks on Server Virtualization http://cisecurity.org/en-us/?route=downloads.benchmarks Defense Information System Agency (DISA) http://iase.disa.mil/stigs/index.html
  • 39.
    Questions? Kevin Wharram[email_address]

Editor's Notes

  • #6 03/05/11 Integrated Solutions Management, Inc. Enterprise Governance in a Virtual World
  • #8 Virtual Desktop Infrastructure (VDI)
  • #25 Previously, it made a lot of sense to dedicate a separate physical server to each specific application. By isolating applications on dedicated hardware, you could limit their exposure to potential security threats – and when security failures did happen, you could limit them to a single machine. By dedicating a physical computer and its operating system to a single application, IT departments maintain greater protection against attackers, who have to find another way in. Virtualization platforms have made it far easier and much faster to create and deploy servers and applications than was possible when physical limitations governed system rollouts.