This paper is the first in a series about the essential security issues arising from virtualization and the
adoption of private and public Cloud services. This series will provide the reader with an introduction to
each area of security risk and provide some solutions, actions, and third-party sou...
“Today, not moving workloads to the cloud is not an option. Leaving these workloads not secured is also not an option.” – Andras Cser, Forrester Research
Government, military, and major national civilian agencies
make enticing targets for cyber crime and cyber espionage. To combat this
reality, signi?cant measures have been implemented or are underway to make
networks and data safe in the federal government, the military, state and local
The virtualization of PCI “in-scope” applications is now becoming a broadly accepted
deployment model. The earliest versions of the PCI Data Security Standard (DSS) did
not address virtualization specifically, leading to differing interpretations and general
confusion as to what was permitted...
The exposure of extremely confidential national security information by an N.S.A. systems administrator highlighted
the catastrophic consequences of inadequate monitoring and access controls. Enterprises that virtualize mission
critical applications and data without addressing this issue leave the...
Virtualization provides efficiency, flexibility, and cost savings. The average cost of a virtualized breach is $800,000—double the cost of a non-virtualized breach. Additional compliance mandates on virtualized infrastructure mean increased operational burden for virtual infrastructure administrat...
Securing the VMware vSphere platform has emerged as an essential requirement
for virtualizing critical workloads and ensuring their compliance with regulations.
It’s increasingly recognized as a prerequisite for achieving the financial rewards
of greater virtualization and private cloud adoptio...
Compliance with PCI, HIPAA, FISMA, EU, and other regulations is as critical in
virtualized and private cloud environments as it is in the traditional data center.
The VMware platform provides some of the log data required to show
compliance, but there are large logging gaps – such as no unique ...
Over 90 percent of enterprise organizations have deployed, or plan to deploy, server virtualization technology within their data centers.