Internet Security Systems - AlertCon(TM)

Virtualization Webcast at SANS

Posted by Tom Cross on December 22, 2010 at 6:02 PM EST.

Yesterday Bryan Williams and I presented a webcast with SANS on Virtualization Security.

Bryan took a close look through all the vulnerabilities that have been disclosed in virtualization systems. Based on this work we cover each of the surface areas created by virtualization that could be exposed to attack, possible attacks that could hit those surface areas, as well as disclosed vulnerabilities and public exploits for those vulnerabilities. Finally, we present specific recommendations for safely configuring, managing, and operating virtualization in production.

We think this presentation has some solid statistics and information that can help you navigate difficult architectural decisions. You can listen to the webcast here and download a pdf of our slides here.

Comments or opinions expressed on this Weblog are the opinions of the authors alone. They are not necessarily reviewed in advance by anyone but the individual authors, and neither IBM Internet Security Systems nor any other party necessarily agrees with them. The views expressed by outside contributors and links to outside websites do not represent the views of IBM Internet Security Systems, its management or employees. All content on this Weblog has been made available on an “as-is” basis, and IBM Internet Security Systems shall not be liable for any direct or indirect damages arising out of use of this Weblog.