Virtualization Security Roundup
BeyondTrust, November 12th, 2010
There have been some great articles, data, surveys and analyst reports over the last few weeks on virtualization security and I wanted to share and consolidate some of those here.
- Jon Brodkin of Network World on how “most virtualized workloads are being deployed insecurely” but they don’t have to be. He speaks to hypervisor vulnerabilities and the need for security to play a larger role in the early planning stages.
- An update from eWeek on the latest PCI compliance rules around virtualization, which has been clarified that servers holding regulated data can be virtualized so long as all the virtual machines on each physical machine serve the same function (ie web server, database, etc.)