Virtualisation security in the cloud
Business is never "as usual".
Virtualisation is considered a core enabler technology of Infrastructure as a Service (IaaS). It also has significant implications for the extension of that service to Platforms as a Service (PaaS) and to a lesser extent Software as a Service (SaaS).
Virtualisation opportunities
The capability virtualisation provides in terms of segregating all types of data and services extends to the ability to separate data and services on security grounds. Virtualisation technologies thus provide an additional control in our security toolkit.
Virtualisation technology is inherently flexible and possesses the ability to change configurations on the fly. This helps you manage and respond, in a dynamic fashion, to a range of threat vectors, including denial of service attacks, physical component hardware failures and resource bottlenecks among others.
Virtualisation challenges
There are two main categories of risks in cloud data centre virtualisation environments - those inherent in the technology itself and those associated with its poor implementation
What does the future look like?
Virtualisation vendors need a revised set of controls and products to help address the security risks associated with such environments. Within the virtual server environment the implementation of Trusted Execution Technology (TXT) combined with a Trusted Platform Module (TPM) enables the execution of a secure or measured launch of the system from hardware through the hypervisor (sometimes referred to as the Measured Launch Environment or MLE ).
Conclusion
The application of virtualisation to cloud, is a ‘must have’ in order to compete in the outsource service market. There are security challenges, but vitualisation also represents a great opportunity to enhance your overall security posture and truly demonstrate how good security practice can enable business benefit.
