The upcoming set of VMware APIs known as VMsafe has the potential to dramatically change the way we secure data centers today.
If the technology will be widely adopted by security vendors it’s clear that VMware competitors will try to replicate the approach or further innovate it. But until a clear, positive answer from the market, the most obvious strategy is to raise some (absolutely legit) security concerns about VMsafe and its capability to expose part of the hypervisor for new attacks.
So far Microsoft didn’t took an official position about the topic but virtualization.info had the opportunity to speak with several representatives who clearly stated how carefully the company is evaluating the security implications of a VMsafe-like approach.
Nonetheless Microsoft may be working to build the internal know-how needed to achieve the task.
Just two months ago in fact Microsoft acquired a small security firm focused on rootkit detection called Komoku.
As Christopher Hoff, Chief Security Architect at Unisys, recently discovered, Komoku did some research in the past, presenting a solution for Xen where virtual machines can do self-diagnosis and self-healing as well as learning to protect against subsequent attacks.
As a sort of irony, to develop its prototype Komoku took some inspiration from the work of Tal Garfienkel and Mendel Rosenblum (Chief Scientist at VMware), presented in 2002.
The adoption of a VMsafe-like framework could greatly benefit Microsoft: while VMware has to rely on 3rd parties (unless they want to leverage the Determina acquisition in a certain way), Microsoft has an entire portfolio of products to integrate with its upcoming hypervisor.
This may put the Redmond company in a privileged position against both virtualization and security competitors which miss each other to provide an out-of-the-box secure virtual data center.
blog comments powered by Disqus
virtualization.info Newest articles
May 12th, 2016
Containers’ security is one of the emerging topics in those companies moving this technology into production. A few small players emerged to compete exclusively in this portion of the…
May 3rd, 2016
RightScale is a Santa Barbara, CA based company, provider of a Software as a Service (SaaS) management solution that so far only supported standard Infrastructure as a Service (IaaS) cloud…
April 5th, 2016
Yesterday, Bellevue (WA) based company WinDocks, released version 1.0 of its homonymous Docker engine for Windows.
The company, founded by a small group of former Microsoft’s employees, rides Docker’s…
March 17th, 2016
LANDesk Software, founded in 1985 and headquartered in Salt Lake City, Utah , provides systems management, security management, service management, asset management and process management solutions with a strong focus…
March 15th, 2016
Last week open source giant Red Hat announced the availability of version 3.6 of its KVM-based virtualization platform Red Hat Enterprise Virtualization (RHEV).
While this new release provides the expected…
March 4th, 2016
Yesterday Docker announced to have acquired a semi-stealth startup called Conductant, focused on workloads orchestration.
Both Conductant’s founders, Bill Farner and David Chung, have significant enterprise experience coming from…
March 1st, 2016
Today Cisco announced the intent to acquire CliQr Technologies Inc., a privately held company based in San Jose, CA.
CliQr is one of the most promising startups in the Cloud…
February 11th, 2016
Yesterday VMware announced version 7 of both its vCloud and vRealize suites, confirming its efforts to be relevant in the CMPs (Cloud Management Platforms) space.
vRealize Suite 7 is made…
February 11th, 2016
Platform9 solutions leverages a mix of SaaS and on premises Virtual Appliance to provide into supported environments capabilities typical of Cloud Management Platforms (CMPs) such self-service provisioning, monitoring, configuration…
February 10th, 2016
Log Insight is a log aggregation, management and analisys tool, that VMware first introduced in 2013 and now is fiercely competing against Splunk.
Today the company announced Log Insight 3.3…
February 1st, 2016
During Ignite 2015, back in September, Microsoft announced Microsoft Azure Stack as the building block for its hybrid cloud strategy.
What Microsoft is saying with this move is that, despite…
January 14th, 2016
Ansible is an IT automation tool especially popular within the developers’ community, thanks to its simplicity and agentless nature.
Three months away from its acquisition by Red Hat the company announced…
December 23rd, 2015
Nutanix is a provider of converged infrastructure, basically a physical server containing both compute and storage driven by an Installed Hypervisor of choice, this server, called a node can…
December 23rd, 2015
Last week VMware finally completed the first major update of VMware vRealize Suite, its well known cloud management solution, releasing in GA both vRealize Automation 7 and vRealize Business Standard…