Is Microsoft working on a VMsafe-like framework?

Posted by virtualization.info Staff   |   Tuesday, May 27th, 2008   |  

The upcoming set of VMware APIs known as VMsafe has the potential to dramatically change the way we secure data centers today.

If the technology will be widely adopted by security vendors it’s clear that VMware competitors will try to replicate the approach or further innovate it. But until a clear, positive answer from the market, the most obvious strategy is to raise some (absolutely legit) security concerns about VMsafe and its capability to expose part of the hypervisor for new attacks.

So far Microsoft didn’t took an official position about the topic but virtualization.info had the opportunity to speak with several representatives who clearly stated how carefully the company is evaluating the security implications of a VMsafe-like approach.
Nonetheless Microsoft may be working to build the internal know-how needed to achieve the task.

Just two months ago in fact Microsoft acquired a small security firm focused on rootkit detection called Komoku.
As Christopher Hoff, Chief Security Architect at Unisys, recently discovered, Komoku did some research in the past, presenting a solution for Xen where virtual machines can do self-diagnosis and self-healing as well as learning to protect against subsequent attacks.

komoku

As a sort of irony, to develop its prototype Komoku took some inspiration from the work of Tal Garfienkel and Mendel Rosenblum (Chief Scientist at VMware), presented in 2002.

The adoption of a VMsafe-like framework could greatly benefit Microsoft: while VMware has to rely on 3rd parties (unless they want to leverage the Determina acquisition in a certain way), Microsoft has an entire portfolio of products to integrate with its upcoming hypervisor.

This may put the Redmond company in a privileged position against both virtualization and security competitors which miss each other to provide an out-of-the-box secure virtual data center.


Labels:

blog comments powered by Disqus


virtualization.info Newest articles
Citrix announces Q4 and fiscal year 2014 results

January 30th, 2015

Citrix announced its financial results for fourth quarter and fiscal year 2014, ended December 31, 2014.
Citrix announced a total revenue for Q4 of $851 million, for an increase of 6%…

Pluribus Networks raises $50 million in Series D funding

January 29th, 2015

Pluribus Networks has announced that it has closed a $50 million Series D funding. The round was led by Temasek Holdings, an investment company based in Singapore with a…

VMware results for Q4 2014 and full year

January 28th, 2015

On January 27, VMware released the financial results for the third quarter and full year 2014.
The revenues for the fourth quarter were $1.70 billion for an increase of 15% compared…

Ravello Systems raises $28 million and announces major release of HVX

January 27th, 2015

Cloud computing startup called Ravello Systems announces to have secured $28 million funding and to have boost a total of $54 million capital led by Qualcomm Incorporated, through its…

Amazon updates AWS plugin for Microsoft System Center Virtual Machine Manager

January 22nd, 2015

In October last year, Amazon released the AWS System Manager for Microsoft System Center Virtual Machine Manager (SCVMM). AWS System Manager is an add-in for SCVMM which allows customers to…

VMware announces vCloud Air Disaster Recovery

January 22nd, 2015

VMware has announced that later this quarter it will release an updated disaster recovery solution for its IaaS solution vCloud Air (formerly vCloud Hybrid Service). The solution which will be…

Paper: Cisco Unified Computing System with VMware Horizon 6 with View and Virtual SAN

January 20th, 2015

Cisco and VMware have released a paper titled: "Cisco Unified Computing System with VMware Horizon 6 with View and Virtual SAN". The paper which contains 59 pages describes a reference…

Release: Xen Project Hypervisor 4.5

January 19th, 2015

The Xen Project, the community which develops the Xen hypervisor under the GNU General Public License (GPLv2) last week announced the availability version 4.5 of the Xen Hypervisor. With major…

Microsoft and Persistent Systems release solution for Azure IaaS data center migration

January 15th, 2015

Microsoft, together with partner Persistent Systems has developed and released a tool which helps customers to move complete Infrastructure as a Service (Iaas) deployments from one Microsoft datacenter to…

Citrix announcements from its annual Summit partner conference

January 15th, 2015

Before and during its annual Summit partner conference, held on January 13 and 14, Citrix made several announcements. First of all Citrix announced the acquisition of Sanbolic, which virtualization.info already…

Citrix announces XenServer 6.5 – UPDATED

January 13th, 2015

Citrix today announced the next version of its virtualization platform XenServer which is a commercial product based on the open-source Xen Project hypervisor. XenServer 6.5 will be the follow up…

Citrix Acquires Sanbolic

January 12th, 2015

Citrix today announced that its has completed its acquisition of Sanbolic. Sanbolic which has a product called Sanbolic Scale-Out Platform which can be seen as an aggregation of both local…

Survey: State of the VDI and SBC union 2015

January 12th, 2015

Two years ago, Project Virtual Reality Check (VRC) started a survey asking participants to provide more insight in the non-technical issues related to Virtual Desktop Infrastructure (VDI) and Server Based…

Paper: VMware Mirage 5.0 Reviewer’s Guide

January 9th, 2015

VMware has released a reviewers guide for its End User Computing solution Horizon version 5. The paper titled: "VMware Mirage 5.0 Reviewer’s Guide" contains 209 pages and allows readers to…

 
Monthly Archive