Is Microsoft working on a VMsafe-like framework?

Posted by virtualization.info Staff   |   Tuesday, May 27th, 2008   |  

The upcoming set of VMware APIs known as VMsafe has the potential to dramatically change the way we secure data centers today.

If the technology will be widely adopted by security vendors it’s clear that VMware competitors will try to replicate the approach or further innovate it. But until a clear, positive answer from the market, the most obvious strategy is to raise some (absolutely legit) security concerns about VMsafe and its capability to expose part of the hypervisor for new attacks.

So far Microsoft didn’t took an official position about the topic but virtualization.info had the opportunity to speak with several representatives who clearly stated how carefully the company is evaluating the security implications of a VMsafe-like approach.
Nonetheless Microsoft may be working to build the internal know-how needed to achieve the task.

Just two months ago in fact Microsoft acquired a small security firm focused on rootkit detection called Komoku.
As Christopher Hoff, Chief Security Architect at Unisys, recently discovered, Komoku did some research in the past, presenting a solution for Xen where virtual machines can do self-diagnosis and self-healing as well as learning to protect against subsequent attacks.

komoku

As a sort of irony, to develop its prototype Komoku took some inspiration from the work of Tal Garfienkel and Mendel Rosenblum (Chief Scientist at VMware), presented in 2002.

The adoption of a VMsafe-like framework could greatly benefit Microsoft: while VMware has to rely on 3rd parties (unless they want to leverage the Determina acquisition in a certain way), Microsoft has an entire portfolio of products to integrate with its upcoming hypervisor.

This may put the Redmond company in a privileged position against both virtualization and security competitors which miss each other to provide an out-of-the-box secure virtual data center.


Labels:

blog comments powered by Disqus


virtualization.info Newest articles
Paper: Reference Architecture – Director and EdgeSight

October 23rd, 2014

Citrix has released a paper titled: “Reference Architecture: Director and EdgeSight“. The paper which contains 32 pages contains a reference architecture for setting up Citrix Director and Citrix Edgesight.
Citrix…

Paper: Cisco UCS C240-M3 Rack Server with NVIDIA GRID GPU cards on Citrix XenServer 6.2 and XenDesktop 7.5

October 21st, 2014

Cisco has released a paper titled: “Cisco UCS C240-M3 Rack Server with NVIDIA GRID GPU cards on Citrix XenServer 6.2 and XenDesktop 7.5“.
The paper which contains 38 pages will…

Microsoft announces updates to its public and private cloud portfolio

October 20th, 2014

Microsoft today announced several upcoming features to both its public Microsoft Azure services, as its private cloud solution based on Windows Server and System Center. CEO Satya Nadella stated that…

OpenStack releases the 10th version of its IaaS platform called Juno

October 20th, 2014

OpenStack, the open source cloud computing project has released its 10th version of its IaaS platform for public, private and hybrid clouds. This version has 342 new features and…

VMware decides to disable TPS in future ESXi releases by default

October 17th, 2014

In a knowledge base article titled: “Security considerations and disallowing inter-Virtual Machine Transparent Page Sharing (2080735)” published on October 16th, VMware states that it will disable the Transparant Page Sharing…

Paper: Citrix Virtual Desktop Handbook 7.x

October 16th, 2014

Based on the recent releases of Citrix XenApp and XenDesktop 7.6, Citrix has updated its design guidance called the "Citrix Virtual Desktop Handbook 7.x". The handbook which contains 202 pages…

VMware announces vRealize Log Insight 2.5

October 16th, 2014

VMware has announced the release of version 2.5 of its log aggregation, management and analysis product Log Insight. This version will be the follow up of version 2.0 which was…

Release: Oracle VM VirtualBox 4.3.18

October 16th, 2014

Oracle has released a new version of its virtualization platform VM Virtualbox. Version 4.3.18 is considered a maintenance release which can be installed on top of version 4.3. The update…

Paper: Performance and Scalability of Microsoft SQL Server on VMware vSphere 5.5

October 16th, 2014

VMware has released a paper titled: "Performance and Scalability of Microsoft SQL Server on VMware vSphere 5.5". The Paper which contains 33 pages demonstrates that large Microsoft SQL Server databases…

Paper: Microsoft Exchange Server Performance on VMware Virtual SAN

October 16th, 2014

VMware has released a paper titled: "Microsoft Exchange Server Performance on VMware Virtual SAN". The paper which contains 9 pages shows the results of performance tests of Microsoft Exchange Server…

Microsoft announces support for Docker container virtualization for next version of Windows Server

October 15th, 2014

Microsoft has announced that it will support for Docker in its next version of Windows Server. Docker which provides a so called container virtualization solution currently receives a lot of…

Paper: Achieving Over 1-Million IOPS from Hyper-V VMs in a Scale-Out File Server Cluster Using Windows Server 2012 R2

October 15th, 2014

Microsoft has released a paper titled:"Achieving Over 1-Million IOPS from Hyper-V VMs in a Scale-Out File Server Cluster Using Windows Server 2012 R2". The paper which contains 24 pages demonstrates…

VMworld Europe 2014 Wrap-Up

October 15th, 2014

VMworld Europe 2014 in Barcelona has seen Pat Gelsinger (VMware CEO), Bill Fathers (EVP and GM, Hybrid Cloud Services Business Unit) and Sanjay Poonen (EVP and GM, End-User Computing) in…

Release: Microsoft Virtual Machine Converter 3.0

October 14th, 2014

Microsoft has released version 3.0 of its converter tool from the VMware platform to Hyper-V and Windows Azure, the Microsoft Virtual Machine Converter (MVMC). Version 3.0 is the follow-up of…

 
Monthly Archive