From AstroArch

Virtualization Security Round Table Podcast Episode 7 show notes

• How Virtualization Security Relates to Cloud Security

Back to main podcast site

Go to Talkshoe to download or listen to the podcast. Soon to be available also on iTunes.

Our guest panelist was Hal Pomeranz of Deer Run Associates. Thank you for joining us Hal.

We started of with Hoff presenting a taxonomy/topology of the Cloud, which is in effect building blocks starting with the highest level of Applications only down to hardware. This is a necessary part of any Cloud discussion. Thank you Hoff for providing this.

We restricted ourselves to the virtualization layer mostly.

At each layer security is different, but the key take aways from this are:

• The cloud user is responsible for their own security.
• Whether to use data encryption depends on your understanding of what is provided by the Cloud Provider. If you do not know, encrypt your data.
• The cloud needs to be auditable by their auditors and your own.
• The cloud provider may allow you to add your own tools to protect your environment (Case in Point is Catbird V-Security tools added by one provider for a customer).
• Security is your responsibility not the cloud provider (at least at this time).

Panelist BIOs

• Hal Pomeranz is the founder and technical lead of Deer Run Associates, and has been active in the system and network management/security field for over twenty years. As a Faculty Fellow for the SANS Institute, Hal developed the SANS "Step-by-Step" course model and currently serves as the track coordinator and primary instructor for the SANS/GIAC Unix Security Certification track (GCUX). He has written or co-written dozens of technical articles and several books, including "Solaris Security: Step-by-Step", the de facto standard guide for "hardening" the Solaris Operating System, and "SANS Security Essentials". Hal is a recipient of the SAGE Outstanding Achievement Award for his teaching and leadership in the field of System Administration.
• Michael Berman is the CTO of Catbird, with over 20 years experience in system engineering, architecture, design and implementation of secure computing. Michael's experience includes implementation of C2 UNIX; Fortune 100 enterprise security; and expert support in the prosecution of computer crimes. He is a member of the Electronic Crimes Task Force and High-Tech Crime Investigation Association and a Certified Information Security Systems Professional (CISSP). Michael is a frequent speaker on the topic of virtualization and security.
• Chris Hoff is Unisys Corporation’s Systems & Technology division chief security architect. Hoff has over 15 years of experience in high-profile global roles in network and information security architecture, engineering, operations and management. Prior to Unisys, he served as Crossbeam Systems' chief security strategist, was the CISO for a $25 billion financial services company and was founder/CTO of a national security consultancy and led the security engineering team of one of the first global managed network security service providers. Hoff is a prolific blogger and sought after speaker at leading security conferences.
• Iben Rodriguez is an Infrastructure Consulting Professional with over 20 years experience working in complex IT environments. Iben has an extensive knowledge of VMware-specific environments having spent 2 years working for VMware in various roles. Iben has led and delivered very complex projects for Fortune 500 companies, including Switzerland based pharmaceutical companies, one of the world's largest online auction companies and a large city government in southern California. Iben is considered one of the foremost industry experts in VMware-based security and infrastructure design.
• Edward L. Haletky is the author of VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers. Haletky owns AstroArch Consulting, Inc., providing virtualization, security, network consulting and development. Haletky is also a guru and moderator for the VMware Communities Forums, providing answers to security and configuration questions, prolific blogger, and is working on new books on Virtualization.

Contents 1 Comments 1.1 kardozo said ... 1.2 lankanvin said ... 1.3 chb908 said ... 1.4 chb908 said ... 1.5 chb908 said ... 1.6 OQAxcIbTWrHcXkb said ... 1.7 zFaWVDOqQqcqAl said ... 1.8 WCbArOoBsmYEAdpuH said ... 1.9 BJvSVoahRg said ... 1.10 nkegHdZkXeAl said ... 1.11 BPmZSpDC said ... 1.12 AQbdVlIWxYbLR said ... 1.13 sNADoepurXzpJxnbRzH said ... 1.14 XABuFmIETO said ... 1.15 cLCUzrXpQvnYl said ... 1.16 ZCqcTLAgVkFvIur said ... 1.17 qCHhcmSxfWgJG said ... 1.18 VeYlvTKw said ... 1.19 QmtjaNPqQxYnq said ... 1.20 OZldmSoYADIHK said ... 1.21 nzVYKjtuxxlikqsgsry said ... 1.22 czElQOifcrqqv said ...

Comments

kardozo said ...

lankanvin said ...

chb908 said ...

chb908 said ...

chb908 said ...

OQAxcIbTWrHcXkb said ...

zFaWVDOqQqcqAl said ...

WCbArOoBsmYEAdpuH said ...

BJvSVoahRg said ...

nkegHdZkXeAl said ...

BPmZSpDC said ...

AQbdVlIWxYbLR said ...

sNADoepurXzpJxnbRzH said ...

XABuFmIETO said ...

cLCUzrXpQvnYl said ...

ZCqcTLAgVkFvIur said ...

qCHhcmSxfWgJG said ...

VeYlvTKw said ...

QmtjaNPqQxYnq said ...

OZldmSoYADIHK said ...

nzVYKjtuxxlikqsgsry said ...

czElQOifcrqqv said ...

Back to main podcast site

Podcast audio improvements by Tim Pierson of DataSentry, Inc.