Search Results for: virtualization security

Wind River Releases Proprietary Hypervisor For Hardware Virtualization

June 16, 2008 by Robin Wauters Leave a Comment

Wind River Systems, the California, US-based provider of Device Software Optimization (DSO), today introduced a multicore software solution for device development, which aims to help companies solve complex business challenges by taking advantage of multicore processing and virtualization.

In connection with today’s announcement, Wind River announced that it will introduce a scalable hypervisor that aims to enable virtualization for devices across a broad range of vertical markets, including networking, industrial and consumer devices. The ability to virtualize hardware allows multiple operating environments to share underlying processing cores, memory and other hardware resources.

Wind River’s hypervisor will incorporate the same design practices and technology that Wind River uses for its products, such as Multiple Independent Levels of Security (MILS). The hypervisor will be tightly integrated with VxWorks and Wind River Linux, and can support a variety of other operating systems. It will be available for early access in August 2008.

Open Kernel Labs Receives $2.5M Research Grant, Aims To Embed OS And Virtualization In Mobile Devices

June 12, 2008 by Robin Wauters Leave a Comment

Open Kernel Labs (OK Labs), a provider of embedded systems software and virtualization technology, announced today that it has won a $2.5M research grant under AusIndustry’s “Commercial Ready” program, which awards funds to enterprises that demonstrate the highest potential for innovation and its commercialization. The funds will be used to initiate a research, development and commercialization project centered on a technology transfer agreement with Australian research lab NICTA.

This investment will support research, prototyping and early stage commercialization, which will add unprecedented capabilities to OK Labs’ Secure HyperCell technology. Work under the grant will include the complete formal verification of the OKL4 microkernel and support enhancements to OKL4 that enable “better-designed and more secure software for mobile devices and consumer electronics”. The outcome aims to be a platform uniquely able to support resource-constrained, security- and safety-critical embedded devices.

Secure HyperCell technology provides a secure environment for operating systems, applications and drivers on mobile devices. More details regarding the development and commercialization from the project and its integration with OKL4 are expected to be announced at a later date. We’ll keep you updated!

[Source: VMBlog]

Tool: Check VMware ESX Security Configuration With Tripwire ConfigCheck

June 4, 2008 by Robin Wauters 1 Comment

Tripwire ConfigCheck is a free utility that rapidly assesses the security of VMware ESX hypervisor configurations compared to the VMware Infrastructure 3 Security Hardening guidelines. Developed by Tripwire in cooperation with VMware, Tripwire ConfigCheck ensures ESX environments are properly configured—offering immediate insight into unintentional vulnerabilities in virtual environments—and provides the necessary steps towards full remediation when they are not.

Tripwire Configcheck lets you:

Ensure recommended ESX configurations
Discover possible vulnerabilities
Deploy virtualization safely and securely
Increase security posture of the entire enterprise
Easily implement security and compliance best practices
Reduce configuration drift

Get it here!

[Source: Run-Virtual]

Catbird Delivers Virtual Infrastructure Security Assessment

June 3, 2008 by Robin Wauters Leave a Comment

Catbird, virtualization security specialist and developer of the V-Agent virtual appliance, announced (PDF) today the industry’s “first and only” Virtual Infrastructure Security Assessment (VSA).

Catbird’s VSA helps IT administrators identify and close the potential gaps in security and compliance created in the move from “P to V”. The 30-day assessment includes a security analysis, reports with actionable intelligence and a plan to mitigate risk and protect critical virtual systems, networks, desktops and processes.

The VSA aims to identify the scope and magnitude of the virtualization compliance gap through qualitative and quantitative analysis of the new architecture’s impact on change control, separation of duties, network visibility and segmentation, and secondary validation.

Catbird’s V-Security assessment starts by establishing a scope based on existing controls and best-practices on the physical infrastructure. Once the scope is defined, the team deploys Catbird’s V-Security to passively monitor the networks and check specific assets identified in the scope of work.

Catbird VSA clients receive their first report within 24 hours of setup. For the next four weeks, Catbird’s V-Security monitors and tests all network segments for gaps in security, integrity, management control, configuration and availability. Daily dashboard reports provide snapshots of the test results, which are then aggregated into a comprehensive report presented in an actions workshop by the assessment team. The final report identifies compliance and protection gaps, and contains explicit recommendations based on common best security practices to immediately correct each identified issue.

Catbird’s Virtual Infrastructure Security Assessment is delivered through its partners.

VirtualLogix Conforms to Open Mobile Terminal Platform Security

May 22, 2008 by Robin Wauters Leave a Comment

VirtualLogix announced its continued commitment to the Open Mobile Terminal Platform (OMTP) by submitting a Product Profile Statement in conformance with the organization’s new mobile hardware security recommendations designed to help protect against threats such as malware and fraud attacks. The OMTP is an operator-sponsored forum that gathers and drives mobile terminal requirements.

According to the press release, VirtualLogix VLX for Mobile Handsets is among the first products to conform to the “Advanced Trusted Environment” security recommendations through the OMTP Product Profile Statement.

In its “Advanced Trusted Environment” paper, OMTP focuses on the full set of hardware security requirements that will enable new mobile services to be run in a protected and secure environment. In addition to its Recommendations Papers, OMTP offers its Product Profile process, an online tool that enables network operators, device manufacturers and platform and technology providers to quickly compare and contrast technology offerings that can deliver compliance against the OMTP Recommendations. By conforming to the new “Advanced Trusted Environment” requirements VirtualLogix is helping set the baseline for hardware security in mobile devices for the next five to ten years.

[Source: EDA Geek]

Alternative Technology Adds McAfee Security Solutions and Services

May 22, 2008 by Robin Wauters Leave a Comment

Alternative Technology, an Arrow Electronics company and specialty distributor of thin-client/server-based computing, edge infrastructure, virtualization, and security solutions, has announced it will distribute the full line of McAfee security software, appliances and managed security services for small to medium businesses and enterprises. Those offerings include: system/endpoint security, network security, data protection, and risk and compliance management.

Alternative Technology will offer McAfee’s complete line of security solutions which can protect consumers, small business, and all types of enterprises. McAfee Total Protection Suites offer security solutions for servers, networks, desktops and mobile devices.

McAfee solutions offered by Alternative Technology include the recently announced 10Gbs Network Security Platform and high-performance McAfee Content Security Blade Server. McAfee offers scalability for security and compliance management for networks, data and endpoints across large-scale physical and virtual environments as well as small-scale and mid-size networks.

“McAfee security solutions are a significant addition to our line card and will be well received by our North American channel partners,” said Tom Zorn, senior vice president, Alternative Technology. “They complement our other products and service offerings. In particular, McAfee’s recently announced Email and Web Security Virtual Appliance, in beta, built from the ground up for the VMware platform, McAfee’s new virtual infrastructure security assessment service, and their plans to embed VMware’s VMsafe security technology into future McAfee security solution offerings, tie in very well with our rapidly growing VMware business.”

Complementing Alternative Technology’s professional methodology for security assessment, remediation and management, is the McAfee Foundstone Professional Services offering. The Foundstone Virtual Infrastructure Security Assessment is the first security service dedicated to virtualization. McAfee security solutions will also be added to Alternative Technology’s PCI Compliance Solutions Program.