Virtual Security Gets a Boost

  • 04/22/08
##AUTHORSPLIT##<--->

How secure is your virtual environment? Recent US-CERT Cyber Security Bulletins list several vulnerabilities for versions of software from VMware that allow attackers to cause denial of service attacks, generate buffer overflows, expose password logging and gain unauthorized privileges that can be used to hijack processes. The exposures have been addressed in patches by the company, but concern has been growing that virtual machines may get less security-related attention from IT staff than physical boxes.

Reflex Security, which develops virtual security software, has enhanced access control functionality and device visibility in its Virtual Security Appliance (VSA). VSA discovers virtual assets and maps them so users can attain a visual view of the virtual infrastructure that is being secured. The new functionality, expected in the next couple of months, will allow users to drill down into the virtualized network infrastructure.

The software profiles the virtual network state, assets, services and communication flows dynamically and provides anti-virus, anti-spyware, network discovery and network policy enforcement services. VSA supports VMware ESX Server, XenSource and Virtual Iron.

"Reflex VSA's ability to expose the virtual network to the security manager and protect it from threats is a proven asset, and the first of its kind in the industry," said Hezi Moore, CTO of Reflex. "Our development is building upon VSA's visibility functionality to add virtual server access control which will invoke permission-based controls for users that can add or remove virtual machines and virtual network components."

Get daily news from THE Journal's RSS News Feed

About the author: Dian Schaffhauser is a writer who covers technology and business for a number of publications. Contact her at [email protected].

Proposals for articles and tips for news stories, as well as questions and comments about this publication, should be submitted to David Nagel, executive editor, at [email protected].

Featured

  • digital learning resources including a document, video tutorial, quiz checklist, pie chart, and AI cloud icon

    Quizizz Rebrands as Wayground, Announces New AI Features

    Learning platform Quizizz has become Wayground, in a rebranding meant to reflect "the platform's evolution from a quiz tool into a more versatile supplemental learning platform that's supported by AI," according to a news announcement.

  • red brick school building with a large yellow "AI" sign above its main entrance

    New National Academy for AI Instruction to Provide Free AI Training for Educators

    In an effort to "transform how artificial intelligence is taught and integrated into classrooms across the United States," the American Federation of Teachers (AFT), in partnership with Microsoft, OpenAI, Anthropic, and the United Federation of Teachers, is launching the National Academy for AI Instruction, a $23 million initiative that will provide access to free AI training and curriculum for all AFT members, beginning with K-12 educators.

  • stylized illustration of a desktop, laptop, tablet, and smartphone all displaying an orange AI icon

    Survey: AI Shifting from Cloud to PCs

    A recent Intel-commissioned report identifies a significant shift in AI adoption, moving away from the cloud and closer to the user. Businesses are increasingly turning to the specialized hardware of AI PCs, the survey found, recognizing their potential not just for productivity gains, but for revolutionizing IT efficiency, fortifying data security, and delivering a compelling return on investment by bringing AI capabilities directly to the edge.

  • Abstract AI circuit board pattern

    Nonprofit LawZero to Work Toward Safer, Truthful AI

    Turing Award-winning AI researcher Yoshua Bengio has launched LawZero, a nonprofit aimed at developing AI systems that prioritize safety and truthfulness over autonomy.