New approaches to securing virtual infrastructure
We share useful content on improving the security of Hyper-V 2016 and invite you to a webinar on approaches to ensuring the security of virtual infrastructure, which will be held on December 13 at 11.00 with the support of a partner 5nine.
Virtualization has long become a traditional part of infrastructure solutions. Of course, the capabilities of hypervisors have significantly expanded, transforming into private and hybrid clouds, resulting in the client infrastructure becoming more flexible and dynamic, which corresponds to modern business conditions - you need to quickly create and maintain new services and virtual machines as part of them, maintain multiple clusters or data centers with migration and balancing of VM between them. But, nevertheless, clients often use outdated end-point security technologies in a virtual environment with the installation of agents in the VM and isolation methods using VLAN. These technologies add vulnerabilities associated with the ability to block or delete an agent in a VM, consume scarce hardware resources, complicate the administration of virtualized data centers of large companies.
What does Microsoft and its technology partners offer to solve these problems? First, to protect against the “Snowden effect”, Windows Server 2016 introduced Shielded VM technology, which allows you to encrypt a VM disk from the infrastructure of guest operating systems, protecting it from copying and viewing by the host administrator. Significantly increase the security of the data center infrastructure will help the use of Nano Server - a new version of the OS, in which there is no graphical GUI and significantly reduced the attack area by minimizing the set of roles. As a result - 3 times less ports and 10 times less critical updates. Another new feature is the protection of components responsible for the integrity of the OS kernel, passwords and other important system data using a separate Hyper-V container - the Virtual Security Module (VSM). All this significantly increases the security of the new OS and the user's infrastructure.
')
But at the same time, the new operating system lacks some important security features and does not fully comply with the legislation, since these requirements are not characteristic of the server operating system and must be implemented by third-party solutions. Microsoft greatly facilitated the implementation of these functions by giving access to several technology partners to the Hyper-V switch. An extensible Hyper-V virtual switch allows you to isolate VM users, manage all traffic inside a virtual environment, and protect VMs from malicious attacks. With built-in support for NDIS filter drivers and external call drivers for the Windows filtering platform, the Hyper-V virtual switch enables independent software developers (ISVs) to create virtual switch extensions that increase the security of VMs and networks.
5nine Software is one of the key vendors with whom Microsoft has been collaborating in developing Hyper-V protection and management tools since 2009. The latest version of 5nine Cloud Security was presented at the annual Ignite conference, simultaneously with Windows Server 2016. You can watch the presentation of the solution here .
December 13, at 11.00, we invite you to a webinar on a new approach to securing a virtual infrastructure of Windows Server 2016.
The main issues of the webinar:
Webinar author Alexander Alexander Karavanov is the head of technical solutions at 5nine Software with more than ten years of experience in information security.
To participate in the webinar, you must register .
Virtualization has long become a traditional part of infrastructure solutions. Of course, the capabilities of hypervisors have significantly expanded, transforming into private and hybrid clouds, resulting in the client infrastructure becoming more flexible and dynamic, which corresponds to modern business conditions - you need to quickly create and maintain new services and virtual machines as part of them, maintain multiple clusters or data centers with migration and balancing of VM between them. But, nevertheless, clients often use outdated end-point security technologies in a virtual environment with the installation of agents in the VM and isolation methods using VLAN. These technologies add vulnerabilities associated with the ability to block or delete an agent in a VM, consume scarce hardware resources, complicate the administration of virtualized data centers of large companies.
What does Microsoft and its technology partners offer to solve these problems? First, to protect against the “Snowden effect”, Windows Server 2016 introduced Shielded VM technology, which allows you to encrypt a VM disk from the infrastructure of guest operating systems, protecting it from copying and viewing by the host administrator. Significantly increase the security of the data center infrastructure will help the use of Nano Server - a new version of the OS, in which there is no graphical GUI and significantly reduced the attack area by minimizing the set of roles. As a result - 3 times less ports and 10 times less critical updates. Another new feature is the protection of components responsible for the integrity of the OS kernel, passwords and other important system data using a separate Hyper-V container - the Virtual Security Module (VSM). All this significantly increases the security of the new OS and the user's infrastructure.
')
But at the same time, the new operating system lacks some important security features and does not fully comply with the legislation, since these requirements are not characteristic of the server operating system and must be implemented by third-party solutions. Microsoft greatly facilitated the implementation of these functions by giving access to several technology partners to the Hyper-V switch. An extensible Hyper-V virtual switch allows you to isolate VM users, manage all traffic inside a virtual environment, and protect VMs from malicious attacks. With built-in support for NDIS filter drivers and external call drivers for the Windows filtering platform, the Hyper-V virtual switch enables independent software developers (ISVs) to create virtual switch extensions that increase the security of VMs and networks.
5nine Software is one of the key vendors with whom Microsoft has been collaborating in developing Hyper-V protection and management tools since 2009. The latest version of 5nine Cloud Security was presented at the annual Ignite conference, simultaneously with Windows Server 2016. You can watch the presentation of the solution here .
December 13, at 11.00, we invite you to a webinar on a new approach to securing a virtual infrastructure of Windows Server 2016.
The main issues of the webinar:
- New threats in a virtual environment. Problems of information security tools of the previous generation.
- Modern agentless GIS for cloud platform.
- How to manage and control the information security of a hybrid cloud and make the protection fault-tolerant.
- Integration of GIS into the client portal and the provision of SECaaS services based on Windows Server 2016.
- Compliance of the SZI with the requirements of 152- “On Personal Data” and various standards (PCI DSS, Central Bank of the Russian Federation, etc.)
Webinar author Alexander Alexander Karavanov is the head of technical solutions at 5nine Software with more than ten years of experience in information security.
To participate in the webinar, you must register .
Source: https://habr.com/ru/post/317438/
All Articles