Critical Steps to Secure Your Virtualized Environment
by Ken Smith - Principal Security Consultant at Akibia - Wednesday, 26 September 2007.
7) Understand the impact to incident response and forensics plans - When introducing virtual systems into an environment, things like incident response need to be handled a little differently. Your incident response plan must now account for other systems running on the same virtual host. Immediately separate the suspect virtual machine from the others to ensure proper containment. Your system image acquisition process will also need to take into account the differences between nonvirtual and virtual systems.

8) Host intrusion detection and prevention - Host intrusion protection should continue to be in place as it would with a stand-alone server. Be sure to test your intrusion detection and prevention software within the virtual environment. Check with your vendor to be sure it is officially supported when running in a virtual environment.

Does it always make sense to virtualize?

It is important to keep critical authentication and directory services on dedicated systems. In most cases Active Directory domain controllers, RSA authentication manager servers, and RADIUS servers should not be run in a virtualized environment. However, there are exceptions to this, especially with regards to disaster recovery initiatives.

Although some firewall vendors are beginning to provide virtualization-ready solutions, it is best to hold off on virtualizing your firewall servers for now. While the idea of hosting multiple firewalls as virtual servers on a single host is appealing, you are likely running multiple firewalls that serve very different needs—with different security policies and rules. Keep these systems on their own servers for now.

Spotlight

How to talk infosec with kids

Posted on 17 September 2014.  |  It's never too early to talk infosec with kids: you simply need the right story. In fact, as cyber professionals it’s our duty to teach ALL the kids in our life about technology. If we are to make an impact, we must remember that children needed to be taught about technology on their terms.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Sep 19th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //