Four virtualization security companies to watch

These companies aim to keep virtual servers secure by providing access control, patch management and more

Few reports have surfaced of security breaches in virtual-server environments, but the potential looms large.

"Every single platform we have had in IT eventually gets compromised. There is no reason for us to think that the hypervisor is going to be any different," says Pete Lindstrom, a senior analyst with Burton Group. "While hypervisors seem to pose a fairly small attack-surface, as they multiply across a network, so do the attack surfaces. It is a huge unknown."

That's why companies widely adopting virtualization today must have a solid strategy for securing these environments, industry watchers say.

"During the 'Gold Rush' mentality of this server virtualization craze -- the more you deploy, the more you save -- the cost of securing the virtual environment has not been weighed," says Phil Hochmuth, a senior analyst with Yankee Group. "At the same time security has become an afterthought, researchers are publishing rootkits and people are thinking of ways to hack hypervisors -- it has to raise some eyebrows in the security world," he says.

Problems include unsecured virtual-machine-to-virtual-machine communications, poor visibility into hosts' server traffic, and virtual-machine configuration and patch management. As concern grows, established security vendors are adding virtualization features to their product road maps and newcomers are delivering purpose-built technology for the virtual realm.

Here are four virtualization-security companies that should be on every network-security manager's radar:

More about: Accel, ACT, Attunity, Benchmark Capital, Burton Group, Catbird, Check Point, Check Point Software, Chevron, eSpeed, Foundation Capital, Gateway, GetThere, Internap Network Services, IPS, Matrix Partners, Microtech, netVmg, Nielsen, Pioneer, Raytheon, Reflex Security, UCLA, VMware, VSA, Yankee Group
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the Computerworld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Whitepapers
Latest Stories
Community Comments
Whitepapers
All whitepapers
Sign up now to get free exclusive access to reports, research and invitation only events.
Featured Download
/downloads/product/15/angry-ip-scanner/

Angry IP Scanner

Angry IP Scanner (or simply ipscan) is an open-source and cross-platform network scanner designed to be fast and simple to use. It scans IP addresses ...

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia