http://issj.sys-con.com/ Latest articles from Security Management Copyright 2008 VIRTUALIZATION JOURNAL Sat, 05 Jul 2008 11:41:00 GMT VIRTUALIZATION JOURNAL 10 http://backend.userland.com/rss http://issj.sys-con.com/read/603688.htmhttp://issj.sys-con.com/read/603688.htm Thu, 03 Jul 2008 10:30:00 GMT Apani announced that EpiForce VM is now shipping. EpiForce VM is a software-based solution that secures corporate networks, containing both physical and virtual servers, from a single platform. EpiForce VM is part of Apani's comprehensive security software product family and leverages the latest platform of the company's flagship product EpiForce 2.5. http://issj.sys-con.com/read/603083.htmhttp://issj.sys-con.com/read/603083.htm Thu, 03 Jul 2008 08:45:00 GMT Altor Networks announced that its Virtual Network Security Analyzer (VNSA) is now a VMware Certified Virtual Appliance and available through the VMware Virtual Appliance Marketplace. Virtual appliances are pre-built software solutions, composed of one or more virtual machines, which are packaged, maintained, updated and deployed as a unit. Virtual appliances are fundamentally changing how software is developed, distributed, and managed, providing greater simplicity and accelerated time to value. http://issj.sys-con.com/read/601836.htmhttp://issj.sys-con.com/read/601836.htm Wed, 02 Jul 2008 14:45:00 GMT Embotics launched V-Commander 2.0. Embotics' V-Commander 2.0 reduces risks and costs by preventing virtual sprawl, automating lifecycle management and extending management systems for enterprise CIOs, CSOs, IT operations staff and security professionals. The technology gives the industry a simple tool to prevent sprawl, gain control of their virtual infrastructure and increase efficiency. http://issj.sys-con.com/read/601838.htmhttp://issj.sys-con.com/read/601838.htm Tue, 01 Jul 2008 13:00:00 GMT Veeam announced its acquisition of privately held nworks, an innovative creator of enterprise management connectors bridging the gap between VMware virtual infrastructure and enterprise systems management tools from Hewlett-Packard and Microsoft. The nworks worldwide customer base consists of Fortune 500 and Global 1000 companies. nworks is a VMware Technology Alliance Premier Partner, a Gold HP Business Partner, and a Microsoft Business Partner. http://issj.sys-con.com/read/599813.htmhttp://issj.sys-con.com/read/599813.htm Mon, 30 Jun 2008 12:30:00 GMT RSA, The Security Division of EMC, announced the latest release of its RSA Identity Verification knowledge-based authentication system - a system that has previously been successfully used by companies to reduce costs and to improve security and customer satisfaction. RSA's knowledge-based authentication (KBA) solution is designed to instantly verify customers' identities and to provide organizations with a higher level of confidence, while simultaneously reducing the risk of fraud associated with handling critical customer information. http://issj.sys-con.com/read/595237.htmhttp://issj.sys-con.com/read/595237.htm Thu, 19 Jun 2008 14:30:00 GMT Fortinet announced that the United States Patent and Trademark Office has awarded the company four additional patents for network virtualization and security related inventions. These new patents strengthen Fortinet's growing intellectual property portfolio, bringing Fortinet's total awarded patents to 17. http://issj.sys-con.com/read/593952.htmhttp://issj.sys-con.com/read/593952.htm Thu, 19 Jun 2008 10:15:00 GMT Tresys announced the availability of Tresys VM Fortress - a patent-pending secure desktop virtualization technology for organizations seeking strong security and operational integrity. VM Fortress gives organizations with high-end security needs the ability to utilize desktop virtualization without compromising protection by strengthening the guest operations system and the virtualization software itself to withstand the most threatening of compromises. VM Fortress provides a level of security high above most conventional requirements, which enables mission-critical organizations to leverage desktop virtual machine (VM) technology. http://issj.sys-con.com/read/584615.htmhttp://issj.sys-con.com/read/584615.htm Fri, 06 Jun 2008 08:00:00 GMT Tripwire announced the availability of Tripwire ConfigCheck, a free utility that assesses configuration settings for the VMware ESX hypervisor and recommends steps to take to ensure even greater security. Tripwire ConfigCheck provides an immediate assessment of the configurations of a VMware ESX hypervisor, comparing them against VMware hardening security guidelines, which are best practice recommendations for optimal security in virtual environments, and then providing remediation instructions if any are needed. With Tripwire ConfigCheck customers gain immediate visibility into risks that might exist in their virtual environment due to misconfiguration and fixes any improper settings that could present future risk. http://issj.sys-con.com/read/580100.htmhttp://issj.sys-con.com/read/580100.htm Wed, 04 Jun 2008 08:15:00 GMT Catbird announced a Virtual Infrastructure Security Assessment (VSA). Catbird's VSA helps IT administrators identify and close the potential gaps in security and compliance created in the move from 'P to V'. The 30-day assessment includes a thorough security analysis, detailed reports with actionable intelligence and a comprehensive plan to mitigate risk and protect critical virtual systems, networks, desktops and processes. http://issj.sys-con.com/read/580102.htmhttp://issj.sys-con.com/read/580102.htm Wed, 04 Jun 2008 08:15:00 GMT VMware announced that VMware Infrastructure 3, VMware ESX Server 3.0.2 and VMware VirtualCenter 2.0.2 have earned Common Criteria Evaluation Assurance Level 4 (EAL4+) certification under the Communications Security Establishment Canada (CSEC) Common Criteria Evaluation and Certification Scheme (CCS), following an extensive analysis and testing process. The EAL4+ rating is the highest assurance level that is recognized by all signatories under the Common Criteria Certificates (CCRA). http://issj.sys-con.com/read/580407.htmhttp://issj.sys-con.com/read/580407.htm Mon, 02 Jun 2008 16:30:00 GMT Double-Take Software will host the next stop of its Latin America-area disaster recovery seminar on June 11, 2008, in Santiago, Chile. The educational series focuses on the importance of protecting business critical data and applications, and ensuring the highest levels of recoverability for organizations by implementing Double-Take Software solutions and services. http://issj.sys-con.com/read/576236.htmhttp://issj.sys-con.com/read/576236.htm Wed, 28 May 2008 13:30:00 GMT EMC announced it has expanded its solution portfolio for mission critical applications with new proven solutions that simplify the implementation of business continuity, backup, recovery and information protection of Exchange Server and SQL Server running on the VMware platform. Customers have access to fully tested and validated reference architectures and best practices to accelerate time to deployment, deliver predictable results, and achieve improved application-level performance, backup and recovery, remote replication, high availability and manageability. http://issj.sys-con.com/read/576186.htmhttp://issj.sys-con.com/read/576186.htm Tue, 27 May 2008 14:00:00 GMT Messaging Architects announced the availability of version 2008.2 of its M+Guardian Secure Messaging Firewall. Now available as a fully virtualized appliance, called M+Guardian VMF, it delivers advanced email security and data loss prevention combined with the business benefits of server virtualization. M+Guardian VMF integrates seamlessly with other components of the M+ platform such as M+Archive, ensuring fully compliant email lifecycle management. http://issj.sys-con.com/read/549476.htmhttp://issj.sys-con.com/read/549476.htm Fri, 23 May 2008 13:30:00 GMT There's no question that advances in server virtualization technology are becoming popular among corporations that want to save money by consolidating resources and improving operational efficiency. Virtualization enables a dramatic increase in cost savings in ongoing maintenance and the cost required to keep physical assets afloat. http://issj.sys-con.com/read/574317.htmhttp://issj.sys-con.com/read/574317.htm Fri, 23 May 2008 11:15:00 GMT VirtualLogix announced its continued commitment to the Open Mobile Terminal Platform (OMTP) by submitting a Product Profile Statement in conformance with the organization's new mobile hardware security recommendations designed to help protect against threats such as malware and fraud attacks. The OMTP is an operator-sponsored forum that gathers and drives mobile terminal requirements. VirtualLogix VLX for Mobile Headsets is among the first products to conform to the 'Advanced Trusted Environment' security recommendations through the OMTP Product Profile Statement. http://issj.sys-con.com/read/554818.htmhttp://issj.sys-con.com/read/554818.htm Thu, 22 May 2008 00:00:00 GMT The discipline of systems management is composed largely of managing the computing endpoint. The 'endpoint' is traditionally a computer that takes the form of an application/process server or an end-user desktop/laptop. This definition doesn't cover all endpoint types or devices but does represent a large enough population size for the purposes of this discussion. http://issj.sys-con.com/read/572497.htmhttp://issj.sys-con.com/read/572497.htm Tue, 20 May 2008 14:45:00 GMT Check Point announced the availability of ZoneAlarm ForceField, a comprehensive, virtualized browser security solution enabling consumers to bank and shop online, or surf the Internet without fear or limitation. Virtualized browsing places a two-way 'bubble of security' around the browser, preventing drive-by-downloads, unwanted malware and other Web threats from damaging users' PCs or from stealing users' private information. http://issj.sys-con.com/read/560220.htmhttp://issj.sys-con.com/read/560220.htm Fri, 09 May 2008 13:30:00 GMT Neocleus announced the culmination of 18 months of innovation and research by unveiling its strategy and approach for addressing the security, performance and IT manageability requirements of enterprise endpoints across a distributed network. The Neocleus strategy provides businesses with a new paradigm for endpoints such as desktops and laptops that changes the way business is conducted and resources are secured, to allow IT departments to maintain unprecedented control of their distributed IT assets and to give end users the complete flexibility they need to do their work. http://issj.sys-con.com/read/551629.htmhttp://issj.sys-con.com/read/551629.htm Sat, 26 Apr 2008 19:00:00 GMT There are pitfalls in using software-based network interface cards and host bus adaptors. They don't scale well in I/O-centric loads running on scaled-out architectures. The CEO of a leading virtualization companies said, 'Software virtualization addresses 80% of the market and it leaves 20% for hardware-based I/O virtualization.' http://issj.sys-con.com/read/547749.htmhttp://issj.sys-con.com/read/547749.htm Mon, 21 Apr 2008 11:00:00 GMT Blue Lane announced the availability of VirtualShield 4.2, a virtualization security solution to include inter-VM flow analytics and enforcement, application-aware partitioning (VMwall), and a robust set of application, protocol and vulnerability security policy controls. http://issj.sys-con.com/read/542124.htmhttp://issj.sys-con.com/read/542124.htm Mon, 14 Apr 2008 13:15:00 GMT Apani announced the launch of EpiForce VM, the single-platform security solution for protecting both virtual and physical machines. Enterprises are deploying server virtualization to realize benefits associated with increased operational flexibility, improved utilization, avoidance of unplanned downtime and a reduced carbon footprint. The rush to virtualize has caused many to overlook security best-practices common in a physical environment. According to Gartner, through 2009, 60 percent of virtual machines used in production will be less secure than their physical counterparts. While the benefits of server virtualization are clear, security challenges force enterprises to make trade-offs between broad deployment and security that is robust enough to protect their business. By offering robust virtual and physical machine security, EpiForce VM enables enterprises to fully deploy server virtualization and realize the benefits it offers. http://issj.sys-con.com/read/159567.htmhttp://issj.sys-con.com/read/159567.htm Wed, 21 Nov 2007 13:00:00 GMT Recent high-profile security breaches have taught us a clear lesson: organizations that rely primarily on a secure perimeter to protect sensitive data are fooling themselves. This year, hardly a week has passed without headlines about a security breach involving sensitive data. http://issj.sys-con.com/read/207140.htmhttp://issj.sys-con.com/read/207140.htm Tue, 08 Aug 2006 11:30:00 GMT Security is a hot topic of the moment and as potential threats are identified and news about viruses, worms, bots, and unauthorized access abounds, a multitude of new security technologies continue to be introduced to the market. http://issj.sys-con.com/read/199655.htmhttp://issj.sys-con.com/read/199655.htm Wed, 29 Mar 2006 10:00:00 GMT Microsoft has said it will address a security hole in the IE browser by April 11 or sooner. But certain Web security companies have already developed temporary patches until Redmond fixes the problem on its own. http://issj.sys-con.com/read/169428.htmhttp://issj.sys-con.com/read/169428.htm Sat, 28 Jan 2006 16:15:00 GMT Wipro Technologies, the India based IT Service company, has announced that it revamped and expanded its remote managed services center located in Bangalore, India. The center has some $5 million worth of new generation technology and tool sets, giving customers a technology agnostic, secure managed services environment, the company says. http://issj.sys-con.com/read/159572.htmhttp://issj.sys-con.com/read/159572.htm Mon, 26 Dec 2005 10:15:00 GMT It would seem only logical that after 9/11, one of the most horrific days in American history, corporations large and small would be ready for unforeseen catastrophic events. However, by one recent estimate, less than 38% have put a complete disaster recovery plan in place - the policies, processes, procedures, and architecture to deal with unforeseen events. In the wake of Hurricanes Katrina and Rita, IT managers are again forced to reassess how well prepared they and their organizations are to manage through and recover from natural or man-made disasters. http://issj.sys-con.com/read/159566.htmhttp://issj.sys-con.com/read/159566.htm Tue, 20 Dec 2005 16:15:00 GMT As network perimeters become more porous, and endpoint security becomes even more critical, companies are struggling with the problem of unwanted software - whether it's new, unknown, and potentially malicious software, or simply known non-business applications. http://issj.sys-con.com/read/159558.htmhttp://issj.sys-con.com/read/159558.htm Sun, 11 Dec 2005 15:30:00 GMT Information security is a top priority for many companies. Protecting information from external threats such as hackers, viruses, and spam, as well as governmental regulation requirements (SOX, HIPAA, NISPOM, etc.), are driving IT purchases beyond ROI as C-level executives seek to assure shareholders (and themselves) that assets are secure within the company complex. Viewed as today's growth market, many software/hardware/service companies are creating offerings to mitigate perceived risk or actual liability. http://issj.sys-con.com/read/130112.htmhttp://issj.sys-con.com/read/130112.htm Tue, 20 Sep 2005 11:00:00 GMT In spite of legislation and the first conviction of a spammer under that law, it appears spammers will keep spamming as long as there's money to be made. According to Symantec's September Internet Security Threat Report, one of the most comprehensive analyses of trends in cyber security activity, spam made up more than 60% of all e-mail traffic during the first half of 2004. And Jupiter Research estimates that the average consumer will get 2,000 spam hits a day in 2005, up from 40 in 1999. http://issj.sys-con.com/read/116192.htmhttp://issj.sys-con.com/read/116192.htm Thu, 04 Aug 2005 03:30:00 GMT An independent study, commissioned by Unisys, yesterday revealed that UK consumers' apathetic attitude to fraud could be helping to perpetuate the rapidly growing identity theft industry, which is now estimated to be costing UK businesses £1.3 billion per year. http://issj.sys-con.com/read/112984.htmhttp://issj.sys-con.com/read/112984.htm Wed, 22 Jun 2005 10:00:00 GMT Adware and spyware - they may be as hard to define as they are to eradicate. But there's one thing just about everyone can agree on: what started as a minor annoyance has ballooned into a full-blown corporate headache.