Addressing The Security Challenges Of Virtualization
Addressing the Security Challengesof Virtualization“Vulnerabilities Exposed” Webcast Series Part 2Paul Asadoorian, Jack Daniel,& Russell Butturini
“Vulnerabilities Exposed” Series Part 2 of a 4-part series Part 1: “Reducing Your Patch Cycle to Less Than5 Days” is available Archives & slides:www.tenable.com/vulns-exposedStrategies & solutions for today’scommon security challenges
Today’s Webcast Roadmap Virtualization evolution – How we got here Virtualization challenges – The problems weface Solutions – Procedural & tactical
Virtualization Evolution
In the Beginning, There Was OneIBM System/370:supported virtualmemory & virtual disksRan multiple OSes atonceTook up LOTS of space!Source: ibm.com
Then There Were ManyLOTS of servers!Ran one OS at a timeCables, heat, noise, &power consumptionSource: futurepredictions.com
And Now Back to one big server!Runs multiple OSes at once!Virtual memory & virtualdisks!Source: dell.comDifference: Takes up way lessspace, consumes less power,less wiring, & generatesslightly less heat
Virtualization ProblemsHaving your own cloud is not all it’s cracked up to be
Problem: “VM Sprawl” Easy to create & clone servers Disk space & memory costs falling Allows you to scratch itch for new serversEnd result:Greatly increasedattack surface!
Problem: “Whack-a-Mole” VMs easy to create then suspend What happens when someone else brings itonline 3 months later? Is it up-to-date on patches and hardened? Creates several moving targets End result: Your attacksurface is ever-changing!
Virtualization Abstracts the Physical Layer Successful virtualization layer attacks putattacker in your datacenter Guest OSes can be attacked to jump into hostvirtualizationoEven if your guest OS is fully patched & hardenedEnd result: Successful attacksagainst virtualization layer willobtain access to all hostedservers
Solution: NessusNessus is your Ninja Umbrella!Photo Credit: www.thinkgeek.com
Nessus Discovers VMwareYou don’t know what you don’t know(until you run a Nessus scan)No credentials required
VMware Discovery: WorkstationsDiscovers VMware clients, such as VMwareworkstation & VMware Fusion
VMware Local Patch CheckingSupports VMware Fusion, Workstation,vSphere, & vCenter
Secure Access to VMware API
VMware Configuration Auditing Compare your configurationoVMware's security guideoTenable’s best practice guide Tune policies & compare against yourproduction standards In-depth info examples:oVMware Tools installation statusoOS infooRun state (active or suspended)
VMware Virtual Machine Info
Amazon AMI Patch CheckingI get to say, “Secure your cloud!”Make sure your Amazon AMI images are patched
Solutions: SecurityCenter
Solutions: Passive Vulnerability Scanner
Tenable .com/tenablesecurityDiscussion Forum:https://discussions.nessus.orgBuy Nessus, Perimeter Service, PVS, Training & Bundles:https://store.tenable.comBecome a Tenable Partner:http://www.tenable.com/partners
Nessus, PVS, & SecurityCenter InfoFor more info on Nessus:http://www.tenable.com/products/nessusFor more info & to evaluate ability-scannerFor more info or to evaluateSecurityCenter Continuous r-continuous-view
Questions?
Thank You!Contact us:Paul Asadoorian – paul@nessus.orgJack Daniel – jdaniel@tenable.com“Vulnerabilities Exposed” webcast #3:October 22 at 2 pm EDTHandling Mobile Threats Before They CauseLoss & Disruption
Discovers VMware clients, such as VMware workstation & VMware Fusion . VMware Local Patch Checking Supports VMware Fusion, Workstation, vSphere, & vCenter . Secure Access to VMware API .
May 02, 2018 · D. Program Evaluation ͟The organization has provided a description of the framework for how each program will be evaluated. The framework should include all the elements below: ͟The evaluation methods are cost-effective for the organization ͟Quantitative and qualitative data is being collected (at Basics tier, data collection must have begun)
Silat is a combative art of self-defense and survival rooted from Matay archipelago. It was traced at thé early of Langkasuka Kingdom (2nd century CE) till thé reign of Melaka (Malaysia) Sultanate era (13th century). Silat has now evolved to become part of social culture and tradition with thé appearance of a fine physical and spiritual .
On an exceptional basis, Member States may request UNESCO to provide thé candidates with access to thé platform so they can complète thé form by themselves. Thèse requests must be addressed to esd rize unesco. or by 15 A ril 2021 UNESCO will provide thé nomineewith accessto thé platform via their émail address.
̶The leading indicator of employee engagement is based on the quality of the relationship between employee and supervisor Empower your managers! ̶Help them understand the impact on the organization ̶Share important changes, plan options, tasks, and deadlines ̶Provide key messages and talking points ̶Prepare them to answer employee questions
Dr. Sunita Bharatwal** Dr. Pawan Garga*** Abstract Customer satisfaction is derived from thè functionalities and values, a product or Service can provide. The current study aims to segregate thè dimensions of ordine Service quality and gather insights on its impact on web shopping. The trends of purchases have
Chính Văn.- Còn đức Thế tôn thì tuệ giác cực kỳ trong sạch 8: hiện hành bất nhị 9, đạt đến vô tướng 10, đứng vào chỗ đứng của các đức Thế tôn 11, thể hiện tính bình đẳng của các Ngài, đến chỗ không còn chướng ngại 12, giáo pháp không thể khuynh đảo, tâm thức không bị cản trở, cái được
Glossary of Social Security Terms (Vietnamese) Term. Thuật ngữ. Giải thích. Application for a Social Security Card. Đơn xin cấp Thẻ Social Security. Mẫu đơn quý vị cần điền để xin số Social Security hoặc thẻ thay thế. Baptismal Certificate. Giấy chứng nhận rửa tội
Le genou de Lucy. Odile Jacob. 1999. Coppens Y. Pré-textes. L’homme préhistorique en morceaux. Eds Odile Jacob. 2011. Costentin J., Delaveau P. Café, thé, chocolat, les bons effets sur le cerveau et pour le corps. Editions Odile Jacob. 2010. Crawford M., Marsh D. The driving force : food in human evolution and the future.
