Archive - November 2000
Environmentally Conscious Security: Painting Information Security Green
Historically, ecological concerns have been significant drivers for change. Topics ranging from global warming to protecting various species carry a strong emotional appeal, thus, motivating business and personal change with the ultimate goal of protecting the environment. These environmental initiatives have been termed “green initiatives” and they impact IT in the form of “green computing.” The popularity of the green computing initiatives stems not only from environmental concerns but also from a financial concern. A primary goal of many green computing initiatives is to reduce power consumption as this has a direct impact on the bottom line.
Developing a Virtualization Security Policy
Eric Vanderburg
Since many organizations are rapidly virtualizing servers and even desktops, there needs to be direction and guidance from top management in regards to information security. Organizations will need to develop a virtualization security policy that establishes the requirements for securely deploying, migrating, administering, and retiring virtual machines. In this way a proper information security framework can be followed in implementing a secure environment for hosts, virtual machines, and virtual management tools. This article is part two of a series on virtualization. The previous article was titled “Critical security considerations for server virtualization.”
Business Continuity and Backups in the Virtual World
Eric Vanderburg
Virtualization has really become a mainstream technology and an effective way for organizations to reduce costs. As mentioned in previous articles, it simplifies processes but also creates new information security risks to handle. This article is concerned with business continuity and how virtualization can create many new opportunities and efficiencies in your business continuity plan. This is the third article in a series on virtualization. The first article was titled “Critical security considerations for server virtualization.” and this was followed with “developing a virtualization security policy.”
Read More
Critical security considerations for server virtualization
Eric Vanderburg
Everywhere you go the concept of virtualization is promoted as a method for reducing costs, increasing technology flexibility, and obtaining a better ROI on equipment. For the most part, virtualization successfully achieves this goal, thus companies are adopting it wholesale. However, virtual environments are often implemented with the same information security controls used in non-virtualized environments. This should not be the case. Virtualization presents a new set of risks to organizations adopting it and it is vital to be aware of risks and information security risk management strategies when implementing a virtualization strategy.
Read More
