Challenges of Virtualization Security
There’s been a quiet revolution in the datacenter over the past few years. No longer do you see IT staff rolling out new hardware every time a new application or service is needed. With today’s budget constraints and the mandate to “go green,’ organizations are demanding that their IT infrastructure be more lean, efficient and cost-effective than ever.

Virtual machines require more than perimeter security because of the dynamic way in which VMs can easily be moved, created and replicated among physical servers.

Multiple Layer of defense
To protect virtual environments, you need multiple layers of defense. Beyond the perimeter firewall and network intrusion devices, you have to ensure the security policies and protection mechanisms on all VMs can be maintained, so that your consolidation levels can increase.

You have to monitor overall system integrity and be able to detect suspicious activity across the ever increasing number of VMs. It is important that live migration of virtual machines does not compromise the security and compliance of production systems.

Virtualized servers use the same operating systems and applications as physical servers. Attackers and malware can target VMs as easily as any other environment, and once a VM is compromised, there is greater risk of compromise for all VMs located on the same physical server. Combining the risk of inter-VM attack with the movement of VMs within the virtualized environment expands this risk exponentially.

Conventional anti-virus and anti-malware tools fall short in virtual environments. When a virtual machine is taken offline or is dormant, it loses the ability to run these conventional programs. Yet offline VMs are vulnerable to infection by any malware or infected applications that can access virtual machine storage over the network.
Also, sleeping VMs can be backed up or archived to other servers and storage devices for extended periods of time. This time lapse guarantees that patch levels or security programs will be out of datewhen the VM is restare