Amd patches epyc cpu secure encrypted virtualization exploit that could leak secret keys

Amd | June 28, 2019

AMD has begun pushing out a firmware fix for its EPYC server processors that addresses the way the chips provide Secure Encrypted Virtualization (SEV). Left unpatched, an attacker could leverage the vulnerability to recover a secure key, which could then be used to access an isolated virtual machine (VM) on a targeted system.SEV is a feature that uses one security key per VM to isolate guests and the hypervisor from one another. Those keys are managed by the AMD Secure Processor. It is a hardware-level feature that gives each guest VM its own security key to encrypt and decrypt portions of RAM as needed. The idea is to protect data in memory from being accessed by unauthorized users.

Spotlight

VMware IT shares how VMware Cloud on AWS is an integral part of its multi-cloud strategy, especially when it comes to disaster recovery workloads.


Other News
VIRTUAL SERVER INFRASTRUCTURE

Imprivata and IGEL Expand Partnership to Enable Secure, Single Sign-On Access for Microsoft Azure Virtual Desktop and Windows 365 Cloud PC

Imprivata | November 03, 2022

Imprivata, the digital identity company for mission- and life-critical industries, and IGEL, provider of the managed endpoint operating system for secure access to any digital workspace, today announced from Microsoft Ignite an expanded partnership which has resulted in the co-development of secure identity and access management for Microsoft Azure Virtual Desktop (AVD) and Windows 365 Cloud PC environments from IGEL OS. Together, the companies have integrated the Imprivata OneSign® digital identity platform into IGEL OS for seamless and secure access to workspaces powered by Microsoft Azure. This expanded Imprivata and IGEL partnership extends the companies' longstanding relationship which has empowered thousands of healthcare users to achieve secure, quick, and easy access to clinical applications using IGEL OS-powered endpoints. Through IGEL's active participation in the Imprivata Developer Program, the companies have jointly integrated Imprivata OneSign with IGEL OS to enable users of Microsoft AVD and Windows 365 Cloud PC seamless No Click Access® to desktops and applications using Imprivata single sign-on and authentication management technology. This gives healthcare organizations that want to migrate their digital workspaces to the cloud a new, secure option to use Microsoft's AVD or Windows 365 Cloud PC solutions in their clinical environments. "IGEL and Imprivata have collaborated for over a decade on delivering a secure and seamless single sign-on experience for the access our mutual customers need to workstations, applications and virtual desktops, We are pleased to now extend this secure digital identity capability for customers that want to benefit from extending their workspaces to the cloud with Microsoft AVD and Windows 365 Cloud PC. Together, our combined solution delivers the strong data security and simplified compliance healthcare organizations need when moving to Microsoft Azure-powered workspaces." Matthias Haas, Chief Technology Officer, IGEL "Our co-development work to integrate Imprivata OneSign with the simple, smart and secure IGEL OS has resulted in a unified solution for the compliant and safe access of digital workspaces, data and apps in the Azure cloud," said Wes Wright, Chief Technology Officer, Imprivata. "Now, organizations considering Microsoft AVD or Windows 365 Cloud PC have assurance that they can use the secure, friction-free digital identity and agile, easy to manage operating system from a single, proven solution." The Imprivata OneSign integration with IGEL OS is now available for beta customer trials. For more information or to register for trial access, please visit: www.igel.com/avd. To test drive IGEL OS on a LG or Lenovo laptop, please visit www.igel.com/whycompromise and use the code "PR2022." About Imprivata Imprivata is the digital identity company for mission- and life-critical industries, redefining how organizations solve complex workflow, security, and compliance challenges with solutions that protect critical data and applications without workflow disruption. Its platform of interoperable identity, authentication, and access management solutions enable organizations in over 45 countries to fully manage and secure all enterprise and third-party digital identities by establishing trust between people, technology, and information.

Read More

VPN

VIAVI and VMware Announce Testbed as a Service for RAN Intelligent Controller Testing

Viavi | November 25, 2022

Viavi Solutions Inc.today announced that it has signed a partnership agreement with VMware to drive standardized frameworks and metrics for RAN Intelligent Controller (RIC) testing. This testbed as a service will enable mobile operators to introduce programmability to the RAN and help accelerate the adoption of Open RAN. The RIC is a cloud-native central component of an open and virtualized RAN network, enabling the optimization of RAN resources through analytic processing and adaptation recommendations. The RIC takes advantage of native and third-party xApps and rApps – microservice-based applications operating in near-real time (near-RT) and non-real-time (non-RT), respectively – to enable operators to automate and optimize RAN operations at scale to reduce the operator's total cost of ownership, and to introduce innovative new services. VMware is focused on attracting and collaborating with a vibrant ecosystem of partners to help its operator customers adopt Open RAN with complete confidence. VIAVI has the most comprehensive portfolio of Open RAN test solutions in the industry and plays a leading role in defining test processes in the O-RAN ALLIANCE and Telecom Infra Project (TIP). The two companies will work together to demonstrate compliance with RIC-related requirements, assisting CSPs in validating the solution in the lab and scaling the solution to production. The industry-leading VIAVI TeraVM RIC Test and the VMware RIC will form a joint testbed as a service for testing, profiling, and validating third-party xApps and rApps. In addition to the framework, the two companies will work together to drive industry consensus around testing methodology and performance metrics. By having pre-built test cases and a standardized test method for the RIC and xApp/rApp, operators can reduce the time it takes to validate the solution in their lab, meaning they can move to a production environment faster. "Open RAN, by definition, depends on strong collaboration to drive innovation, and that's a perfect way to think about this partnership between leaders in their respective fields, The RIC represents a huge opportunity to the industry: Applying AI/ML techniques allows operators to simplify the management of complex 5G configurations and dynamically optimize the network to cater for new use cases, energy efficiency, and changing traffic patterns." Ian Langley, Senior Vice President and General Manager, Wireless Business, VIAVI "We're excited to work with VIAVI on helping move the industry forward to accelerate the adoption of Open RAN," said Lakshmi Mandyam, vice president, Service Provider Product Management and Partner Ecosystem, VMware. "Our companies share a vision of what it will take to address the challenges hindering adoption by simplifying the path for CSPs to test, profile, and certify third-party xApps and rApps through a common framework. VIAVI's leadership in Open RAN testing and VMware's leadership in RIC make this an ideal collaboration." About VIAVI VIAVI (NASDAQ: VIAV) is a global provider of network test, monitoring and assurance solutions for communications service providers, hyperscalers, equipment manufacturers, enterprises, government and avionics. VIAVI is also a leader in light management technologies for 3D sensing, anti-counterfeiting, consumer electronics, industrial, automotive, government and aerospace applications. Together with our customers and partners we are United in Possibility, finding innovative ways to solve real-world problems.

Read More

HYPER-V,SERVER ,CONTAINERS

Safety-Certifiable Multi-core Wind River Helix Virtualization Platform Available for Intel SoCs

Wind River | December 09, 2022

Wind River®, a global leader in delivering software for intelligent systems, announced today that Wind River Helix™ Virtualization Platform now supports the Intel Xeon D-1700 and D-2700 processors and 11th Gen Intel Core™ processors. Part of Wind River Studio, Helix Platform is a safety-certifiable multi-core, multi-tenant platform with support for multiple independent levels of criticality. It is designed for broad industry use cases, including but not limited to: Commercial and military avionics General operating system (OS) consolidation for reduction of space, weight, and/or power in industrial, medical, and automotive settings Mixed levels of criticality to run unsafe software alongside software certified to the highest level in avionics (DO-178C), automotive (ISO 26262), industrial (IEC 61508), and other similar standards Key Helix Platform features include: True Type 1 hypervisor (not hosted in a real-time OS or requiring a special service OS) 64-bit multi-core leveraging advanced Intel virtualization technologies Single and multi-core guests Mix-and-match 32- and 64-bit unmodified guests Support for ARINC 653 Application Executive (APEX) FACE™ 3.1 conformance Multiple device models, including emulated, passthrough, shared, or para-virtualized No limits on the number of concurrent guests (Linux, RTOS, bare metal) Proven fault isolation and containment Increasingly, with the growth of the intelligent edge, industries such as aerospace and defense, automotive, and industrial bring unique sets of requirements and challenges. With Helix Platform support for Intel Xeon D and 11th Gen Intel Core™, Wind River is expanding architecture support to address the demanding needs of highly compute-heavy mission-critical applications. Avijit Sinha, chief product officer, Wind River. “From ever-evolving regulations to technology obsolescence and application performance uncertainty, the safety and compliance of mission-critical, multi-core applications across industries is essential. Collaboration with Wind River helps to remove the complexities of maintaining necessary safety and security requirements, while also accelerating time-to-market. This furthers Intel’s commitment to enable end user innovation and achieve mission success,” said Tony Franklin, general manager, Network and Edge – Federal and Aerospace at Intel. Proven in the most challenging safety-critical applications, Wind River technology makes it easier and more cost-effective for organizations to meet the stringent safety certification requirements of EN 50128, IEC 61508, ISO 26262, DO-178C, and ED-12C. With technology proven by more than 400 customers in over 800 safety programs in more than 100 civilian and military aircraft, Wind River is driving the transition to software-defined systems in aerospace and defense. Helix Platform is part of Studio, a cloud-native platform for the development, deployment, operations, and servicing of mission-critical intelligent systems. Intel Xeon D processors deliver server-class computing, hardware-based security, and high bandwidth I/Os for embedded and rugged applications at the edge, supporting hard real-time workloads and extreme temperature range, making them well suited for demanding applications in industries such as aerospace and defense and industrial. Engineered for IoT markets, 11th Gen Intel Core processors deliver a balance of performance and responsiveness in a low-power platform, supporting low latency and time-sensitive applications with the power to run multiple workloads, including AI and deep learning applications, on a single platform. About Wind River Wind River is a global leader in delivering software for intelligent systems. The company’s technology has been powering the safest, most secure devices in the world since 1981 and is found in billions of products. Wind River offers a comprehensive portfolio, supported by world-class global professional services and support and a broad partner ecosystem. Wind River software and expertise are accelerating digital transformation of mission-critical intelligent systems that will increasingly demand greater compute and AI capabilities while delivering the highest levels of security, safety, and reliability.

Read More

DESKTOP

Alludo Global Survey: Leaders Say They Support Remote and Hybrid Work for Their Teams—the Data Tells a Different Story

Alludo | November 23, 2022

Alludo, a global technology company helping people work better and live better, released survey results that highlight a clear divide in the freedom and flexibility that global management teams have versus individual contributors. While the majority of respondents agree that remote and hybrid work is here to stay, only 40% of non-managers have the freedom to work remotely compared to 63% of people managers* who can work from anywhere. The Alludo survey data shows that leadership has been slow to adopt change across all levels of the organization. Making the shift to a remote and hybrid work model requires a fundamental shift in the way leaders lead. In this new world, the employee-manager relationship is built on trust, and outcomes are the true indicators of success. Employees are no longer constrained by bureaucratic processes and micromanaging––a bottoms-up, “people-first” approach is needed instead of the command and control of the past. This concept is called Work3, an idea championed by Alludo during the company’s recent rebrand. Work3 is a shift in work culture that supports the notion that all employees should have the freedom and flexibility to choose where, when, and how they do their best work. “True leadership isn’t about getting people in a room to do what you want, It’s about giving employees the room to deliver amazing results. The last few years have proven that knowledge workers can be productive at home. It’s time for leadership teams to leave the mandatory 9-to-5 office experience behind and recognize that freedom and flexibility are key to not only working better but living better." Christa Quarles, Chief Executive Officer at Alludo In addition to where they work, employees want flexibility in when they work. The survey data confirms that three-fourths (74%) of employees no longer want to work a standard 9-to-5 day. However, almost half (47%) of non-managers still work standard hours compared to nearly one-third of managers. Again, this highlights the gap in the freedom offered to individual contributors versus managers, with the former having less flexibility when it comes to determining when and where they work. To be successful in the remote and hybrid world, leadership needs to create a cohesive vision, outline clear expectations and outcomes, and give their employees the freedom and flexibility to decide when, where, and how they do their best work. The reality, however, is a far different picture. The survey data shows that C-level executives believe they have adapted to the new way of managing, but non-managers disagree. 58% of C-level executives believe their company has changed the way remote and hybrid employees are managed. But 57% of non-managers disagree and say leadership has not changed their management style and 28% indicate they are still micromanaged. If leaders do not evolve their management style to give their employees more freedom and flexibility to choose where, when, and how they work, data shows that 43% of individual contributors would consider quitting or even changing careers––that’s nearly half! About Alludo Alludo™ is a global technology company helping people work better and live better. We’re the people behind award-winning, globally recognizable brands including Parallels®, Corel®, MindManager®, and WinZip®. Our professional-caliber graphics, virtualization, and productivity solutions are finely tuned for the digital remote workforce delivering the freedom to work when, where, and how you want. With a 35+ year legacy of innovation, Alludo empowers all you do, helping more than 2.5 million paying customers to enable, ideate, create, and share on any device, anywhere.

Read More