VMs vs. containers Which is better for security

Techtarget | June 24, 2019

By now, security professionals are familiar with virtualization given the significant adoption both in the data center, as well as in the cloud -- the use of virtualization is almost ubiquitous at many organizations. Practitioners more commonly encounter application containerization technologies in their organizations, which include Docker, rkt and the associated orchestration technologies like Kubernetes that surround them and help scale usage. Practitioners are mandated to make technology risk decisions, and many of those decisions involve one or both of virtualization and containerization technologies. When comparing VMs vs. containers, it is natural to ask, which is more secure? These tools are not equivalent, therefore a direct security comparison isn't an apples-to-apples comparison. In the case of VMs vs. containers for security, each requires a different tool set, an understanding of vastly different security models, and familiarity with an entirely different orchestration ecosystem. It also depends on the particular use case.

Spotlight

Finding software flaws and analyzing live malware data sets is a challenge in any secured or corporate environment. Organizations have strict security guidelines to follow and software engineers and software assurance professionals are rarely given the tools they need and the open freedom required to perform this task. Building test networks, servers, clients, and install the required tools is not only expensive, but also a challenge in a secure environment because of the strict security requirements and the introduction process of these tools. We know tools have different strengths, and no one tool can find all types of weaknesses.


Other News
VIRTUAL SERVER INFRASTRUCTURE

Imprivata and IGEL Expand Partnership to Enable Secure, Single Sign-On Access for Microsoft Azure Virtual Desktop and Windows 365 Cloud PC

Imprivata | November 03, 2022

Imprivata, the digital identity company for mission- and life-critical industries, and IGEL, provider of the managed endpoint operating system for secure access to any digital workspace, today announced from Microsoft Ignite an expanded partnership which has resulted in the co-development of secure identity and access management for Microsoft Azure Virtual Desktop (AVD) and Windows 365 Cloud PC environments from IGEL OS. Together, the companies have integrated the Imprivata OneSign® digital identity platform into IGEL OS for seamless and secure access to workspaces powered by Microsoft Azure. This expanded Imprivata and IGEL partnership extends the companies' longstanding relationship which has empowered thousands of healthcare users to achieve secure, quick, and easy access to clinical applications using IGEL OS-powered endpoints. Through IGEL's active participation in the Imprivata Developer Program, the companies have jointly integrated Imprivata OneSign with IGEL OS to enable users of Microsoft AVD and Windows 365 Cloud PC seamless No Click Access® to desktops and applications using Imprivata single sign-on and authentication management technology. This gives healthcare organizations that want to migrate their digital workspaces to the cloud a new, secure option to use Microsoft's AVD or Windows 365 Cloud PC solutions in their clinical environments. "IGEL and Imprivata have collaborated for over a decade on delivering a secure and seamless single sign-on experience for the access our mutual customers need to workstations, applications and virtual desktops, We are pleased to now extend this secure digital identity capability for customers that want to benefit from extending their workspaces to the cloud with Microsoft AVD and Windows 365 Cloud PC. Together, our combined solution delivers the strong data security and simplified compliance healthcare organizations need when moving to Microsoft Azure-powered workspaces." Matthias Haas, Chief Technology Officer, IGEL "Our co-development work to integrate Imprivata OneSign with the simple, smart and secure IGEL OS has resulted in a unified solution for the compliant and safe access of digital workspaces, data and apps in the Azure cloud," said Wes Wright, Chief Technology Officer, Imprivata. "Now, organizations considering Microsoft AVD or Windows 365 Cloud PC have assurance that they can use the secure, friction-free digital identity and agile, easy to manage operating system from a single, proven solution." The Imprivata OneSign integration with IGEL OS is now available for beta customer trials. For more information or to register for trial access, please visit: www.igel.com/avd. To test drive IGEL OS on a LG or Lenovo laptop, please visit www.igel.com/whycompromise and use the code "PR2022." About Imprivata Imprivata is the digital identity company for mission- and life-critical industries, redefining how organizations solve complex workflow, security, and compliance challenges with solutions that protect critical data and applications without workflow disruption. Its platform of interoperable identity, authentication, and access management solutions enable organizations in over 45 countries to fully manage and secure all enterprise and third-party digital identities by establishing trust between people, technology, and information.

Read More

VPN

VIAVI and VMware Announce Testbed as a Service for RAN Intelligent Controller Testing

Viavi | November 25, 2022

Viavi Solutions Inc.today announced that it has signed a partnership agreement with VMware to drive standardized frameworks and metrics for RAN Intelligent Controller (RIC) testing. This testbed as a service will enable mobile operators to introduce programmability to the RAN and help accelerate the adoption of Open RAN. The RIC is a cloud-native central component of an open and virtualized RAN network, enabling the optimization of RAN resources through analytic processing and adaptation recommendations. The RIC takes advantage of native and third-party xApps and rApps – microservice-based applications operating in near-real time (near-RT) and non-real-time (non-RT), respectively – to enable operators to automate and optimize RAN operations at scale to reduce the operator's total cost of ownership, and to introduce innovative new services. VMware is focused on attracting and collaborating with a vibrant ecosystem of partners to help its operator customers adopt Open RAN with complete confidence. VIAVI has the most comprehensive portfolio of Open RAN test solutions in the industry and plays a leading role in defining test processes in the O-RAN ALLIANCE and Telecom Infra Project (TIP). The two companies will work together to demonstrate compliance with RIC-related requirements, assisting CSPs in validating the solution in the lab and scaling the solution to production. The industry-leading VIAVI TeraVM RIC Test and the VMware RIC will form a joint testbed as a service for testing, profiling, and validating third-party xApps and rApps. In addition to the framework, the two companies will work together to drive industry consensus around testing methodology and performance metrics. By having pre-built test cases and a standardized test method for the RIC and xApp/rApp, operators can reduce the time it takes to validate the solution in their lab, meaning they can move to a production environment faster. "Open RAN, by definition, depends on strong collaboration to drive innovation, and that's a perfect way to think about this partnership between leaders in their respective fields, The RIC represents a huge opportunity to the industry: Applying AI/ML techniques allows operators to simplify the management of complex 5G configurations and dynamically optimize the network to cater for new use cases, energy efficiency, and changing traffic patterns." Ian Langley, Senior Vice President and General Manager, Wireless Business, VIAVI "We're excited to work with VIAVI on helping move the industry forward to accelerate the adoption of Open RAN," said Lakshmi Mandyam, vice president, Service Provider Product Management and Partner Ecosystem, VMware. "Our companies share a vision of what it will take to address the challenges hindering adoption by simplifying the path for CSPs to test, profile, and certify third-party xApps and rApps through a common framework. VIAVI's leadership in Open RAN testing and VMware's leadership in RIC make this an ideal collaboration." About VIAVI VIAVI (NASDAQ: VIAV) is a global provider of network test, monitoring and assurance solutions for communications service providers, hyperscalers, equipment manufacturers, enterprises, government and avionics. VIAVI is also a leader in light management technologies for 3D sensing, anti-counterfeiting, consumer electronics, industrial, automotive, government and aerospace applications. Together with our customers and partners we are United in Possibility, finding innovative ways to solve real-world problems.

Read More

DESKTOP

Alludo Global Survey: Leaders Say They Support Remote and Hybrid Work for Their Teams—the Data Tells a Different Story

Alludo | November 23, 2022

Alludo, a global technology company helping people work better and live better, released survey results that highlight a clear divide in the freedom and flexibility that global management teams have versus individual contributors. While the majority of respondents agree that remote and hybrid work is here to stay, only 40% of non-managers have the freedom to work remotely compared to 63% of people managers* who can work from anywhere. The Alludo survey data shows that leadership has been slow to adopt change across all levels of the organization. Making the shift to a remote and hybrid work model requires a fundamental shift in the way leaders lead. In this new world, the employee-manager relationship is built on trust, and outcomes are the true indicators of success. Employees are no longer constrained by bureaucratic processes and micromanaging––a bottoms-up, “people-first” approach is needed instead of the command and control of the past. This concept is called Work3, an idea championed by Alludo during the company’s recent rebrand. Work3 is a shift in work culture that supports the notion that all employees should have the freedom and flexibility to choose where, when, and how they do their best work. “True leadership isn’t about getting people in a room to do what you want, It’s about giving employees the room to deliver amazing results. The last few years have proven that knowledge workers can be productive at home. It’s time for leadership teams to leave the mandatory 9-to-5 office experience behind and recognize that freedom and flexibility are key to not only working better but living better." Christa Quarles, Chief Executive Officer at Alludo In addition to where they work, employees want flexibility in when they work. The survey data confirms that three-fourths (74%) of employees no longer want to work a standard 9-to-5 day. However, almost half (47%) of non-managers still work standard hours compared to nearly one-third of managers. Again, this highlights the gap in the freedom offered to individual contributors versus managers, with the former having less flexibility when it comes to determining when and where they work. To be successful in the remote and hybrid world, leadership needs to create a cohesive vision, outline clear expectations and outcomes, and give their employees the freedom and flexibility to decide when, where, and how they do their best work. The reality, however, is a far different picture. The survey data shows that C-level executives believe they have adapted to the new way of managing, but non-managers disagree. 58% of C-level executives believe their company has changed the way remote and hybrid employees are managed. But 57% of non-managers disagree and say leadership has not changed their management style and 28% indicate they are still micromanaged. If leaders do not evolve their management style to give their employees more freedom and flexibility to choose where, when, and how they work, data shows that 43% of individual contributors would consider quitting or even changing careers––that’s nearly half! About Alludo Alludo™ is a global technology company helping people work better and live better. We’re the people behind award-winning, globally recognizable brands including Parallels®, Corel®, MindManager®, and WinZip®. Our professional-caliber graphics, virtualization, and productivity solutions are finely tuned for the digital remote workforce delivering the freedom to work when, where, and how you want. With a 35+ year legacy of innovation, Alludo empowers all you do, helping more than 2.5 million paying customers to enable, ideate, create, and share on any device, anywhere.

Read More

VIRTUAL DESKTOP TOOLS

Exoprise Customers Achieve Significant ROI With SaaS and Digital Experience Monitoring

Exoprise | September 12, 2022

Exoprise, a leader in Digital Experience Monitoring (DEM) solutions, announced that its customers continue to realize significant Return on Investment (ROI) with Exoprise solutions and achieve positive ROI within six months of implementation. Troubleshooting remote worker issues using traditional tools creates visibility challenges, severely impacting business continuity and productivity. According to the latest Forrester future of work survey, 20% of employees contact the service desk support team weekly, and 10% contact them daily – far too often to remain consistently productive. In current economic conditions, companies have the potential to save thousands to millions in IT costs using features and capabilities offered by Exoprise DEM solutions. As one of the Exoprise customers, a global CRM head at a financial services company, told us, "Upon returning from a weekend, our employees could not access their Salesforce app in the morning. As a result, IT and several other teams spent at least half a day trying to find the root cause, which cost the company about $500K. With Exoprise synthetics, we would have immediately narrowed the problem to a change made by the network team and saved a huge loss to the company." Exoprise customers achieve superior ROI with their DEM investment by: Recovering Service Level Agreement (SLA) credit – IT teams receive Service Level Agreement (SLA) violation credits when Microsoft 365 has downtime. For example, Microsoft services such as Azure, Teams, OneDrive, etc. may not be available due to an outage or technical issue. Service availability less than the SLA of 99.9% requires Microsoft to reward credits to the customer. Exoprise provides actionable availability reports that act as evidence of true downtime, outage length, events, errors, and corresponding service health. Customers quickly verify and claim their credits to recoup the cost of the Exoprise system. Saving Costs on Device Refresh and Upgrades – IT departments often need to upgrade their infrastructure with new hardware or software, so employees remain productive and job satisfaction remains high. However, with a shrinking economy and flat expense budget, businesses struggle to keep up with that mandate. Utilizing Exoprise Service Watch Real User Monitoring (RUM), operation teams are driving upgrade decisions based on hard network and device telemetry data, segmenting different user groups, and auditing remote endpoint devices. The result is an optimized device refresh schedule and cost-effective companywide upgrades. Another Exoprise user, a Microsoft Teams administrator at a manufacturing services company, "We had frequent complaints from users about poor Teams meetings/calls. Initially, we would upgrade the hardware to the latest to fix the problem and spend thousands doing that, but the problems persisted. So, when we started using Service Watch, we could see exactly where the problem was for each user - and avoid upgrading when the problems were due to corporate network or weak Wi-Fi access points." Preventing Network Upgrade Surprises and Downtime – Future proofing the business means frequent network optimization. Enterprises rely on mission-critical services such as Microsoft 365, Salesforce, AWS, and SAP. Delivering these services via ISPs, MPLS, SDWAN, and VPN providers becomes susceptible to performance fluctuations. Exoprise provides end-to-end baseline views of the network for mission-critical applications before, during, and after any network transformation takes place. As a result, network administrators can ensure that the end-user experience is improved and access is more reliable. Delivering Better Digital Experiences Anywhere and reducing MTTR – The Modern Workplace demands remote flexibility along with the freedom to work anywhere. ITOps teams require end-to-end visibility into apps, the network, and system performance for these Digital Nomads, and the Exoprise platform delivers. Once deployed, Exoprise helps customers safely transition to a hybrid work model. Proactive synthetics provide early outage detection while crowdsourced analytics reduce the troubleshooting time in half. Improving Productivity with Less Dropped Calls for Teams, Zoom, and Webex – Today, knowledge workers collaborate using Unified Communication (UC), VoIP, and streaming applications such as Microsoft Teams, Zoom, and WebEx. Customers use Exoprise to proactively test and tune their networks for the collaboration platforms and offer complete coverage with Service Watch RUM. As a result, there is a significant ROI in reduced dropped calls and smoother call quality. "Due to Covid, our IT model has shifted from primarily supporting call center operations to supporting a significantly larger virtual environment. That was when we became interested in better measuring digital experiences from the end user's perspective. Synthetic sensors in our central data centers collect performance data on Microsoft 365, but we wanted an even more complete picture. Together with a real user monitoring on-demand solution, we can better understand the issues of our users at any geographic location," said Kevin Santos, Senior Director of IT, Network Operation Center, BCD Travel. "Exoprise has always been at the forefront of supporting our customers with innovative digital solutions and addressing hybrid workforce challenges with a complete view into the end-user experience, Our Service Watch product rapidly isolates call quality problems with VoIP and streaming apps such as Microsoft Teams, WebEx, and Zoom in real-time and ensures smooth collaboration from anywhere. In addition, our technical ability to deliver synthetics and real-user behavior insights in one platform differentiates us in the market." Exoprise CEO Jason Lieblich Read more about the combination of RUM and synthetics in our latest whitepaper and ensure the best digital employee experience for streaming, collaboration, and VoIP apps such as Microsoft Teams, Zoom, WebEx, and GoToMeeting. Better Together: Combine Real User Monitoring with Synthetics About Exoprise Exoprise enables IT teams to effectively deploy and manage its monitoring solution and mission-critical, cloud-based applications and services. CloudReady provides real-time performance visibility from behind the firewall to the cloud and back with synthetic monitoring. Service Watch provides location-independent end-user experience insights for SaaS and third-party web applications with real user monitoring. By leveraging proactive network path diagnostics, real user experience metrics, actual app usage data, and crowd-sourcing data analytics, organizations now have visibility, speed, and agility to easily assure the best cloud service performance.

Read More

Spotlight

Finding software flaws and analyzing live malware data sets is a challenge in any secured or corporate environment. Organizations have strict security guidelines to follow and software engineers and software assurance professionals are rarely given the tools they need and the open freedom required to perform this task. Building test networks, servers, clients, and install the required tools is not only expensive, but also a challenge in a secure environment because of the strict security requirements and the introduction process of these tools. We know tools have different strengths, and no one tool can find all types of weaknesses.

Resources