shutterstock-760767916
Virtualization

Hypervisor control: The next phase in the security arms race?

Digital security is an ongoing battle of assisted evolution. Every new iteration of software, hardware or operating system introduces expansive new features and corresponding new vulnerabilities. Companies – not always the ones introducing the vulnerabilities – attempt to combat these weaknesses. On the other side of the battle lines, teams of dedicated hackers try their hardest to exploit them.

The situation is an ever-changing stalemate, in that it seems philosophically unlikely that either side could win outright. If the hackers won then they would disappear overnight, since there'd be nothing left to gain, no system left unhacked and therefore no trusted platforms: back to pen and paper. As for a world without malware? Unimaginable.

Or is it? Some tech companies believe they have the answer, by wrapping running applications in an all-seeing manager or governor, which watches each application's every process and takes action if it sees something suspicious. This is a logical development of the trend for isolating applications to improve security. It can take on many different forms and has become more advanced over the past decade.

At its simplest, running an application within a virtual machine or simulation goes some way toward preventing any infection from reaching the host system. Malware might infect the VM, but once discovered it can simply be switched off and re-imaged as required. At least that's how the theory goes, though sophisticated malware can detect that it's running in a VM and attempt to exploit it, or get out through unsecured network connections.

To continue reading...


PREVIOUS ARTICLE

« Enterprise GitHub projects of the week: Intelligence agency special

NEXT ARTICLE

Five reasons your network security policies aren't working »
author_image
Alex Cruickshank

Alex Cruickshank has been writing about technology and business since 1994. He has lived in various far-flung places around the world and is now based in Berlin.  

  • Mail

Recommended for You

How to (really) evaluate a developer's skillset

Adrian Bridgwater’s deconstruction & analysis of enterprise software

Unicorns are running free in the UK but Brexit poses a tough challenge

Trevor Clawson on the outlook for UK Tech startups

Cloudistics aims to trump Nutanix with 'superconvergence' play

Martin Veitch's inside track on today’s tech trends

Poll

Is your organization fully GDPR compliant?