Following up on customer feedback from U.S. intelligence agencies, VMware security systems provider HyTrust has updated its virtual security appliance so actions taken by administrators can be delayed until external approval for that action is granted.
Such precautions are increasingly necessary because today's virtual environments pose "a concentration of risk," said Eric Chiu, president and cofounder of HyTrust.
[ Security expert Roger A. Grimes offers a guided tour of the latest threats and explains what you can do to stop them in "Fight Today's Malware," InfoWorld's Shop Talk video. | Keep up with key security issues with InfoWorld's Security Adviser blog and Security Central newsletter. ]
"Servers, networking, storage used to be separate physical systems and they all had their separate configurations and experts to manage them. That has all been collapsed to a single software layer, with a single management console where any administrator can access any resource," Chiu said. "Ultimately, that creates security and compliance issues."
HyTrust announced the update to its flagship HyTrust Appliance at VMware's VMworld conference, being held this week in San Francisco. At this conference, VMware will detail its roadmap for the software defined data center (SDDC) architecture, in which servers, networking and storage can be virtualized and run in a coordinated fashion.
The HyTrust Appliance monitors and controls the employee use of virtual machines (VMs) that run on VMware's ESX and ESXi hypervisors, as well as oversees administrative use of the VMware vSphere management console. It monitors every administrative action taken on a VM, based on the roles that are assigned to each user. The appliance can block inappropriate actions, and log all user actions.
The software can be valuable in preventing the theft of a VM that contains confidential information, the willful destruction of an entire virtual data center, or the misconfiguring of a VM tenant.
The new version of the virtual appliance includes the ability to block any administrative action until approval from an outside party is granted.
One customer, a U.S. intelligence agency, had requested this feature, Chiu said. It mimics the procedures the U.S. Air Force called the two person concept, in which two managers would be required to complete an action (in the Air Force's case, to launch a nuclear strike).
With the HyTrust software, certain actions, such as deleting a VM, can be put on hold until it is approved by a second party, such as a manager or higher-ranking administrator.
HyTrust offered a limited version of this capability in prior versions, but this release offers a full range of capabilities around the process, Chiu said. It now meets the U.S. National Security Agency's requirements for implementing secondary approval. New features include a timer that could be put in place on any action, so a person can only execute an approved action within a certain period of time, such as a nightly maintenance window, Chiu said.
HyTrust Appliance 3.5 also includes a new monitoring mode, which allows an administrator to log how VMs are used before applying policies to their use. The appliance logs all activity, without enforcing any rules. The monitor-only mode can be useful for allowing an administrator to observe routine behavior, which would provide a baseline for building a set of rules to enforce proper use.