14 DAY TRIAL // Windows Vista has brought the subject of virtualization into focus unlike any other platform. But to be competently honest, virtualization is a hot topic by itself and although it has been into the spotlight for over half a year, its momentum is only increasing. And the offerings currently available only scratch the surface of virtualization. Microsoft for example has made its hardware emulation solutions such as Virtual PC 2007 free downloads. However, the Redmond Company was forced to limit the use of virtualization with Windows Vista just to the Business, Enterprise and ultimate editions, due to concerns related to security.
But virtual security is coming. Symantec is currently working with Intel to develop dedicated security devices that can embed into the PC itself. At the basis of this partnership is a project that will involve using virtualization technology to enhance computer security.
"Today, virtualization can allow for isolated execution environments in PCs that enable IT professionals to manage security threats outside the end-user's main OS environment. Embedded within new virtualization technologies in this isolated environment, security solutions like firewalls, intrusion prevention and antivirus will be much more resistant to tampering and will be "always on" to monitor and protect the desktop," explained Gary Sabala, Symantec Security Response Engineer.
Virtual security solutions will run isolated from Windows Vista and from any other operating system for that matter and as such monitoring the boot-up and shut-down processes will ensure the integrity of the sequences. Virtualization will built what Symantec calls a tamper-resistant execution environment. In the isolated environment, virtual security solutions will manage attacks on the machine and even those targeted at the protection deployed inside the operating system.
"As always, with opportunity comes risk. Sure, virtualization could be game-changing for the traditional desktop security model, but it's not without complexity. Virtual environments introduce a new attack vector, and one we anticipate being targeted in the future to compromise host systems," Sabala concluded.