Desktop virtualisation gets military-grade securityJune 20, 2008 – 6:06 AM
Tresys Technology has released a desktop virtualisation platform with a difference – it is designed from the ground up for organisations needing tight security, including military bodies.
Tresys, which has a track record of providing military systems, said its VM Fortress can cut costs for organisations which would like to implement the consolidation programmes offered by desktop virtualisation, but haven’t taken the leap because of security concerns.
The company said existing security technologies are often inadequate where it comes to the relatively new practice of virtualising desktops.
“For virtualisation solutions, traditional security measures provide inadequate security for critical systems,” said Frank Mayer, president, chief technology officer and co-founder of Tresys, in a statement.
VM Fortress includes features from Security Enhanced Linux (SE Linux), such as flexible mandatory access control (MAC) features, which the company said can limit damage caused by vulnerabilities in virtual machines (VMs).
Tresys is itself known as a significant contributor to SE Linux.
Other features ensure data is not leaked across VMs and that applications on different VMs cannot interfere with one another while sharing the same hardware. VM Fortress is designed to limit the effects of attacks on one VM affecting other VMs or the host operating system.
The technology allows for centralised deployment and management.
Administrators control the system using a simple graphical interface, where they can provision sandboxes for each VM, controlling resources such as network connections, shard folders, USB devices, removable media and cut and paste activities, Tresys said.