ConsoleWorks Tackles Security Problems Presented by Emerging Technology
New Resources Are Now Available that Address the Challenges Presented by Virtualization
Corporate Data Servers
Virtualization and service processors present a new batch of security problems that are just starting to be recognized by the commercial IT community. NERC CIP cyber security regulations require that all critical cyber assets must be secured, logged and audited. However, the vulnerabilities presented by the firmware-like service processors and the virtualization environment render existing technology incapable of complying with these regulations.
Service processors are subject to inside and outside intrusion. Because they can be remotely controlled, service processors are easy targets for cyber attacks, which is why a number of government agencies now prohibit the use of service processors anywhere in their networks. However, simply prohibiting their use won’t necessarily solve the security problems associated with service processors because the interfaces remain network accessible.
Several security issues have been identified as a direct result of virtualization. These new security problems mean virtualization is a potentially insecure solution for PCI, HIPPA Compliance and Sarbanes Oxley compliant environments. Without proper protection, virtualization fails to meet the NERC CIP security standards and will likely result in an audit exception.
ConsoleWorks is prepared to address the security problems that are associated with service processors and the virtualized environment. Additional information on these security issues, service processors and virtualization can be found on the ConsoleWorks page of our site.
If you have questions about ConsoleWorks, please e-mail us at info@pinnaclesystems.us or call us at 251-342-0713.
ConsoleWorks is a registered trademark of TECSys Development, Inc. (TDi). Pinnacle Systems Corporation is a licensed distributor of ConsoleWorks.
