DOD: Can virtualization make security more manageable?
Officials interested in the security benefits offered by virtual network components
- By Doug Beizer
- Jul 15, 2009
Defense Department officials want to know if virtualization technology can make DOD’s networks more secure and easier to manage, according to an information request
posted on the Federal Business Opportunities Web site.
Virtualization could make it easier to provision network components and make it possible to isolate risky activities such as browsing Web sites or opening e-mail messages from unknown senders, according to the request posted July 10. Virtualization technology makes it possible to run multiple network components on a single server.
Modern operating systems and many applications in traditional data rooms may be too large to secure effectively, according to DOD.
“It may be that the era of monolithic general-purpose operating systems is nearing its end and could be replaced by a cluster of modules or virtual appliances acting in concert to perform services traditionally supplied by operating systems,” the request states.
DOD officials are also interested in using virtualization to create trusted enclaves of servers to handle sensitive information and operations. The enclaves would be independent of other systems and could be refreshed if security is compromised.
Virtualization may also make it possible to imitate a private-sector program that gives employees a subsidy to buy laptop computers. Employees use the laptops to connect to corporate networks, but virtualization protects networks from any security risks possibly residing on the portable computers, according to DOD.
Responses are due July 20.
Doug Beizer is a staff writer for Federal Computer Week.