Whitelisting of Virtual Images

Virtualization turns everything including security on its head. Imagine a machine running VM Worsktation or Sun Virtual Box. What does it mean to white list this machine? If you whitelist the VM Workstation application then it can run any virtual image that the user brings.

We began looking at this problem last year and have come up with a solution which enables the whitelisting of virtual images!! Yes only images which are authorized by the enterprise can be run. This is a very cool feature and will become essential with MED-V or Kidaro as people migrate to win7 and need to run an XP machine for their legacy applications.

Technically it is very challenging on how to do this. We had to come up with a solution which allowed virtual images to run, but their clones to not run (although snapshots of a whitelisted image are allowed to run). We are still working through how this gets integrated with McAfee EPO and shipped to customers, but it is very exciting.

---

Possibly related posts: (automatically generated)

• Convergence of Whitelisting and Image Management
• Cool Idea: IE Virtual PC Images Available from Microsoft
• Virtual Machines: .vmdk to .vdi Using Qemu + vditool