Posts Tagged ‘Matter’
CloudPassage & Why Guest-Based Footprints Matter Even More For Cloud Security
Last Updated on Monday, 12 March 2012 01:21 Written by Celframe Security Team Wednesday, 8 August 2012 05:08
Every day for the last week or so after their launch, I’ve been asked left and right about whether I’d spoken to CloudPassage and what my opinion was of their offering. In full disclosure, I spoke with them when they were in stealth almost a year ago and offered some guidance as well as the day before their launch last week.
Disappointing as it may be to some, this post isn’t really about my opinion of CloudPassage directly; it is, however, the reaffirmation of the deployment & delivery models for the security solution that CloudPassage has employed. I’ll let you connect the dots…
Specifically, in public IaaS clouds where homogeneity of packaging, standardization of images and uniformity of configuration enables scale, security has lagged. This is mostly due to the fact that for a variety of reasons, security itself does not scale (well.)
In an environment where the underlying platform cannot be counted upon to provide “hooks” to integrate security capabilities in at the “network” level, all that’s left is what lies inside the VM packaging:Harden and protect the operating system [and thus the stuff atop it,]Write secure applications andEnforce strict, policy-driven information-centric security.
My last presentation, “Cloudinomicon: Idempotent Infrastructure, Building Survivable Systems and Bringing Sexy Back to Information Centricity” addressed these very points. [This one is a version I delivered at the University of Michigan Security Summit]
If we focus on the first item in that list, you’ll notice that generally to effect policy in the guest, you must have a footprint on said guest — however thin — to provide the hooks that are needed to either directly effect policy or redirect back to some engine that offloads this functionality. There’s a bit of marketing fluff associated with using the word “agentless” in many applications of this methodology today, but at some point, the endpoint needs some sort of “agent” to play*
So that’s where we are today. The abstraction offered by virtualized public IaaS cloud platforms is pushing us back to the guest-centric-based models of yesteryear.
This will bring challenges with scale, management, efficacy, policy convergence between physical and virtual and the overall API-driven telemetry driven by true cloud solutions.
You can read more about this in some of my other posts on the topic:
Finally, since I used them for eyeballs, please do take a look at CloudPassage — their first (free) offerings are based upon leveraging small footprint Linux agents and a cloud-based SaaS “grid” to provide vulnerability management, and firewall/zoning in public cloud environments.
* There are exceptions to this rule depending upon *what* you’re trying to do, such as anti-malware offload via a hypervisor API, but this is not generally available to date in public cloud. This will, I hope, one day soon change.
Data visualization doesn’t matter
Last Updated on Friday, 25 May 2012 04:23 Written by Celframe Web Team Saturday, 9 June 2012 05:43
Visual.ly analyzed the top 30 infographics posted on their site and determined that data visualization doesn’t matter:
Data visualization certainly matters when it comes to conveying information effectively, but when it comes to sharing, the answer is no: having data to represent is not a critical ingredient in infographics. More than half, or 53%, of the top 30 graphics do not contain data visualization. And by data visualization, we mean visual objects that are sized, colored, or positioned to represent numerical values.
I think what they actually mean is that data visualization is not the sole factor of a successful visualization. Since they are only analyzing the top 30 infographics, the minority 47% that had data visualization are still very successful. It would be a different story if the 53% of infographics without dataviz were the top successes and the 47% with dataviz were the bottom losers.
My hunch is that the successful infographics posted on Visual.ly are popular because, like other viral content, they strike a nerve, are of the moment, are humorous yet relevant, or have some other je ne sais quoi.