Desktop Virtualization Drives Security, Not Just Dollar Savings - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Mobile
News
5/1/2008
11:00 AM
50%
50%

Desktop Virtualization Drives Security, Not Just Dollar Savings

Infosec pros who don't take a stand on virtualizing their companies' desktops are missing a prime opportunity to boost safety while aiding manageability and compliance.

Thin is back in, and you can thank server virtualization. We all know what happened last time IT tried to make business desktops smaller, leaner, and easier to manage: Users balked at being told they couldn't install their pet applications. IT realized that a data center-based operating system rendered on a diskless thin client yielded only marginal cost and manageability improvements. And security groups never took up the cause of terminal services because they worried about the implications of an attacker gaining access to the central server. But now, virtualization on the server side has paved the way for broader acceptance throughout the business. Today's virtual desktop infrastructure, or VDI, might not make your end users any happier than yesterday's thin clients did, but IT and information security pros are paying attention, and liking what they see.

InformationWeek Reports

In a VDI, server memory is divvied up among individual virtual machines, bringing significant manageability and security benefits. This is a new paradigm in desktop computing--secure, mobile, and platform independent. Clients are "thin" in the sense that the operating system isn't tied to hardware but centrally stored. A compact, specialized desktop hypervisor is the sole interaction point between client and network.

All the big names in server virtualization have desktop offerings. VMware provided the push that got VDI into IT's consciousness. Citrix Systems, long a leader in terminal services, acquired XenSource last year, and Microsoft announced in March that it would buy VDI vendor Kidaro. At present, virtual desktops need Windows licenses just like their fat kin, so Microsoft is in a win-win situation. And not all your applications will be supported in a virtual environment--AutoDesk, for example, doesn't recommend using ProductStream or Vault virtually--but most mainstream apps will run fine. As a bonus, with virtual desktop infrastructure, you can strictly manage licensing and ensure that any given application is accessed only when and by whom it's meant to be used. Support for legacy systems that need nonstandard operating systems will be eased.

Not to be outdone, hardware vendors are moving in with offerings geared to VDI. Architecturally, VDI shifts the repository of user desktops to a central server or servers and requires a large, fast storage system--most likely, a storage area network. For users to take advantage of the latest and greatest hardware-assisted virtualization, systems equipped with CPUs optimized for hypervisors will provide the best performance. Intel is supporting VDI in a big way with its vPro and Virtualization Technology-embedded CPUs, and so is Advanced Micro Devices.

DIG DEEPER
CHIPS AHOY
Intel and AMD offer new chip designs that will help IT make the most of desktop and server virtualization.
In terms of security, you've probably heard the lingo: hardware-assisted virtualization, unified threat management, adaptive security, Trusted Platform Modules. Symantec promises virtual security appliance Intel vPro desktops in about 18 months. A VDI station could run the user guest VM plus a security VM or virtual security appliance. Vendors know it's only a matter of time before security becomes a key decision point for organizations considering VDI, and they're taking two tacks to grab our interest: Some, including Intel and AMD, want to make the physical desktop smarter, more secure, and more manageable via intelligent, virtualization-aware processors. Others, including VMware, Pano Logic, and Stoneware, say we need to get rid of the client-server model altogether and invest in their revamped architectures.

We don't buy everything being pitched, and we don't believe that now is the time for ubiquitous VDI. But we do know that information security pros who aren't investigating the security advantages are missing out.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Previous
1 of 4
Next
Comment  | 
Print  | 
More Insights
Slideshows
IT Careers: Top 10 US Cities for Tech Jobs
Cynthia Harvey, Freelance Journalist, InformationWeek,  1/14/2020
Commentary
Predictions for Cloud Computing in 2020
James Kobielus, Research Director, Futurum,  1/9/2020
News
What's Next: AI and Data Trends for 2020 and Beyond
Jessica Davis, Senior Editor, Enterprise Apps,  12/30/2019
White Papers
Register for InformationWeek Newsletters
State of the Cloud
State of the Cloud
Cloud has drastically changed how IT organizations consume and deploy services in the digital age. This research report will delve into public, private and hybrid cloud adoption trends, with a special focus on infrastructure as a service and its role in the enterprise. Find out the challenges organizations are experiencing, and the technologies and strategies they are using to manage and mitigate those challenges today.
Video
Current Issue
The Cloud Gets Ready for the 20's
This IT Trend Report explores how cloud computing is being shaped for the next phase in its maturation. It will help enterprise IT decision makers and business leaders understand some of the key trends reflected emerging cloud concepts and technologies, and in enterprise cloud usage patterns. Get it today!
Slideshows
Flash Poll