Virtualization Working Group
Introduction to the Virtualization Working Group
Virtualization is a critical part of cloud computing. Virtualization provides an important layer of abstraction from physical hardware, enabling the elasticity and resource pooling commonly associated with cloud. Virtualized operating systems are the backbone of Infrastructure as a Service (IaaS). The CSA Security Guidance for Critical Areas of Focus in Cloud Computing focused exclusively on virtualized operating systems in Domain 13. Recent developments in software defined networking (SDN) show great potential to virtualize data networks in the same way that operating systems have been virtualized. Additionally, the future integration and potential convergence of virtualization of operating systems and networks promise to greatly impact the next generation of cloud architectures.
The security issues and recommended best practices of this broader view of virtualization merit additional focused research from a reconstituted version of the CSA Virtualization Working Group.
Research Road map
- Network Function Virtualization Whitepaper
- SDN Position Paper
Sponsors of the Virtualization Working Group
The Cloud Security Alliance would like to thank the corporate sponsors that make our research possible. Their continued support enables our working groups to produce the high-quality research products you’ve come to expect from the Cloud Security Alliance.
Security Position Paper: Network Function Virtualization
This paper discusses some of the potential security issues and concerns, and offers guidance for securing a Virtual Network Function (NFV) based architecture, whereby security services are provisioned in the form of Virtual Network Functions (VNFs). We refer to such an NFV-based architecture as the NFV Security Framework. This paper also references Software-Defined Networking (SDN) concepts, since SDN is a critical virtualization-enabling technology.
|Working Group Co-Chair(s)||CSA Global Support||Contributors|
Virtualization Working Group Leadership
Mr. Chaudhry has 13 years of experience in delivering a broad range of information-security solutions to diverse companies and organizations. He has a progressive information security career with track record of success in systems architecture/design, system integration/deployment and system security/user management. He is well-versed in cloud computing, security products and middleware platform components. He holds strong capabilities in collecting and analyzing complex technical problems and turning commercial products into an integrated solution for customers. As a Principal Architect he produces solution/reference architectures, writes design papers, writes blogs for Trend Micro, participates in pre-sales activities to help close new engagements as well as delivers talks in conferences around the world.
Kapil Raina specializes in bringing complex products to market by developing go-to-market strategies, influencing press and analysts, and executing on demand generation plans from concept to close. Mr. Raina has deep experience in security, especially, in the SaaS/cloud markets. He was previously the co-chair of the Web Security-as-a-Service Working Group for the CSA. His background and experience includes brands such as VeriSign, VMWare, Elastica and Zscaler. He is also a prolific speaker and writer, including authoring several books such as “PKI Security Solutions for the Enterprise” (Wiley) and “mCommerce Security” (McGraw-Hill).
A security and mobile domain expert, he has authored several books such as “PKI Security Solutions for the Enterprise” (Wiley) and “mCommerce Security” (McGraw-Hill).
Deputy Director, Nanyang Polytechnic
Kelvin Ng is currently the Deputy Director ( Systems and Network) in School of Information Technology of Nanyang Polytechnic. Kelvin holds a Bachelor of Engineering from NUS , Master of Science (e-Business) from NUS and Master of Business Administration (Management of Information Technology) from NTU. As a senior management member, Kelvin oversees the data centre operations, application development, academic programmes, student talent development and e-learning initiatives for the school. He oversees the transformation of the data centre including servers consolidation , cloud provisioning and virtual desktop infrastructure implementation. Over the last 25 years, Kelvin has managed multi-cultural and multi-disciplinary teams in local GLC company, European MNC and American MNC in the provisioning of infrastructure, application services and business IT alignment.
Kelvin sits in a number of committees including Cisco Academy Council, Code::XtremeApps committee , CSA Virtualization Working Group, WorldSkills council , NICF Expert panel , SSEF Judging panel , ASPIRE secretariat and ITSC Council member.
Virtualization Working Group Initiatives
Please contact Virtualization Working Group Leadership for more information.
Other ways to Connect
Virtualization Working Group News
May 07, 2015
The CSA’s Virtualization working group released a whitepaper entitled: “Best Practices for Mitigating Risks in Virtualized Environments” which provides guidance on the identification and management of security risks specific to compute virtualization technologies that run on server hardware. Read blog post
May 06, 2015
At this year’s RSA Conference, the Cloud Security Alliance released a new whitepaper entitled: “Best Practices for Mitigating Risks in Virtualized Environments” which provides guidance on the identification and management of security risks specific to compute virtualization technologies that run on server hardware. The whitepaper was developed by CSA’s Virtualization Working Group which is co-chaired…
June 13, 2014
CSA Virtualization Working Group is seeking volunteers to participate in developing capabilities to assist the cloud provider industry in research of the combined virtualized operating systems.
July 21, 2011
The Cloud Security Alliance and Group 8 Virtualization and Technology Compartmentalization Leadership are looking for volunteers to assist with drafting Domain 13 of version 3 of CSA’s Security Guidance for Critical Areas of Focus in Cloud Computing.
Virtualization Working Group Downloads
This white paper discusses some of the potential security issues and concerns, and offers guidance for securing a Virtual Network Function (NFV) based architecture, whereby security services are provisioned in the form of Virtual Network Functions (VNFs).
Release Date: February 29, 2016