Posts Tagged ‘immutable service containers’

Solaris 10 Security Deep Dive Updated for 10/09 Release

Monday, November 9th, 2009

Also New Immutable Service Containers on OpenSolaris 2009.06

Sun Distinguished Engineer Glenn Brunette has created a new Solaris 10 Security Deep Dive training mediacast updated for Solaris 10 10/09 or Update 8. Items added to this new version include: ZFS user and group quotas, ZFS pre-defined ACL sets, NTPv4, and nss_ldap shadowAccount support. In addition, there was a bit of cleanup throughout and a new example was added for Trusted Extensions. There is also a recent update to Immutable Service Containers (ISC) for OpenSolaris 2009.06.

 

(Get More Information . .)

Tags: , , , ,
Posted in OpenSolaris, Security, Solaris | No Comments »

Innovating@Sun Podcast on Immutable Service Containers (ISC)

Wednesday, September 2nd, 2009

Addresses Virtualization, Cloud Computing and Security

Immutable Service Containers (ISC) are defined as an architectural deployment pattern for highly secure service delivery designed to protect virtualized environments. Sun Distinguished Engineer and Chief Security Architect Glenn Brunette discusses ISCs and how building them along principles of stronger security, greater integrity, and simplified security configuration and management is a viable solution for organizations looking to safeguard their virtualized environments in an episode of Innovation@Sun with Hal Stern.

 

(Get More Information . .)

Tags: , , ,
Posted in Security, cloud computing, open source, virtualization | No Comments »

Immutable Service Containers and its OpenSolaris Instantiation

Wednesday, August 12th, 2009

A Secured Container to Deploy Services

Sun Distinguished Engineer Glenn Brunette introduces Immutable Service Containers (ISC) as a new method for organizations to better protect their services and data. ISCs are expected to become one of the most basic architectural building blocks for more complex, highly adaptive and autonomic security architectures, he writes, offering some insight into the project and details on its instantiation in the OpenSolaris community.

 

(Get More Information . .)

Tags: , , ,
Posted in OpenSolaris, Security | No Comments »

Glenn Brunette on Immutable Service Containers

Friday, March 27th, 2009

Building Secure Systems Based on Solaris Zones

Delivering the service by a zone in conjunction with denying write access to the binaries or configurations and vastly locking down the privileges results in a really secure environment — in a word “Immutable Service Containers (ISC),” writes Glenn Brunette, adding, an ISC embodies at its core the key principles inherent in the Sun Systemic Security framework including: self-preservation, defense in depth, least privilege, compartmentalization and proportionality. In his posting and his pdf Brunette discusses ISCs based on Solaris Zones.

 

(Get More Information . .)

Tags: ,
Posted in Security, Solaris | No Comments »