Virtualization of servers and applications changed the face of computing in ways that we are still exploring operationally. The attack surfaces for virtualized systems are different, even if only in number and location, but virtualization has also presented some new control points for those looking to address security concerns. Both attackers and defenders have had to adjust.
Now the emergence of Software Defined Networking (and/or Network Function Virtualization) presents network designers and security professionals with another new landscape. Do these architectures present us with an intractable growth of new exposures or do they provide enabling technologies for better security design and management?
MACH37 Robert J. Stratton III is a serial entrepreneur, technologist, and researcher specializing in commercial development of early-stage security technologies, multinational network security, technology policy, and innovation management. Mr. Stratton is a General Partner in MACH37, a Virginia startup accelerator supporting new information security companies. Previously, he was Chief Strategy & Security Officer at WiTopia, and Director of Government Research at Symantec Research Labs. Before joining Symantec, he was co-founder and CTO at StackSafe, a startup focused on self-healing software and automated software assurance. Mr. Stratton was the first Director of Technology Assessment at In-Q-Tel, a private venture capital firm investing for the benefit of the U.S. Intelligence Community. Mr. Stratton also co-founded and served as Chief Technologist at Security Design International, a services firm specializing in multinational and critical infrastructure network security. Before founding SDI, Mr. Stratton established the Security Posture Assessmentâ„¢ practice at WheelGroup Corporation and the security organization at UUNET, one of the first tier 1 Internet service providers.