Solidcore has extended the whitelisting capabilities of its S3 Control software to secure Microsoft Hyper-V virtual environments. Solidcore S3 Control uses combined application whitelisting, configuration whitelisting and unique memory protection techniques to secure Microsoft Hyper-V parent partitions and guest virtual machines (VMs).
Microsoft Hyper-V is a hypervisor-based server virtualization technology that is part of Windows Server 2008. Hyper-V consists of virtual machines and a parent partition that is used to manage the VMs. Securing the Hyper-V parent partition is extremely important because of its elevated privileges for controlling virtual machine functions, such as rebooting VMs and creating new VMs. If the security of the parent partition is compromised, an attacker could gain access to the entire virtual infrastructure.
Solidcore protects the Hyper-V parent partition from malicious code and unauthorized programs, and prevents the loading of new drivers or kernel components that can directly impact the Hyper-V parent partition communication with the virtual machines. Solidcore assesses the configuration of the VMs within the virtual environment, and provides the capability to lock down good VM configurations. Solidcore’s memory protection also prevents remote exploits from compromising the Hyper-V infrastructure using a network connection.