Get the Skills you need from Home with SANS OnDemand


To attend this webcast, login to your SANS Account or create your Account.

Cyber kill-chain disruption with hypervisor memory introspection

  • Wednesday, October 17th, 2018 at 10:30 AM EST (14:30:00 UTC)
  • Kurt Roemer, Ramaswamy Chandramouli and Andrei Florescu
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.


  • Bitdefender SRL

You can now attend the webcast using your mobile device!


Virtualization has disrupted traditional computing infrastructures to become a fundamental component of the modern datacenter, and consequently, cloud computing platforms. The rapid rate of adoption has been fueled by operational efficiencies and simplified management models, at scale. From a security perspective, x86 virtualization leverages a new level of privilege within the software stack which is higher than the guest VMs - the hypervisor level.

In this webinar, we explore the untapped security potential of modern virtualization platforms by discussing Virtual Machine Introspection concepts, security capabilities, existing projects and implementations in hypervisor platforms such as open-source Xen and KVM, and how they satisfy NIST recommendations published under SP-800-125A - "Security Recommendations for Hypervisor Deployment.

Speaker Bios

Kurt Roemer

As Chief Security Strategist for Citrix, Kurt Roemer leads security, compliance, risk and privacy strategies for Citrix products. As a member of the Citrix CTO and Strategy Office, Roemer drives ideation, innovation and technical direction for products and solutions that advance business productivity while ensuring information governance.

An information services veteran with more than 30 years experience, his credentials include the Certified Information Systems Security Professional (CISSP) designation. He also served as Commissioner for the US public-sector CLOUD2 initiative and led efforts to develop the PCI Security Standards Council Virtualization Guidance Information Supplement while serving on the Board of Advisors

Ramaswamy Chandramouli

Dr. Ramaswamy Chandramouli (Mouli) is a Computer Scientist at the Computer Security Division at National Institute of Technology (NIST) USA for over 20 years. His publications span diverse areas such as RBAC, Model-based Security Testing, Smart Card Specifications, DNS & Email Security, ABAC and Security for Virtualized infrastructures. He is the co-author of 3 Technical books, 24 NIST publications and 35 peer-reviewed conference and journal publications

Andrei Florescu

Andrei Florescu is Group Product Manager, Datacenter at Bitdefender. Building on his experience as Senior Solutions Architect, he guides enterprise-focused product management activity while maintaining involvement in large customer deployments and strategic alliances. Before moving into his current role, Andrei held a variety of customer-facing technology positions. He has numerous industry certifications focused on security, virtualization, and cloud, and is an Electronics Engineer, having earned his degree at University “Politehnica” of Bucharest. He is based in the Dallas/Fort Worth area

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.