Virtualization of servers and applications changed the face of computing in ways that we are still exploring operationally. The attack surfaces for virtualized systems are different, even if only in number and location, but virtualization has also presented some new control points for those looking to address security concerns. Both attackers and defenders have had to adjust.
Now the emergence of Software Defined Networking (and/or Network Function Virtualization) presents network designers and security professionals with another new landscape. Do these architectures present us with an intractable growth of new exposures or do they provide enabling technologies for better security design and management?