Security Consideration for Virtualization
Source: University of London
Virtualization is not a new technology, but has recently experienced a resurgence of interest among industry and research. New products and technologies are emerging quickly, and are being deployed with little considerations to security concerns. It is vital to understand that virtualization does not improve security by default. Hence, any aspect of virtualization needs to undergo constant security analysis and audit. Virtualization is a changeable and very dynamic field with an uncertain outcome. In this paper the security model of hypervisors and illustrate the significance of ongoing security analysis by describing different state of the art threat models are outlined. Finally, this white paper provides recommendations and design considerations for a more secure virtual infrastructure.