-   Linux - Virtualization and Cloud (
-   -   hypervisor comparison (

Potato99 07-31-2012 05:51 AM

hypervisor comparison
Hi, I'm implementing a project and I have a question related to that.
This project is about hypervisor security comparison. I compare XEN and KVM hypervisors. I would like to check following scenarios:

- protection against accesing unassigned resources by Virtual Machine
- protection against subversion of trusted virtual machine monitor software (hypervisor, any of virtual machines or boot process)

Unfortunately, I'm new to virtualization, and I have no idea how could I check those scenarios out. I can't figure out any test, which could help me state which hypervisor is more secure.

Do you have any ideas? Could you give me some tips, advices?
Thanks in advance.

jefro 07-31-2012 06:50 PM

I think this task is way above any common user's level. No security issue exists right now that any but the most talented could find.

I just read about one of the first major holes in a VM. For a long time they were considered pretty secure (to statements like absolutely secure) if you didn't mount hosts partitions or directories and used common network controls. If any hacker knows they are unlikely to tell unless they are in a contest. The skills needed to perform intrusion detection would require a very skilled hacker who knows not only the very nuts and bolts of the VM's but also hardware and OS's.

To do any sort of advanced testing you would have to know everything there is to know about the two choices. From where it began and the code it started with to all the additions and corrections over the years. Any part of that could be attacked but you'd have to know a heck of a lot to attack it. I'd guess that maybe only one or two people that visit this site would be able to perform such an advanced test. I am not one of them.

I'd think the greatest threat would be to the OS and applications on it before any VM issue.

All times are GMT -5. The time now is 01:59 PM.