[Info-vax] Hypervisor Security - A Major Concern

[Scott Dorsey]

 <superseth369 at gmail.com> wrote:
>The virtualization trend is still going strong, offering businesses streaml=
>ined resource management and massive cost-saving potential, but just like e=
>very technology, it has its fair share of security risks. In fact, a virtua=
>lization solution is only as secure as the hypervisors that support it.

This is in every way true.  Code has bugs, bugs cause vulnerability, and
the more code you have running the more chances for vulnerabilities you
have.  The key to security is to run as little as possible, run as much
of it in user mode that you can, and review what you run.

This is why VSI gives you the option of running on bare metal on certified
hardware, if that is a concern for you.  If you are willing to pay money
for better security, you can have better security.  If you are willing to
live with a slightly increased risk of vulnerabilities, you can pay less
for generic hardware.

All of these issues were discussed a year ago in this very newsgroup and
it seems very silly to be dragging this whole discussion back up all over
again.
--scott

-- 
"C'est un Nagra. C'est suisse, et tres, tres precis."