Virtualization & Security

1 like•391 views

This document discusses the security implications of virtualization. It notes that while virtualization provides benefits like availability, isolation, and easier recovery from incidents, it also introduces new risks that are not present in traditional physical systems. Specifically, virtualization can compromise the separation of duties and introduce questions around confidentiality, integrity, and compliance. However, if implemented carefully while considering these new risks, virtualization can enhance security when used appropriately. The document encourages thoughtful implementation of virtualization to take advantage of its benefits while mitigating its risks.

Technology

More Related Content

PDF

Is Security Optional20100608aljapaco

PPTX

F5 Networks- Why Legacy Security Systems are FailingGlobal Business Events

PPTX

What Happens At The Edge Of Your NetworkGarland Technology

PPT

Network securitychauhankapil

PDF

Reputation System for Improving Security in VOIPAssociation of Scientists, Developers and Faculties

PPTX

[SPS Lima 2017] Presentación Windows Defender Application Guardjesusgonzales

PDF

Introduction to Cybersecurity-certificate - Cisco SIgnAbdul Wahab

PDF

Defense Innovation SummitOPSWAT

Is Security Optional20100608aljapaco

F5 Networks- Why Legacy Security Systems are FailingGlobal Business Events

What Happens At The Edge Of Your NetworkGarland Technology

Network securitychauhankapil

Reputation System for Improving Security in VOIPAssociation of Scientists, Developers and Faculties

[SPS Lima 2017] Presentación Windows Defender Application Guardjesusgonzales

Introduction to Cybersecurity-certificate - Cisco SIgnAbdul Wahab

Defense Innovation SummitOPSWAT

Similar to Virtualization & Security (20)

PDF

BriefingsDirect Transcript--How security leverages virtualization to counter ...Dana Gardner

PDF

An Architecture for Providing Security to Cloud ResourcesNiranjana Padmanabhan

PDF

THE SIGNIFICANCE OF CYBERSECURITY HilalHarris

PDF

Security_prediction_2014Truong Minh Yen

PDF

Secure Remote BrowserCitrix

PPTX

Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Scalar Decisions

PDF

Enhancing your Cyber Skills through a Cyber Rangescoopnewsgroup

PPTX

Presentation1.pptxPawachMetharattanara

PDF

Security in a Virtualised ComputingIOSR Journals

PPT

Trend Micro VForum Agentless Scanning PresentationGraeme Wood

PPTX

Everything You Need to Know About BlueKeepIvanti

PDF

Mobile App Crashworthiness - Securing Vehicle-to-Device (V2D) Interfaces and ...NowSecure

PDF

Securing the Digital Frontier - An Analysis of Cybersecurity Landscape and Tr...Draup3

PDF

SecurePass at OpenBrightonGiuseppe Paterno'

PDF

Enterprise secure identity in the cloud with Single Sign On and Strong Authen...GARL

PPTX

Data Centre Evolution: Securing Your Journey to the CloudTrend Micro (EMEA) Limited

PPTX

Security automation in virtual and cloud environments v2rpark31

PDF

Insecure mag-19Ambuj Sharma

PDF

Real-Time Protection From Every Malware InfectionWebroot

PDF

How to Auditayousif

BriefingsDirect Transcript--How security leverages virtualization to counter ...Dana Gardner

An Architecture for Providing Security to Cloud ResourcesNiranjana Padmanabhan

THE SIGNIFICANCE OF CYBERSECURITY HilalHarris

Security_prediction_2014Truong Minh Yen

Secure Remote BrowserCitrix

Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Scalar Decisions

Enhancing your Cyber Skills through a Cyber Rangescoopnewsgroup

Presentation1.pptxPawachMetharattanara

Security in a Virtualised ComputingIOSR Journals

Trend Micro VForum Agentless Scanning PresentationGraeme Wood

Everything You Need to Know About BlueKeepIvanti

Mobile App Crashworthiness - Securing Vehicle-to-Device (V2D) Interfaces and ...NowSecure

Securing the Digital Frontier - An Analysis of Cybersecurity Landscape and Tr...Draup3

SecurePass at OpenBrightonGiuseppe Paterno'

Enterprise secure identity in the cloud with Single Sign On and Strong Authen...GARL

Data Centre Evolution: Securing Your Journey to the CloudTrend Micro (EMEA) Limited

Security automation in virtual and cloud environments v2rpark31

Insecure mag-19Ambuj Sharma

Real-Time Protection From Every Malware InfectionWebroot

How to Auditayousif

More from morisson (7)

PDF

Security asapmorisson

PDF

(Mis)trusting and (ab)using sshmorisson

PDF

Mobile Securty - An Oxymoron?morisson

PDF

APTmorisson

PDF

The Thing That Should Not Bemorisson

PDF

Honeypot Farms using Ethernet Bridging over a TCP Connection morisson

PDF

Crash Course In Brain Surgerymorisson

Security asapmorisson

(Mis)trusting and (ab)using sshmorisson

Mobile Securty - An Oxymoron?morisson

APTmorisson

The Thing That Should Not Bemorisson

Honeypot Farms using Ethernet Bridging over a TCP Connection morisson

Crash Course In Brain Surgerymorisson

Recently uploaded (20)

PPTX

New ThousandEyes Product Innovations: Cisco Live June 2025ThousandEyes

PDF

OFFOFFBOX™ – A New Era for African Film | Startup Presentationambaicciwalkerbrian

PDF

Automating ArcGIS Content Discovery with FME: A Real World Use CaseSafe Software

PPTX

AI in Daily Life: How Artificial Intelligence Helps Us Every Dayvanshrpatil7

PDF

The Future of Artificial Intelligence (AI)Mukul

PDF

Make GenAI investments go further with the Dell AI FactoryPrincipled Technologies

PDF

REPORT: Heating appliances market in Poland 2024SPIUG

PDF

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

PPTX

OA presentation.pptx OA presentation.pptxpateldhruv002338

PDF

Presentation about Hardware and Software in Computersnehamodhawadiya

PDF

AI-Cloud-Business-Management-Platforms-The-Key-to-Efficiency-Growth.pdfArtjoker Software Development Company

PDF

Get More from Fiori Automation - What’s New, What Works, and What’s Next.pdfPrecisely

PDF

How Open Source Changed My Career by abdelrahman ismaila0m0rajab1

PDF

A Day in the Life of Location Data - Turning Where into How.pdfPrecisely

PDF

BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORTcodernjn73

PDF

Responsible AI and AI Ethics - By Sylvester EbhonuSylvester Ebhonu

PDF

Brief History of Internet - Early Days of Internetsutharharshit158

PDF

Google I/O Extended 2025 Baku - all pptsHusseinMalikMammadli

PDF

Security features in Dell, HP, and Lenovo PC systems: A research-based compar...Principled Technologies

PDF

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

New ThousandEyes Product Innovations: Cisco Live June 2025ThousandEyes

OFFOFFBOX™ – A New Era for African Film | Startup Presentationambaicciwalkerbrian

Automating ArcGIS Content Discovery with FME: A Real World Use CaseSafe Software

AI in Daily Life: How Artificial Intelligence Helps Us Every Dayvanshrpatil7

The Future of Artificial Intelligence (AI)Mukul

Make GenAI investments go further with the Dell AI FactoryPrincipled Technologies

REPORT: Heating appliances market in Poland 2024SPIUG

AI Unleashed - Shaping the Future -Starting Today - AIOUG Yatra 2025 - For Co...Sandesh Rao

OA presentation.pptx OA presentation.pptxpateldhruv002338

Presentation about Hardware and Software in Computersnehamodhawadiya

AI-Cloud-Business-Management-Platforms-The-Key-to-Efficiency-Growth.pdfArtjoker Software Development Company

Get More from Fiori Automation - What’s New, What Works, and What’s Next.pdfPrecisely

How Open Source Changed My Career by abdelrahman ismaila0m0rajab1

A Day in the Life of Location Data - Turning Where into How.pdfPrecisely

BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORTcodernjn73

Responsible AI and AI Ethics - By Sylvester EbhonuSylvester Ebhonu

Brief History of Internet - Early Days of Internetsutharharshit158

Google I/O Extended 2025 Baku - all pptsHusseinMalikMammadli

Security features in Dell, HP, and Lenovo PC systems: A research-based compar...Principled Technologies

Cloud-Migration-Best-Practices-A-Practical-Guide-to-AWS-Azure-and-Google-Clou...Artjoker Software Development Company

Virtualization & Security

1. Virtualization & SecurityConfrariaSecurity&IT, April 2009Bruno Morisson, CISSPInformation Security [email protected]://genhex.org/~mori/

2. 60%

3. ~# wget http://dilbert.com/

4. ~# whatis Virtualizationa broad term that refers to the abstraction of computer resources

5. ~# echo security+virtualization | bcSecurityVirtualizationVirtualizationSecuritySecurityThroughVirtualization

6. ~# cat paradigmOperating SystemApp AApp XUser HUser WVirtualization Layer (HyperVisor/VMM)Hardware

7. ~# shift paradigmOperating System AOperating System BOperating System ZApp AApp KApp DUser WUser VUser YVirtualization LayerHardware

8. ~# headrisksNo physicalseparation;SeparationofDutiescompromised;ConfientialityandIntegrity ?Compliance?

9. ~# head benefitsAvailability;Isolation of Users and Applications;Incident Recovery;Malware/Virus analysis;Forensics;

10. Securing a virtual system is not the same as securing a physical one. New threats, new vulnerabilities, new risks.~# tail virtualizationVirtualization is not panacea;We can benefit from virtualization, if we implement it after being well thought.

11. ~# finger [email protected]&ABruno [email protected]://genhex.org/~mori/http://www.linkedin.com/in/morisson