How To Tackle Security Vulnerabilities In Hypervisor Based Cloud Servers
June 21, 2013
Grazed from CloudTweaks. Author: Salman Ul Haq.
Virtualization brings numerous security issues apart from the enormous benefits and productivity. Most of the organizations are reluctant to migrate to the cloud just because of the massive security vulnerabilities of cloud computing. Hypervisor, which is used in any virtualization environment to elevate the virtual machine collaboration, can be easily breached if not secured optimally. Hypervisor based cloud servers are always exposed to the Distributed denial-of-service (DDoS) attacks and the “single point of failure” weakness of the hypervisor based cloud servers can easy be exploited to take down the whole cloud along with its resources. We will give you some state of the art yet simple ways to secure a cloud based virtualization environment which is using a hypervisor for virtual communication. You can use any one of the tips keeping in view the organizational needs and suitability.
Depleting the emulation frequency of the hypervisor and minimizing its remote calls to the resources across the cloud is one of the most useful and easy ways to secure a cloud. “NoHype” architecture makes sure that hypervisor does not have to interact with the virtual machines constantly. Allocation of the resources, I/O calls and assigning of processor cores is done before the start of the collaboration thus minimizing the active interaction time of the hypervisor…
Processor based virtualization assistance procedures must be stopped if they are not being used in the virtual environment because of the fact that Intel VT and other processor virtualization techniques start many memory management and isolated processes in the background which are necessary when you are hosting different Hyper- V based applications. When these applications are not being used, the isolated processes and processor based virtualization can be a serious threat to the physical layers of the cloud…
Read more from the source @ http://www.cloudtweaks.com/2013/06/how-to-tackle-security-vulnerabilities-in-hypervisor-based-cloud-servers/