1.5 Virtualization and Cloud Flashcards
The grouping of virtual hardware (cpu, ram, storage, nic, etc) to form an entire virtual computer.
Virtual machine
Software layer that creates virtual hardware components and facilitates the communication from the virtual hardware to the physical hardware and vice versa.
Hypervisor
A layer of abstraction down to the process execution level, where the software installed on a VM is isolated away from the VM itself.
Application level virtualization
A series of files on a computing system that, when used by a hypervisor, function as an independent computing device.
Virtual machine
Software technology that isolates a desktop environment and it’s associated application software from a physical host machine that is used to access it.
VDI - Virtual desktop infrastructure.
One of the most important security functions that can be performed today. Including but not limited to understanding how a piece of malware works, understanding the command and control functions presented by a piece of malware, and gaining an understanding into the motivations and potential end goals of an adversary.
Malware analysis
Term that is used to describe data that we collect from an IT asset.
Digital evidence
Virtualization security risk that results from the ease at which VMs can be cloned and forgotten about. Virtual machines that exist but are no longer needed.
VM sprawl
The process of creating different tiers of physical host computers where each tier of physical host is only allowed to run guest VMs of that same trust level.
Virtualization physical segmentation.
Code run from inside a guest VM being executed on the host computer. Being able to execute code outside the bounds of the isolation that is supposed to be afforded to a VM.
VM escape
Type of cloud deployment where all services are operated by a third party provider
Public cloud
Type of cloud deployment where IT resources are built, operated, and managed by a single company or organization, typically in their own data centers.
Private cloud
type of cloud deployment where an organization uses a combination of public cloud services with on-premise or private services. Typically done when there are legacy systems that, for various reasons, cannot be moved to the cloud.
Hybrid cloud
cloud service model where the provider grants access to a console that allows the customer to provision servers on a virtual Network according to their needs.
IaaS - infrastructure as a service
Cloud service model that allows customers to access a platform that enables them to run custom code or applications. Customers do not need to manage the underlying infrastructure.
PaaS - platform as a service