Client-side Virtualization Flashcards
1
Q
Virtualization - Client-side Virtualization
A
- One computer, many operating systems
* Separate OS, independent CPU, memory, network, etc.
2
Q
The hypervisor - Client-side Virtualization
A
- Virtual Machine Manager
* Manages the virtual platform and guest operating systems
3
Q
Resource requirements - Client-side Virtualization
A
- CPU Processor Support - Intel: VT, AMD: AMD-V
- Memory - Above and beyond host OS requirements
- Disk space - Each guest OS has it’s own image
- Network - Configurable on each guest OS
4
Q
Emulation vs. Virtualization - Client-side Virtualization
A
- Virtualization is a native operating system
* Emulation is one device running processes designed for completely different architecture
5
Q
Hypervisor security - Client-side Virtualization
A
- Hypervisor is a sweet spot for the bad guys
- VM escaping
- Malware recognizes it’s on a virtual machine
- Malware compromises the hypervisor
- Malware jumps from one guest OS to another
6
Q
Guest operating system security - Client-side Virtualization
A
- Use traditional security controls - Host-based firewall, anti-virus
- Watch out for rogue virtual machines (VMs)
7
Q
Network requirements - Client-side Virtualization
A
- Most client-side virtual machine managers have their own virtual (internal) networks
- Shared address - VM and host shares the same IP address
- Bridged address - The VM is a device on the physical network
- Private address - The VM does not communicate to the outside
