Virtualization security not perfect
Server virtualization is one of the most popular high technologies. It is a no-brainer, that is quick to deploy and easy to justify in cost-savings. It’s well-known that this product is top trend in enterprise IT and there has been a statement that it’ll remain like that for two or even three years.
One in three large Australian organizations has deployed server virtualization into their database. A number of medium to large enterprises have considered the idea. But how many of those have considered the security implications?
The difference between virtualization software and operating systems it that virtualization uses hypervisors – programs that enable multiple operating systems to run on the same hardware. The advantage is that hypervisors carry a smaller footprint; therefore, there are fewer chances for security holes to emerge.
As far as there are few codes in hypervisor, mostly a fraction of what is in an operating system, it is simply unable to serve the internet and start downloading codes. It is much safer than operating system from this point of view. Moreover, ever since now, there hasn’t been any working prototype or virus that could attack the hypervisor.
According to zdnet.com.au the hypervisor is an obvious target for hackers and if compromised, it could potentially provide access to a range of services within a virtualized machine, rather than to a single service in a standalone box.
A special group from security analysts and white hat hackers had been created to crack the hypervisors. Although one method seemed to be harmful, it soon appeared that it is detectable and addressable. It seems that the only way to hack virtualization software is to do it straight from the insight of server room and using special software.
There has been a controversial statement in April that warned organizations that there are some security risks, and that they shouldn’t rush into deploying server virtualization. Although they have released some security and management tools, those were said to be immature and incomplete. As far as virtual servers are easy, cheap and quick to deploy, most of users doesn’t pay any attention to possible security risks.
The main risk is called “virtual machine sprawl”. Zdnet.com.au explains that without the right user rights and privileges controls in place, virtualization tools allow knowledge workers to deploy a new server instance or virtual machine without consent or control of IT security staff. The problem lies in organizational structure, not in technology.
While choosing the right virtualization server, only a little can be said. The less code a hypervisor contain and the less access available to that code, the more secure it is. Basically the more functionality the virtualization server has, the more prone it will be to exploits. It’s only user’s decision whether he or she wants less functionality and more safety or visa versa.
According to zdnet.com.au, for any potential risk that virtualization poses, it can equally be argued that a correctly implemented solution can actually harden an organization’s security. Moreover, if used in the network, virtualization can be deployed as firewall or monitoring tool, which means ir can be used as additional defense. It may also be exploited by users to protect themselves from malware, identity theft and fraud, by using virtualization to conduct their routine web surfing.
Although virtualization server seems to have less security threats than other operating systems, it’s still not perfect and just as all the other software, virtualization server is not beyond the attack.
Recently commented malware