The Paradox of Security in Virtual Environments

Michael Price

doi:10.1109/MC.2008.472

Computer
2008
Issue No. 11 - November
Abstract - The Paradox of Security in Virtual Environments

	This Article
	Subscribers, please Login Purchase article: $19 PDF HTML IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Michael Price

The Paradox of Security in Virtual Environments

November 2008 (vol. 41 no. 11)

pp. 22-28

	ASCII Text	x
	Michael Price, "The Paradox of Security in Virtual Environments," Computer, vol. 41, no. 11, pp. 22-28, November, 2008.

	BibTex	x
	@article{ 10.1109/MC.2008.472, author = {Michael Price}, title = {The Paradox of Security in Virtual Environments}, journal ={Computer}, volume = {41}, number = {11}, issn = {0018-9162}, year = {2008}, pages = {22-28}, doi = {http://doi.ieeecomputersociety.org/10.1109/MC.2008.472}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - Computer TI - The Paradox of Security in Virtual Environments IS - 11 SN - 0018-9162 SP22 EP28 EPD - 22-28 A1 - Michael Price, PY - 2008 KW - virtualization KW - virtual machines KW - security KW - IT system management VL - 41 JA - Computer ER -

Michael Price, Automatic Partners

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MC.2008.472

Virtualization trims administrative overhead, eases system management, and combats OS-level security vulnerabilities. However, it also exhibits new characteristics and exposes new vulnerabilities that can be detrimental to securing the system.

1. T. Garfinkel and M. Rosenblum, "A Virtual Machine Introspection-Based Architecture for Intrusion Detection," Proc. Network and Distributed Systems Security Symp. (NDSS 03), The Internet Society, 2003, pp. 191–206.
2. M. Rosenblum and T. Garfinkel, "Virtual Machine Monitors: Current Technology and Future Trends," Computer, May 2005, pp. 39–47.
3. R. Sailer et al., "Building a General-Purpose Secure Virtual Machine Monitor," tech. report RC23537 (W0502-132), 25 Feb. 2005, IBM Research.
4. P.M. Chen and B.D. Noble, "When Virtual Is Better than Real," Proc. 8th Workshop Hot Topics in Operating Systems (HotOS-VIII), IEEE CS Press, 2001, pp. 133–138.
5. T. Garfinkel and M. Rosenblum, "When Virtual Is Harder than Real: Security Challenges in Virtual Machine-Based Computing Environments," Proc. 10th Workshop Hot Topics in Operating Systems (HotOS-X), Usenix Assoc., 2005; www.stanford.edu/~talg/papers/HOTOS05virtual-harderhotos05.pdf .
6. P. Barham et al., "Xen and the Art of Virtualization," Proc. 19th ACM Symp. Operating Systems Principles (SOSP 03), ACM Press, 2003, pp. 164–177.
7. S.T. King et al., "SubVirt: Implementing Malware with Virtual Machines," Proc. 2006 IEEE Symp. Security and Privacy (SP 06), IEEE CS Press, 2006, pp. 314–327.
8. R. Uhlig et al., "Intel Virtualization Technology," Computer, May 2005, pp. 48–56.

Index Terms:

virtualization, virtual machines, security, IT system management

Citation:

Michael Price, "The Paradox of Security in Virtual Environments," Computer, vol. 41, no. 11, pp. 22-28, Nov. 2008, doi:10.1109/MC.2008.472

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.