EEMCS
Home > Publications
Home University of Twente
Education
Research
Prospective Students
Jobs
Publications
Intranet (internal)
 
 Nederlands
 Contact
 Sitemap
 Search
 Organisation

EEMCS EPrints Service


15485 Security Implications of Virtualization: A Literature Study
 Home Policy Brochure Browse Search User Area Contact Help

van Cleeff, A. and Pieters, W. and Wieringa, R.J. (2009) Security Implications of Virtualization: A Literature Study. Technical Report TR-CTIT-09-25, Centre for Telematics and Information Technology University of Twente, Enschede. ISSN 1381-3625

Full text available as:

PDF
 - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
193 Kb
Exported to Metis

Abstract

Data centers accumulate corporate and personal data at a rapid pace. Driven by economy of scale and the high bandwidth of today's network connections, more and more businesses and individuals store their data remotely. Server virtualization is an important technology to facilitate this process, allowing dedicated hardware to be turned into resources that can be used on demand. However this technology is still under development and therefore, in spite of its increasingly important role, the overall security impact of virtualization is not yet completely known.

To remedy this situation, we have performed a systematic literature review on virtualization, and decomposed the virtualization technology into distinct features, which are dependent on each other, but also have individual positive and negative effects on security.

Our study shows that, given adequate management, the core virtualization technology has a clear positive effect on availability, but that the effect on confidentiality and integrity is less positive. Virtualized systems tend to lose the properties of location-boundedness, uniqueness and monotonicity. In order to ensure corporate and private data security, we propose to either remove or tightly manage non-essential features such as introspection, rollback and transfer.

Item Type:Internal Report (Technical Report)
Research Group:EWI-IS: Information Systems, EWI-DIES: Distributed and Embedded Security
Research Program:CTIT-ISTRICE: Integrated Security and Privacy in a Networked World
Research Project:VISPER: The VIrtual Security PERimeter for digital, physical, and organisational security
Uncontrolled Keywords:virtualization, security
ID Code:15485
Deposited On:01 July 2009
More Information:statisticsmetis

Export this item as:

To correct this item please ask your editor

Repository Staff Only: edit this item