Explain Virtualization Security Management and virtual Threats

3 years ago
Cloud Computing

Explain virtualization security management.

Historically, the development and implementation of new technology has preceded the full understanding of its inherent security risks, and virtualized systems are no different. The global adoption of virtualization is a relatively recent event, threats to the virtualized infrastructure.

A virtual machine (VM) is an operating system (OS) or application environment that is installed on software, which imitates dedicated hardware. The Virtual Machine (VM), Virtual Memory Manager (VMM), and hypervisor or host OS are the minimum set of components needed in a virtual environment.

Virtualization Types:

Based on the minimum set of components, we classify the Virtual Environments in the following distinct ways.

  • Type 1 virtual environments are considered “full virtualization” environments and have VMs running on a hypervisor that interacts with the hardware.
  • Type 2 virtual environments are also considered “full virtualization” but work with a host OS instead of a hypervisor.

  • Para virtualized environments offer performance gains by eliminating some of the emulation that occurs in full virtualization environments.
  • Other type designations include hybrid virtual machines (HVMs) and hardware assisted techniques.
  • These classifications are somewhat ambiguous in the IT community at large. The most important thing to remember from a security perspective is that there is a more significant impact when a host OS with user applications and interfaces is running outside of a VM at a level lower than the other VMs (i.e., a Type 2 architecture). Because of its architecture, the Type 2 environment increases the potential risk of attacks against the host OS. For example, a laptop running VMware with a Linux VM on a Windows XP system inherits the attack surface of both OSs, plus the virtualization code (VMM).

Virtualization Management Roles:

The roles assumed by administrators are the Virtualization Server Administrator, Virtual Machine Administrator, and Guest Administrator. The roles assumed by administrators are configured in VMS and are defined to provide role responsibilities.

  1. Virtual Server Administrator — This role is resp onsible for installing and configuring the ESX Server hardware, storage, physical and virtual networks, service console, and management applications.
  2. Virtual Machine Administrator — This role is res ponsible for creating and configuring virtual machines, virtual networks, virtual machine resources, and security policies. The Virtual Machine Administrator creates, maintains, and provisions virtual machines.
  3. Guest Administrator — This role is responsib le for managing a guest virtual machine Tasks typically performed by Guest Administrators include connecting virtual devices, adding system updates, and managing applications that may reside on the operating system.

Explain briefly about virtual threats.

Some threats to virtualized systems are general in nature, as they are inherent threats to all computerized systems (such as denial-of-service, or DoS, attacks). Other threats and vulnerabilities, however, are unique to virtual machines. Many VM vulnerabilities stem from the fact that vulnerability in one VM system can be exploited to attack other VM systems or the host systems, as multiple virtual machines share the same physical hardware.

Some of the vulnerabilities exposed to any malicious-minded individuals regarding security in virtual environments:

Shared clipboard — Shared clipboard technology allows data to be tra nsferred between VMs and the host, providing a means of moving data between malicious programs in VMs of different security realms.

Keystroke logging — Some VM technologies enable the logging of keystr okes and screen updates to be passed across virtual terminals in the virtual machine, writing to host files and permitting the monitoring of encrypted terminal connections inside the VM.

VM monitoring from the host — because all network packets coming from or going to a VM pass through the host, the host may be able to affect the VM by the following:

  1. Starting, stopping, pausing, and restart VMs.
  2. Monitoring and configuring resources available to the VMs, including CPU, memory, disk, and network usage of VMs.
  3. Adjusting the number of CPUs, amount of memory, amount and number of virtual disks and number of virtual network interfaces available to a VM.
  4. Monitoring the applications running inside the VM.
  5. Viewing, copying, and modifying data stored on the VM’s virtual disks.

Virtual machine monitoring from another VM — Usually, VMs should not be able to directly access one another’s virtual disks on the host.

Virtual machine backdoors — a backdoor, covert communications channel between the guest and host could allow intruders to perform potentially dangerous operations.

0
Bijay Satyal
Bijay Satyal
Oct 23, 2021
More related questions

1. What are the steps for creating a simple cloud application using Azure. Explain with the help of an example.

2. Write down the steps involved in deployment of an application to windows Azure cloud.

3. Explain the complete Azure life cycle in detail.

4. Explain types of storage in windows azure.

5. Write about worker role & web role while configuring an application in windows Azure.

6. Explain how to deploy application using windows Azure subscription.

7. Give the steps to create virtual machine.

8. Explain how window Azure maximize data availability and minimize security risks.

9. What is provisioning in cloud computing. How Virtual machine can be provision in Azure cloud?

10. How the cloud application deploy on to the windows Azure cloud?

11. Write a program in C# to design calculator as console based application.

12. Explain step by step how to create console application using ADO, NET? Consider any example.

13. Why there is need of ADO.Net? Explain how to use ADO.Net in any web application.

14. Give the anatomy of .ASPX page & also explain with an example how to create a web page using ASP .Net.

15. Write and explain code in ASP. NET to create login page.

16. Explain the Architecture of ADO. Net

17. Write a program in C#.net- to demonstrate object oriented concept: Design user Interface.

18. Explain object oriented concept in C# .net.

19. Explain Identity Access management.

20. Write short note on Infrastructure security in cloud Computing.

21. Write short notes on any three. a) Host Level Security b) Network Level Security c) Application Level Security d) Virtual Machine Security

22. Explain the Contracting Models in Cloud

23. Justify cloud security challenges in detail.

24. What do you mean by cloud contract? Explain in details

25. Explain Identity Access Management?

26. Explain virtual machine security in cloud computing.

27. What are different cloud security challenges?

28. Explain the three tiers of Big data framework.

29. Explain Hadoop core component.

30. Explain with diagram HDFS architecture?

31. List the different techniques used for clustering the big data. Explain k-means clustering

32. Define big data, explain the characteristics of big data in detail.

33. Explain in steps starting & stopping Hadoop cluster.

34. Explain Hadoop Map Reduce job execution with the help of neat diagram.

35. List the characteristics of HDFS. And explain HDFS operations.

36. Explain the clustering Big data and also gives classification of Big data.

37. List & explain the advantages & limitations of different deployment models in cloud computing.

38. Define virtualization. What is the need of virtualization in cloud computing?

39. Explain the role of Networks in cloud computing and also define the various protocols used in it.

40. Explain infrastructure as a service (Iaas) using openstack/ owncloud.

41. Write in brief about virtualization applications in enterprises.

42. What do you mean by virtualization? Explain the pitfalls of virtualization.

43. Explain deployment models of cloud in detail.

44. Explain DAAS and NAAS?

45. List and explain three service model of cloud computing.

46. What are the role of web services in cloud computing?

47. Explain cloud computing architecture.(6M)(S-17)(W-18)

48. Explain the advantages & limitations of cloud computing.

49. With the help of architecture give the overview of mobile cloud.

50. Explain the challenges & legal issues in cloud computing.

51. What do you understand by cloud computing? Explain the characteristics of cloud computing.

52. What are the difference between cluster computing. grid computing and cloud computing.

53. What is cloud computing? Explain essential characteristics of cloud computing?

54. Explain with diagram cloud computing stack?

55. What are different legal issues in cloud computing?

56. Write short notes on Brokered cloud storage access and Storage location and tenancy.

57. Explain in detail about object storage. File systems or object storage

58. Discuss the design considerations for storage network

59. Write short notes on (i) Software Virtualization (ii) Network Virtualization

60. Explain in detail the various aspects for the need of virtualization in cloud computing.

61. Discuss the operational and economic benefits of SaaS

62. Explain in detail about cloud delivery model

63. Discuss the Regulatory Issues of Cloud Computing and the Government Policies

64. Explain briefly the security concerns of cloud computing.

65. Write short notes on origins of cloud computing.

66. What is the goal of encrypted cloud storage?

67. What is ISCSI?

68. State the limitations of virtualization.

69. State the types of hardware virtualization?

70. What is Google app engine?

71. What is PaaS?

72. State the benefits of cloud computing.

73. State any three essential characteristics of cloud computing.

74. What is GRID AND CLOUD?

75. What is Virtual Engine and Cloud Environment.

76. What is Rules Engine.

77. List out SLA MANAGEMENT IN CLOUD

78. What is Negotiation.

79. What are the steps in SLA?

80. List out Application SLA:

81. What is Admission Control?

82. What is Internal Threats

83. What is External Threats?

84. What are the SECURITY CONSIDERATIONS in cloud?

85. Role of Service Manager.

86. What is Elasticity?

87. What is Dynamic Elasticity.

88. What are the challenges in infrastructures provider?

89. List out three tier architecture.

90. What is SAP Systems?

91. What is Grid Gain?

92. What is meant by Skynet?

93. What is MapReduce.NET.

94. What is Disco in cloud computing?

95. What is Hadoop MapReduce?

96. What is Hadoop.

97. List out features of Map Reduce Model.

98. What is Map Reduce Programming Model?

99. What is Quality.

100. Note on Dynamic ICT Services.

101. What is Changing Markets?

102. What is T-System.

103. What is Basic CometCloud Operations.

104. What are the behaviors in Autonomic Cloudbursts?

105. What is Image Registration.

106. What is Fault Tolerance.

107. List out types of policies in cloudbridging.

108. What is Autonomic Cloudbriding?

109. What is Load Dynamic.

110. What is the goal of Autonomic Cloud bursting?

111. Note on CometCloud.

112. What is Resource Pool?

113. What is Workload Monitoring.

114. What are the resources in Aneka cloud?

115. What is Aneka Cloud platform?

116. What is Customer information Protection.

117. What is Logical Attacks.

118. Difference between Authentication and Authorization.

119. What is PDP.

120. Note on Data privacy protection.

121. What is Multimedia data security?

122. What is WAN.

123. What is LAN.

124. What is Job Monitoring?

125. Note on CaaS.

126. What is RVMS design.

127. What is meant by Microsoft Windows Azure?

128. What is Google App Engine?

129. What is Amazon EC2.

130. What is Leasing Model?

131. What is VM Management.

132. What is meant by anatomy of cloud computing?

133. What is Hypervisor and Xen Server?

134. What is virtual machine monitor?

135. List out types of Virtualization in Cloud Computing

136. What is Virtualization Technology?

137. What is VLAN.

138. What is Transition Challenges?

139. Define Cloud Supply chain.

140. What is Google app engine?

141. What is virtualization?

142. What are the challenges of SaaS Paradigm?

143. Why we use Migrating?

144. What is mean by migrating in cloud computing?

145. Write down note on PaaS?

146. What is mean by IaaS?

147. What is mean by SaaS?

148. Note on Hybrid cloud.

149. What did you meant by community cloud?

150. 4. What is Public cloud?

151. What are the types in cloud services?

152. What is Cloud computing?

153. List out the Phases of CDLC.

154. What is CDLC.

155. What is known as Network Virtualization?

156. Define Server Virtualization.

157. Define Cloud Stack.

158. What are the Components of a Virtual Network?

159. List out the primary types of Storage Virtualization.

160. What is Clustering?

161. List out the Disadvantage of OS Virtualization.

162. What are the Advantages of OS Virtualization?

163. List out the Need for Server Virtualization

164. What are the types of Virtualization?

165. Define Virtual Machine

166. What is Virtualization?

167. Define Cloud Federation.

168. List out the three key Principles of Cloud Computing.

169. What is called Combined Cloud?

170. What are Factors to be considered which designed Cloud based Architecture?

171. What is CDM?

172. List out the types on Cloud is based on its infrastructure.

173. What are the Four types of Cloud Services available in IBM Company?

174. What are the pros and cors of Cloud Computing and Cloud basic Device?

175. What is SaaS?

176. What is PaaS?

177. What is the Step to get Cloud Computing infrastructure for his Business?

178. What are the other Cloud-related techniques?

179. What are Models in Cloud Service?

180. What is Private Cloud?

181. What is Public Cloud?

182. What are the types of Cloud Computing for the Business Purpose?

183. What is the area to process the Cloud Migrations?

184. What are the Disadvantage of Cloud Computing?

185. What are the Advantage of Cloud Computing?

186. What are the types of Cloud Computing?

Questions Bank

View all Questions