by Edwin T
The peer reviewed article i chose for this weeks post is about the services that cloud providers are offering that can be potential threats. The article focuses on virtualization and the impact it has on cloud security. As we already know, virtualization means that a single physical machine known as a host can run multiple operating systems at the same time, known as virtual machines. The first threat discussed is VM Hopping. With VM hopping, an attacker has control of one virtual machine and tries to gain control of another. VM hopping is a considerable threat because serveral VM’s can run on the same host making them all targets for the attacker. Another threat that caught my attention was the VM Denial of Service. “VM’s share physical resources, such as CPU, memory disk, and network bandwidth.” DoS in virtualization happens when one machine uses all of the resources. Making the host unable to launch more VMs, preventing the service. One effective way to reduce the occurance of a DoS attack is to limit the resource allocation for each machine.
This article is related to class because we discussed cloud computing, and on some occasion the security of these relatively new services.
The article is vey interesting, it points out some very serious issues that cloud providers have to deal with to keep their customers content. Any machine that has a connection to the Internet can never be 100% secured, and if these cloud providers want the technology and business to bloom they’re going to have to try and manage security better. By implementing better policies that will control the environment to a point where the client will have enough control to get the job done, and not be that vulnerable. Especially if sensitive information is being transferred.
Tsai, H., Siebenhaar, M., Miede, A., Huang, Y., & Steinmetz, R. (2012). Threat as a Service?: Virtualization’s Impact on Cloud Security. IT Professional Magazine, 14, 32-37.