WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Xen Security

from [Iustin Pop] [Permanent Link][Original]
To: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Subject: Re: [Xen-users] Xen Security
From: Iustin Pop <iusty@xxxxxxxxx>
Date: Fri, 16 Jul 2010 08:07:13 +0200
Cc: Xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 15 Jul 2010 23:08:26 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <4C3F905E.9030100@xxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Mail-followup-to: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>, Xen-users@xxxxxxxxxxxxxxxxxxx
References: <4C3F905E.9030100@xxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.5.20 (2009-06-14) 
On Thu, Jul 15, 2010 at 11:49:02PM +0100, Jonathan Tripathy wrote:
> Hi Everyone,
> 
> My Xen host currently run DomUs which contain some very sensitive
> information, used by our company. I wish to use the same server to
> host some VMs for some customers. If we assume that networking is
> set up securely, are there any other risks that I should worry
> about?

Maybe you should ask yourself this question: what is the cost of using a
separate server for your customers' VM, versus the cost of leaking the
sensitive information, if anything happens?

Side channel attacks are still a possibility, I think. Leaking
information via storage reuse is still a possibility, depending on your
storage. So on…

regards,
iustin

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Xen-users] wiki page on 10G SRIOV, wangalalei
Next by Date:  Re: [Xen-users] DomO network bridge, Marco Nenciarini
Previous by Thread:  RE: [Xen-users] Xen Security, Jonathan Tripathy
Next by Thread:  Re: [Xen-users] Xen Security, Jonathan Tripathy
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy