An organization utilizes virtualization to run multiple Virtual Machines on a single physical server for different departments. Recently, it was discovered that confidential data from one Virtual Machine was accessible to users on another Virtual Machine due to inadequate resource sanitization. Which of the following mitigates this virtualization vulnerability?
Isolate virtual machines in separate VLANs to prevent network sniffing
Install antivirus software on the host to detect malware within virtual machines
Disable hyper-threading on physical CPUs to prevent side-channel attacks
Sanitize resources when deallocating virtual machines
Sanitizing resources when deallocating virtual machines addresses resource reuse vulnerabilities. This process ensures that any residual data in memory and storage is securely erased before resources are reassigned to other virtual machines, preventing unauthorized access to sensitive information.
Disabling hyper-threading on physical CPUs can help mitigate certain side-channel attacks but does not address data leakage due to resource reuse.
Isolating virtual machines in separate VLANs protects against network-based threats like sniffing but does not prevent data exposure through shared physical resources.
Installing antivirus software on the host enhances malware detection but does not prevent data leakage caused by improper resource sanitization in virtualization.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does it mean to sanitize resources when deallocating virtual machines?
Open an interactive chat with Bash
Why is disabling hyper-threading not sufficient for preventing data leakage between virtual machines?
Open an interactive chat with Bash
How do VLANs help with the security of virtual machines?