[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] Understanding HVM DomU Isolation

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Scott Kuehn <skuehn@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 04 Feb 2010 14:41:49 -0800
Delivery-date: Thu, 04 Feb 2010 14:42:23 -0800
List-id: Xen user discussion <xen-users.lists.xensource.com>

Hello All,

I'm trying to build my understanding of the isolation provided to an HVMDomU. A base Xen 3.4 install on a fancy vPro system works well. It'sfast enough for my needs and I'm pleased with the features. That said,I'd like to better understand the extent of separation between Dom0 andan HVM DomU. Would it be possible now, or with a feature on the currentXen roadmap, to fully decouple an HVM DomU from Dom0? To put itanother way, I'm concerned that an error in my Dom0 kernel could impactthe security of a mission-critical app running in an HVM DomU. What Xentools or features can I utilize to improve or verify the isolation?


Any comments or suggested reading?

Sincerely,

Scott Kuehn

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Prev by Date: [Xen-users] installing xen on fedora 11
Next by Date: Re: [Xen-users] Free XEN / DomU management software
Previous by thread: [Xen-users] installing xen on fedora 11
Next by thread: Re: [Xen-users] AsteriskNOW on Xen Choppiness
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.