Methodology for assessing the security of information systems built using virtualization technologies

Download article in PDF format

Authors: Kurnosov K. V.

Annotation: Protecting virtual segments of information systems is an urgent problem for companies that use virtualization technologies. Ensuring information security of virtualization is one of the priority directions in the development of the IT market in Russia. In this paper, the existing methods for assessing security are analyzed and the new methodology for assessing the security of information systems built using virtualization technologies and developed taking into account the identified shortcomings in existing ones, is briefly described. The model the methodology is based on can be used to assess the security of a wider range of information systems.

Keywords: virtualization, virtual infrastructure, virtual machine, hypervisor, information security, virtualization vulnerabilities, threat identification, threat model

Editorial office address

Executive Secretary of the Editor’s Office

 Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia

  Phone / Fax: + 7 (3822) 701-582

  journal@tusur.ru

 

Viktor N. Maslennikov

Executive Secretary of the Editor’s Office

 Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia

  Phone / Fax: + 7 (3822) 51-21-21 / 51-43-02

  vnmas@tusur.ru

Subscription for updates