Security considerations for server virtualisation – A CPNI guide

If you have read my biography you will have noticed that one of my specialities is server virtualisation based on the modern hypervisor approach that is offered by vendors such as VMware, Microsoft and Xen to name but three.

Last year, the Centre for the Protection of National Infrastructure (CPNI) undertook to put together guidance on this emerging technology in the form of one of their Technical Notes and pulled together a substantial team from across the industry. I was honoured to be part of that team

This technical note is now available to download from their Technical Notes Archive on the CPNI public website (no registration required) and whilst aimed very much at CNI (critical national infrastructure) providers, it should be interesting to anybody looking at using virtualisation.

it is also interesting to see that even though this document is only a few months old, the technology has moved forward in leaps and bounds making some of the observations seem odd.

So download the document, have a read and do with it as you see fit. It is their for everybody’s benefit and even if you only take one thing away, it’s been worthwhile:

Direct download link:

CPNI – Security considerations for server virtualisation

CPNI Technical Note 1/2009 – Security Considerations For Server Virtualisation (Local Copy)