CLOUD
CLOUD
CLOUD
Google highlights enterprise-grade security measures of its KVM hypervisor
In order to convince enterprise customers of its cloud computing credentials, Google Inc. has provided a series of reports on the enhanced security features it employs to safeguard its hosted offerings.
Earlier this month for example, Google produced a detailed white paper revealing how it protects its data center facilities with custom-designed security chips within every server, security cameras, laser intrusion systems, biometric identification and many other obstacles designed to prevent intruders.
In the same vein, Google this week offered a closer look at some of the measures it takes to harden the security of its open-source KVM hypervisor, which runs at the core of its Compute and Container Engine services. A KVM hypervisor is the hardware virtualization layer in a so-called Kernel-based Virtual Machine.
Andy Honig, a technical lead manager, and Nelly Porter, a senior product manager, co-authored a blog post that highlights no less than seven “high-level security controls” Google employs to protect its KVMs, including code provenance measures for ensuring the integrity of code, processes for reducing the attack surface within the hypervisor, regular security updates and a systematic process for finding and patching vulnerabilities.
Another layer of protection comes from the various fuzzing tools Google has built, which are designed to look for vulnerabilities in KVM each time it’s updated. Google claims its security measures for KVM have been very effective. Honig and Porter wrote that the company has found and fixed nine KVM vulnerabilities in the last three years, while the wider open-source community didn’t find any over the same time frame.
Photo Credit: robertsilva959 Flickr via Compfight cc
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
