7 messages in com.xensource.lists.xen-develRe: [Xen-devel] Re: What is more secu...
FromSent OnAttachments
David Pilger18 Dec 2006 08:39 
David Pilger19 Dec 2006 00:34 
Petersson, Mats19 Dec 2006 02:17 
David Pilger19 Dec 2006 03:02 
Herbert Xu19 Dec 2006 16:02 
Mark Williamson23 Dec 2006 09:52 
David Pilger25 Dec 2006 05:15 
Subject:Re: [Xen-devel] Re: What is more secure? HVM or PV ?
From:Herbert Xu (herb@gondor.apana.org.au)
Date:12/19/2006 04:02:12 PM
List:com.xensource.lists.xen-devel

David Pilger <pilg@gmail.com> wrote:

So, Is there any obvious conclusion about this topic? Or we can say that the security is the same in PV as in HVM?

Right now HVM is arguably slightly less secure compared to PV because of the QEMU backends running as root in dom0. The QEMU backends are more complex than the PV backend drivers and (arguably) more prone to bugs.

Once the QEMU backends are moved into a separate domain, they would be equal in this respect since both will use the PV backends.

Cheers,

-- Visit Openswan at http://www.openswan.org/ Email: Herbert Xu ~{PmV>HI~} <herb@gondor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

_______________________________________________ Xen-devel mailing list Xen-@lists.xensource.com http://lists.xensource.com/xen-devel