Penetration testing on virtual environments
Abstract:
Since the beginning, computer systems have faced the challenge of protecting the information with which they work, and with the technological development, computational security techniques have become more complex to face the potentials attacks. Currently we are facing a war game with the usual two sides, attackers and defenders. The attackers want to have complete control over the systems. In is turn, defenders virtualized systems to maintain the resources safety in case of attack. The attackers have also developed increasingly sophisticated techniques to break such protections, being necessary to anticipate such events, which may be achieved through the application of preventative measures. This may be done by simulating Penetration Testing (PT). PT is an attack on a computer system, using a set of specialized tools that looks for security weaknesses, which eventually may have access to computer's features and data, allowing the discovery of such evidence vulnerability. Virtual Environments have a higher exposure to cyber-attacks. The aim of this paper is propose a framework to provide guidelines for Penetration Testing in Virtual Environments.
Año de publicación:
2016
Keywords:
- Hypervisors
- Virtual machine
- vulnerability
- Penetration testing
- virtual environments
Fuente:
scopusTipo de documento:
Conference Object
Estado:
Acceso restringido
Áreas de conocimiento:
- Ciencias de la computación
Áreas temáticas:
- Ciencias de la computación
- Economía de la tierra y la energía
- Programación informática, programas, datos, seguridad
