Cybersecurity Fundamentals Block 4 Unit 2

Virtual Machine (VM)

An emulated computer within a host system. Splits host hardware to trick itself into thinking it has its own BIOS, memory, cpu, OS, and apps.

Virtualization Components

-Host Server

-Hypervisor

-Guest OS

Host Server

Computer which virtualized environment resides. Hardware provides infrastructure for VMs and may have its own OS installed.

Hypervisor

The link managing the communications between the host server and the virtualized environment. Dynamically assigns resources to VMs.

Guest OS

Installed on virtual computer architecture and allows for end-user interaction that is indistinguishable from a standard physical computer.

Virtual Environment

The collection of all VMs on a hypervisor. Can be running different OSs on each VM.

Visualization Types

-Desktop Virtualization

-Server Virtualization

-Application Virtualization

-Storage Virtualization

Desktop Virtualization

Method of simulating a user workstation so it can be remotely accessed. 3 types:

-Presentation Virtualization

-Virtual Desktop Infrastructure (VDI)

-User Profile Virtualization

Presentation Virtualization

Delivers desktops or applications from a shared server. Only shares GUI and mouse/keyboard controls. No processing from the client.

Virtual Desktop Infrastructures (VDI)

A centralized server simulating desktop computers which allows remote users access. Easy to reallocate resources as needed.

User Profile Virtualization

Decouples user profile settings and data to a centralized data center or the cloud.

Server Virtualization

Partitioning of a physical server into smaller, virtual servers.

Server Virtualization Software

-VMware

-Citrix XenServer

-Microsoft Hyper-V

Server Virtualization Architectures

-OS Level Virtualization

-Hardware Emulation

-Para-Virtualization

OS Level Virtualization

Kernel of host OS allows for multiple isolated user-space instances called containers. Container OS must match host and offers more efficiency, but less flexibility.

Hardware Emulation

Emulates a certain piece of hardware that it presents to guest virtual server, regardless of what physical hardware is installed.

Para-virtualization

Allows guest OS running on VM to have some access and control to underlying server hardware. Guest OS has direct communication to host using "hyper calls" through the hypervisor.

Application Virtualization

Running specific software applications on central servers while separating these applications from the underlying hardware end users are accessing.

Application Streaming

On demand software delivery which recognizes that not all software needs to be installed on a client system and can be delivered over a network.

Storage Virtualization

Pooling physical storage from multiple network storage devices into a single storage. Commonly used in Storage Area Networks (SAN).

Virtualization Applications

-Development and Testing

-Training

-Server Consolidation

-Server Pooling

-Disaster Recovery

Development and Testing

Can test in a Virtual Lab or Sandbox without effecting overall system or having a standalone setup.

Training

Able to easily train students on a virtual computer without worrying about damaging the system or restoration to original config.

Server Consolidation

Able to condense multiple, physical servers into one physical machine. Saves costs and space.

Load Balancing

Running 2 or more VMs on separate hardware and dividing regular workload between them. Protects against single point of failure.

Server Pooling

Manages a group of virtualized servers. Software figures out which physical server is best suited to run virtual machine.

Disaster Recovery

Products and processes helping organizations respond to catastrophic situations. VM images can be captured in files so it is easy to restart.

Virtualization Benefits

-Infrastructure Simplification

-Total Cost of Ownership

-Environmental Issues

-Improved Responsiveness

Infrastructure Simplification

Server consolidation. Allows one physical server to replace multiple, underutilized, dedicated servers.

Total Cost of Ownership (TCO)

Fewer servers while still meeting business needs saves total cost and produces a return on investment (ROI).

TCO Causes

-Increased utilization.

-Decreased management infrastructure costs.

-Lowered cost to deploy new environments.

Environmental Issues

Reducing the number of physical servers causes more efficient energy use.

Server Environmental Concerns

-Reduced electrical energy consumption

-Decreased cooling requirements

-Decreased physical space requirements

Improved Responsiveness

Virtualization allows shared resources among virtual servers, allowing different hardware allocation based on needs.

Automatic Load Balancing

Resources can be automatically allocated as they are needed and removed when not.

Virtualization Security

-Training and Education

-Change Control

-Asset Tracking and Management

-Patch Management

-Authentication and Authorization

-Logging and Auditing

Training and Education

Administrators need to know the proper way to set up virtualization and of any pitfalls.

Change and Control

Change control and review boards should carefully consider any changes to infrastructure before approving. Changes can affect confidentiality, integrity, and availability (CIA).

Asset Tracking and Management

Licenses need to be tracked to ensure license agreement is not compromised. VMs act as standalone machines and must be licensed for software as such.

VM Sprawl

Uncontrolled growth of virtual machines leading to operational challenges. VMs and their purposes must be tracked.

Patch Management

All server components must stay patched, even software which may seem inconsequential, to improve security and function.

Authentication and Authorization

Ensure only authorized user have access to host as they hold a large amount of power over VMs running on a server.

Logging and Auditing

A strong trail of all activities occurring in a virtual environment, which allow admins to keep track of changes made.

Host Operating System

Primary operating system on a computer system's hard drive which is hosting VMs.

Guest Operating System

Operating system run within a virtual machine.

Containers

Allow VMs to share the same OS kernel as the host. Requires all VMs to use the same OS. No need for guest OS and is more efficient.

Type 2 Hypervisor

A program run within a host OS that allows the creation of virtual machines. Less efficient, but more hardware compatibility.

Type 1 Hypervisor

A standalone application which is not run on an OS. More efficient, but less hardware compatibility.

CPU and Ram (Processing power and Memory)

Main factor limiting the number of virtual machines a host can support. A shortage can impact VM performance.

HDD Storage

Limiting factor in how many VMs can run on a system based on minimum storage requirements of OSs.

Network Interface Card (NIC)

Limit bandwidth for the VMs. Minimum is 2, recommended is 4.

I/O Device Support

Mouse, keyboard, and monitors are still needed to use host server. If no integrated GPU, an adapter card is needed in PCIE port.

Microsoft Windows Server 2022 Requirements

-512MB RAM per VM

-32GB Storage per VM