Is Hyper-V susceptible to memory deduplication attacks?

Is Hyper-V susceptible to memory deduplication attacks?

Q. Is Hyper-V susceptible to memory deduplication attacks?

A. There are some attacks against hypervisors that use memory deduplication. This is documented at http://www.kb.cert.org/vuls/id/935424. Note that Hyper-V does not perform memory deduplication at time of writing (2012 R2) and therefore is not susceptible to this attack. Because modern operating systems use large memory pages the benefit of memory deduplication is greatly reduced as the chance of finding duplicate 2MB pages is very slight. Additionally Hyper-V uses dynamic memory to intelligently add and remove memory to VMs based on memory usage by processes.

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish