This publication discusses the security concerns associated with full virtualization technologies for server and desktop virtualization, and provides recommendations for addressing these concerns. Most existing recommended security practices remain applicable in virtual environments. The practices described in this document build on and assume the implementation of practices described in other NIST publications.
To improve the security of server and desktop full virtualization technologies, organizations should implement the following recommendations:
- Secure all elements of a full virtualization solution and maintain their security.
- Restrict and protect administrator access to the virtualization solution.
- Ensure that the hypervisor is properly secured.
- Carefully plan the security for a full virtualization solution before installing, configuring, and deploying it.