Is it possible for guest system to spy host system when using virtual maschine (VMware)

Question

I want to prepare virtual maschine which will be used to connect through vpn with one of my clients. There are some other programs and devices that I have to install in order all of this to work. However there is a security concern. On host system I've mailbox and other stuff from my corporation. Is there any way that guest system will successfully try in any way to monitor what is happening on host system (for example by reading emails, checking network trafic, doing screenshots and so on)?

Answer 1

Ostensibly, the answer is no. The architecture of most virtualisation platforms abstract the activity of the virtual 'guest' machine from that of the physical 'host' machine. There are, however, a couple of caveats to this:

1. Primarily, you are reliant of the security of your virtualisation platform, the major players (VMware, Microsoft hyper-V, Oracle) all have very good security track-records for host segregation, and I'm not aware of any publicised flaws. That said, the fact that the guest machine's processing and memory are still intrinsically based on the processor and memory of the host machine means that there could be exposure were flaws to exist in the software; this is however theoretical.

2. Host Tools. Most virtualisation platforms provide some form of tool/service which runs on the Guest OS and allows limited communication between the virtualisation service and the guest (e.g. VMware Tools). Again, whilst I am not aware of any identified flaws that could allow the breaking of the 'virtual curtain', it wouldn't be beyond the realms of possibility.

In this instance, I would suggest that you can get a very high level of assurance around the separation of your host and guest through the use of a current version of one of the major virtualisation platforms.

I hope that helps.

Brendan