0
I'm deploying a web application on a linux server (ubuntu) on virtual machine (In VMWare ESX 5.1 and the host machine is Windows)
I need to protect the entire application and guest OS from being copied to another physical host
Is this possible?
Can I make the Linux guest to work just on that host?
Can I identify host machine from guest OS?
How?
Thanks
RYN
Posted 2016-04-19T12:17:41.177
Reputation: 565
1
In a well-working virtualisation environment, the guest can not, should not and may not be able to identify the host if the host doesn't explicitly allow so, this is of course completely oposite to your requirement of something like a DRM system for VMs.
This leaves you with a few options, some of which are:
Let me add, that the first rule of DRM is, that DRM does not work - so reconsider if you want to pour resources into what is finally a lost cause.
Eugen Rieck
Posted 2016-04-19T12:17:41.177
Reputation: 15 128
0
Let me give my overview, based on virtualization experience. Any malware with a network component will propagate to wherever their addressing/routing allows them to. Regular/well-known malwares tend to only operate in ‘user mode’, in a such a covert channel. If you are sharing CPU's, a busy process on one VM can effectively communicate state to another VM (that's your prototypical timing covert channel). Storage covert channel would be a bit harder as the virtual disks tend to have a hard limit on them, so unless you have a system that can over-commit disk space, it should not be an issue.
Cyril Cooper
Posted 2016-04-19T12:17:41.177
Reputation: 1
I don't see any mentions of malware in the question. Did you post your answer in the right place? – Dmitry Grigoryev – 2016-04-27T20:27:18.667
I don't have anything to do with malwares!!! I'm just deploying my application as a VM and I want to be able to prevent user to copy my application to other hosts without my permission! – RYN – 2016-04-30T02:30:08.380
Sorry, guys, I guees I misunderstood the question. – Cyril Cooper – 2016-05-12T11:39:41.140