Post Syndicated from original https://lwn.net/Articles/890224/

Cloud computing is a wonderful thing; it allows efficient use of computing
systems and makes virtual machines instantly available at the click of a
mouse or API call. But cloud computing can also be problematic; the
security of virtual machines is dependent on the security of the
host system. In most deployed systems, a host computer can dig through its
guests’ memory at will; users running guest systems have to just hope that
doesn’t happen. There are a number of solutions to that problem under
development, including this
KVM guest-private memory patch set by Chao Peng and
others, but some open questions remain.