Virtualization (D)allows multiple systems and services to be hosted onfewer physical machines, therebyreducing the total number of physical devicesand consequently thehardware attack surface. This also allows for better patching, monitoring, and control.
The fewer devices you manage physically, the fewer entry points there are for attackers to exploit hardware-level vulnerabilities.
[Reference: CompTIA Security+ SY0-701 Objectives, Domain 3.4 – “Reducing attack surface: Use of virtualization to consolidate systems.”, , ]
Submit