We pursue the information flow analysis of virtualized infrastructures by graph coloring. Analyzing VM connections, network and storage we ask: How can we discover isolation breaches hidden in the actual configuration?
We create a system for automated information flow analysis of virtualized infrastructures. The system discovers the configuration of a heterogeneous infrastructure and translates its findings into a graph representation.
The tool analyzed the information flow and isolation including VLAN associations properties by graph coloring. The tool successfully checked a production in-house of a global financial institution.
Security Assurance for Heterogeneous Virtualized Environments (SAVE)