You want to implement virtual machine encryption. Which component encrypts the virtual machine (VM) files?
A. Key management server (KMS)
B. Key encryption key (KEK)
C. Certificate
D. Data encryption key (DEK)
(Choose the best answer.)
Monday, March 8, 2021
Subscribe to:
Post Comments (Atom)
-
Which type of network adapter is designed to provide connectivity to hosts and handle the standard system traffic of vSphere vMotion? (Choos... -
You're meeting the COO to help the company consider implementing data center virtualization. The COO asks you to explain the benefits of... -
(1) Thin Disk. Uses the space as needed for the initial function. It can be greater than the real space, an over-subscription is possible. T...
👽 VM encryption can be turned on and off, VM's that get encrypted, migration with vSphere vMotion will always use encrypted vSphere vMotion.
ReplyDelete👽 Most virtual machine files, in particular guest data that are not stored in the VMDK file, are encrypted. This set of files includes but is not limited to the NVRAM (memory), VSWP (swap), and VMSN (snapshot) files. The key that vCenter Server retrieves from the KMS unlocks an encrypted bundle in the VMX file that contains internal keys and other secrets. ESXi hosts use the KEK to encrypt their internal keys, and store only the encrypted internal keys on disk, but not the KEK itself
ReplyDelete