11 March 2013

http://www.schneier.com/blog/archives/2013/03/phishing_has_go.html

Now assuming you have a hardened OS (no listening services); and you run the web browser from a Virtual machine hosted by the OS; now given that they hack the WEB browser; how hard is it to hack out of the VM into the real OS ???????

Can't we use hardware virtualization as a tool that divides the computer realm into compartments; much like a ship; with one compartment down the ship is still afloat (even spaceships do that now ;-)

I guess if enough people will do this trick then they will find a way to break it …. But until that happens, it will pass as a very good security measure.

A further addition: all outgoing packets from the VM will be marked by vlan tagging; you can't change that from within the VM; so you can't break out of your little sub network.