From 743c5d767cdb938745a47eba5c8487d333fda129 Mon Sep 17 00:00:00 2001
From: Jet Hughes <jethughes0@gmail.com>
Date: Wed, 21 Sep 2022 15:39:32 +1200
Subject: [PATCH] vault backup: 2022-09-21 15:39:31

---
 content/notes/16-cloud-security.md | 20 +++++++++++++++++++-
 content/notes/comp-210.md          |  1 +
 2 files changed, 20 insertions(+), 1 deletion(-)

diff --git a/content/notes/16-cloud-security.md b/content/notes/16-cloud-security.md
index 7b15d7f74..17875cf09 100644
--- a/content/notes/16-cloud-security.md
+++ b/content/notes/16-cloud-security.md
@@ -4,6 +4,9 @@ aliases:
 tags: 
 - comp210
 - lecture
+sr-due: 2022-09-24
+sr-interval: 3
+sr-ease: 250
 ---
 
 - what is cloud computing
@@ -131,4 +134,19 @@ examples
 	- file containing a bit for bit copy of what a real hard drive would contain if it contained
 		- an OS (usually linux)
 		- a deployment environment (web server, database server, libraries, etc)
-		- the service application/executables
\ No newline at end of file
+		- the service application/executables
+- to start a new instance of a service you boot the relevant machine image on a hypervisor
+	- its easy to add additional services for scaling to manage load
+- copies and backups can be made by snapshotting the state of the virtual machine
+	- captures state of disk image
+	- and contents of system memory
+	- can be used as version control for services
+	- can be moved to anothe rhost by making a snapshot and booting on a hypervisor on a new server
+
+## rule 1 and virtualisation
+rule 1: if a bad guy can run his program on your computer, then its not your computer anymore
+
+- your apps may be running on the same physical computer as a bad guy
+- if they can exit the VM (flaws in hypervisor or hardware) they can cause trouble
+- speculative flaws meltdown and spectre are difficult to exploit (no known exlpoits since being found 5 years ago)
+	- benefits outweigh risks
\ No newline at end of file
diff --git a/content/notes/comp-210.md b/content/notes/comp-210.md
index 22c94a9be..247d1d785 100644
--- a/content/notes/comp-210.md
+++ b/content/notes/comp-210.md
@@ -36,3 +36,4 @@ No final exam
 - [12-pen-testing](notes/12-pen-testing.md)
 - [13-pen-testing-2](notes/13-pen-testing-2.md)
 - [15-policies-standards-practices](notes/15-policies-standards-practices.md)
+- [16-cloud-security](notes/16-cloud-security.md)
\ No newline at end of file