Compromised VM

Registered by Sean Roberts on 2014-06-26

IDS service notices malicious traffic originating from an insider VM trying to send packets to hosts inside and outside of the tenant perimeter. As this is detected, some reactive response would need to be taken, such as isolating the offending VM from the rest of the network. This policy would facilitate one of the reactive responses to be invoked when a compromise is reported by an IDS service.

Blueprint information

Status:
Not started
Approver:
None
Priority:
Low
Drafter:
Sean Roberts
Direction:
Needs approval
Assignee:
None
Definition:
Discussion
Series goal:
None
Implementation:
Unknown
Milestone target:
None

Related branches

Sprints

Whiteboard

(?)

Work Items

Work items:
RST SPEC verified: DONE

This blueprint contains Public information 
Everyone can see this information.