Solved: Data exposure in logs, crash dumps, coredump

mikebuffalo · ‎02-12-2018

I could not answer this question.

Is there a condition where VMware logs, crash dumps, coredumps,... may contain sensitive or protected data?

The concern is that Protected Health Information (ePHI HIPAA); research data or any data from the VM would be in the any diagnostic information sent to VM support.

Thanks

daphnissov · ‎02-12-2018

To my knowledge, there are no conditions which could result in in-guest data (i.e., data contained within a virtual machine's environment) being output to ESXi or vCenter logs, or core dumps. However, you asked about them containing "sensitive or protected data" and to that the answer could be yes depending on what you consider "sensitive" and "protected". For example, when using VM encryption, core dumps could contain the encryption keys used by ESXi to decrypt data. This would be considered protected information in many circumstances. So, again, it depends on your definition of those terms.

------------------
How to Ask for Help on Tech Forums
https://neonmirrors.net

View solution in original post

daphnissov · ‎02-12-2018

To my knowledge, there are no conditions which could result in in-guest data (i.e., data contained within a virtual machine's environment) being output to ESXi or vCenter logs, or core dumps. However, you asked about them containing "sensitive or protected data" and to that the answer could be yes depending on what you consider "sensitive" and "protected". For example, when using VM encryption, core dumps could contain the encryption keys used by ESXi to decrypt data. This would be considered protected information in many circumstances. So, again, it depends on your definition of those terms.

------------------
How to Ask for Help on Tech Forums
https://neonmirrors.net

All

Data exposure in logs, crash dumps, coredump