CompTIA Security+ (SY0-501) — Question 856

Which of the following should be implemented to stop an attacker from interacting with the hypervisor through another guest?

Answer options

• A. Containers
• B. VM escape protection
• C. Security broker
• D. Virtual desktop

Correct answer: B

Explanation

The correct answer is B, VM escape protection, as it specifically focuses on preventing unauthorized access to the hypervisor from virtual machines. The other options do not address this issue; containers operate differently, a security broker manages access but does not directly protect the hypervisor, and a virtual desktop is a client environment that doesn't provide hypervisor security.