Which setting ensures that an attacker cannot read the information stored temporarily for use by another virtual machine (VM)?
Correct Answer: D
Dedicated memory allocation ensures isolation between virtual machines in a shared environment. Without memory isolation, remnants of one VM's operations might remain in physical memory and be accessible to another VM, leading to cross-tenant data leakage. Assigning dedicated memory prevents attackers from exploiting memory-sharing vulnerabilities.
Encrypted network protocols protect data in transit, not memory. Encrypted file systems safeguard storage, not volatile memory. A dedicated processor helps with performance and isolation of compute tasks but does not secure temporary memory contents.
Cloud environments are multi-tenant, which makes memory isolation a critical safeguard. By dedicating memory or enforcing strict hypervisor-level isolation, providers prevent data exposure between customers.
This aligns with best practices for virtualization security and the "resource pooling" characteristic of cloud computing, ensuring that shared infrastructure does not compromise confidentiality.