This Technical Reference intends to provide guidance on the identification and management of security risks specific to virtualisation technologies that run on a server hardware (as opposed to, as examples, desktop or network or storage virtualisation). It focuses on virtualisation security with respect to the server virtualisation technologies applied to server platforms illustrated in Figure 1. The users include enterprise infocomm personnel and service providers, although the main focus is targeted on the former.