Sorry this is only available in French. The ANSSI published the following this month:
@mickael I lack the necessary expertise to know if that is a good guide. If it is, maybe it contains elements that may be useful for the threat model including the Qubes based journalist workstation ? Or maybe it’s too generic.
It does mention Xen but says it is the same kind of virtualization as KVM which is not entirely accurate. With KVM, the vast majority of the time, you run a Linux kernel from a Linux kernel. With Xen you have an hypervisor which runs (most of the time) a Linux kernel. They are two entirely different code base which makes things a lot more complicated for hardware support (that’s a known problem).
I also imagine (but have no clue really) that it could be more complicated to review from a security perspective because you have two code bases (Xen & Linux) instead of one (Linux). But maybe it is actually simpler for some reason ? I’m interested in your opinion on this matter.