Systemic threats to hypervisor non-control data
文献类型:期刊论文
| 作者 | Ding, Baozeng ; He, Yeping ; Wu, Yanjun ; Yu, Jiageng |
| 刊名 | IET INFORMATION SECURITY
 |
| 出版日期 | 2013 |
| 卷号 | 7期号:4页码:349-354 |
| 关键词 | data integrity security of data virtualisation systemic threats hypervisor noncontrol data virtualisation layer computer systems secure hypervisors data integrity Xen hypervisor system security return-oriented programming DMA attacks |
| ISSN号 | 1751-8709 |
| 中文摘要 | Hypervisors are becoming a widespread virtualisation layer in current computer systems. Recent successful attacks against hypervisors indicate that they face the similar integrity threats as traditional operating systems. Current approaches that secure hypervisors mainly focus on code or control-data integrity, without paying attention to non-control data integrity. In this study the authors construct attacks that target hypervisor non-control data to demonstrate which types of data within the Xen hypervisor are critical to system security. It shows privilege, resource utilisation and security policy related data are vulnerable to return-oriented programming or DMA attacks. By modifying their values from one to another, the whole system's performance will be affected. By discussing current approaches that secure hypervisors, which are not suitable for non-control data, the work is to motivate new innovation in this area to protect them. |
| 英文摘要 | Hypervisors are becoming a widespread virtualisation layer in current computer systems. Recent successful attacks against hypervisors indicate that they face the similar integrity threats as traditional operating systems. Current approaches that secure hypervisors mainly focus on code or control-data integrity, without paying attention to non-control data integrity. In this study the authors construct attacks that target hypervisor non-control data to demonstrate which types of data within the Xen hypervisor are critical to system security. It shows privilege, resource utilisation and security policy related data are vulnerable to return-oriented programming or DMA attacks. By modifying their values from one to another, the whole system's performance will be affected. By discussing current approaches that secure hypervisors, which are not suitable for non-control data, the work is to motivate new innovation in this area to protect them. |
| 收录类别 | SCI |
| 语种 | 英语 |
| WOS记录号 | WOS:000328457400012 |
| 公开日期 | 2014-12-16 |
| 源URL | [http://ir.iscas.ac.cn/handle/311060/16896]  |
| 专题 | 软件研究所_软件所图书馆_期刊论文 |
| 推荐引用方式 GB/T 7714 | Ding, Baozeng,He, Yeping,Wu, Yanjun,et al. Systemic threats to hypervisor non-control data[J]. IET INFORMATION SECURITY,2013,7(4):349-354. |
| APA | Ding, Baozeng,He, Yeping,Wu, Yanjun,&Yu, Jiageng.(2013).Systemic threats to hypervisor non-control data.IET INFORMATION SECURITY,7(4),349-354. |
| MLA | Ding, Baozeng,et al."Systemic threats to hypervisor non-control data".IET INFORMATION SECURITY 7.4(2013):349-354. |
入库方式: OAI收割
来源:软件研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。