中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 软件所图书馆  > 期刊论文
Title:
Systemic threats to hypervisor non-control data
Author: Ding, Baozeng ; He, Yeping ; Wu, Yanjun ; Yu, Jiageng
Keyword: data integrity ; security of data ; virtualisation ; systemic threats ; hypervisor noncontrol data ; virtualisation layer ; computer systems ; secure hypervisors ; data integrity ; Xen hypervisor ; system security ; return-oriented programming ; DMA attacks
Source: IET INFORMATION SECURITY
Issued Date: 2013
Volume: 7, Issue:4, Pages:349-354
Indexed Type: SCI
Department: [Ding, Baozeng; He, Yeping; Wu, Yanjun; Yu, Jiageng] Chinese Acad Sci, Inst Software, Natl Engn Res Ctr Fundamental Software, Beijing 100190, Peoples R China. [Ding, Baozeng; Yu, Jiageng] Chinese Acad Sci, Grad Univ, Beijing 100049, Peoples R China.
Abstract: Hypervisors are becoming a widespread virtualisation layer in current computer systems. Recent successful attacks against hypervisors indicate that they face the similar integrity threats as traditional operating systems. Current approaches that secure hypervisors mainly focus on code or control-data integrity, without paying attention to non-control data integrity. In this study the authors construct attacks that target hypervisor non-control data to demonstrate which types of data within the Xen hypervisor are critical to system security. It shows privilege, resource utilisation and security policy related data are vulnerable to return-oriented programming or DMA attacks. By modifying their values from one to another, the whole system's performance will be affected. By discussing current approaches that secure hypervisors, which are not suitable for non-control data, the work is to motivate new innovation in this area to protect them.
English Abstract: Hypervisors are becoming a widespread virtualisation layer in current computer systems. Recent successful attacks against hypervisors indicate that they face the similar integrity threats as traditional operating systems. Current approaches that secure hypervisors mainly focus on code or control-data integrity, without paying attention to non-control data integrity. In this study the authors construct attacks that target hypervisor non-control data to demonstrate which types of data within the Xen hypervisor are critical to system security. It shows privilege, resource utilisation and security policy related data are vulnerable to return-oriented programming or DMA attacks. By modifying their values from one to another, the whole system's performance will be affected. By discussing current approaches that secure hypervisors, which are not suitable for non-control data, the work is to motivate new innovation in this area to protect them.
Language: 英语
WOS ID: WOS:000328457400012
Citation statistics:
Content Type: 期刊论文
URI: http://ir.iscas.ac.cn/handle/311060/16896
Appears in Collections:软件所图书馆_期刊论文

Files in This Item:

There are no files associated with this item.


Recommended Citation:
Ding, Baozeng,He, Yeping,Wu, Yanjun,et al. Systemic threats to hypervisor non-control data[J]. IET INFORMATION SECURITY,2013-01-01,7(4):349-354.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[Ding, Baozeng]'s Articles
[He, Yeping]'s Articles
[Wu, Yanjun]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[Ding, Baozeng]‘s Articles
[He, Yeping]‘s Articles
[Wu, Yanjun]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2019  中国科学院软件研究所 - Feedback
Powered by CSpace