Institutional Repository
| identification and evaluation of sharing memory covert timing channel in xen virtual machines | |
| Wu Jing Zheng; Ding Liping; Wang Yongji; Han Wei | |
| 2011 | |
| Conference Name | 2011 IEEE 4th International Conference on Cloud Computing, CLOUD 2011 |
| Source | Proceedings - 2011 IEEE 4th International Conference on Cloud Computing, CLOUD 2011 |
| Pages | 283-291 |
| Conference Date | 4-Jul-20 |
| Conference Place | Washington, DC, United states |
| Indexed Type | EI |
| Publish Place | United States |
| ISBN | 9780769544601 |
| Department | (1) National Engineering Research Center for Fundamental Software, Institute of Software, Beijing, China; (2) State Key Laboratory of Computer Science, Institute of Software, Beijing, China; (3) Graduate School Chinese Academy of Science, Beijing, China |
| English Abstract | Virtualization technology is the basis of cloud computing, and the most important property of virtualization is isolation. Isolation guarantees security between virtual machines. However, covert channel breaks the isolation and leaks sensitive message covertly. In this paper, we formally model the isolation into noninterference, and define that all the transmission channels violating noninterference are covert channels. With this definition, we present an identification method based on information flow. This method first compiles the source code into a more structured equivalent code with LLVM. And then a search algorithm is proposed to obtain the shared resources and the operational processes in the equivalent code. A new covert channel termed sharing memory covert timing channel (SMCTC) is identified from Xen source code. We construct channel scenario for SMCTC, and evaluate its threat with the metrics of channel capacity and transmission accuracy. The results show that SMCTC is much more threatened than CPU load based and cache based covert channels etc. © 2011 IEEE. |
| Keyword | Virtual Reality |
| Sponsorship | IEEE; IEEE CS; TC-SVC; IBM; SAP |
| Content Type | 会议论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/14281 |
| Collection | 互联网软件技术实验室 |
| Recommended Citation GB/T 7714 | Wu Jing Zheng,Ding Liping,Wang Yongji,et al. identification and evaluation of sharing memory covert timing channel in xen virtual machines[C]. United States,2011:283-291. |
| Files in This Item: | ||||||
| File Name/Size | DocType | Version | Access | License | ||
| identification and e(1448KB) | 开放获取 | -- | Application Full Text | |||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment