Institutional Repository
| return-oriented programming attack on the xen hypervisor | |
| Ding Baozeng; Wu Yanjun; He Yeping; Tian Shuo; Guan Bei; Wu Guowei | |
| 2012 | |
| 会议名称 | 2012 7th International Conference on Availability, Reliability and Security, ARES 2012 |
| 会议录名称 | Proceedings - 2012 7th International Conference on Availability, Reliability and Security, ARES 2012 |
| 页码 | 479-484 |
| 会议日期 | August 20, 2012 - August 24, 2012 |
| 会议地点 | Prague, Czech republic |
| 收录类别 | EI |
| ISBN | 9780769547756 |
| 部门归属 | (1) Institute of Software Chinese Academy of Sciences Beijing 100190 China; (2) Graduate University Chinese Academy of Sciences Beijing 100049 China; (3) School of Software Dalian University of Technology China |
| 摘要 | In this paper, we present an approach to attackon the Xen hypervisor utilizing return-oriented programming(ROP). It modifies the data in the hypervisor that controlswhether a VM is privileged or not and thus can escalatethe privilege of an unprivileged domain (domU) at runtime. As ROP technique makes use of existed code to implementattack, not modifying or injecting any code, it canbypass the integrity protections that base on code measurement. By constructing such kind of attack at the virtualizationlayer, it can motivate further research work towardspreventing or detecting ROP attack on the hypervisor. © 2012 IEEE.; In this paper, we present an approach to attackon the Xen hypervisor utilizing return-oriented programming(ROP). It modifies the data in the hypervisor that controlswhether a VM is privileged or not and thus can escalatethe privilege of an unprivileged domain (domU) at runtime. As ROP technique makes use of existed code to implementattack, not modifying or injecting any code, it canbypass the integrity protections that base on code measurement. By constructing such kind of attack at the virtualizationlayer, it can motivate further research work towardspreventing or detecting ROP attack on the hypervisor. © 2012 IEEE. |
| 语种 | 英语 |
| 内容类型 | 会议论文 |
| URI标识 | http://ir.iscas.ac.cn/handle/311060/15817 |
| 专题 | 中国科学院软件研究所 |
| 推荐引用方式 GB/T 7714 | Ding Baozeng,Wu Yanjun,He Yeping,et al. return-oriented programming attack on the xen hypervisor[C],2012:479-484. |
| 条目包含的文件 | 条目无相关文件。 | |||||
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论