| HVM Rootkit及其控制粒度的设计与实现 |
| |
| 引用本文: | 刘家宇,张忠培,凌冲,岳虹. HVM Rootkit及其控制粒度的设计与实现[J]. 计算机安全, 2010, 0(12): 5-8,18 |
| |
| 作者姓名: | 刘家宇 张忠培 凌冲 岳虹 |
| |
| 作者单位: | 解放军61716部队,安徽,合肥;解放军61716部队,安徽,合肥;解放军电子工程学院,安徽,合肥,230037 |
| |
| 基金项目: | 安徽省重点实验室基(2007a011011f) |
| |
| 摘 要: | 硬件辅助虚拟化技术的出现为Rootkit技术提供了新的研究方向。在介绍Rootkit技术及其发展方向的基础上,设计并实现了基于硬件辅助虚拟化技术的Rootkit(Hardware-assisted Virtual Machine Rootkit,HVM Rootkit)在Windows平台下的原型——MiniHVMR。在此基础上,分析了MiniHVMR的对于客户操作系统(Guest OS)的控制粒度,提出一种基于访问FS寄存器信息的方法,提高了MiniHVMR对Guest OS的控制粒度并给出了具体实现细节。
|
| 关 键 词: | 虚拟化 HVM Rootkit 控制粒度 |
Design and Implementation of HVM Rookit and its Control of Granularity |
| |
| LIU Jia-yu,ZHANG Zhong-pei,LING Chong,YEU Hong. Design and Implementation of HVM Rookit and its Control of Granularity[J]. Network & Computer Security, 2010, 0(12): 5-8,18 |
| |
| Authors: | LIU Jia-yu ZHANG Zhong-pei LING Chong YEU Hong |
| |
| Affiliation: | LIU Jia-yu1,ZHANG Zhong-pei1,LING Chong1,2,YEU Hong1(1.61716 PLA troops,Fuzhou,Fujian 350102,China,2.Electronic Engineering Institute,PLA,Hefei,Anhui 230037,China) |
| |
| Abstract: | The appearance and development of Hardware-assisted Virtual Machine provide a new research direction to Rootkit.This paper presents the technology of Rootkit and its direction of development,and designs and implements the prototype of HVM Rootkit—MiniHVMR.For this foundation,it analyses the granularity which MiniHVMR can control the behavior of Guest OS,and provides the detail of its implementation. |
| |
| Keywords: | Virtualization HVM Rootkit Control of Granularity |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
