Multiple attacks on virtualization-based security monitoring |
| |
Authors: | YAN Guang-lu LUO Sen-lin WEI Wei PAN Li-min |
| |
Affiliation: | School of Information and Electronics, Beijing Institute of Technology, Beijing 100081, China |
| |
Abstract: | Three kinds of vulnerabilities that may exist in some of current virtualization-based security monitoring systems were proposed:page mapping problem, lack of overall protection, and inherent limitations. Aiming at these vulnerabilities, relative attack methods were presented in detail. Our experiments show that the attack methods, such as page mapping attack, data attack, and non-behavior detection attack, can attack simulated or original security monitors successfully. Defenders, who need to effectively strengthen their security monitors, can get an inspiration from these attack methods and find some appropriate solutions. |
| |
Keywords: | virtualization vulnerability attack method security threat virtual machine monitor |
本文献已被 万方数据 等数据库收录! |
| 点击此处可从《北京理工大学学报(英文版)》浏览原始摘要信息 |
|
点击此处可从《北京理工大学学报(英文版)》下载全文 |
|