###
DOI:
计算机系统应用英文版:2013,22(7):68-71
View/Add Comment     过刊浏览    高级检索     HTML
←前一篇   |   后一篇→
本文二维码信息
码上扫一扫!
基于虚拟化平台Xen的内核安全监控方案
陈祝红1,2, 崔超远2, 王儒敬2, 周继冬1,2
(1.中国科学技术大学 自动化系, 合肥 230027;2.中科院合肥物质科学研究院 智能机械研究所, 合肥 230031)
Kernel Intrusion Detection Method Based on Xen Hypervisor
CHEN Zhu-Hong1,2, CUI Chao-Yuan2, WANG Ru-Jing2, ZHOU Ji-Dong1,2
(1.School of Information Science and Technology, University of Science and Technology of China, Hefei 230027, China;2.Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China)
摘要
图/表
参考文献
相似文献
本文已被:浏览 2144次   下载 2869
Received:December 31, 2012    Revised:January 28, 2013
中文摘要: 虚拟化技术作为云计算的基础架构, 其安全性随着云计算的发展越来越受到人们的关注. 提出一种针对虚拟机系统内核攻击的入侵检测方案, 借助Xen提供的虚拟化平台, 来获取虚拟机系统内核运行情况, 从而达到监视和防止内核被攻击的目的. 该方案可以有效地防御来自动态修改内核代码和内核不变数据结构一类的攻击.
中文关键词: Xen  VMM  内核攻击  Hypercall
Abstract:As the foundation of cloud computing, virtualization technology’s security problems are gained more and more attention of the specialists with the development of cloud computing. This paper presents a virtual machine system kernel intrusion detection system, which use the introspection technology provided by Xen hypervisor to get internal states of kernel of the virtual machine. To achieve the goal of monitoring the kernel and preventing it from being compromised. This system can effectively defend the case of attack that dynamically modifies the kernel code and kernel unchanged data structure.
keywords: Xen  VMM  Kernel attacks  Hypercall
文章编号:     中图分类号:    文献标志码:
基金项目:
Author NameAffiliation
CHEN Zhu-Hong School of Information Science and Technology, University of Science and Technology of China, Hefei 230027, China
Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
CUI Chao-Yuan Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
WANG Ru-Jing Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
ZHOU Ji-Dong School of Information Science and Technology, University of Science and Technology of China, Hefei 230027, China
Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
Author NameAffiliation
CHEN Zhu-Hong School of Information Science and Technology, University of Science and Technology of China, Hefei 230027, China
Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
CUI Chao-Yuan Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
WANG Ru-Jing Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
ZHOU Ji-Dong School of Information Science and Technology, University of Science and Technology of China, Hefei 230027, China
Institute of Intelligent Machine, Chinese Academy of Sciences, Hefei 230031, China 
引用文本:
陈祝红,崔超远,王儒敬,周继冬.基于虚拟化平台Xen的内核安全监控方案.计算机系统应用,2013,22(7):68-71
CHEN Zhu-Hong,CUI Chao-Yuan,WANG Ru-Jing,ZHOU Ji-Dong.Kernel Intrusion Detection Method Based on Xen Hypervisor.COMPUTER SYSTEMS APPLICATIONS,2013,22(7):68-71

用微信扫一扫

Copyright:Institute of Software, Chinese Academy of Sciences
Postal address:4# South Fourth Street, Zhongguancun,Haidian, Beijing,Encoding:100190
Tel:010-62661041 Email:csa (a) iscas.ac.cn
Technical support:Beijing Qin Yun science and Technology Development Co., Ltd.