本文已被:浏览 2144次 下载 2869次
Received:December 31, 2012 Revised:January 28, 2013
Received:December 31, 2012 Revised:January 28, 2013
中文摘要: 虚拟化技术作为云计算的基础架构, 其安全性随着云计算的发展越来越受到人们的关注. 提出一种针对虚拟机系统内核攻击的入侵检测方案, 借助Xen提供的虚拟化平台, 来获取虚拟机系统内核运行情况, 从而达到监视和防止内核被攻击的目的. 该方案可以有效地防御来自动态修改内核代码和内核不变数据结构一类的攻击.
Abstract:As the foundation of cloud computing, virtualization technology’s security problems are gained more and more attention of the specialists with the development of cloud computing. This paper presents a virtual machine system kernel intrusion detection system, which use the introspection technology provided by Xen hypervisor to get internal states of kernel of the virtual machine. To achieve the goal of monitoring the kernel and preventing it from being compromised. This system can effectively defend the case of attack that dynamically modifies the kernel code and kernel unchanged data structure.
keywords: Xen VMM Kernel attacks Hypercall
文章编号: 中图分类号: 文献标志码:
基金项目:
引用文本:
陈祝红,崔超远,王儒敬,周继冬.基于虚拟化平台Xen的内核安全监控方案.计算机系统应用,2013,22(7):68-71
CHEN Zhu-Hong,CUI Chao-Yuan,WANG Ru-Jing,ZHOU Ji-Dong.Kernel Intrusion Detection Method Based on Xen Hypervisor.COMPUTER SYSTEMS APPLICATIONS,2013,22(7):68-71
陈祝红,崔超远,王儒敬,周继冬.基于虚拟化平台Xen的内核安全监控方案.计算机系统应用,2013,22(7):68-71
CHEN Zhu-Hong,CUI Chao-Yuan,WANG Ru-Jing,ZHOU Ji-Dong.Kernel Intrusion Detection Method Based on Xen Hypervisor.COMPUTER SYSTEMS APPLICATIONS,2013,22(7):68-71