loading
Documents

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Lars Rasmusson 1 and Mazdak Rajabi Nasab 2

Affiliations: 1 SICS Swedish Institute of Computer Science, Sweden ; 2 Chalmers University of Technology, Sweden

ISBN: 978-989-8565-52-5

Keyword(s): Cloud Computing, Hosted Computing, Security, Untrusted Code, Virtual Machine, Machine Code Inspection, Checksumming.

Related Ontology Subjects/Areas/Topics: Cloud Computing ; Cloud Computing Architecture ; Cloud Computing Enabling Technology ; Cloud Deployment Models: Public/Private/Hybrid Cloud ; Cloud Risk, Challenges, and Governance ; Fundamentals ; Virtualization Technologies

Abstract: An attacker who has gained access to a computer may want to run arbitrary programs of his choice, and upload or modify configuration files, etc. We can severely restrict the power of the attacker by having a white-list of approved file checksums and a mechanism that prevents the kernel from loading any file with a bad checksum. The check may be placed in the kernel, but that requires a kernel that is prepared for it. The check may also be placed in a hypervisor which intercepts the kernel and prevents the kernel from loading a bad file. Moving the integrity check out from the VM kernel makes it harder for the intruder to bypass the check. We describe the implementation of two systems and give performance results. In the first implementation the checksumming and decision is performed by the hypervisor instead of by the kernel. In the second implementation the kernel computes the checksum and only the final integrity decision is made by the hypervisor. We conclude that it is technically possible to put file integrity control into the hypervisor, both for kernels without and with pre-compiled support for integrity measurement. (More)

PDF ImageFull Text

Download
Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 54.87.61.215

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Rasmusson, L. and Rajabi Nasab, M. (2013). Hypervisor Integrity Measurement Assistant.In Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-8565-52-5, pages 26-35. DOI: 10.5220/0004370500260035

@conference{closer13,
author={Lars Rasmusson. and Mazdak Rajabi Nasab.},
title={Hypervisor Integrity Measurement Assistant},
booktitle={Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2013},
pages={26-35},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004370500260035},
isbn={978-989-8565-52-5},
}

TY - CONF

JO - Proceedings of the 3rd International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Hypervisor Integrity Measurement Assistant
SN - 978-989-8565-52-5
AU - Rasmusson, L.
AU - Rajabi Nasab, M.
PY - 2013
SP - 26
EP - 35
DO - 10.5220/0004370500260035

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.