{"title":"虚拟化中的虚拟机自省:安全视角","authors":"D. Kapil, P. Mishra","doi":"10.1145/3474124.3474140","DOIUrl":null,"url":null,"abstract":"Virtualization technology has gained enough attention in several fields such as Cloud Computing, the Internet of Things (IoT), and software defined networking (SDN), etc. However, security issues in virtualization impose several questions on the adoption of this technology and raise strong security concerns. Most of the researchers have employed traditional security approaches in virtualization. However, these approaches are not effective enough for the modern environment. Instead, Introspection-based approaches such as Virtual Machine Introspection (VMI) are more useful to protect the virtualized environment. VMI approaches provide robust solutions in identifying the user and kernel-level processes-based attacks by positioning the security tool outside the VM. The successful implementation of these solutions is still challenging due to having heterogeneous design architectures of hypervisors. In this paper, a comprehensive study of VMI approaches is provided with the perspective of facilitating secure attack detection solutions in the virtualization environment. Various open research challenges are identified and discussed in detail. A brief discussion on the various VMI libraries is provided to give some practical insights to readers. We hope that our work will motivate researchers to work in this direction more actively.","PeriodicalId":144611,"journal":{"name":"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)","volume":"119 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-08-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Virtual Machine Introspection in Virtualization: A Security Perspective\",\"authors\":\"D. Kapil, P. Mishra\",\"doi\":\"10.1145/3474124.3474140\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Virtualization technology has gained enough attention in several fields such as Cloud Computing, the Internet of Things (IoT), and software defined networking (SDN), etc. However, security issues in virtualization impose several questions on the adoption of this technology and raise strong security concerns. Most of the researchers have employed traditional security approaches in virtualization. However, these approaches are not effective enough for the modern environment. Instead, Introspection-based approaches such as Virtual Machine Introspection (VMI) are more useful to protect the virtualized environment. VMI approaches provide robust solutions in identifying the user and kernel-level processes-based attacks by positioning the security tool outside the VM. The successful implementation of these solutions is still challenging due to having heterogeneous design architectures of hypervisors. In this paper, a comprehensive study of VMI approaches is provided with the perspective of facilitating secure attack detection solutions in the virtualization environment. Various open research challenges are identified and discussed in detail. A brief discussion on the various VMI libraries is provided to give some practical insights to readers. We hope that our work will motivate researchers to work in this direction more actively.\",\"PeriodicalId\":144611,\"journal\":{\"name\":\"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)\",\"volume\":\"119 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-08-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3474124.3474140\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3474124.3474140","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Virtual Machine Introspection in Virtualization: A Security Perspective
Virtualization technology has gained enough attention in several fields such as Cloud Computing, the Internet of Things (IoT), and software defined networking (SDN), etc. However, security issues in virtualization impose several questions on the adoption of this technology and raise strong security concerns. Most of the researchers have employed traditional security approaches in virtualization. However, these approaches are not effective enough for the modern environment. Instead, Introspection-based approaches such as Virtual Machine Introspection (VMI) are more useful to protect the virtualized environment. VMI approaches provide robust solutions in identifying the user and kernel-level processes-based attacks by positioning the security tool outside the VM. The successful implementation of these solutions is still challenging due to having heterogeneous design architectures of hypervisors. In this paper, a comprehensive study of VMI approaches is provided with the perspective of facilitating secure attack detection solutions in the virtualization environment. Various open research challenges are identified and discussed in detail. A brief discussion on the various VMI libraries is provided to give some practical insights to readers. We hope that our work will motivate researchers to work in this direction more actively.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
