关注于不可信代码执行的虚拟化技术综述

2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing Pub Date : 2012-07-04 DOI:10.1109/IMIS.2012.92

Yan Wen, Jinjing Zhao, Gang Zhao, Hua Chen, Dongxia Wang

{"title":"关注于不可信代码执行的虚拟化技术综述","authors":"Yan Wen, Jinjing Zhao, Gang Zhao, Hua Chen, Dongxia Wang","doi":"10.1109/IMIS.2012.92","DOIUrl":null,"url":null,"abstract":"In response to a continually advancing threat incurred by untrusted codes from Internet, various virtualization-based technologies have been proposed. Such technologies utilize a software layer, a virtual machine monitor or hyper visor, to achieve the highest privilege in a computer system. Generally, they construct isolated execution environments to run the untrusted code while shielding the other parts of the system from the potential security issues. In this paper, we survey a number of virtualization-based technologies with the goal of finding an appropriate candidate to serve as an untrusted code execution solution on PC platforms. Contenders are reviewed with a number of desirable properties, especially security, transparency portability and performance.","PeriodicalId":290976,"journal":{"name":"2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing","volume":"6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-07-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":"{\"title\":\"A Survey of Virtualization Technologies Focusing on Untrusted Code Execution\",\"authors\":\"Yan Wen, Jinjing Zhao, Gang Zhao, Hua Chen, Dongxia Wang\",\"doi\":\"10.1109/IMIS.2012.92\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In response to a continually advancing threat incurred by untrusted codes from Internet, various virtualization-based technologies have been proposed. Such technologies utilize a software layer, a virtual machine monitor or hyper visor, to achieve the highest privilege in a computer system. Generally, they construct isolated execution environments to run the untrusted code while shielding the other parts of the system from the potential security issues. In this paper, we survey a number of virtualization-based technologies with the goal of finding an appropriate candidate to serve as an untrusted code execution solution on PC platforms. Contenders are reviewed with a number of desirable properties, especially security, transparency portability and performance.\",\"PeriodicalId\":290976,\"journal\":{\"name\":\"2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing\",\"volume\":\"6 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-07-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"10\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IMIS.2012.92\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IMIS.2012.92","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

摘要

为了应对来自Internet的不可信代码带来的日益严重的威胁，人们提出了各种基于虚拟化的技术。这种技术利用软件层、虚拟机监视器或超级保护罩来实现计算机系统中的最高特权。通常，它们构建隔离的执行环境来运行不受信任的代码，同时保护系统的其他部分免受潜在安全问题的影响。在本文中，我们调查了一些基于虚拟化的技术，目的是找到一个合适的候选技术，作为PC平台上不受信任的代码执行解决方案。对竞争者进行了许多可取的特性审查，特别是安全性、透明性、可移植性和性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Survey of Virtualization Technologies Focusing on Untrusted Code Execution

In response to a continually advancing threat incurred by untrusted codes from Internet, various virtualization-based technologies have been proposed. Such technologies utilize a software layer, a virtual machine monitor or hyper visor, to achieve the highest privilege in a computer system. Generally, they construct isolated execution environments to run the untrusted code while shielding the other parts of the system from the potential security issues. In this paper, we survey a number of virtualization-based technologies with the goal of finding an appropriate candidate to serve as an untrusted code execution solution on PC platforms. Contenders are reviewed with a number of desirable properties, especially security, transparency portability and performance.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

自引率

0.00%

发文量