Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Hypervisor integrity measurement assistant
RISE, Swedish ICT, SICS.ORCID iD: 0000-0001-6173-599x
Chalmers University of Technology, Sweden.
2013 (English)In: CLOSER 2013 - Proceedings of the 3rd International Conference on Cloud Computing and Services Science, 2013, p. 26-35Conference paper, Published paper (Refereed)
Abstract [en]

An attacker who has gained access to a computer may want to run arbitrary programs of his choice, and upload or modify configuration files, etc. We can severely restrict the power of the attacker by having a white-list of approved file checksums and a mechanism that prevents the kernel from loading any file with a bad checksum. The check may be placed in the kernel, but that requires a kernel that is prepared for it. The check may also be placed in a hypervisor which intercepts the kernel and prevents the kernel from loading a bad file. Moving the integrity check out from the VM kernel makes it harder for the intruder to bypass the check. We describe the implementation of two systems and give performance results. In the first implementation the checksumming and decision is performed by the hypervisor instead of by the kernel. In the second implementation the kernel computes the checksum and only the final integrity decision is made by the hypervisor. We conclude that it is technically possible to put file integrity control into the hypervisor, both for kernels without and with pre-compiled support for integrity measurement.

Place, publisher, year, edition, pages
2013. p. 26-35
Keywords [en]
Checksumming, Cloud computing, Hosted computing, Machine code inspection, Security, Untrusted code, Virtual machine, Machine codes, Virtual machines, Loading
National Category
Engineering and Technology
Identifiers
URN: urn:nbn:se:ri:diva-47616Scopus ID: 2-s2.0-84884471746ISBN: 9789898565525 (print)OAI: oai:DiVA.org:ri-47616DiVA, id: diva2:1462906
Conference
3rd International Conference on Cloud Computing and Services Science, CLOSER 2013, 8 May 2013 through 10 May 2013, Aachen
Available from: 2020-09-01 Created: 2020-09-01 Last updated: 2023-05-25Bibliographically approved

Open Access in DiVA

No full text in DiVA

Scopus

Authority records

Rasmusson, Lars

Search in DiVA

By author/editor
Rasmusson, Lars
By organisation
SICS
Engineering and Technology

Search outside of DiVA

GoogleGoogle Scholar

isbn
urn-nbn

Altmetric score

isbn
urn-nbn
Total: 23 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf