A Two-Step Execution Mechanism for Thin Secure Hypervisors
スポンサーリンク
概要
- 論文の詳細を見る
Virtual Machine Monitors (VMMs), also called hypervisors,can be used to construct a trusted computing base (TCB) enhancing the security of existing operating systems. The complexity of a VMM-based TCB causes the high risk of security vulnerabilities. Therefore, this paper proposesa two-step execution mechanism to reduce the complexityof a VMM-based TCB. We propose a method to separate aconventional VMM-based TCB into the following two parts:(1) A thin hypervisor with security services and (2) A special guest OS for security preprocessing. A special guestOS performing security tasks can be executed in advance.After shutting down the special guest OS, a hypervisor obtains preprocessing security data and next boots a targetguest OS to be protected. Thus, the proposed two-step execution mechanism can reduce run-time codes of a hypervisor. This paper shows a design, a prototype implementation and measurement results of lines of code using BitVisor, a VMM-based TCB we have developed.
- Institute of Electrical and Electronics Engineers (IEEE)の論文
- 2009-06-00
Institute of Electrical and Electronics Engineers (IEEE) | 論文
- Analysis on Operation of a F-FET Memory With an Intermediate Electrode
- EXIT Chart-Aided Adaptive Coding for Multilevel BICM With Turbo Equalization in Frequency-Selective MIMO Channels
- Iterative Frequency Domain Joint-over-Antenna Detection in Multiuser MIMO
- An Analytical Method for MMSE MIMO Turbo Equalizer EXIT Chart Computation
- Multilevel-Coded QAM With MIMO Turbo-Equalization in Broadband Single-Carrier Signaling