Paper Abstract and Keywords |
Presentation |
2008-10-31 10:30
HyperShield: A Virtual Machine Monitor for Migrating Running OS to a Secure Virtual Machine Tsutomu Nomoto, Yoshihiro Oyama (UEC) CPSY2008-30 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
We propose a virtual machine monitor (VMM) HyperShield, which prevents buffer overflow attacks on kernel buffers.
While conventional VMM-based mechanisms against buffer overflow attacks require modifying or rebooting an OS, HyperShield does not require them.
HyperShield is implemented on Linux as a loadable kernel module.
When the module is inserted, it goes under the running OS and executes as a VMM.
The OS is hoisted into a virtual machine (VM) and managed by the VMM.
HyperShield virtualizes memory management of the VM to prevent buffer overflow exploits from executing user code with the kernel privilege.
We confirmed through experiments that HyperShield successfully prevented buffer overflow attacks on kernel buffers. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
virtual machine monitor / virtual machine / security / operating systems / buffer overflow / kernel / / |
Reference Info. |
IEICE Tech. Rep., vol. 108, no. 273, CPSY2008-30, pp. 7-12, Oct. 2008. |
Paper # |
CPSY2008-30 |
Date of Issue |
2008-10-24 (CPSY) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
CPSY2008-30 |
Conference Information |
Committee |
CPSY |
Conference Date |
2008-10-31 - 2008-10-31 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Hiroshima City Univ. |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Advanced Computer System Technologies, etc. |
Paper Information |
Registration To |
CPSY |
Conference Code |
2008-10-CPSY |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
HyperShield: A Virtual Machine Monitor for Migrating Running OS to a Secure Virtual Machine |
Sub Title (in English) |
|
Keyword(1) |
virtual machine monitor |
Keyword(2) |
virtual machine |
Keyword(3) |
security |
Keyword(4) |
operating systems |
Keyword(5) |
buffer overflow |
Keyword(6) |
kernel |
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Tsutomu Nomoto |
1st Author's Affiliation |
The University of Electro-Communications (UEC) |
2nd Author's Name |
Yoshihiro Oyama |
2nd Author's Affiliation |
The University of Electro-Communications (UEC) |
3rd Author's Name |
|
3rd Author's Affiliation |
() |
4th Author's Name |
|
4th Author's Affiliation |
() |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2008-10-31 10:30:00 |
Presentation Time |
30 minutes |
Registration for |
CPSY |
Paper # |
CPSY2008-30 |
Volume (vol) |
vol.108 |
Number (no) |
no.273 |
Page |
pp.7-12 |
#Pages |
6 |
Date of Issue |
2008-10-24 (CPSY) |
|