A hypervisor based security testbed
作者: Dan Duchamp , Greg De Angelis
DOI:
关键词: Embedded system 、 Engineering 、 Testbed 、 Control (management) 、 Operating system 、 Hypervisor 、 Relational database
摘要: We are developing an experimental testbed intended to help support security research. The allows a network of unmodified hosts, running any several operating systems, execute in controlled and reproducible manner. is implemented on hypervisor that instrumented observe control security-relevant events. These events securely logged relational database for later analysis.
acm.org 参考文章(10)
M. Singh, M. Ott, I. Seskar, P. Kamat, ORBIT Measurements framework and library (OML): motivations, implementation and features testbeds and research infrastructures for the development of networks and communities. pp. 146- 152 ,(2005) , 10.1109/TRIDNT.2005.25
M. Ott, I. Seskar, R. Siraccusa, M. Singh, ORBIT testbed software architecture: supporting experiments as a service testbeds and research infrastructures for the development of networks and communities. pp. 136- 145 ,(2005) , 10.1109/TRIDNT.2005.27
Tal Garfinkel, Mendel Rosenblum, A Virtual Machine Introspection Based Architecture for Intrusion Detection. network and distributed system security symposium. ,(2003)
Jeremy Sugerman, Beng-Hong Lim, Ganesh Venkitachalam, Virtualizing I/O Devices on VMware Workstation's Hosted Virtual Machine Monitor usenix annual technical conference. pp. 1- 14 ,(2001)
Brian White, Jay Lepreau, Leigh Stoller, Robert Ricci, Shashi Guruprasad, Mac Newbold, Mike Hibler, Chad Barb, Abhijeet Joglekar, An integrated experimental environment for distributed systems and networks ACM SIGOPS Operating Systems Review. ,vol. 36, pp. 255- 270 ,(2002) , 10.1145/844128.844152
G. Neiger, Intel Virtualization Technology : Hardware Support for Efficient Processor Virtualization j-INTELTECH-J. ,vol. 10, pp. 167- 177 ,(2006)
T. Benzel, R. Braden, D. Kim, C. Neuman, A. Joseph, K. Sklower, R. Ostrenga, S. Schwab, Experience with DETER: a testbed for security research testbeds and research infrastructures for the development of networks and communities. pp. 379- 388 ,(2006) , 10.1109/TRIDNT.2006.1649172
Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield, Xen and the art of virtualization symposium on operating systems principles. ,vol. 37, pp. 164- 177 ,(2003) , 10.1145/1165389.945462
Van Jacobson, Steven McCanne, The BSD packet filter: a new architecture for user-level packet capture USENIX'93 Proceedings of the USENIX Winter 1993 Conference Proceedings on USENIX Winter 1993 Conference Proceedings. pp. 2- 2 ,(1993)
Thomas Schwenkler, Intelligent Platform Management Interface Springer, Berlin, Heidelberg. pp. 169- 207 ,(2006) , 10.1007/3-540-31287-0_6