JAIST Repository >
b. 情報科学研究科・情報科学系 >
b11. 会議発表論文・発表資料等 >
b11-1. 会議発表論文・発表資料 >

このアイテムの引用には次の識別子を使用してください: http://hdl.handle.net/10119/9853

タイトル: A Two-Step Execution Mechanism for Thin Secure Hypervisors
著者: Hirano, Manabu
Shinagawa, Takahiro
Eiraku, Hideki
Hasegawa, Shoichi
Omote, Kazumasa
Tanimoto, Kouichi
Horie, Takashi
Mune, Seiji
Kato, Kazuhiko
Okuda, Takeshi
Kawai, Eiji
Yamaguchi, Suguru
キーワード: VMM
発行日: 2009-06
出版者: Institute of Electrical and Electronics Engineers (IEEE)
誌名: 2009 Third International Conference on Emerging Security Information, Systems and Technologies
開始ページ: 129
終了ページ: 135
DOI: 10.1109/SECURWARE.2009.27
抄録: Virtual Machine Monitors (VMMs), also called hypervisors,can be used to construct a trusted computing base (TCB) enhancing the security of existing operating systems. The complexity of a VMM-based TCB causes the high risk of security vulnerabilities. Therefore, this paper proposesa two-step execution mechanism to reduce the complexityof a VMM-based TCB. We propose a method to separate aconventional VMM-based TCB into the following two parts:(1) A thin hypervisor with security services and (2) A special guest OS for security preprocessing. A special guestOS performing security tasks can be executed in advance.After shutting down the special guest OS, a hypervisor obtains preprocessing security data and next boots a targetguest OS to be protected. Thus, the proposed two-step execution mechanism can reduce run-time codes of a hypervisor. This paper shows a design, a prototype implementation and measurement results of lines of code using BitVisor, a VMM-based TCB we have developed.
Rights: Copyright (C) 2009 IEEE. Reprinted from 2009 Third International Conference on Emerging Security Information, Systems and Technologies, 2009, 129-135. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of JAIST's products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to pubs-permissions@ieee.org. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.
URI: http://hdl.handle.net/10119/9853
資料タイプ: publisher
出現コレクション:b11-1. 会議発表論文・発表資料 (Conference Papers)

このアイテムのファイル:

ファイル 記述 サイズ形式
16563-1.pdf371KbAdobe PDF見る/開く

当システムに保管されているアイテムはすべて著作権により保護されています。

 


お問い合わせ先 : 北陸先端科学技術大学院大学 研究推進課図書館情報係