ID | 57474 |
フルテキストURL | |
著者 |
Sato, Masaya
Graduate School of Natural Science and Technology, Okayama University
ORCID
Kaken ID
publons
researchmap
Taniguchi, Hideo
Graduate School of Natural Science and Technology, Okayama University
Kaken ID
publons
researchmap
Yamauchi, Toshihiro
Graduate School of Natural Science and Technology, Okayama University
ORCID
Kaken ID
publons
researchmap
|
抄録 | Security or system management software is essential for keeping systems secure. To deter attacks on essential services, hiding information related to essential services is helpful. This paper describes the design, the implementation, and the evaluation of a method to make files invisible to all services except their corresponding essential services and provides access methods to those files in a virtual machine (VM). In the proposed method, the virtual machine monitor (VMM) monitors the system call, which invoked by an essential process to access essential files, and requests proxy execution to the proxy process on another VM. The VMM returns the result and skips the execution of the original system call on the protection target VM. Thus, access to essential files by the essential service is skipped on the protection target VM, but the essential service can access the file content.
|
キーワード | virtual machine monitor
file manipulation
system call proxy
essential services
|
備考 | This fulltext will be available in May 2020
|
発行日 | 2019-05-28
|
出版物タイトル |
International Journal of Space-Based and Situated Computing
|
巻 | 9巻
|
号 | 1号
|
出版者 | Inderscience Enterprises
|
開始ページ | 1
|
終了ページ | 10
|
ISSN | 20444893
|
資料タイプ |
学術雑誌論文
|
言語 |
英語
|
OAI-PMH Set |
岡山大学
|
論文のバージョン | author
|
DOI | |
Web of Science KeyUT | |
関連URL | isVersionOf https://doi.org/10.1504/IJSSC.2019.100007
|
助成機関名 |
日本学術振興会
|
助成番号 | 18K18051 : 重要サービス保護のための仮想計算機モニタによる通信処理制御法の研究 Research Project
16H02829 : 仮想化環境と制御システムの証拠保全を実現する基盤ソフトウェアの研究
|