English  |  正體中文  |  简体中文  |  Post-Print筆數 : 27 |  Items with full text/Total items : 95905/126495 (76%)
Visitors : 31794523      Online Users : 365
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version
    政大機構典藏 > 商學院 > 資訊管理學系 > 會議論文 >  Item 140.119/75843
    Please use this identifier to cite or link to this item: http://nccur.lib.nccu.edu.tw/handle/140.119/75843

    Title: Securing KVM-based cloud systems via virtualization introspection
    Authors: Lee, Sheng Wei;Yu, Fang
    Contributors: 資管系
    Keywords: Artificial intelligence;Ecosystems;Linux;Program processors;Systems science;Artificial intelligence techniques;Cloud structure;Computing ecosystems;Decision rules;Malicious attack;Software defects;Virtual machines;Virtualizations;Virtual reality
    Date: 2014-02
    Issue Date: 2015-06-16 15:55:03 (UTC+8)
    Abstract: Linux Kernel Virtual Machine (KVM) is one of the most commonly deployed hypervisor drivers in the IaaS layer of cloud computing ecosystems. The hypervisor provides a full-virtualization environment that intends to virtualize as much hardware and systems as possible, including CPUs, network interfaces and chipsets. With KVM, heterogeneous operating systems can be installed in Virtual Machines (VMs) in an homogeneous environment. However, it has been shown that various breaches due to software defects may cause damages on such a cloud ecosystem. We propose a new Virtualization Introspection System (VIS) to protect the host as well as VMs running on a KVM-based cloud structure from malicious attacks. VIS detects and intercepts attacks from VMs by collecting their static and dynamic status. We then replay the attacks on VMs and leverage artificial intelligence techniques to derive effective decision rules with unsupervised learning nature. The preliminary result shows the promise of the presented approach against several modern attacks on CVE-based vulnerabilities. © 2014 IEEE.
    Relation: Proceedings of the Annual Hawaii International Conference on System Sciences, 2014, 論文編號 6759220, Pages 5028-5037, 47th Hawaii International Conference on System Sciences, HICSS 2014; Waikoloa, HI; United States; 6 January 2014 到 9 January 2014; 類別編號E2504; 代碼 105660
    Data Type: conference
    DOI 連結: http://dx.doi.org/10.1109/HICSS.2014.617
    DOI: 10.1109/HICSS.2014.617
    Appears in Collections:[資訊管理學系] 會議論文

    Files in This Item:

    File Description SizeFormat

    All items in 政大典藏 are protected by copyright, with all rights reserved.

    社群 sharing

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback