Title :
An In-VM Measuring Framework for Increasing Virtual Machine Security in Clouds
Author :
Qian Liu ; Chuliang Weng ; Minglu Li ; Yuan Luo
Author_Institution :
Dept. of Comput. Sci. & Eng., Shanghai Jiao Tong Univ., Shanghai, China
Abstract :
Cloud computing relies heavily on virtualization. Virtualization technology has developed rapidly because of the rapid decrease in hardware cost and concurrent increase in hardware computing power. A virtual machine monitor (VMM, also called a hγpervisor) between the hardware and the OS enables multiple virtual machines (VMs) to run on top of a single physical machine. The VMM manages scheduling and dispatching the physical resources to the individual VMs as needed, and the VMs appear to users as separate computers. Widely used virtualization technologies include VMWare, Xen, Denali, and the Kernel-Based Virtual Machine (KVM). In this framework, a module measures executables running in virtual machines (VMs) and transfers the values to a trusted VM. Comparing those values to a reference table containing the trusted measurement values of running executables verifies the executable/s status.
Keywords :
Internet; operating system kernels; security of data; virtual machines; Denali; In-VM measuring framework; VMWare; Xen; cloud computing; hγpervisor; kernel-based virtual machine; virtual machine monitor; virtual machine security; virtualization technology; Cloud computing; Hardware; Monitoring; Prototypes; Virtual machine monitors; In-VM measuring; TPM; Trusted Platform Module; Xen; security and privacy; verification; virtual machines;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2010.143
