DocumentCode :
1799854
Title :
vPatcher: VMI-Based Transparent Data Patching to Secure Software in the Cloud
Author :
Hao Zhang ; Lei Zhao ; Lai Xu ; Lina Wang ; Deming Wu
Author_Institution :
Comput. Sch., Wuhan Univ., Wuhan, China
fYear :
2014
fDate :
24-26 Sept. 2014
Firstpage :
943
Lastpage :
948
Abstract :
Quick defense against the spread of software exploits is an important problem, and hot patching is an attractive approach to solve this problem. However, these approaches cannot adapt to cloud well, which brings new challenges to the protection of software. Among these challenges, transparency and rapid deployment are two respective requirements for protection. In this paper, we propose vPatcher, a transparent data patching technique based on Virtual Machine Introspection. Vpatcher uses hypervisor to monitor the network connections of vulnerable programs in protected guest systems, deployed outside the Virtual Machines, without disturbing the target guest systems. Given the vulnerability signatures, vPatcher intercepts network packets, scans these packets for vulnerable processes by reconstructing fine-grained system semantics that include process states as well as corresponding network connections, detects them with their vulnerability signatures, and finally filters exploits. We adopted several realistic vulnerable programs used broadly to evaluate the effectiveness of the technique, and experimental results showed its efficacy and that the overhead is acceptable. In addition, the experiments also show that it could be transparent to guest systems, and suitable for rapid deployment in cloud platforms.
Keywords :
cloud computing; security of data; system monitoring; virtual machines; VMI-based transparent data patching; cloud computing; fine-grained system semantics; hypervisor; network connection monitoring; protected guest systems; secure software; vPatcher; virtual machine introspection; vulnerability signatures; vulnerable programs; Availability; Data structures; Inspection; Kernel; Ports (Computers); Semantics; Virtual machining; Hot patching; Transparency; data patching; exploit defense; virtual machine monitoring;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Trust, Security and Privacy in Computing and Communications (TrustCom), 2014 IEEE 13th International Conference on
Conference_Location :
Beijing
Type :
conf
DOI :
10.1109/TrustCom.2014.125
Filename :
7011350
Link To Document :
بازگشت