Title :
Detecting Security Attacks in Trusted Virtual Domains
Author :
Tupakula, Udaya Kiran ; Varadharajan, Vijay
Author_Institution :
Dept. of Comput., Macquarie Univ., Sydney, NSW, Australia
Abstract :
A trusted virtual domain (TVD) enables grouping of related virtual machines running on separate physical machine into a single network domain with a unified security policy. Since the virtual machines can be running different operating systems and applications, the attacker can generate attacks in the TVD by exploiting a single vulnerability in any of the operating systems or applications. Our aim in this paper is to consider the design choices and develop an intrusion detection architecture that would enable efficient detection and prevention of different types of attacks in such a TVD based distributed environments. The proposed architecture can capture the knowledge of the operating systems and applications at fine granular level and isolate the malicious entities that are generating the attack traffic. Our model takes into account the security policies that are specific to the virtual machine as well as security policies of the trusted virtual domains to deal with the attacks efficiently.
Keywords :
operating systems (computers); security of data; virtual machines; TVD based distributed environment; intrusion detection architecture; operating systems; security attack detection; security policy; trusted virtual domains; virtual machines; Intrusion Detection Systems Architecture; Trusted Virtual Domains;
Conference_Titel :
Embedded and Ubiquitous Computing (EUC), 2010 IEEE/IFIP 8th International Conference on
Conference_Location :
Hong Kong
Print_ISBN :
978-1-4244-9719-5
Electronic_ISBN :
978-0-7695-4322-2
DOI :
10.1109/EUC.2010.87
