Title :
Intrusion detection in virtual machine environments
Author :
Laureano, Marcos ; Maziero, Carlos ; Jamhour, Edgard
Author_Institution :
Graduate Program in Appl. Comput. Sci., Pontifical Catholic Univ. of Parana, Curitiba, Brazil
fDate :
31 Aug.-3 Sept. 2004
Abstract :
A virtual machine is a software replica of an underlying real machine. Multiple virtual machines can operate on the same host machine concurrently, without interfere each other. Such concept is becoming valuable in production computing systems, due to its benefits in terms of costs and portability. As they provide a strong isolation between the virtual environment and the underlying real system, virtual machines can also be used to improve the security of a computer system in face of attacks to its network services. This work presents a new approach to achieve this goal, by applying intrusion detection techniques to virtual machine based systems, thus keeping the intrusion detection system out of reach from intruders. The results obtained from a prototype implementation confirm the usefulness of this approach.
Keywords :
concurrency control; operating systems (computers); security of data; virtual machines; computer system security; intrusion detection; network services; operating systems; virtual machine environment; Costs; Data security; Hardware; Information security; Intrusion detection; Linux; Operating systems; Virtual machine monitors; Virtual machining; Virtual manufacturing;
Conference_Titel :
Euromicro Conference, 2004. Proceedings. 30th
Print_ISBN :
0-7695-2199-1
DOI :
10.1109/EURMIC.2004.1333416
