Architectural support for hypervisor-secure virtualization

International Conference on Architectural Support for Programming Languages and Operating Systems - ASPLOS

Volumn , Issue , 2012, Pages 437-449

  Szefer, Jakub ^a   Lee, Ruby B ^a  

^a PRINCETON UNIVERSITY   (United States)

Author keywords

attestation; cloud computing; computer architecture; confidentiality; hardware security; hypervisor; integrity; security; trust evidence; virtualization

Indexed keywords

ATTESTATION; CONFIDENTIALITY; HARDWARE SECURITY; HYPERVISOR; INTEGRITY; SECURITY; TRUST EVIDENCE; VIRTUALIZATIONS;

COMPUTER ARCHITECTURE; COMPUTER SYSTEMS; NETWORK SECURITY; PROGRAM COMPILERS;

VIRTUAL REALITY;

EID: 84858773328     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2150976.2151022     Document Type: Conference Paper

References (47)

1. Amazon Elastic Compute Cloud (Amazon EC2). http://aws.amazon.com/ec2/.
2. AMD Virtualization (AMD-V) Technology. http://sites.amd.com/us/business/ it-solutions/virtualization/Pages/amd-v.aspx.
3. Vulnerability Summary for CVE-2007-4993. http://web.nvd.nist.gov/view/ vuln/detail?vulnId=CVE-2007-4993.
4. Introduction to the New Mainframe: z/VM Basics, section 1.9.2 and 2.4.1. IBM Redbooks, http://www.redbooks.ibm.com/abstracts/sg247316.html.
5. Intel Virtualization Technology, . http://www.intel.com/technology/itj/ 2006/v10i3/1-hardware/6-vt-x-vt-i-solutions.htm.
6. Intel 82802AB/82802AC Firmware Hub (FWH) datasheet, November 2000, . http://download.intel.com/design/chipsets/datashts/29065804.pdf.
7. National Vulnerability Database, CVE and CCE Statistics Query Page. http://web.nvd.nist.gov/view/vuln/statistics.
8. PolarSSL, Small Cryptographic Library. http://www.polarssl.org.
9. PCI SIG: PCI-SIG Single Root I/O Virtualization. http://www.pcisig.com/ specifications/iov/single-root/.
10. Oracle VM Server For SPARC. http://www.oracle.com/us/oraclevm-sparc-ds- 073441.pdf.
11. Trusted Computing Group. TCG TPM Specification. http://www. trustedcomputinggroup.org/.
12. VMWare. http://www.vmware.com/.
13. Intel Corporation: Intel Virtualization Technology for Directed I/O. http://download.intel.com/technology/itj/2006/v10i3/v10-i3-art02.pdf.
14. Xen. http://www.xen.org.
15. A. M. Azab, P. Ning, Z. Wang, X. Jiang, X. Zhang, and N. C. Skalsky. Hypersentry: enabling stealthy in-context measurement of hypervisor integrity. In Proc. of the 17th ACM Conference on Computer and Communications Security, CCS, pages 38-49, October 2010. doi: http://doi.acm.org/10.1145/1866307.1866313. URL http://doi.acm.org/10.1145/1866307.1866313.
16. M. Ben-Yehuda, M. D. Day, Z. Dubitzky, M. Factor, N. Har'El, A. Gordon, A. Liguori, O. Wasserman, and B.-A. Yassour. The turtles project: design and implementation of nested virtualization. In Proc. of the 9th USENIX Conference on Operating Systems Design and Implementation, OSDI, pages 1-6, October 2010. URL http://portal.acm.org/citation.cfm?id=1924943.1924973.
17. E. Brickell, J. Camenisch, and L. Chen. Direct anonymous attestation. In Proc. of the 11th ACM Conference on Computer and Communications Security, CCS, pages 132-145, October 2004. ISBN 1-58113-961-6. doi: http://doi.acm.org/10. 1145/1030083.1030103. URL http://doi.acm.org/10.1145/1030083.1030103.
18. D. Champagne and R. Lee. Scalable architectural support for trusted software. In 16th International Symposium on High Performance Computer Architecture (HPCA), pages 1-12, January 2010. doi: 10.1109/HPCA.2010.5416657.
19. P. M. Chen and B. D. Noble. When virtual is better than real. Workshop on Hot Topics in Operating Systems, May 2001. doi: http://doi.ieeecomputersociety. org/10.1109/HOTOS.2001.990073.
20. X. Chen, T. Garfinkel, E. C. Lewis, P. Subrahmanyam, C. A. Waldspurger, D. Boneh, J. Dwoskin, and D. R. Ports. Overshadow: a virtualization-based approach to retrofitting protection in commodity operating systems. In Proc. of the 13th International Conference on Architectural Support for Programming Languages and Operating Systems, ASPLOS, pages 2-13, March 2008. ISBN 978-1-59593-958-6. doi: http://doi.acm.org/10.1145/1346281.1346284. URL http://doi.acm.org/10.1145/1346281.1346284.
21. C. Gentry. Fully homomorphic encryption using ideal lattices. In Proc. of the annual Symposium on Theory of Computing, STOC, pages 169-178, May 2009. ISBN 978-1-60558-506-2. doi: http: //doi.acm.org/10.1145/1536414.1536440. URL http://doi.acm.org/10.1145/1536414.1536440.
22. J. G. Hansen and E. Jul. Self-migration of operating systems. In Proc. of the 11th ACM SIGOPS European Workshop, September 2004.
23. E. Keller, J. Szefer, J. Rexford, and R. B. Lee. NoHype: virtualized cloud infrastructure without the virtualization. In Proc. of the 37th annual International Symposium on Computer Architecture, ISCA, pages 350-361, June 2010. ISBN 978-1-4503-0053-7.
24. M. Kim, J. Ryou, and S. Jun. Efficient Hardware Architecture of SHA-256 Algorithm for Trusted Mobile Computing. In Information Security and Cryptology, volume 5487 of Lecture Notes in Computer Science, pages 240-252. 2009.
25. G. Klein, K. Elphinstone, G. Heiser, J. Andronick, D. Cock, P. Derrin, D. Elkaduwe, K. Engelhardt, R. Kolanski, M. Norrish, T. Sewell, H. Tuch, and S. Winwood. seL4: formal verification of an OS kernel. In Proc. of the ACM SIGOPS 22nd Symposium on Operating Systems Principles, SOSP, pages 207-220, October 2009. ISBN 978-1-60558-752-3. doi: http://doi.acm.org/10.1145/1629575.1629596.
26. F. Krautheim, D. Phatak, and A. Sherman. Introducing the Trusted Virtual Environment Module: A New Mechanism for Rooting Trust in Cloud Computing. In Trust and Trustworthy Computing, volume 6101 of Lecture Notes in Computer Science, pages 211-227. 2010.
27. G. Kroah-Hartman, J. Corbet, and A. McPherson. Linux kernel development. A White Paper By The Linux Foundation, December 2010. www.linuxfoundation.org/ publications/whowriteslinux.pdf.
28. R. B. Lee and Y.-Y. Chen. Processor accelerator for AES. In Proc. of the 8th IEEE Symposium on Application Specific Processors, SASP, pages 16-21, June 2010. doi: 10.1109/SASP.2010.5521153.
29. R. B. Lee, P. C. S. Kwan, J. P. McGregor, J. Dwoskin, and Z. Wang. Architecture for Protecting Critical Secrets in Microprocessors. In Proc. of the 32nd annual International Symposium on Computer Architecture, ISCA, pages 2-13, June 2005.
30. Y. Lee, H. Chan, and I. Verbauwhede. Iteration Bound Analysis and Throughput Optimum Architecture of SHA-256 (384,512) for Hardware Implementations. In S. Kim, M. Yung, and H.-W. Lee, editors, Information Security Applications, volume 4867 of Lecture Notes in Computer Science, pages 102-114. 2007. (Pubitemid 351153978)
31. C. Li, A. Raghunathan, and N. K. Jha. Secure Virtual Machine Execution under an Untrusted Management OS. Proc. of the IEEE International Conference on Cloud Computing, pages 172-179, July 2010. doi: http://doi.ieeecomputersociety. org/10.1109/CLOUD.2010.29.
32. D. Lie, C. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. Mitchell, and M. Horowitz. Architectural support for copy and tamper resistant software. In Proc. of the 9th International Conference on Architectural Support for Programming Languages and Operating Systems, ASPLOS, November 2000.
33. F. Lombardi and R. Di Pietro. KvmSec: a security extension for Linux kernel virtual machines. In Proc. of the 2009 ACM Symposium on Applied Computing, SAC, pages 2029-2034, March 2009. ISBN 978-1-60558-166-8. doi: http://doi.acm.org/10.1145/1529282.1529733.
34. V. Maraia. The Build Master: Microsoft's Software Configuration Management Best Practices. Addison-Wesley Professional, 2005.
35. J. M. McCune, B. J. Parno, A. Perrig, M. K. Reiter, and H. Isozaki. Flicker: an execution infrastructure for TCB minimization. In Proc. of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems, EuroSys, pages 315-328, March 2008. ISBN 978-1-60558-013-5. doi: http://doi.acm.org/10.1145/ 1352592.1352625. URL http://doi.acm.org/10.1145/1352592.1352625.
36. A. Miyamoto, N. Homma, T. Aoki, and A. Satoh. Systematic Design of RSA Processors Based on High-Radix Montgomery Multipliers. IEEE Transactions on Very Large Scale Integration (VLSI) Systems, (99):1-11, 2010. ISSN 1063-8210. doi: 10.1109/TVLSI.2010.2049037.
37. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage. Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In Proc. of the conference on Computer and Communications Security, CCS, pages 199-212, Nov. 2009. ISBN 978-1-60558-894-0.
38. J. Rutkowska. Subverting Vista Kernel for Fun and Profit. Symposium on Security for Asia Network (SyScan), July 2006.
39. G. E. Suh, D. Clarke, B. Gassend, M. van Dijk, and S. Devadas. AEGIS: architecture for tamper-evident and tamper-resistant processing. In Proc. of the 17th annual International Conference on Supercomputing, ICS, pages 160-171, June 2003. ISBN 1-58113-733-8. doi: http://doi.acm.org/10.1145/782814.782838. URL http://doi.acm.org/10.1145/782814.782838.
40. J. Szefer and R. B. Lee. A Case for Hardware Protection of Guest VMs from Compromised Hypervisors in Cloud Computing. In Proc. of the Second International Workshop on Security and Privacy in Cloud Computing, SPCC, June 2011.
41. A. Tereshkin and R. Wojtczuk. Introducing ring -3 rootkits. Black Hat USA, July 2009.
42. A. Vasudevan, J. M. McCune, N. Qu, L. Van Doorn, and A. Perrig. Requirements for an integrity-protected hypervisor on the x86 hardware virtualized architecture. In Proc. of the 3rd international conference on Trust and Trustworthy Computing, TRUST, pages 141-165, June 2010. ISBN 3-642-13868-3, 978-3-642-13868-3. URL http://portal.acm.org/citation.cfm?id=1875652.1875663.
43. C. A. Waldspurger. Memory resource management in VMware ESX server. SIGOPS Oper. Syst. Rev., 36:181-194, December 2002. ISSN 0163-5980. doi: http://doi.acm.org/10.1145/844128.844146. URL http://doi.acm.org/10.1145/844128. 844146.
44. Z. Wang and X. Jiang. HyperSafe: A Lightweight Approach to Provide Lifetime Hypervisor Control-Flow Integrity. In Proc. of the 2010 IEEE Symposium on Security and Privacy, S&P, pages 380 -395, May 2010. doi: 10.1109/SP.2010.30.
45. Z. Wang and R. B. Lee. A novel cache architecture with enhanced performance and security. In Proc. of the annual IEEE/ACM International Symposium on Microarchitecture, MICRO, pages 83-93, Nov. 2008. ISBN 978-1-4244-2836-6.
46. Z. Wang, X. Jiang, W. Cui, and P. Ning. Countering kernel rootkits with lightweight hook protection. In Proc. of the conference on Computer and Communications Security, CCS, pages 545-554, Nov. 2009. ISBN 978-1-60558-894-0. doi: http://doi.acm.org/10.1145/1653662.1653728.
47. R. Wojtczuk and J. Rutkowska. Attacking intel trusted execution technology. Black Hat DC, Feb. 2009.