Sciweavers

Free Online Productivity Tools i2Speak i2Symbol i2OCR iTex2Img iWeb2Print iWeb2Shot i2Type iPdf2Split iPdf2Merge i2Bopomofo i2Arabic i2Style i2Image i2PDF iLatex2Rtf Sci2ools

13

USS
2008

favoriteEmaildiscussreport

109views Operating System» more USS 2008»

Hypervisor Support for Identifying Covertly Executing Binaries

13 years 7 months ago

Hypervisor Support for Identifying Covertly Executing Binaries

Download www.usenix.org

Hypervisors have been proposed as a security tool to defend against malware that subverts the OS kernel. However, hypervisors must deal with the semantic gap between the low-level information available to them and -level OS abstractions they need for analysis. To bridge this gap, systems have proposed making assumptions derived from the kernel source code or symbol information. Unfortunately, this information is nonbinding

Lionel Litty, H. Andrés Lagar-Cavilla, Davi

Real-time Traffic

-level Os Abstractions | Kernel Source Code | Operating System | USS 2008 | Xen 3.0.3 Hypervisor |

claim paper

Related Content

» A Hybrid Model to Detect Malicious Executables

» Timingbased localization of inband wormhole tunnels in MANETs

» Eudaemon involuntary and ondemand emulation against zeroday exploits

» Expressive LocationBased Continuous Query Evaluation with Binary Decision Diagrams

» Modelcarrying code a practical approach for safe execution of untrusted applications

» A tracebased binary compilation framework for energyaware computing

» Polymorphic Worm Detection Using Structural Information of Executables

» Matching execution histories of program versions

» Dynamic Binary Translation for AccumulatorOriented Architectures

Post Info
More Details (n/a)

Added	02 Oct 2010
Updated	02 Oct 2010
Type	Conference
Year	2008
Where	USS
Authors	Lionel Litty, H. Andrés Lagar-Cavilla, David Lie

Comments (0)