首页> 外文会议>DBSec 2013 >Hypervisor Event Logs as a Source of Consistent Virtual Machine Evidence for Forensic Cloud Investigations

【24h】

Hypervisor Event Logs as a Source of Consistent Virtual Machine Evidence for Forensic Cloud Investigations

机译：管理程序事件日志作为法医云调查的一致虚拟机证据的来源

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Cloud Computing is an emerging model of computing where users can leverage the computing infrastructure as a service stack or commodity. The security and privacy concerns of this infrastructure arising from the large colocation of tenants are, however, significant and pose considerable challenges in its widespread deployment. The current work addresses one aspect of the security problem by facilitating forensic investigations to determine if these virtual tenant spaces were maliciously violated by other tenants. It presents the design, application and limitations of a software prototype called the Virtual Machine (VM) Log Auditor that helps in detecting inconsistencies within the activity timelines for a VM history. A discussion on modeling a consistent approach is also provided.

机译：云计算是一个新出现的计算模型，其中用户可以利用计算基础架构作为服务堆栈或商品。然而，从租户的大型拼接引起的这一基础设施的安全和隐私问题是在广泛的部署中显着和构成了相当大的挑战。目前的工作通过促进法医调查来解决安全问题的一个方面，以确定这些虚拟租户空间是否因其他租户而侵犯。它介绍了称为虚拟机（VM）日志审核员的软件原型的设计，应用和限制，有助于检测VM历史记录的活动时间表内的不一致性。还提供了关于建模一致方法的讨论。

著录项

来源
《DBSec 2013》|2013年||共16页
会议地点
作者
Sean Thorpe; Indrajit Ray; Tyrone Grandison; Abbie Barbir; Robert France;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 005.8;
关键词
Hypervisor Event; Consistent Virtual; emerging model of computing;

机译：虚拟机管理程序事件;一致的虚拟;新兴的计算模型;

相似文献

外文文献
中文文献
专利

1. An Experimental Survey Towards Engaging Trustable Hypervisor Log Evidence Within a Cloud Forensic Environment [J] . Sean Thorpe International Journal of Computer Science & Information Technology (IJCSIT) . 2012,第6期

机译：在云取证环境中进行可信赖的管理程序日志证据的实验调查
2. The Rising Impact of Virtual Machine Hypervisor Technology on Digital Forensics Investigations [J] . Patty Bates Information Systems Control Journal . 2009,第期

机译：虚拟机管理程序技术对数字取证调查的影响日益上升
3. Leveraging virtual machine introspection with memory forensics to detect and characterize unknown malware using machine learning techniques at hypervisor [J] . Kumara M. A. Ajay, Jaidhar C. D. Digital investigation . 2017,第deca期

机译：利用虚拟机自检和内存取证，使用虚拟机监控程序上的机器学习技术检测和表征未知恶意软件
4. Hypervisor Event Logs as a Source of Consistent Virtual Machine Evidence for Forensic Cloud Investigations [C] . Sean Thorpe, Indrajit Ray, Tyrone Grandison, Annual IFIP WG 11.3 conference on data and applications security and privacy . 2013

机译：虚拟机监控程序事件日志可作为法医云调查的一致虚拟机证据的来源
5. Memory Event Subscription in Multi-Hypervisor Virtual Machines [D] . Kugve Raghavendra, Rohith. 2017

机译：多维管理程序虚拟机中的内存事件订阅
6. Resources and Costs for Microbial Sequence Analysis Evaluated Using Virtual Machines and Cloud Computing [O] . Samuel V. Angiuoli, James R. White, Malcolm Matalka, 2008

机译：使用虚拟机和云计算评估微生物序列分析的资源和成本
7. Hypervisor Event Logs as a Source of Consistent Virtual Machine Evidence for Forensic Cloud Investigations [O] . Thorpe, Sean, Ray, Indrajit, Grandison, Tyrone, 2013

机译：虚拟机监控程序事件日志作为法医云调查的一致虚拟机证据的来源

Hypervisor Event Logs as a Source of Consistent Virtual Machine Evidence for Forensic Cloud Investigations

摘要

著录项

相似文献

相关主题

期刊订阅