Abstract

This paper introduces our work around combining machine virtualization technology with Trusted Computing Group technology. We first describe our architecture for reducing and containing the privileged code of the Xen Hypervisor. Secondly we describe our Trusted Virtual Platform architecture. This is aimed at supporting the strong enforcement of integrity and security policy controls over a virtual entity where a virtual entity can be either a full guest operating system or virtual appliance running on a virtualized platform. The architecture includes a virtualization-specific integrity measurement and reporting framework. This is designed to reflect all the dependencies of the virtual environment of a guest operating system. The work is a core enabling component of our research around converged devices -- client platforms such as notebooks or desktop PCs that can safely host multiple virtual operating systems and virtual appliances concurrently and report accurately on the trustworthiness of the individually executing entities.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
VMON-Virtual Environment application monitoring
Chethan C Thimmarayappa ... Anandhi Jayadharmarajan
-
Chethan C Thimmarayappa, et. al.Chethan C Thimmarayappa ... Anandhi Jayadharmarajan
01 Aug 2013
Cache-Leakage Resilient OS Isolation in an Idealized Model of Virtualization
Gilles Barthe ... Gustavo Betarte
-
Gilles Barthe, et. al.Gilles Barthe ... Gustavo Betarte
01 Jun 2012
Formal Analysis of Security Models for Mobile Devices, Virtualization Platforms, and Domain Name Systems
Carlos Luna ... Gustavo Betarte
CLEI Electronic Journal | VOL. 18
Carlos Luna, et. al.Carlos Luna ... Gustavo Betarte
01 Dec 2015
Optimizing guest swapping using elastic and transparent memory provisioning on virtualization platform
Xi Li ... Rui Chu
Frontiers of Computer Science | VOL. 10
Xi Li, et. al.Xi Li ... Rui Chu
14 May 2016
View more papers

More From: ACM SIGOPS Operating Systems Review

Paper Title
Journal
Date
Author
LLexus: an AI agent system for incident management
Pedro Las-Casas ... Rodrigo Fonseca
ACM SIGOPS Operating Systems Review | VOL. 58
Pedro Las-Casas, et. al.Pedro Las-Casas ... Rodrigo Fonseca
14 Aug 2024
ZWAL: RethinkingWrite-ahead Logs for ZNS SSDs with Zone Appends
Krijn Doekemeijer ... Zebin Ren
ACM SIGOPS Operating Systems Review | VOL. 58
Krijn Doekemeijer, et. al.Krijn Doekemeijer ... Zebin Ren
14 Aug 2024
The Key Ideas Behind Boki's Shared Logs
Zhipeng Jia ... Emmett Witchel
ACM SIGOPS Operating Systems Review | VOL. 58
Zhipeng Jia, et. al.Zhipeng Jia ... Emmett Witchel
14 Aug 2024
Towards Truly Adaptive Byzantine Fault-Tolerant Consensus
Chenyuan Wu ... Dahlia Malkhi
ACM SIGOPS Operating Systems Review | VOL. 58
Chenyuan Wu, et. al.Chenyuan Wu ... Dahlia Malkhi
14 Aug 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.