VMBLS: Virtual Machine Based Logging Scheme for Prevention of Tampering and Loss

Abstract : Logging information is necessary in order to understand a computer’s behavior. However, there is a possibility that attackers will delete logs to hide the evidence of their attacking and cheating. Moreover, various problems might cause the loss of logging information. In homeland security, the plans for counter terrorism are based on data. The reliability of the data is depends on that of data collector. Because the reliability of the data collector is ensured by logs, the protection of it is important problem. To address these issues, we propose a system to prevent tampering and loss of logging information using a virtual machine monitor (VMM). In this system, logging information generated by the operating system (OS) and application program (AP) working on the target virtual machine (VM) is gathered by the VMM without any modification of the OS. The security of the logging information is ensured by its isolation from the VM. In addition, the isolation and multiple copying of logs can help in the detection of tampering.
Type de document :
Communication dans un congrès
A Min Tjoa; Gerald Quirchmayr; Ilsun You; Lida Xu. 1st Availability, Reliability and Security (CD-ARES), Aug 2011, Vienna, Austria. Springer, Lecture Notes in Computer Science, LNCS-6908, pp.176-190, 2011, Availability, Reliability and Security for Business, Enterprise and Health Information Systems. 〈10.1007/978-3-642-23300-5_14〉
Liste complète des métadonnées

Littérature citée [12 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01590411
Contributeur : Hal Ifip <>
Soumis le : mardi 19 septembre 2017 - 15:12:10
Dernière modification le : mercredi 20 septembre 2017 - 01:11:04

Fichier

978-3-642-23300-5_14_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Masaya Sato, Toshihiro Yamauchi. VMBLS: Virtual Machine Based Logging Scheme for Prevention of Tampering and Loss. A Min Tjoa; Gerald Quirchmayr; Ilsun You; Lida Xu. 1st Availability, Reliability and Security (CD-ARES), Aug 2011, Vienna, Austria. Springer, Lecture Notes in Computer Science, LNCS-6908, pp.176-190, 2011, Availability, Reliability and Security for Business, Enterprise and Health Information Systems. 〈10.1007/978-3-642-23300-5_14〉. 〈hal-01590411〉

Partager

Métriques

Consultations de la notice

41

Téléchargements de fichiers

6