Shielding Your Privacy with the Local-Booted Virtual Machine

Author

Yan Wen ; Youyuan Fang ; Jinjing Zhao ; Xiang Li

Author_Institution

Beijing Inst. of Syst. Eng., Beijing, China

fYear

2014

fDate

19-21 Dec. 2014

Firstpage

1637

Lastpage

1643

Abstract

Encrypted and Deniable File System (EDFS) is widely used to hide the existence of files and directories. However, existing EDFS solutions suffer the challenges which operating systems and many applications will leak the existence information. This paper proposes a novel virtual machine based approach, namely Shadow Execution Environment (SEE), to address this issue. SEE combines EDFS and our Local-Booted Technology, which means that a VM boots not from a newly installed OS image but just from the underlying host OS, to guarantee all the information about privacy data accesses is bounded within SEE itself. With this powerful characteristic, SEE provides an encrypted, deniable and complete execution environment instead of just file system. The functional evaluation illustrates that SEE can defeat three broad classes of information leakage vectors.

Keywords

cryptography; data privacy; operating systems (computers); virtual machines; EDFS; SEE; VM boots; complete execution environment; encrypted and deniable file system; functional evaluation; host OS; information leakage vectors; local-booted technology; local-booted virtual machine; newly installed OS image; operating systems; privacy shielding; shadow execution environment; virtual machine based approach; Cryptography; File systems; Hardware; Operating systems; Virtual machining; Writing; files system; operating system; privacy; virtual machine;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Science and Engineering (CSE), 2014 IEEE 17th International Conference on

Conference_Location

Chengdu

Print_ISBN

978-1-4799-7980-6

Type

conf

DOI

10.1109/CSE.2014.301

Filename

7023812