Title :
Secure and Flexible Monitoring of Virtual Machines
Author :
Payne, Bryan D. ; de Carbone, M.D.P. ; Lee, Wenke
Author_Institution :
Georgia Inst. of Technol., Atlanta
Abstract :
The monitoring of virtual machines has many applications in areas such as security and systems management. A monitoring technique known as introspection has received significant discussion in the research literature, but these prior works have focused on the applications of introspection rather than how to properly build a monitoring architecture. In this paper we propose a set of requirements that should guide the development of virtual machine monitoring solutions. To illustrate the viability of these requirements, we describe the design of XenAccess, a monitoring library for operating systems running on Xen. XenAccess incorporates virtual memory introspection and virtual disk monitoring capabilities, allowing monitor applications to safely and efficiently access the memory state and disk activity of a target operating system. XenAccess´ efficiency and functionality are illustrated through a series of performance tests and practical examples.
Keywords :
operating systems (computers); security of data; virtual machines; flexible monitoring; operating systems; secure monitoring; virtual machines; virtual memory introspection; Application software; Computerized monitoring; Condition monitoring; Libraries; Protection; Security; Virtual machine monitors; Virtual machining; Virtual manufacturing; Voice mail;
Conference_Titel :
Computer Security Applications Conference, 2007. ACSAC 2007. Twenty-Third Annual
Conference_Location :
Miami Beach, FL
Print_ISBN :
978-0-7695-3060-4
DOI :
10.1109/ACSAC.2007.10
