Title :
Abstract models for system virtualization
Author :
Tatiana Markina;Mikhail Koveshnikov;Dmitry Bazylev
Author_Institution :
ITMO University, 197101, Kronverkskiy pr., 49, Saint Petersburg, Russian Federation
Abstract :
The paper is dedicated to issues of system objects securing (system files and user system or application configuration files) against unauthorized access including denial of service attacks. The method and developed abstract system virtualization models, which are used to research attack scenarios for different virtualization modes, are presented. Effectiveness for system tools virtualization technology is evaluated. Proposed technology is based on redirection of access requests to system objects shared among access subjects. Whole and partial system virtualization modes are modeled. The difference between them is the following: in the whole virtualization mode all copies of the access system objects are created whereon subjects´ requests are redirected including corresponding application objects; in the partial virtualization mode corresponding copies are created only for a part of the system, for example, only system objects for applications. Alternative solutions effectiveness is valued relating to different attack scenarios. Practical significance of the suggested security method is demonstrated.
Keywords :
"Virtualization","Operating systems","Computer crime","Information security","Virtual machining","Access control"
Conference_Titel :
Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT), 2015 7th International Congress on
Electronic_ISBN :
2157-0221
DOI :
10.1109/ICUMT.2015.7382429
