Protecting Applications from Highly Privileged Malware Using Bare-metal Hypervisor.

Protecting Applications from Highly Privileged Malware Using Bare-metal Hypervisor.

Authors

K. Mallachiev, N. Pakulin.

Abstract

The paper presents a work-in-progress project on construction of a security facility that protects trusted application from malware residing at any privilege level of an OS, including OS kernel. The approach is based on the Sevigator project that
used KVM to protect applications running in QEMU. The presented project is a port of Sevigator to much smaller trusted computing base of a bare-metal hypervisor.

Full text of the paper in pdf

Keywords

security, virtualization, confidentiality, hypervisor, protection, virtual machine monitor, Sevigator.

Edition

Proceedings of the 8th Spring/Summer Young Researchers' Colloquium on Software Engineering (SYRCoSE 2014), editors A. Kamkin, A. Petrenko, A. Terekhov, Saint Petersburg, Russia, May 29-31. ISP RAS, Moscow, 2014.

DOI: 10.15514/SYRCOSE-2014-8-10

ISBN 978-5-91474-020-4

Research Group

Software Engineering

All publications during 2014 All publications