DACSA: A Decoupled Architecture for Cloud Security Analysis.
CSET'14: Proceedings of the 7th USENIX conference on Cyber Security Experimentation and Test(2014)
摘要
Monitoring virtual machine execution from the hypervisor provides new opportunities for evaluating cloud security. Unfortunately, traditional hypervisor based monitoring techniques tightly couple monitoring with internal VM operations and as a result 1) impose unacceptably high overhead to both guest and host environments and 2) do not scale. Towards addressing this problem, we present DACSA, a decoupled "Out-of-VM" cloud analysis architecture for cyber testing. DACSA leverages guest VMs that act as sensors to capture security centric information for analysis. Guest VMs and host environments incur minimal impact. We measure DACSA's impact to VMs at 0-6% and host impact at 0-3% which is only incurred during state acquisition. As a result, DACSA can enable production environments as a testbed for security analysis.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络