Annual Computer Security Applications Conference (ACSAC) 2012

Full Program »

Separation Virtual Machine Monitors

Paper
View File
pdf
248KB

John McDermott
Naval Research Laboratory
United States

Bruce Montrose
Naval Research Laboratory
United States

Myong Kang
Naval Research Laboratory
United States

Margery Li
Naval Research Laboratory
United States

James Kirby
Naval Research Laboratory
United States

Abstract:
Separation kernels are the strongest form of separation for virtual machines.
We agree with NSA'S Information Assurance Directorate that while separation kernels are stronger than any other alternative, their construction on modern commodity hardware is no longer justifiable.
This is because of \creep\ in modern platform hardware.
We introduce the separation VMM as a response to this situation and explain how we prototyped one.

 

Powered by OpenConf®
Copyright ©2002-2012 Zakon Group LLC