文章基本信息

标题：An Access Control Model for Preventing Virtual Machine Escape Attack
本地全文：下载
作者：Jiang Wu ; Zhou Lei
期刊名称：Future Internet
电子版ISSN：1999-5903
出版年度：2017
卷号：9
期号：2
页码：20
DOI：10.3390/fi9020020
语种：English
出版社：MDPI Publishing
摘要：With the rapid development of Internet, the traditional computing environment is making a big migration to the cloud-computing environment. However, cloud computing introduces a set of new security problems. Aiming at the virtual machine (VM) escape attack, we study the traditional attack model and attack scenarios in the cloud-computing environment. In addition, we propose an access control model that can prevent virtual machine escape (PVME) by adapting the BLP (Bell-La Padula) model (an access control model developed by D. Bell and J. LaPadula). Finally, the PVME model has been implemented on full virtualization architecture. The experimental results show that the PVME module can effectively prevent virtual machine escape while only incurring 4% to 8% time overhead.
关键词：virtual security; virtual machine escape; access control; BLP model; PVME model virtual security ; virtual machine escape ; access control ; BLP model ; PVME model