By Topic

VMSecurexec: Transparent on-access virus detection for virtual machine in the cloud

Sign In

Full text access may be available.

To access full text, please use your member or institutional sign in.

Formats Non-Member Member
$33 $33
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Lina Wang ; School of Computer Science, Wuhan University, China ; Yang Peng ; Wei Liu ; Hanjun Gao

Virus detection technology is an important approach to protect host and network security. However, once the operating system (OS) is infected, anti-virus (AV) software and any other software running in it will be equally vulnerable. To address this problem, VMSecurexec, which we proposed, is designed to move on-access virus detection engine out of the target OS to another virtual machine (VM). The system firstly monitors every system call event of loading codes from an executable or shared library into memory. Then it intercepts these system call events and retrieves their parameters and return values via Second Trap mechanism. Finally, utilizing the virtual machine introspection (VMI) technique, it examines whether the binary content is malicious or not transparently. The experiments show the efficiency of out-of-VM virus detection and the moderate overhead it introduces.

Published in:

ICT and Energy Efficiency and Workshop on Information Theory and Security (CIICT 2012), Symposium on

Date of Conference:

4-5 July 2012