@inproceedings{06c599765eca470fa49fb26a3700e152,
title = "Using OS design patterns to provide reliability and security as-a-service for VM-based clouds",
abstract = "This paper extends the concepts behind cloud services to offer hypervisor-based reliability and security monitors for cloud virtual machines. Cloud VMs can be heterogeneous and as such guest OS parameters needed for monitoring can vary across different VMs and must be obtained in some way. Past work involves running code inside the VM, which is unacceptable for a cloud environment.We solve this problem by recognizing that there are common OS design patterns that can be used to infer monitoring parameters from the guest OS. We extract information about the cloud user's guest OS with the user's existing VM image and knowledge of OS design patterns as the only inputs to analysis. To demonstrate the range of monitoring functionality possible with this technique, we implemented four sample monitors: a guest OS process tracer, an OS hang detector, a return-touser attack detector, and a process-based keylogger detector.",
keywords = "Dynamic analysis, OS design patterns, Reliability, Security, Virtualization, Vm monitoring",
author = "Estrada, {Zachary J.} and Read Sprabery and Lok Yan and Zhongzhi Yu and Roy Campbell and Zbigniew Kalbarczyk and Iyer, {Ravishankar K.}",
year = "2017",
month = apr,
day = "8",
doi = "10.1145/3050748.3050759",
language = "English (US)",
series = "VEE 2017 - Proceedings of the 2017 ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments",
publisher = "Association for Computing Machinery",
pages = "157--170",
booktitle = "VEE 2017 - Proceedings of the 2017 ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments",
address = "United States",
note = "2017 ACM SIGPLAN/SIGOPS International Conference on Virtual Execution Environments, VEE 2017 ; Conference date: 08-04-2017 Through 09-04-2017",
}