Preventing Execution of Unauthorized Native-Code Software
Resh, A., Kiperberg, M., Leon, R., & Zaidenberg, N. J. (2017). Preventing Execution of Unauthorized Native-Code Software. International Journal of Digital Content Technology and its Applications, 11(3), 72-90. http://www.globalcis.org/jdcta/ppl/JDCTA3804PPL.pdf
Julkaistu sarjassa
International Journal of Digital Content Technology and its ApplicationsPäivämäärä
2017Tekijänoikeudet
© the Authors & Convergence Information Society, 2017. This is an open access article published by GlobalCIS.
The business world is exhibiting a growing dependency on computer systems, their operations and
the databases they contain. Unfortunately, it also suffers from an ever growing recurrence of malicious
software attacks. Malicious attack vectors are diverse and the computer-security industry is producing
an abundance of behavioral-pattern detections to combat the phenomenon. This paper proposes an
alternative approach, based on the implementation of an attested, and thus trusted, thin-hypervisor.
Secondary level address translation tables, governed and fully controlled by the hypervisor, are
configured in order to assure that only pre-whitelisted instructions can be executed in the system. This
methodology provides resistance to most APT attack vectors, including those based on zero-day
vulnerabilities that may slip under behavioral-pattern radars.
Julkaisija
Convergence Information Society (GlobalCIS)ISSN Hae Julkaisufoorumista
1975-9339
Alkuperäislähde
http://www.globalcis.org/jdcta/ppl/JDCTA3804PPL.pdfJulkaisu tutkimustietojärjestelmässä
https://converis.jyu.fi/converis/portal/detail/Publication/26510832