Preventing Execution of Unauthorized Native-Code Software
Resh, A., Kiperberg, M., Leon, R., & Zaidenberg, N. J. (2017). Preventing Execution of Unauthorized Native-Code Software. International Journal of Digital Content Technology and its Applications, 11(3), 72-90. http://www.globalcis.org/jdcta/ppl/JDCTA3804PPL.pdf
Date
2017Copyright
© the Authors & Convergence Information Society, 2017. This is an open access article published by GlobalCIS.
The business world is exhibiting a growing dependency on computer systems, their operations and
the databases they contain. Unfortunately, it also suffers from an ever growing recurrence of malicious
software attacks. Malicious attack vectors are diverse and the computer-security industry is producing
an abundance of behavioral-pattern detections to combat the phenomenon. This paper proposes an
alternative approach, based on the implementation of an attested, and thus trusted, thin-hypervisor.
Secondary level address translation tables, governed and fully controlled by the hypervisor, are
configured in order to assure that only pre-whitelisted instructions can be executed in the system. This
methodology provides resistance to most APT attack vectors, including those based on zero-day
vulnerabilities that may slip under behavioral-pattern radars.
Publisher
Convergence Information Society (GlobalCIS)ISSN Search the Publication Forum
1975-9339
Original source
http://www.globalcis.org/jdcta/ppl/JDCTA3804PPL.pdfPublication in research information system
https://converis.jyu.fi/converis/portal/detail/Publication/26510832