Creating modern blue pills and red pills

Algawi, Asaf; Kiperberg, Michael; Leon, Roee; Resh, Amit; Zaidenberg, Nezer

Publisher's PDF

Katso/Avaa

216.0 Kb

Lataukset:

Show download details Hide download details

Algawi, A., Kiperberg, M., Leon, R., Resh, A., & Zaidenberg, N. (2019). Creating modern blue pills and red pills. In T. Cruz, & P. Simoes (Eds.), ECCWS 2019 : Proceedings of the 18th European Conference on Cyber Warfare and Security (pp. 6-14). Academic Conferences International. Proceedings of the European conference on information warfare and security.

Päivämäärä

2019

Oppiaine

Tietotekniikka Mathematical Information Technology

Tekijänoikeudet

The blue pill is a malicious stealthy hypervisor-based rootkit. The red pill is a software package that is designed to detect such blue pills. Since the blue pill was originally proposed there has been an ongoing arms race between developers that try to develop stealthy hypervisors and developers that try to detect such stealthy hypervisors. Furthermore, hardware advances have made several stealth attempts impossible while other advances enable even more stealthy operation. In this paper we describe the current status of detecting stealth hypervisors and methods to counter them.

Julkaisija

Academic Conferences International

Emojulkaisun ISBN

978-1-912764-28-0

Konferenssi

European Conference on Cyber Warfare and Security

Kuuluu julkaisuun

ECCWS 2019 : Proceedings of the 18th European Conference on Cyber Warfare and Security

ISSN Hae Julkaisufoorumista

2048-8602

Asiasanat

virtualization forensics information security kyberturvallisuus tietomurto verkkohyökkäykset virtualisointi tietoturva kyberrikollisuus tekninen rikostutkinta

URI

http://urn.fi/URN:NBN:fi:jyu-202001071039

Julkaisu tutkimustietojärjestelmässä

https://converis.jyu.fi/converis/portal/detail/Publication/32290737

Metadata

Näytä kaikki kuvailutiedot

Kokoelmat

Informaatioteknologian tiedekunta [2293]

Lisenssi