H-KPP : Hypervisor-Assisted Kernel Patch Protection
| dc.contributor.author | Kiperberg, Michael | |
| dc.contributor.author | Zaidenberg, Nezer Jacob | |
| dc.date.accessioned | 2022-05-23T08:39:11Z | |
| dc.date.available | 2022-05-23T08:39:11Z | |
| dc.date.issued | 2022 | |
| dc.identifier.citation | Kiperberg, M., & Zaidenberg, N. J. (2022). H-KPP : Hypervisor-Assisted Kernel Patch Protection. <i>Applied Sciences</i>, <i>12</i>(10), Article 5076. <a href="https://doi.org/10.3390/app12105076" target="_blank">https://doi.org/10.3390/app12105076</a> | |
| dc.identifier.other | CONVID_144362225 | |
| dc.identifier.uri | https://jyx.jyu.fi/handle/123456789/81228 | |
| dc.description.abstract | We present H-KPP, hypervisor-based protection for kernel code and data structures. H-KPP prevents the execution of unauthorized code in kernel mode. In addition, H-KPP protects certain object fields from malicious modifications. H-KPP can protect modern kernels equipped with BPF facilities and loadable kernel modules. H-KPP does not require modifying or recompiling the kernel. Unlike many other systems, H-KPP is based on a thin hypervisor and includes a novel SLAT switching mechanism, which allows H-KPP to achieve very low (≈6%) performance overhead compared to baseline Linux. | en |
| dc.format.mimetype | application/pdf | |
| dc.language.iso | eng | |
| dc.publisher | MDPI AG | |
| dc.relation.ispartofseries | Applied Sciences | |
| dc.rights | CC BY 4.0 | |
| dc.subject.other | virtualization | |
| dc.subject.other | Kernel Integrity | |
| dc.subject.other | DKOM | |
| dc.title | H-KPP : Hypervisor-Assisted Kernel Patch Protection | |
| dc.type | research article | |
| dc.identifier.urn | URN:NBN:fi:jyu-202205232858 | |
| dc.contributor.laitos | Informaatioteknologian tiedekunta | fi |
| dc.contributor.laitos | Faculty of Information Technology | en |
| dc.type.uri | http://purl.org/eprint/type/JournalArticle | |
| dc.type.coar | http://purl.org/coar/resource_type/c_2df8fbb1 | |
| dc.description.reviewstatus | peerReviewed | |
| dc.relation.issn | 2076-3417 | |
| dc.relation.numberinseries | 10 | |
| dc.relation.volume | 12 | |
| dc.type.version | publishedVersion | |
| dc.rights.copyright | © 2022 by the authors. Licensee MDPI, Basel, Switzerland. | |
| dc.rights.accesslevel | openAccess | fi |
| dc.type.publication | article | |
| dc.subject.yso | virtualisointi | |
| dc.subject.yso | tietoturva | |
| dc.format.content | fulltext | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p22009 | |
| jyx.subject.uri | http://www.yso.fi/onto/yso/p5479 | |
| dc.rights.url | https://creativecommons.org/licenses/by/4.0/ | |
| dc.relation.doi | 10.3390/app12105076 | |
| jyx.fundinginformation | This research received no external funding. | |
| dc.type.okm | A1 |
Aineistoon kuuluvat tiedostot
Aineisto kuuluu seuraaviin kokoelmiin
Ellei muuten mainita, aineiston lisenssi on CC BY 4.0