hybrid bridge
play

Hybrid-Bridge: Efficiently Bridging the Semantic-Gap in VMI via - PowerPoint PPT Presentation

Dec 28, 2023 •117 likes •593 views

Motivation Techniques Experiment Result Summary Hybrid-Bridge: Efficiently Bridging the Semantic-Gap in VMI via Decoupled Execution and Training Memoization Alireza Saberi , Yangchun Fu, Zhiqiang Lin Department of Computer Science The

  1. Motivation Techniques Experiment Result Summary Hybrid-Bridge: Efficiently Bridging the Semantic-Gap in VMI via Decoupled Execution and Training Memoization Alireza Saberi , Yangchun Fu, Zhiqiang Lin Department of Computer Science The University of Texas at Dallas February 24 th , 2014

  2. Motivation Techniques Experiment Result Summary Virtual Machine Introspection (VMI) [Garfinkel et al, NDSS’03] A Trusted OS Linux Win ‐ 7 .. Secure ‐ VM Product ‐ VM Product ‐ VM Introspect Virtualization Layer Hardware Layer

  3. Motivation Techniques Experiment Result Summary Virtual Machine Introspection (VMI) [Garfinkel et al, NDSS’03] A Trusted OS Linux Win ‐ 7 Using a trusted, dedicated virtualization .. layer program to monitor the running VMs Secure ‐ VM Product ‐ VM Product ‐ VM Introspect Virtualization Layer Hardware Layer

  4. Motivation Techniques Experiment Result Summary Virtual Machine Introspection (VMI) [Garfinkel et al, NDSS’03] A Trusted OS Linux Win ‐ 7 Using a trusted, dedicated virtualization .. layer program to monitor the running VMs Secure ‐ VM Product ‐ VM Product ‐ VM Introspect Intrusion Detection Malware Analysis Virtualization Layer Memory Forensics Hardware Layer

  5. Motivation Techniques Experiment Result Summary Virtual Machine Introspection (VMI) [Garfinkel et al, NDSS’03] A Trusted OS Linux Win ‐ 7 Using a trusted, dedicated virtualization .. layer program to monitor the running VMs Secure ‐ VM Product ‐ VM Product ‐ VM Introspect Intrusion Detection Malware Analysis Virtualization Layer Memory Forensics Hardware Layer Semantic Gap Problem

  6. Motivation Techniques Experiment Result Summary The Semantic Gap in VMI ( [Chen and Noble HotOS’01]) Linux Introspection Product ‐ VM Semantic Gap View exposed by Virtual Machine Monitor is at low-level There is no abstraction and no APIs Need to reconstruct the guest-OS abstraction

  7. Motivation Techniques Experiment Result Summary Example: Inspect pid s of Guest Memory from VMM … 00001800 eb 40 1b 02 63 74 00 f0 00 00 00 00 00 00 00 00 |.@..ct..........| 00001810 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 |................| 00001820 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| 00001830 00 00 00 00 00 00 00 00 10 76 16 cc 00 00 00 00 |.........v......| 00001840 00 19 66 8c d0 50 b8 08 00 00 00 66 8e d0 53 8b |..f..P.....f..S.| 00001850 d9 ff 2d 19 02 00 00 0f 20 c0 0f ba f0 1f 0f 22 |..-..... ......"| 00001860 c0 eb 00 b9 80 00 00 c0 0f 32 0f ba f0 08 0f 30 |.........2.....0| 00001870 0f 20 e0 0f ba f0 05 0f 22 e0 60 9c 8b d3 c1 ea |. ......".`.....| 00001880 04 89 a3 76 02 00 00 0f 01 83 80 02 00 00 0f 01 |...v............| 00001890 8b 88 02 00 00 8b 8b 3c 00 00 00 0b c9 74 12 8b |.......<.....t..| 000018a0 b3 38 00 00 00 8b fb 81 c7 00 30 00 00 2b f9 f3 |.8........0..+..| 000018b0 a4 0f 01 9b 90 02 00 00 0f 01 93 68 02 00 00 66 |...........h...f| 000018c0 b8 10 00 66 8e d8 66 8e c0 66 8e d0 66 8e e0 66 |...f..f..f..f..f| … * DISK 00100f60 00 00 00 00 00 00 00 00 00 f0 ff 5d 76 e3 f0 2f |...........]v../| 00100f70 93 c9 a4 1d f9 48 be f8 6c c7 1d 92 4c 1e 6e 35 |.....H..l...L.n5| 00100f80 b4 f8 1b ae f6 69 e8 c0 b7 34 74 a1 4e 5a a7 93 |.....i...4t.NZ..| 00100f90 97 2f f3 47 cf d7 10 df f0 d6 e3 9b f5 cf a9 23 |./.G...........#| 00100fa0 cd 9f 87 4f 37 7f 1e f1 fe dc 7d b9 f9 f3 7b ef |...O7.....}...{.| 00100fb0 cf 95 bf 94 3f 8d 63 9a cc 8a 36 5b 56 7b d2 76 |....?.c...6[V{.v| 00100fc0 b6 d9 ad ee 61 f6 90 a4 2c 2b 54 66 37 de 3d a9 |....a...,+Tf7.=.| 00100fd0 b9 d9 67 37 1e 7a b5 ce ef 0c 58 ee 4d 30 d0 9b |..g7.z....X.M0..| 00100fe0 c0 6e bc e7 3d f3 e7 d0 9a bf a4 82 1b c7 9c f1 |.n..=...........| 00100ff0 db 66 2b d8 38 cb 2a 91 80 ad 7d 25 d8 0a e5 db |.f+.8.*...}%....| Virtual Machine Monitor Layer

  8. Motivation Techniques Experiment Result Summary Example: Inspect pid s of Guest Memory from VMM … 00001800 eb 40 1b 02 63 74 00 f0 00 00 00 00 00 00 00 00 |.@..ct..........| 00001810 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 |................| 00001820 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| 00001830 00 00 00 00 00 00 00 00 10 76 16 cc 00 00 00 00 |.........v......| 00001840 00 19 66 8c d0 50 b8 08 00 00 00 66 8e d0 53 8b |..f..P.....f..S.| 00001850 d9 ff 2d 19 02 00 00 0f 20 c0 0f ba f0 1f 0f 22 |..-..... ......"| 00001860 c0 eb 00 b9 80 00 00 c0 0f 32 0f ba f0 08 0f 30 |.........2.....0| 00001870 0f 20 e0 0f ba f0 05 0f 22 e0 60 9c 8b d3 c1 ea |. ......".`.....| 00001880 04 89 a3 76 02 00 00 0f 01 83 80 02 00 00 0f 01 |...v............| 00001890 8b 88 02 00 00 8b 8b 3c 00 00 00 0b c9 74 12 8b |.......<.....t..| 000018a0 b3 38 00 00 00 8b fb 81 c7 00 30 00 00 2b f9 f3 |.8........0..+..| 000018b0 a4 0f 01 9b 90 02 00 00 0f 01 93 68 02 00 00 66 |...........h...f| 000018c0 b8 10 00 66 8e d8 66 8e c0 66 8e d0 66 8e e0 66 |...f..f..f..f..f| … * DISK 00100f60 00 00 00 00 00 00 00 00 00 f0 ff 5d 76 e3 f0 2f |...........]v../| 00100f70 93 c9 a4 1d f9 48 be f8 6c c7 1d 92 4c 1e 6e 35 |.....H..l...L.n5| 00100f80 b4 f8 1b ae f6 69 e8 c0 b7 34 74 a1 4e 5a a7 93 |.....i...4t.NZ..| 00100f90 97 2f f3 47 cf d7 10 df f0 d6 e3 9b f5 cf a9 23 |./.G...........#| 00100fa0 cd 9f 87 4f 37 7f 1e f1 fe dc 7d b9 f9 f3 7b ef |...O7.....}...{.| 00100fb0 cf 95 bf 94 3f 8d 63 9a cc 8a 36 5b 56 7b d2 76 |....?.c...6[V{.v| 00100fc0 b6 d9 ad ee 61 f6 90 a4 2c 2b 54 66 37 de 3d a9 |....a...,+Tf7.=.| 00100fd0 b9 d9 67 37 1e 7a b5 ce ef 0c 58 ee 4d 30 d0 9b |..g7.z....X.M0..| 00100fe0 c0 6e bc e7 3d f3 e7 d0 9a bf a4 82 1b c7 9c f1 |.n..=...........| 00100ff0 db 66 2b d8 38 cb 2a 91 80 ad 7d 25 d8 0a e5 db |.f+.8.*...}%....| Virtual Machine Monitor Layer

  9. Motivation Techniques Experiment Result Summary Example: Inspect pid s of Guest Memory from VMM In Kernel 2.6.18 struct task_struct { … 00001800 eb 40 1b 02 63 74 00 f0 00 00 00 00 00 00 00 00 |.@..ct..........| 00001810 00 00 00 00 80 00 00 00 00 00 00 00 00 00 00 00 |................| 00001820 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| ... 00001830 00 00 00 00 00 00 00 00 10 76 16 cc 00 00 00 00 |.........v......| 00001840 00 19 66 8c d0 50 b8 08 00 00 00 66 8e d0 53 8b |..f..P.....f..S.| 00001850 d9 ff 2d 19 02 00 00 0f 20 c0 0f ba f0 1f 0f 22 |..-..... ......"| [188] pid_t pid; 00001860 c0 eb 00 b9 80 00 00 c0 0f 32 0f ba f0 08 0f 30 |.........2.....0| 00001870 0f 20 e0 0f ba f0 05 0f 22 e0 60 9c 8b d3 c1 ea |. ......".`.....| 00001880 04 89 a3 76 02 00 00 0f 01 83 80 02 00 00 0f 01 |...v............| [192] pid_t tgid; 00001890 8b 88 02 00 00 8b 8b 3c 00 00 00 0b c9 74 12 8b |.......<.....t..| 000018a0 b3 38 00 00 00 8b fb 81 c7 00 30 00 00 2b f9 f3 |.8........0..+..| 000018b0 a4 0f 01 9b 90 02 00 00 0f 01 93 68 02 00 00 66 |...........h...f| 000018c0 b8 10 00 66 8e d8 66 8e c0 66 8e d0 66 8e e0 66 |...f..f..f..f..f| ... … * DISK 00100f60 00 00 00 00 00 00 00 00 00 f0 ff 5d 76 e3 f0 2f |...........]v../| [356] uid_t uid; 00100f70 93 c9 a4 1d f9 48 be f8 6c c7 1d 92 4c 1e 6e 35 |.....H..l...L.n5| 00100f80 b4 f8 1b ae f6 69 e8 c0 b7 34 74 a1 4e 5a a7 93 |.....i...4t.NZ..| 00100f90 97 2f f3 47 cf d7 10 df f0 d6 e3 9b f5 cf a9 23 |./.G...........#| [360] uid_t euid; 00100fa0 cd 9f 87 4f 37 7f 1e f1 fe dc 7d b9 f9 f3 7b ef |...O7.....}...{.| 00100fb0 cf 95 bf 94 3f 8d 63 9a cc 8a 36 5b 56 7b d2 76 |....?.c...6[V{.v| 00100fc0 b6 d9 ad ee 61 f6 90 a4 2c 2b 54 66 37 de 3d a9 |....a...,+Tf7.=.| 00100fd0 b9 d9 67 37 1e 7a b5 ce ef 0c 58 ee 4d 30 d0 9b |..g7.z....X.M0..| [364] uid_t suid; 00100fe0 c0 6e bc e7 3d f3 e7 d0 9a bf a4 82 1b c7 9c f1 |.n..=...........| 00100ff0 db 66 2b d8 38 cb 2a 91 80 ad 7d 25 d8 0a e5 db |.f+.8.*...}%....| [368] uid_t fsuid; Virtual Machine Monitor Layer [372] gid_t gid; [376] gid_t egid; [380] gid_t sgid; [384] gid_t fsgid; ... [428] char comm[16]; ... } SIZE: 1408

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Hybrid Construction Hybrid Construction Hybrid Construction Hybrid Construction 1 VP

Hybrid Construction Hybrid Construction Hybrid Construction Hybrid Construction 1 VP

Hybrid Construction Hybrid Construction Hybrid Construction Hybrid Construction 1 VP University VP University WHEN DO YOU USE HYBRI D CONSTRUCTI ON? Hybrid Construction is an economical alternative to conventional steel structures

431 views • 15 slides
5 th Street SE Bridge Overview Bridge is functionally obsolete New bridge funded with

5 th Street SE Bridge Overview Bridge is functionally obsolete New bridge funded with

5 th Street SE Bridge Overview Bridge is functionally obsolete New bridge funded with federal money Layout was approved 2017 MnDOT hosted several visual quality workshops where community members were able to select bridge

530 views • 13 slides
Hybrid NLP Hybrid NLP O UTLINE O UTLINE Problems of Deep and Shallow Processing

Hybrid NLP Hybrid NLP O UTLINE O UTLINE Problems of Deep and Shallow Processing

Hybrid NLP Hybrid NLP O UTLINE O UTLINE Problems of Deep and Shallow Processing Hybrid Architectures An Advanced Platform for Hybrid NLP: Deep Thought Applications for Hybrid Processing Conclusion and Outlook LTII

635 views • 25 slides
Bridge How Bridge Can Benefit Your School and Your Students Benefits of Playing Bridge Benefit

Bridge How Bridge Can Benefit Your School and Your Students Benefits of Playing Bridge Benefit

Bridge How Bridge Can Benefit Your School and Your Students Benefits of Playing Bridge Benefit to Administrators Improvement in Standardized Test Scores Promote STEM Education Goals Students Learn Cooperation and Communication

531 views • 14 slides
Bridge Rehabilitation/Replacement Needs Redbud Trail Bridge Barton Springs Road Bridge Presentation

Bridge Rehabilitation/Replacement Needs Redbud Trail Bridge Barton Springs Road Bridge Presentation

Bridge Rehabilitation/Replacement Needs Redbud Trail Bridge Barton Springs Road Bridge Presentation to Mobility Committee April 2015 PWD Bridge Program City of Austin has 447 rated bridges. Goal is to maintain all bridges in

623 views • 22 slides
SR 73 Loudon County Bridge SR73 Bridge History Several alternates were studied q TVA expressed

SR 73 Loudon County Bridge SR73 Bridge History Several alternates were studied q TVA expressed

SR 73 Loudon County Bridge SR73 Bridge History Several alternates were studied q TVA expressed a desire not to replace or widen the existng q bridge on the dam the bridge hampers access requires stopping and controlling trafc maintenance

966 views • 10 slides
EXPO REAL Hybrid Summit Your virtual exhibition EXPO REAL Hybrid Summit The Hybrid Conference

EXPO REAL Hybrid Summit Your virtual exhibition EXPO REAL Hybrid Summit The Hybrid Conference

EXPO REAL Hybrid Summit Your virtual exhibition EXPO REAL Hybrid Summit The Hybrid Conference for Property and Investment October 14 15, 2020 Internationales Congress Center Mnchen exporeal.net Building networks EXPO REAL Hybrid

314 views • 13 slides
Meaningful Access: Bridge Project Jorge Rivera, Project Lead (MLS) | Bridge Project, Planning

Meaningful Access: Bridge Project Jorge Rivera, Project Lead (MLS) | Bridge Project, Planning

Meaningful Access: Bridge Project Jorge Rivera, Project Lead (MLS) | Bridge Project, Planning Department , Toronto Public Library Kristian Roberts, Partner, Nordicity Jan 31, 2020 What is Bridge? The Bridge Technology Services Assessment Toolkit

285 views • 28 slides
Indi diana na Bridge L Load R Rating Jeremy Hunter INDOT Bridge Design Manager Indiana

Indi diana na Bridge L Load R Rating Jeremy Hunter INDOT Bridge Design Manager Indiana

Indi diana na Bridge L Load R Rating Jeremy Hunter INDOT Bridge Design Manager Indiana Bridge Load Rating Requirements AASHTO Manual For Bridge Evaluation 2 nd Edition Defines requirements for: Bridge Records Bridge Management

360 views • 9 slides
A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow Brandon Bohrer and Andr e Platzer

A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow Brandon Bohrer and Andr e Platzer

A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow Brandon Bohrer and Andr e Platzer Logical Systems Lab Computer Science Department Carnegie Mellon University LICS18 1 / 21 Outline: Hybrid { Dynamics, Logic, Power } Hybrid

353 views • 34 slides
Delaware Section Bridge Construction Presentations: Rapid Bridge Replacement by Dr. Christopher

Delaware Section Bridge Construction Presentations: Rapid Bridge Replacement by Dr. Christopher

Delaware Section Bridge Construction Presentations: Rapid Bridge Replacement by Dr. Christopher Meehan &amp; DelDOT Accelerated Bridge Construction (ABC) Techniques by Jason Hastings Wednesday March 21, 2018 Co-sponsored by ASME, ASCE,

567 views • 4 slides
BRIDGE CENTRALITY: IDENTIFYING BRIDGE SYMPTOMS IN PSYCHOPATHOLOGY NETWORKS Payton Jones Harvard

BRIDGE CENTRALITY: IDENTIFYING BRIDGE SYMPTOMS IN PSYCHOPATHOLOGY NETWORKS Payton Jones Harvard

BRIDGE CENTRALITY: IDENTIFYING BRIDGE SYMPTOMS IN PSYCHOPATHOLOGY NETWORKS Payton Jones Harvard University Masters Thesis Presentation Mental Disorder Comorbidity 1 6 3 4 7 8 2 9 5 10 Depression Social Anxiety Bridge Nodes 1

849 views • 31 slides
key bridge Taipei, November 15, 2011 1 key bridge Challenge and Needs How to enable a

key bridge Taipei, November 15, 2011 1 key bridge Challenge and Needs How to enable a

Data Model In Support of White Space Database Access Protocols draft-caulfield-paws-protocol-for-tvws-01 key bridge Taipei, November 15, 2011 1 key bridge Challenge and Needs How to enable a standardized, lightweight and Rules-compliant

344 views • 9 slides
Overview of Aerodynamics Study Simon Amor Head of Planning and Development A14 Orwell Bridge

Overview of Aerodynamics Study Simon Amor Head of Planning and Development A14 Orwell Bridge

A14 Orwell Bridge Overview of Aerodynamics Study Simon Amor Head of Planning and Development A14 Orwell Bridge Orwell Bridge Construction of the bridge started in October 1979 and was completed in December 1982. The bridge opened to

926 views • 22 slides
CRP 693 W Cashmere Bridge Replacement Project 1 2 Existing Condition of West Cashmere Bridge

CRP 693 W Cashmere Bridge Replacement Project 1 2 Existing Condition of West Cashmere Bridge

CRP 693 W Cashmere Bridge Replacement Project 1 2 Existing Condition of West Cashmere Bridge Multi-Design Bridge with Warren Truss Main Spans Total Length 503 feet Posted for No Trucks 3 Existing Condition Needed Repairs

437 views • 14 slides
PVT Hybrid: module AL- series ak440, 22.01.2013, V1 1 PVT Hybrid, the combined sollution

PVT Hybrid: module AL- series ak440, 22.01.2013, V1 1 PVT Hybrid, the combined sollution

PVT Hybrid: module AL- series ak440, 22.01.2013, V1 1 PVT Hybrid, the combined sollution PHOTOVOLTAIC + THERMAL 2 What is the PVT module Is an hybrid technology based on simultaneous production of : Electrical energy from a photovoltaic

196 views • 15 slides
Streams In C, the term stream means any source of input or any destination for output.

Streams In C, the term stream means any source of input or any destination for output.

3/25/14 Streams In C, the term stream means any source of input or any destination for output. Input/Output Accessing a stream is done through a file pointer , which has type FILE * . o A variable point ing to a file FILE *fp;

368 views • 8 slides
Bulk Density and Void Content Bulk Density Bulk density ( n .) the mass of a unit volume of bulk

Bulk Density and Void Content Bulk Density Bulk density ( n .) the mass of a unit volume of bulk

Bulk Density and Void Content Bulk Density Bulk density ( n .) the mass of a unit volume of bulk aggregate including the volume of the individual particles and the volume of the voids between them. m kg agg bulk density 3 V m

1.45k views • 30 slides
LTE Redirection Forcing Targeted LTE Cellphone into Unsafe Network Qing Yang@360 UnicornTeam

LTE Redirection Forcing Targeted LTE Cellphone into Unsafe Network Qing Yang@360 UnicornTeam

360UnicornTeam LTE Redirection Forcing Targeted LTE Cellphone into Unsafe Network Qing Yang@360 UnicornTeam Wanqiao Zhang @360 UnicornTeam 1 LTE Redirection LTE and IMSI catcher myths In Nov. 2015, BlackHat EU, Ravishankar Borgaonkar,

937 views • 37 slides
Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu,

Who Is Answering My Queries? Understanding and Characterizing Hidden Interception of the DNS Resolution Path Baojun Liu, Chaoyi Lu, Haixin Duan, Ying Liu, Zhou Li, Shuang Hao and MinYang DNS Resolution ISP DNS Resolver Might have

702 views • 41 slides
CBRE Group, Inc. Fourth Quarter 2012 Earnings Conference Call February 6, 2013 Forward-Looking

CBRE Group, Inc. Fourth Quarter 2012 Earnings Conference Call February 6, 2013 Forward-Looking

CBRE Group, Inc. Fourth Quarter 2012 Earnings Conference Call February 6, 2013 Forward-Looking Statements This presentation contains statements that are forward looking within the meaning of the Private Securities Litigation Reform Act of

650 views • 26 slides
XSS Real-life XSS examples fotolog.com xssed mirror

XSS Real-life XSS examples fotolog.com xssed mirror

XSS Real-life XSS examples fotolog.com xssed mirror http://m.fotolog.com/search.php?auth=%3Ch1%3ERME% 20Pwnea%20de%20Nuevo%3C/h1%3E%3Cscript%3E alert%28document.cookie%29%3C/script%3E% 3Cnoscript%3E URL decoder Decoded -- cleaned up a bit

258 views • 22 slides
Lecture 3 Log into Linux Questions about Homework 1? Reminder: Additional on-line

Lecture 3 Log into Linux Questions about Homework 1? Reminder: Additional on-line

Lecture 3 Log into Linux Questions about Homework 1? Reminder: Additional on-line references Thursday, September 2 CS 375 UNIX System Programming - Lecture 3 1 Outline Filesystems BASH - Bourne Again SHell Redirection

520 views • 27 slides
Credit Where Credit is Due These slides for CSC209H have been developed by Sean Culhane, a

Credit Where Credit is Due These slides for CSC209H have been developed by Sean Culhane, a

Credit Where Credit is Due These slides for CSC209H have been developed by Sean Culhane, a Introduction to previous instructor: I have modified them for this presentation of the course, but must acknowledge their origins! UNIX S -1 S -2

741 views • 37 slides

More recommend