Xen-based operating system identification method

An operating system and identification method technology, applied in the field of computer virtualization, can solve problems such as threats, reduced practicability, and inconvenience, and achieve the effects of avoiding false identification and not strong stickiness

Inactive Publication Date: 2014-01-29
XIDIAN UNIV
View PDF3 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Multiple virtual machines can run on the virtual machine monitor at the same time, and each virtual machine can run different types of operating systems. If each system needs to be modified or manually obtained system information, it is not only inconvenient, but also installed in the client domain. Files or human-identified operating systems pose a potential threat, which reduces the usefulness of these research findings
[0006] The difference between the virtual environment architecture and the traditional architecture brings opportunities and challenges to the field of virtualization monitoring

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Xen-based operating system identification method
  • Xen-based operating system identification method
  • Xen-based operating system identification method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The specific implementation of the technical solution of the present invention will be described in detail below with reference to the accompanying drawings.

[0039] Accurate identification under paravirtualization

[0040] Due to the particularity of paravirtualization, the method for accurately identifying the operating system in the guest domain under paravirtualization in the present invention adopts the interrupt descriptor table instead of the base address of the global descriptor table for identification. In the case of paravirtualization, the structure of the VCPU directly contains the interrupt descriptor table, and uses the libxc library function to read the VCPU of the guest domain operating system, read the interrupt descriptor table directly from the VCPU, and hash it The operation obtains the interrupt descriptor table fingerprint of the system, compares it with the paravirtualized interrupt descriptor fingerprint library, and identifies the type of the o...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a Xen-based operating system identification method, and belongs to the technical field of computer virtualization technology. The method is applied in identification of operating system type in virtualization environment. The method includes combination of accurate identification of fine grain and flexible identification of coarse grain, the operating system type is identified overfull, and the accurate identification of the fine grain is performed in two identification methods of interrupt descriptor tables and global descriptor table bases. By means of the accurate identification of the fine grain, the operating system type in a client domain from a management domain can be identified accurately, if the accurate identification of the fine grain is failed to identify the operating system, the operating system type in the client domain can be identified by utilizing TCP fingerprinting coarse grain, and accordingly the operating system type in the client domain from the management domain can be identified. According to the method, the client operating system is not modified during identification, information is acquired from the management domain, client operating system is not required to participate, the method is protected from being found by the client operating system and guarantees own safety.

Description

technical field [0001] The invention belongs to the technical field of computer virtualization, in particular to a method for identifying the type of an operating system in a virtualization environment. Applied to the identification of the operating system category in the virtualization environment. Background technique [0002] In recent years, virtualization technology has become the development trend of computer system structure, and provides a solution for security monitoring. Since the virtual machine manager has a higher authority and a smaller trusted computing base, using the virtual machine manager to deploy security tools in a separate virtual machine can detect the target virtual machine. This method can ensure the effectiveness and anti-attack of monitoring tools. [0003] Virtual machine monitoring is very different from traditional monitoring. Traditional monitoring is carried out within the operating system, which is aimed at the monitoring of a single syst...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/30G06F21/57
Inventor 张驰杨超马建峰王照羽侯琬婷黄为
Owner XIDIAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap