论文信息 - A BLP-Based Access Control Mechanism for the Virtual Machine System

A BLP-Based Access Control Mechanism for the Virtual Machine System

The virtual machine system such as Xen provides a security isolation between virtual machines (VM) running on the virtual machine monitor (VMM). With the wide application of the virtualization technology, VMM is expected to not only provide the simple isolation but also provide limited sharing between VMs in a secure manner. In this paper, we present an access control mechanism for the virtual machine system, which is based on the BLP model. We prove that the virtual machine system with the access control mechanism and an initial secure state is a secure system. In addition, we implement a prototype of the access control mechanism for the virtual machine system based on Xen.

Minglu Li | Yuan Luo | Chuliang Weng | Xinda Lu

[1] Paul A. Karger,et al. Thirty years later: lessons from the Multics security evaluation , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..

[2] James E. Smith,et al. Virtual machines - versatile platforms for systems and processes , 2005 .

[3] John M. Rushby,et al. Proof of separability: A verification technique for a class of a security kernels , 1982, Symposium on Programming.

[4] R. Sailer,et al. sHype : Secure Hypervisor Approach to Trusted Virtualized Systems , 2005 .

[5] Stefan Berger,et al. Building a MAC-based security architecture for the Xen open-source hypervisor , 2005, 21st Annual Computer Security Applications Conference (ACSAC'05).

[6] D. Elliott Bell,et al. Secure Computer System: Unified Exposition and Multics Interpretation , 1976 .

[7] Peter H. Gum,et al. System/370 Extended Architecture: Facilities for Virtual Machines , 1983, IBM J. Res. Dev..