Evolution of Attacks, Threat Models, and Solutions for Virtualized Systems | Zendy

Daniele Sgandurra | Zendy; Emil Lupu | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Evolution of Attacks, Threat Models, and Solutions for Virtualized Systems

Author(s) -

Daniele Sgandurra,

Emil Lupu

Publication year - 2016

Publication title -

acm computing surveys

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 2.079

H-Index - 163

eISSN - 1557-7341

pISSN - 0360-0300

DOI - 10.1145/2856126

Subject(s) - computer science , virtualization , computer security , sophistication , cloud computing , threat model , compromise , risk analysis (engineering) , operating system , business , social science , sociology

Virtualization technology enables Cloud providers to efficiently use their computing services and resources. Even if the benefits in terms of performance, maintenance, and cost are evident, however, virtualization has also been exploited by attackers to devise new ways to compromise a system. To address these problems, research security solutions have evolved considerably over the years to cope with new attacks and threat models. In this work, we review the protection strategies proposed in the literature and show how some of the solutions have been invalidated by new attacks, or threat models, that were previously not considered. The goal is to show the evolution of the threats, and of the related security and trust assumptions, in virtualized systems that have given rise to complex threat models and the corresponding sophistication of protection strategies to deal with such attacks. We also categorize threat models, security and trust assumptions, and attacks against a virtualized system at the different layers—in particular, hardware, virtualization, OS, and application.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research