|
 ABSTRACT
Input/Output Memory Management Units (IOMMUs) have been touted as the solution to many problems in virtualisation security. Used naïvely, they can improve fault isolation and reduce the amount of trusted code. We contend that it is possible to do better. In this paper, we introduce page boxing, a novel abstraction that allows untrusted virtual machines to manage data without having access to its contents. We illustrate how this can be used with an IOMMU to create a confidential end-to-end channel between disks and virtual machines. Unlike alternative approaches, we avoid the use of encryption, which gives the potential for high performance.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
 |
1
|
Paul Barham , Boris Dragovic , Keir Fraser , Steven Hand , Tim Harris , Alex Ho , Rolf Neugebauer , Ian Pratt , Andrew Warfield, Xen and the art of virtualization, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
|
| |
2
|
M. Ben-Yehuda, J. Mason, O. Krieger, J. Xenidis, L. V. Doorn, A. Mallick, J. Nakajima, and E. Wahlig. Utilizing IOMMUs for Virtualization in Linux and Xen. In Proceedings of the 2006 Ottawa Linux Symposium, 2006.
|
| |
3
|
Xiaoxin Chen , Tal Garfinkel , E. Christopher Lewis , Pratap Subrahmanyam , Carl A. Waldspurger , Dan Boneh , Jeffrey Dwoskin , Dan R.K. Ports, Overshadow: a virtualization-based approach to retrofitting protection in commodity operating systems, Proceedings of the 13th international conference on Architectural support for programming languages and operating systems, March 01-05, 2008, Seattle, WA, USA
|
| |
4
|
K. Fraser, S. Hand, I. Pratt, A. Warfield, R. Neugebauer, and M. Williamson. Safe hardware access with the Xen virtual machine monitor. In OASIS'04: Proceedings of the 1st workshop on Operating System and Architectural Support for the on demand IT Infrastructure, 2004.
|
| |
5
|
|
| |
6
|
|
| |
7
|
|
| |
8
|
(Unattributed). Preboot Execution Environment (PXE) Specification: Version 2.1, 9 1999. http://download.intel.com/design/archives/wfm/downloads/pxespec.pdf, accessed 9th June, 2008.
|
| |
9
|
(Unattributed). Intel R Trusted Execution Technology Preliminary Architec ture Specification. Technical report, Intel Corporation, 2006. http://download.intel.com/technology/security/downloads/31516804.pdf, accessed 9th June, 2008.
|
| |
10
|
(Unattributed). AMD64 Architecture Programmer's Manual Volume 2: System Programming. Technical report, Advanced Micro Devices, 2007. http://www.amd.com/us-en/assets/content_type/white_papers_and_tech_docs%/24593.pdf, accessed9th June, 2008.
|
| |
11
|
(Unattributed). Intel R Virtualization Technology for Directed I/O: Architecture Specification. Technical report, Intel Corporation, 9 2007. http://download.intel.com/technology/computing/vptech/Intel(r)_VT_for_Direct_IO.pdf, accessed 9th June, 2008.
|
| |
12
|
(Unattributed). BitLocker Drive Encryption, 2008. http://technet.microsoft.com/en-us/windowsvista/aa905065.aspx, accessed 9th June, 2008.
|
| |
13
|
(Unattributed). GNU GRUB -- GNU Project, 2008. http://www.gnu.org/software/grub/, accessed 9th June, 2008.
|
| |
14
|
(Unattributed). Solaris ZFS, 2008. http://www.sun.com/software/solaris/zfs.jsp, accessed 9th June, 2008.
|
| |
15
|
|
| |
16
|
|
| |
17
|
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf
B.4