A BLP-based Access Control Mechanism for the Virtual Machine System
The virtual machine system such as Xen provides a security isolation between virtual machines (VM) running on the virtual machine monitor (VMM). With the wide application of the virtualization technology, VMM is expected to not only provide the simple isolation but also provide limited sharing between VMs in a secure manner. In this paper, we present an access control mechanism for the virtual machine system, which is based on the BLP model. We prove that the virtual machine system with the access control mechanism and an initial secure state is a secure system. In addition, we implement a prototype of the access control mechanism for the virtual machine system based on Xen.
System security access control virtual machine virtual machine monitor.
Chuliang Weng Yuan Luo Minglu Li Xinda Lu
Department of Computer Science and Engineering, Shanghai Jiao Tong University, Shanghai 200240, China
国际会议
The 9th International Conference for Young Computer Scientists(第九届国际青年计算机大会)
安徽黄山
英文
2278-2282
2008-11-18(万方平台首次上网日期,不代表论文的发表时间)