CN106778257A - 一种虚拟机防逃逸装置 - Google Patents
一种虚拟机防逃逸装置 Download PDFInfo
- Publication number
- CN106778257A CN106778257A CN201611119113.9A CN201611119113A CN106778257A CN 106778257 A CN106778257 A CN 106778257A CN 201611119113 A CN201611119113 A CN 201611119113A CN 106778257 A CN106778257 A CN 106778257A
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- module
- target virtual
- release apparatus
- machine according
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/554—Detecting local intrusion or implementing counter-measures involving event detection and direct action
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/3003—Monitoring arrangements specially adapted to the computing system or computing system component being monitored
- G06F11/301—Monitoring arrangements specially adapted to the computing system or computing system component being monitored where the computing system is a virtual computing platform, e.g. logically partitioned systems
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- Mathematical Physics (AREA)
- Quality & Reliability (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611119113.9A CN106778257A (zh) | 2016-12-08 | 2016-12-08 | 一种虚拟机防逃逸装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611119113.9A CN106778257A (zh) | 2016-12-08 | 2016-12-08 | 一种虚拟机防逃逸装置 |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106778257A true CN106778257A (zh) | 2017-05-31 |
Family
ID=58881274
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611119113.9A Pending CN106778257A (zh) | 2016-12-08 | 2016-12-08 | 一种虚拟机防逃逸装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106778257A (zh) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107566401A (zh) * | 2017-09-30 | 2018-01-09 | 北京奇虎科技有限公司 | 虚拟化环境的防护方法及装置 |
CN108039974A (zh) * | 2017-12-19 | 2018-05-15 | 国云科技股份有限公司 | 一种云平台虚拟机逃逸监测告警方法 |
WO2019174193A1 (zh) * | 2018-03-16 | 2019-09-19 | 华为技术有限公司 | 容器逃逸检测方法、装置、系统及存储介质 |
CN110737888A (zh) * | 2019-09-12 | 2020-01-31 | 北京理工大学 | 虚拟化平台操作系统内核数据攻击行为检测方法 |
CN113391874A (zh) * | 2020-03-12 | 2021-09-14 | 腾讯科技(深圳)有限公司 | 一种虚拟机检测对抗方法、装置、电子设备及存储介质 |
CN113553590A (zh) * | 2021-08-12 | 2021-10-26 | 广州锦行网络科技有限公司 | 一种蜜罐防止攻击者逃逸的方法 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102147843A (zh) * | 2011-05-16 | 2011-08-10 | 湖南大学 | 一种基于内核不变量保护的rootkit入侵检测和系统恢复方法 |
CN102930213A (zh) * | 2012-10-25 | 2013-02-13 | 中国航天科工集团第二研究院七〇六所 | 基于虚拟机的安全监控系统和安全监控方法 |
CN103793651A (zh) * | 2014-02-22 | 2014-05-14 | 西安电子科技大学 | 基于Xen虚拟化的内核完整性检测方法 |
CN104809401A (zh) * | 2015-05-08 | 2015-07-29 | 南京大学 | 一种操作系统内核完整性保护方法 |
-
2016
- 2016-12-08 CN CN201611119113.9A patent/CN106778257A/zh active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102147843A (zh) * | 2011-05-16 | 2011-08-10 | 湖南大学 | 一种基于内核不变量保护的rootkit入侵检测和系统恢复方法 |
CN102930213A (zh) * | 2012-10-25 | 2013-02-13 | 中国航天科工集团第二研究院七〇六所 | 基于虚拟机的安全监控系统和安全监控方法 |
CN103793651A (zh) * | 2014-02-22 | 2014-05-14 | 西安电子科技大学 | 基于Xen虚拟化的内核完整性检测方法 |
CN104809401A (zh) * | 2015-05-08 | 2015-07-29 | 南京大学 | 一种操作系统内核完整性保护方法 |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107566401A (zh) * | 2017-09-30 | 2018-01-09 | 北京奇虎科技有限公司 | 虚拟化环境的防护方法及装置 |
CN107566401B (zh) * | 2017-09-30 | 2021-01-08 | 北京奇虎科技有限公司 | 虚拟化环境的防护方法及装置 |
CN108039974A (zh) * | 2017-12-19 | 2018-05-15 | 国云科技股份有限公司 | 一种云平台虚拟机逃逸监测告警方法 |
WO2019174193A1 (zh) * | 2018-03-16 | 2019-09-19 | 华为技术有限公司 | 容器逃逸检测方法、装置、系统及存储介质 |
CN111819556A (zh) * | 2018-03-16 | 2020-10-23 | 华为技术有限公司 | 容器逃逸检测方法、装置、系统及存储介质 |
CN111819556B (zh) * | 2018-03-16 | 2024-04-09 | 华为云计算技术有限公司 | 容器逃逸检测方法、装置、系统及存储介质 |
US11989283B2 (en) | 2018-03-16 | 2024-05-21 | Huawei Cloud Computing Technologies Co., Ltd. | Container escape detection method, apparatus, and system, and storage medium |
CN110737888A (zh) * | 2019-09-12 | 2020-01-31 | 北京理工大学 | 虚拟化平台操作系统内核数据攻击行为检测方法 |
CN113391874A (zh) * | 2020-03-12 | 2021-09-14 | 腾讯科技(深圳)有限公司 | 一种虚拟机检测对抗方法、装置、电子设备及存储介质 |
CN113553590A (zh) * | 2021-08-12 | 2021-10-26 | 广州锦行网络科技有限公司 | 一种蜜罐防止攻击者逃逸的方法 |
CN113553590B (zh) * | 2021-08-12 | 2022-03-29 | 广州锦行网络科技有限公司 | 一种蜜罐防止攻击者逃逸的方法 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Chen et al. | Internet-of-things security and vulnerabilities: Taxonomy, challenges, and practice | |
Sudhakar et al. | An emerging threat Fileless malware: a survey and research challenges | |
Mahor et al. | Cyber threat phylogeny assessment and vulnerabilities representation at thermal power station | |
Jang et al. | SGX-Bomb: Locking down the processor via Rowhammer attack | |
Gómez-Hernández et al. | R-Locker: Thwarting ransomware action through a honeyfile-based approach | |
CN106778257A (zh) | 一种虚拟机防逃逸装置 | |
US10454950B1 (en) | Centralized aggregation technique for detecting lateral movement of stealthy cyber-attacks | |
US10474813B1 (en) | Code injection technique for remediation at an endpoint of a network | |
CN105740046B (zh) | 一种基于动态库的虚拟机进程行为监控方法与系统 | |
Srivastava et al. | Automatic discovery of parasitic malware | |
CN105409164A (zh) | 通过使用硬件资源来检测网络业务中的矛盾的根套件检测 | |
CN107408176A (zh) | 恶意对象的执行剖析检测 | |
Reeves et al. | Intrusion detection for resource-constrained embedded control systems in the power grid | |
János et al. | Security concerns towards security operations centers | |
Yamauchi et al. | Additional kernel observer: privilege escalation attack prevention mechanism focusing on system call privilege changes | |
Meng et al. | Security-first architecture: deploying physically isolated active security processors for safeguarding the future of computing | |
US20150381655A1 (en) | Detecting memory-scraping malware | |
Sabharwal et al. | Ransomware attack: India issues red alert | |
CN108345795A (zh) | 用于检测和分类恶意软件的系统和方法 | |
CN108183901A (zh) | 基于fpga的主机安全防护物理卡及其数据处理方法 | |
Ayub et al. | RWArmor: a static-informed dynamic analysis approach for early detection of cryptographic windows ransomware | |
Di et al. | A hardware threat modeling concept for trustable integrated circuits | |
CN112613000A (zh) | 一种敏感信息保护方法、装置、电子设备及可读存储介质 | |
Reeves | Autoscopy Jr.: Intrusion detection for embedded control systems | |
Zhang et al. | See through walls: Detecting malware in sgx enclaves with sgx-bouncer |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: 100070 the 28 tier of fortune Fortune Plaza, No.1, hang Feng Road, Fengtai District, Beijing. Applicant after: BEIJING GUODIANTONG NETWORK TECHNOLOGY Co.,Ltd. Applicant after: STATE GRID LIAONING ELECTRIC POWER Research Institute Applicant after: STATE GRID CORPORATION OF CHINA Applicant after: STATE GRID INFORMATION & TELECOMMUNICATION GROUP Co.,Ltd. Address before: 100070 the 28 tier of fortune Fortune Plaza, No.1, hang Feng Road, Fengtai District, Beijing. Applicant before: BEIJING GUODIANTONG NETWORK TECHNOLOGY Co.,Ltd. Applicant before: STATE GRID LIAONING ELECTRIC POWER Research Institute Applicant before: State Grid Corporation of China Applicant before: STATE GRID INFORMATION & TELECOMMUNICATION GROUP Co.,Ltd. |
|
TA01 | Transfer of patent application right | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20190606 Address after: 100085 Beijing city Haidian District Qinghe small Camp Road No. 15 Applicant after: BEIJING CHINA POWER INFORMATION TECHNOLOGY Co.,Ltd. Applicant after: STATE GRID LIAONING ELECTRIC POWER Research Institute Applicant after: STATE GRID CORPORATION OF CHINA Applicant after: STATE GRID INFORMATION & TELECOMMUNICATION GROUP Co.,Ltd. Address before: 100070 the 28 tier of fortune Fortune Plaza, No.1, hang Feng Road, Fengtai District, Beijing. Applicant before: BEIJING GUODIANTONG NETWORK TECHNOLOGY Co.,Ltd. Applicant before: STATE GRID LIAONING ELECTRIC POWER Research Institute Applicant before: STATE GRID CORPORATION OF CHINA Applicant before: STATE GRID INFORMATION & TELECOMMUNICATION GROUP Co.,Ltd. |
|
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170531 |