KR101930113B1 - 가상 머신 이미지 분석 기법 - Google Patents

가상 머신 이미지 분석 기법 Download PDF

Info

Publication number
KR101930113B1
KR101930113B1 KR1020137034508A KR20137034508A KR101930113B1 KR 101930113 B1 KR101930113 B1 KR 101930113B1 KR 1020137034508 A KR1020137034508 A KR 1020137034508A KR 20137034508 A KR20137034508 A KR 20137034508A KR 101930113 B1 KR101930113 B1 KR 101930113B1
Authority
KR
South Korea
Prior art keywords
virtual machine
settings
values
target
sample
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020137034508A
Other languages
English (en)
Korean (ko)
Other versions
KR20140033169A (ko
Inventor
로버트 프라이스
스리바트산 파사사라시
갈렌 헌트
Original Assignee
마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 마이크로소프트 테크놀로지 라이센싱, 엘엘씨 filed Critical 마이크로소프트 테크놀로지 라이센싱, 엘엘씨
Publication of KR20140033169A publication Critical patent/KR20140033169A/ko
Application granted granted Critical
Publication of KR101930113B1 publication Critical patent/KR101930113B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Stored Programmes (AREA)
  • Debugging And Monitoring (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Investigating Or Analysing Biological Materials (AREA)
KR1020137034508A 2011-06-28 2012-06-08 가상 머신 이미지 분석 기법 Active KR101930113B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US13/171,366 US8645950B2 (en) 2011-06-28 2011-06-28 Virtual machine image analysis
US13/171,366 2011-06-28
PCT/US2012/041700 WO2013003005A2 (en) 2011-06-28 2012-06-08 Virtual machine image analysis

Publications (2)

Publication Number Publication Date
KR20140033169A KR20140033169A (ko) 2014-03-17
KR101930113B1 true KR101930113B1 (ko) 2019-03-14

Family

ID=47392073

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020137034508A Active KR101930113B1 (ko) 2011-06-28 2012-06-08 가상 머신 이미지 분석 기법

Country Status (7)

Country Link
US (2) US8645950B2 (enExample)
EP (1) EP2726977B1 (enExample)
JP (1) JP5960259B2 (enExample)
KR (1) KR101930113B1 (enExample)
CN (1) CN103620550B (enExample)
TW (2) TWI547874B (enExample)
WO (1) WO2013003005A2 (enExample)

Families Citing this family (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9286182B2 (en) * 2011-06-17 2016-03-15 Microsoft Technology Licensing, Llc Virtual machine snapshotting and analysis
US9158632B1 (en) 2011-06-30 2015-10-13 Emc Corporation Efficient file browsing using key value databases for virtual backups
US8849777B1 (en) 2011-06-30 2014-09-30 Emc Corporation File deletion detection in key value databases for virtual backups
US9229951B1 (en) 2011-06-30 2016-01-05 Emc Corporation Key value databases for virtual backups
US8949829B1 (en) 2011-06-30 2015-02-03 Emc Corporation Virtual machine disaster recovery
US9311327B1 (en) 2011-06-30 2016-04-12 Emc Corporation Updating key value databases for virtual backups
US8843443B1 (en) * 2011-06-30 2014-09-23 Emc Corporation Efficient backup of virtual data
DE102012217202B4 (de) * 2011-10-12 2020-06-18 International Business Machines Corporation Verfahren und System zum Optimieren des Platzierens virtueller Maschinen in Cloud-Computing-Umgebungen
US9063815B2 (en) * 2012-09-17 2015-06-23 International Business Machines Corporation Provisioning a virtual machine from one or more VM images
CN104424013B (zh) * 2013-08-26 2018-03-09 国际商业机器公司 在计算环境中部署虚拟机的方法和设备
KR101554554B1 (ko) 2013-11-29 2015-09-22 한국과학기술정보연구원 가상 머신 구동 시스템 및 방법
US9575793B1 (en) 2014-08-26 2017-02-21 Amazon Technologies, Inc. Identifying kernel data structures
US9530007B1 (en) 2014-08-26 2016-12-27 Amazon Technologies, Inc. Identifying tamper-resistant characteristics for kernel data structures
US9767276B1 (en) 2014-08-26 2017-09-19 Amazon Technologies, Inc. Scanning kernel data structure characteristics
US9507621B1 (en) 2014-08-26 2016-11-29 Amazon Technologies, Inc. Signature-based detection of kernel data structure modification
US10044675B1 (en) 2014-09-30 2018-08-07 Palo Alto Networks, Inc. Integrating a honey network with a target network to counter IP and peer-checking evasion techniques
US9882929B1 (en) 2014-09-30 2018-01-30 Palo Alto Networks, Inc. Dynamic selection and generation of a virtual clone for detonation of suspicious content within a honey network
US9495188B1 (en) 2014-09-30 2016-11-15 Palo Alto Networks, Inc. Synchronizing a honey network configuration to reflect a target network environment
US9860208B1 (en) 2014-09-30 2018-01-02 Palo Alto Networks, Inc. Bridging a virtual clone of a target device in a honey network to a suspicious device in an enterprise network
US10114564B2 (en) 2014-11-04 2018-10-30 Rubrik, Inc. Management of virtual machine snapshots
JP6787573B2 (ja) * 2015-01-28 2020-11-18 日本電気株式会社 仮想ネットワークファンクション管理装置、システム、ヒーリング方法及びプログラム
JP6197816B2 (ja) * 2015-03-24 2017-09-20 日本電気株式会社 ストレージシステム、ストレージの管理方法、及び、コンピュータ・プログラム
JP6696252B2 (ja) * 2016-03-24 2020-05-20 富士ゼロックス株式会社 通信プログラム、通信装置及び情報処理装置
US10860436B2 (en) 2016-05-02 2020-12-08 Nokia Solutions And Networks Oy Snapshot creation in virtual network environment
US10768961B2 (en) 2016-07-14 2020-09-08 International Business Machines Corporation Virtual machine seed image replication through parallel deployment
JP6919173B2 (ja) * 2016-10-20 2021-08-18 富士通株式会社 表示制御プログラム、表示制御方法、及び表示制御装置
US11221920B2 (en) 2017-10-10 2022-01-11 Rubrik, Inc. Incremental file system backup with adaptive fingerprinting
US11372729B2 (en) 2017-11-29 2022-06-28 Rubrik, Inc. In-place cloud instance restore
KR102114238B1 (ko) * 2018-10-11 2020-05-22 전석기 패치 환경을 이용한 멀웨어 판단 방법 및 시스템
CN111240794B (zh) * 2018-11-28 2023-06-13 阿里巴巴集团控股有限公司 容器镜像提取方法、装置以及容器镜像测试方法、装置
US11265346B2 (en) 2019-12-19 2022-03-01 Palo Alto Networks, Inc. Large scale high-interactive honeypot farm
US11271907B2 (en) 2019-12-19 2022-03-08 Palo Alto Networks, Inc. Smart proxy for a large scale high-interaction honeypot farm
CN115048117B (zh) * 2022-07-22 2025-07-25 广东浪潮智慧计算技术有限公司 一种服务器管理方法、系统及装置
WO2024085284A1 (ko) * 2022-10-21 2024-04-25 엘지전자 주식회사 신호 처리 장치, 및 이를 구비하는 차량용 디스플레이 장치
CN117891472B (zh) * 2024-03-11 2024-06-04 杭州吉利汽车数字科技有限公司 一种裸金属镜像部署的方法、装置及介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070162521A1 (en) 2006-01-09 2007-07-12 International Business Machines Corporation Method and system for sharing files among different virtual machine images
US20080256534A1 (en) 2007-04-12 2008-10-16 International Business Machines Corporation Method for improved image-customization by use of embedded metadata
US20080263258A1 (en) 2007-04-19 2008-10-23 Claus Allwell Method and System for Migrating Virtual Machines Between Hypervisors
US20090198731A1 (en) 2008-01-31 2009-08-06 Prowess Consulting, Llc Method and system for modularizing windows imaging format
US20110035747A1 (en) 2008-03-07 2011-02-10 Fumio Machida Virtual machine package generation system, virtual machine package generation method, and virtual machine package generation program

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7386611B2 (en) * 2002-12-10 2008-06-10 International Business Machines Corporation Apparatus and methods for co-location and offloading of web site traffic based on traffic pattern recognition
US20050198303A1 (en) 2004-01-02 2005-09-08 Robert Knauerhase Dynamic virtual machine service provider allocation
US8074214B2 (en) 2005-05-19 2011-12-06 Oracle International Corporation System for creating a customized software installation on demand
US8806479B2 (en) 2007-06-05 2014-08-12 International Business Machines Corporation Creating an application virtual machine image by isolating installation artifacts in shadow area
US20090070752A1 (en) 2007-09-06 2009-03-12 International Business Machines Corporation Method and system for optimization of an application
WO2009108943A2 (en) 2008-02-29 2009-09-03 Doyenz Incorporated Automation for virtualized it environments
US8543998B2 (en) * 2008-05-30 2013-09-24 Oracle International Corporation System and method for building virtual appliances using a repository metadata server and a dependency resolution service
US8191065B2 (en) 2009-04-06 2012-05-29 Red Hat Israel, Ltd. Managing virtual machine images
US9069730B2 (en) * 2009-06-29 2015-06-30 Hewlett-Packard Development Company, L. P. Coordinated reliability management of virtual machines in a virtualized system
US8140907B2 (en) * 2010-06-29 2012-03-20 International Business Machines Corporation Accelerated virtual environments deployment troubleshooting based on two level file system signature
JP5772127B2 (ja) * 2011-03-25 2015-09-02 富士通株式会社 仮想マシン管理方法、情報処理装置および仮想マシン管理プログラム

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070162521A1 (en) 2006-01-09 2007-07-12 International Business Machines Corporation Method and system for sharing files among different virtual machine images
US20080256534A1 (en) 2007-04-12 2008-10-16 International Business Machines Corporation Method for improved image-customization by use of embedded metadata
US20080263258A1 (en) 2007-04-19 2008-10-23 Claus Allwell Method and System for Migrating Virtual Machines Between Hypervisors
US20090198731A1 (en) 2008-01-31 2009-08-06 Prowess Consulting, Llc Method and system for modularizing windows imaging format
US20110035747A1 (en) 2008-03-07 2011-02-10 Fumio Machida Virtual machine package generation system, virtual machine package generation method, and virtual machine package generation program

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Helen J. Wang 외 4명. 'Automatic misconfiguration troubleshooting with peerpressure'. Proceedings of the 6th Conference on Symposium on OSDI, 2004.11., pp.1-13..

Also Published As

Publication number Publication date
CN103620550A (zh) 2014-03-05
WO2013003005A2 (en) 2013-01-03
US9207962B2 (en) 2015-12-08
JP2014518424A (ja) 2014-07-28
TW201301137A (zh) 2013-01-01
EP2726977A2 (en) 2014-05-07
TWI547874B (zh) 2016-09-01
US20130007732A1 (en) 2013-01-03
CN103620550B (zh) 2018-10-02
KR20140033169A (ko) 2014-03-17
US8645950B2 (en) 2014-02-04
WO2013003005A3 (en) 2013-03-14
JP5960259B2 (ja) 2016-08-02
TWI563449B (en) 2016-12-21
US20140143775A1 (en) 2014-05-22
EP2726977B1 (en) 2019-12-11
TW201627859A (zh) 2016-08-01
EP2726977A4 (en) 2015-01-07

Similar Documents

Publication Publication Date Title
KR101930113B1 (ko) 가상 머신 이미지 분석 기법
US12158947B2 (en) Malware analysis through virtual machine forking
US10379967B2 (en) Live rollback for a computing environment
US9436603B1 (en) Detection and mitigation of timing side-channel attacks
TWI553558B (zh) 虛擬機快照與分析
JP5176837B2 (ja) 情報処理システム及びその管理方法、制御プログラム並びに記録媒体
US9870288B2 (en) Container-based processing method, apparatus, and system
CN103930872B (zh) 使用可扩展索引编制的虚拟系统的被动监视
US10089474B2 (en) Virtual machine introspection
US9558023B2 (en) Live application mobility from one operating system level to an updated operating system level and applying overlay files to the updated operating system
KR20220050895A (ko) 메모리 애퍼처 플러쉬 순서를 사용한 데이터 보존 기법
CN108228319B (zh) 一种基于多桥的语义重构方法
US11687490B2 (en) Management of contextual information for data
US20120124355A1 (en) Single volume image file extraction
CN109564533B (zh) 一种支持即时恢复进程中执行引导进程的设备和方法
US10423578B2 (en) Management of contextual information for data
US20220043659A1 (en) State semantics kexec based firmware update

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20131226

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
N231 Notification of change of applicant
PN2301 Change of applicant

Patent event date: 20150715

Comment text: Notification of Change of Applicant

Patent event code: PN23011R01D

PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20170512

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20180501

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20181001

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20181211

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20181211

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20211118

Start annual number: 4

End annual number: 4

PR1001 Payment of annual fee

Payment date: 20221116

Start annual number: 5

End annual number: 5

PR1001 Payment of annual fee

Payment date: 20231128

Start annual number: 6

End annual number: 6