secure operating stuff lesson “like” 7 (a): virtualization

Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Upload: johnathan-spencer

Post on 01-Jan-2016

214 views

Category:

Documents

0 download

Report

Download

Tags:

Embed Size (px):

TRANSCRIPT

Secure Operating StuffLesson “like” 7 (a): Virtualization

Virtualization Because of the hype around “the cloud”,

virtualization has become pretty big news However, virtualization is something we

really need to understand if we want to reason about host and OS :P security

Page 3: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

What is Virtualization? Type 1 Hypervisor

“native”, “bare metal” Type 2 Hypervisor

“hosted”

Page 4: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Paravirtualization Instead of modifying all the IO to run through

the Hypervisor, we can modify the hosted OS to use specific calls for IO Think of this as collaborative virtualization, in

essence (hosted OS “collaborates” to take part in the illusion)

Page 5: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

How? There are really only three different routes to

machine virtualization… How would you do it? What problems do we need to think about?

Page 6: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Hardware Assistance Intel and AMD have extended their

instruction set to provide hardware support for virtualization The Intel VT-I and VT-x instruction sets are

powerful, and create a very capable platform I have no comment on the AMD instructions, as I

am less familiar with them

Page 7: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Possible Threat: SubVirt Theoretically (and in practice) you could

make malware which threw the entire host OS into a VM Benefits? Disadvantages?

Page 8: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Detecting a VM Rootkit? One basic tenet…

Page 9: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

The Presence of Covert Channels What is a covert channel?

Lampson: a channel “not intended for information transfer at all, such as the service program’s effect on system load”

Page 10: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Five Concerns from Bratus et al.1. Weaknesses in remote management

2. Increase in management cost (the VM and the host)

3. Creeping Guest to Host APIs

4. Information Flow Policy (see “Virtual Machines, Virtual Security”)

5. Conflation of two issues – the provider and the monitor…

Page 11: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Virtual Machine, Virtual Security? This is really a nice little article that forces

you to think about isolation – if we split everything up, we need to make holes to use the systems…

How many OS vulns really relied on exploits of the privilege system? How many relied on incorrect privileges?

Page 12: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

Why do we think we can do this?

Page 13: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

With that said… Virtualization Can Help

Malware Analysis Rollback/trusted monitor “Disposable” computing

Page 14: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

But also… Virtualization Can Hurt

Rootkits Covert Channels Escape from the VMM

Page 15: Secure Operating Stuff Lesson “like” 7 (a): Virtualization

To Do If you’re interested (will help but is not

required reading – good reference) read “Intel Virtualization Technology: Hardware Support for Efficient Processor Virtualization”

For the exam, must read “VM-based security overkill: a lament for applied systems security research” and (the very short) “Virtual Machines, Virtual Security”

Whitepaper, lynx secure rootkit detection & protection by means of secure virtualization

HOW TO SECURE AN ENTIRE HYPER-V NETWORK by Virtualization Evangelist David Davis

How to achieve a fast, secure and available virtualization infrastructure

Raising the Bar on Desktop Virtualization · As organizations look at desktop virtualization for secure access and compliance, IT executives should consider: • Centralized user

Secure Virtualization (Heron)

NOVA: A Microhypervisor-Based Secure Virtualization

[TITLE Virtualization 360: Microsoft Virtualization ...download.microsoft.com/.../Virtualisation360.pdf · Microsoft Virtualization Strategy, Products, ... • Secure Network protocols

Open Virtualization Format Specification · The Open Virtualization Format (OVF) Specification describes an open, secure, portable, efficient and

The Glass Cage Virtualization security - Secure Network · The Glass Cage Virtualization security Claudio Criscione. Claudio Criscione Nibble Security. What is this speech about?

Secure Virtualization Bhavani Thuraisingham The University of Texas at Dallas February 2015

Linux: Getting started with virtualization for PowerLinux€¦ · Getting started with virtualization using IBM PowerVM IBM ®PowerVM provides a secure virtualization environment

A simple and secure endpoint for virtualization

Secure Cloud-Scale Virtualization

Open Virtualization Format Specificationxml.coverpages.org/DMTF-OVF-DSP0243v100.pdf · 2008-07-25 · The Open Virtualization Format (OVF) Specification describes an open, secure,

Secure Encrypted Virtualization API Specification

Secure In-VM Monitoring Using Hardware Virtualization

Secure Encrypted Virtualization API Version 0developer.amd.com/wordpress/media/2017/11/55766_SEV-KM...Secure Encrypted Virtualization API Version 0.16 55766 Rev. 3.06 February 2018

WHITE PAPER Where Network Virtualization Fits …...Where Network Virtualization Fits Into Data Center Initiatives The Role of Network Virtualization in the Modern, Secure Data Center

Physical Attack Protection with Human-Secure Virtualization in Data Centers

Virtualization possibilities in MikroTik RouterOSdslrouter.sourceforge.net/stuff/mikrotik/MUM PL 2010/pina.pdf · Virtualization possibilities in MikroTik RouterOS by Martin Pína

Secure Encrypted Virtualization API Version 0 - AMD API_Specification.… · Secure Encrypted Virtualization API Version 0.16 Technical Preview ... the receipt and sufficiency of

Webtech Conference: Introducing LXC: fast and secure virtualization

AMD’s Virtualization August 25, 2016 Memory Encryption · HW MEMORY ENCRYPTION –AMD SECURE ENCRYPTED VIRTUALIZATION Protects VMs/Containers from each other, administrator tampering,

Smart Terminal Architecture with Secure HostsSmart Terminal Architecture with Secure Hosts ... Complex, expensive, and impossible to secure. ... Virtualization, although practical,

virtualization - 國立臺灣大學hsinmu/courses/_media/... · Bare-metal virtualization is the most secure type of virtualization because guest operating systems are isolated from

General Dynamics Secure Virtualization Solutions · This information is not approved for public disclosure without prior approval by NSA. General Dynamics Secure Virtualization Solutions

Network Virtualization - DABCC · PDF fileNetwork Virtualization Consolidation - Datacenter Resource Maximization Vyatta allows for IT managers to route traffic and secure applications

Implement Android Tamper-Resistant Secure Storage and ... · Implement Android Tamper-Resistant Secure Storage and Secure it in Virtualization Bing Zhu ([email protected]) Contributors:

—BE MORE— SECURE - VMWare NSX · 2017-09-01 · NETWORK VIRTUALIZATION MAKES MICRO-SEGMENTATION POSSIBLE VMWARE NSX: THE NETWORK VIRTUALIZATION PLATFORM THAT BUILDS SECURITY INTO

Fast Secure Virtualization for the ARM Platform - … · · 2011-11-22Fast Secure Virtualization for the ARM Platform by Daniel R. Ferstay ... 4.1 Di erences in architecture speci

Secure Virtualization for Healthcare - Fortinet means of Network Virtualization, NSX is ... VMware NSX API integration provides agents inserted between ... SOLUTION GUIDE: SECURE VIRTUALIZATION

Secure Cloud-scale Virtualization with Solaris 11

Cover Directions on convergence and virtualization storyi.dell.com/sites/doccontent/corporate/secure/en/... · virtualization, they must find fresh ways to continue elevating agility,

Secure Linux Containers - kernsec.orgkernsec.org/files/securelinuxcontainers.pdf · Secure Linux Containers ... SELinux – MCS isolation Virtualization – OS separation Multiple

Block Storage Virtualization with Commodity Secure Digital Cards · 2012. 2. 17. · Block Storage Virtualization with Commodity Secure Digital Cards Harvey Tuch Cyprien Laplace Kenneth

secure operating stuff lesson “like” 7 (a): virtualization

Documents

hosted os

virtual securityconflation

collaborative virtualization

entire host os

os vulns

io think

short virtual machines

hardware support