E2VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure

Xiaolin Chang; Bin Xing; Jogesh K. Muppala

doi:10.1109/APSCC.2012.38

E²VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure

Xiaolin Chang^*, Bin Xing, Jogesh K. Muppala

^*Corresponding author for this work

Department of Computer Science and Engineering

Research output: Chapter in Book/Conference Proceeding/Report › Conference Paper published in a book › peer-review

Abstract

Integrating system-level virtualization technology with Trusted Computing technology can significantly improve system security. The open-source virtual TPM facility, shipped with the open-source hypervisor Xen, aims to provide the illusion of a physical TPM to TPM-based trusted software executed in trusted virtual machines (TVMs) such that TPMbased trusted software works well in a TVM as in a native Operating System (OS). However, it is not true for the trusted software which works in a trusted para-virtual machine (TPVM). The TPM command packets sent in the TPVM OS boot phase may cause the TPVM OS boot failure. This paper design and implement E²VT, an effective and efficient mechanism for preventing the TPVM OS boot failure while (1) being transparent to the TPVM system, (2) maintaining the original system performance, (3) making minimal modifications to the existing architecture. We validate our analysis and design through experiments.

Original language	English
Title of host publication	Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012
Pages	341-344
Number of pages	4
DOIs	https://doi.org/10.1109/APSCC.2012.38
Publication status	Published - 2012
Event	2012 7th IEEE Asia-Pacific Services Computing Conference, APSCC 2012 - Guilin, China Duration: 6 Dec 2012 → 8 Dec 2012

Publication series

Name	Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012

Conference

Conference	2012 7th IEEE Asia-Pacific Services Computing Conference, APSCC 2012
Country/Territory	China
City	Guilin
Period	6/12/12 → 8/12/12

Keywords

Trusted computing
Virtual machine
Virtual trusted platform module
Xen

Access to Document

10.1109/APSCC.2012.38

Cite this

Chang, X., Xing, B., & Muppala, J. K. (2012). E²VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure. In Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012 (pp. 341-344). Article 6478239 (Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012). https://doi.org/10.1109/APSCC.2012.38

@inproceedings{3eb75d99b1244696a33bf8e36a0812c4,

title = "E2VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure",

abstract = "Integrating system-level virtualization technology with Trusted Computing technology can significantly improve system security. The open-source virtual TPM facility, shipped with the open-source hypervisor Xen, aims to provide the illusion of a physical TPM to TPM-based trusted software executed in trusted virtual machines (TVMs) such that TPMbased trusted software works well in a TVM as in a native Operating System (OS). However, it is not true for the trusted software which works in a trusted para-virtual machine (TPVM). The TPM command packets sent in the TPVM OS boot phase may cause the TPVM OS boot failure. This paper design and implement E2VT, an effective and efficient mechanism for preventing the TPVM OS boot failure while (1) being transparent to the TPVM system, (2) maintaining the original system performance, (3) making minimal modifications to the existing architecture. We validate our analysis and design through experiments.",

keywords = "Trusted computing, Virtual machine, Virtual trusted platform module, Xen",

author = "Xiaolin Chang and Bin Xing and Muppala, \{Jogesh K.\}",

year = "2012",

doi = "10.1109/APSCC.2012.38",

language = "English",

isbn = "9780769548975",

series = "Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012",

pages = "341--344",

booktitle = "Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012",

note = "2012 7th IEEE Asia-Pacific Services Computing Conference, APSCC 2012 ; Conference date: 06-12-2012 Through 08-12-2012",

}

Chang, X, Xing, B & Muppala, JK 2012, E²VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure. in Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012., 6478239, Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012, pp. 341-344, 2012 7th IEEE Asia-Pacific Services Computing Conference, APSCC 2012, Guilin, China, 6/12/12. https://doi.org/10.1109/APSCC.2012.38

E²VT: An effective and efficient VM-transparent mechanism for preventing TPVM OS boot failure. / Chang, Xiaolin; Xing, Bin; Muppala, Jogesh K.
Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012. 2012. p. 341-344 6478239 (Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012).

Research output: Chapter in Book/Conference Proceeding/Report › Conference Paper published in a book › peer-review

TY - GEN

T1 - E2VT

T2 - 2012 7th IEEE Asia-Pacific Services Computing Conference, APSCC 2012

AU - Chang, Xiaolin

AU - Xing, Bin

AU - Muppala, Jogesh K.

PY - 2012

Y1 - 2012

N2 - Integrating system-level virtualization technology with Trusted Computing technology can significantly improve system security. The open-source virtual TPM facility, shipped with the open-source hypervisor Xen, aims to provide the illusion of a physical TPM to TPM-based trusted software executed in trusted virtual machines (TVMs) such that TPMbased trusted software works well in a TVM as in a native Operating System (OS). However, it is not true for the trusted software which works in a trusted para-virtual machine (TPVM). The TPM command packets sent in the TPVM OS boot phase may cause the TPVM OS boot failure. This paper design and implement E2VT, an effective and efficient mechanism for preventing the TPVM OS boot failure while (1) being transparent to the TPVM system, (2) maintaining the original system performance, (3) making minimal modifications to the existing architecture. We validate our analysis and design through experiments.

AB - Integrating system-level virtualization technology with Trusted Computing technology can significantly improve system security. The open-source virtual TPM facility, shipped with the open-source hypervisor Xen, aims to provide the illusion of a physical TPM to TPM-based trusted software executed in trusted virtual machines (TVMs) such that TPMbased trusted software works well in a TVM as in a native Operating System (OS). However, it is not true for the trusted software which works in a trusted para-virtual machine (TPVM). The TPM command packets sent in the TPVM OS boot phase may cause the TPVM OS boot failure. This paper design and implement E2VT, an effective and efficient mechanism for preventing the TPVM OS boot failure while (1) being transparent to the TPVM system, (2) maintaining the original system performance, (3) making minimal modifications to the existing architecture. We validate our analysis and design through experiments.

KW - Trusted computing

KW - Virtual machine

KW - Virtual trusted platform module

KW - Xen

UR - https://www.scopus.com/pages/publications/84876110367

U2 - 10.1109/APSCC.2012.38

DO - 10.1109/APSCC.2012.38

M3 - Conference Paper published in a book

AN - SCOPUS:84876110367

SN - 9780769548975

T3 - Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012

SP - 341

EP - 344

BT - Proceedings - 2012 IEEE Asia-Pacific Services Computing Conference, APSCC 2012

Y2 - 6 December 2012 through 8 December 2012

ER -