Loading...
Please wait, while we are loading the content...
Similar Documents
TimeCapsule: secure recording of accesses to a protected datastore
| Content Provider | ACM Digital Library |
|---|---|
| Author | Krishnan, Srinivas Monrose, Fabian |
| Abstract | We present an approach for transparently recording accesses to protected storage. In particular, we provide a framework for data monitoring in a virtualized environment using only the abstractions exposed by the hypervisor. To achieve our goals, we explore techniques for efficiently harvesting application code pages resident in memory at the time disk operations hit the I/O ring, and subsequently apply novel heuristics to overcome the "semantic gap" issue between file-system objects and disk blocks. Our forensic layer records all transactions in a version-based audit log that allows for faithful reconstruction of accesses to the datastore over time. We provide an empirical evaluation of our design that shows our approach to be promising, and very accurate in mapping application to block level access patterns---even under very noisy conditions. |
| Starting Page | 23 |
| Ending Page | 32 |
| Page Count | 10 |
| File Format | |
| ISBN | 9781605587806 |
| DOI | 10.1145/1655148.1655152 |
| Language | English |
| Publisher | Association for Computing Machinery (ACM) |
| Publisher Date | 2009-11-09 |
| Publisher Place | New York |
| Access Restriction | Subscribed |
| Subject Keyword | Data forensics Security Virtualization |
| Content Type | Text |
| Resource Type | Article |
