Design of function for tracing diffusion of classified information for IPC on KVM

Research output: Contribution to journalArticlepeer-review

2 Citations (Scopus)

Abstract

The leaking of information has increased in recent years. To address this problem, we previously proposed a function for tracing the diffusion of classified information in a guest OS using a virtual machine monitor (VMM). This function makes it possible to grasp the location of classified information and detect information leakage without modifying the source codes of the guest OS. The diffusion of classified information is caused by a file operation, child process creation, and inter-process communication (IPC). In a previous study, we implemented the proposed function for a file operation and child process creation excluding IPC using a kernel-based virtual machine (KVM). In this paper, we describe the design of the proposed function for IPC on a KVM without modifying the guest OS. The proposed function traces the local and remote IPCs inside the guest OS from the outside so as to trace the information diffusion. Because IPC with an outside computer might cause information leakage, tracing the IPCs enables the detection of such a leakage. We also report the evaluation results including the traceability and performance of the proposed function.

Original languageEnglish
Pages (from-to)781-792
Number of pages12
JournalJournal of Information Processing
Volume24
Issue number5
DOIs
Publication statusPublished - 2016

Keywords

  • Information leakage prevention
  • Inter-process communication
  • Virtualization

ASJC Scopus subject areas

  • Computer Science(all)

Fingerprint Dive into the research topics of 'Design of function for tracing diffusion of classified information for IPC on KVM'. Together they form a unique fingerprint.

Cite this