For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
Automatic Load-Balanced Partitioning Strategy in Parallel Multilevel Fast Multipole Algorithm
p.893
Research of GIS System Development Mapx and SQL Server
p.898
Application of PLC in the CNC Machine Tool Control System
p.902
Application of Workflow Management Systems in E-Services
p.906
Cross-Views Process Detection Based on Hardware-Assisted Virtual Machine
p.910
Design of Semantic Search Engine Architecture Based on Component
p.915
Research on Wireless Data Transmission Technologies in Regional Grain Emergency System
p.921
The Control for Predator-Prey Model with Stage-Structured Predator
p.925
FDTD Numerical Analysis of Transmission Enhancement on Two-Dimensional Hole Array
p.929

Cross-Views Process Detection Based on Hardware-Assisted Virtual Machine

Article Preview

Abstract:

The current process hiding and detection technologies are analyzed, and the mechanism of cross-views discrepancy utilized by Strider GhostBuster are studied in detail, and based on Hardware-assisted Virtual Machine (HVM) a new framework for process detection is proposed, namely HCPD, whose effectiveness and integrality are verified through experiments.

You might also be interested in these eBooks
Applied Mechanics and Mechatronics Automation View Preview

Info:

Periodical:

Applied Mechanics and Materials (Volumes 182-183)

Pages:

910-914

DOI:

https://doi.org/10.4028/www.scientific.net/AMM.182-183.910

Citation:

Cite this paper

Online since:

June 2012

Authors:

Chong Ling, Xing Yang, Luo Zheng Zhang

Keywords:

Cross-Views Discrepancy, HVM, Process Detection, Trusted View

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2012 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

References

[1] Mark E. Russinovich, David A. Solomon. Microsoft Windows Internals: Microsoft Windows Server 2003, Windows XP, and Windows 2000. USA: Microsoft Press. (2004).

DOI: 10.1007/978-1-4302-0016-1_4

Google Scholar

[2] Yi-Min Wang, Doug Beck, Binh Vo, Roussi Roussev. Detecting Stealth Software with Strider GhostBuster . Proc of International Conference on Dependable System s and Networks. (2005).

DOI: 10.1109/dsn.2005.39

Google Scholar

[3] Intel. Intel 64 and IA-32 Architectures Software Developers Manual, Volume 3B: System Programming Guide, Part2. Intel Corporation. (2006).

Google Scholar

[4] Artem Dinaburg, Paul Royal, Monirul Sharif. Ether: Malware Analysis via Hardware Virtualization Extensions . In Proceedings of the 15th ACM conference on Computer and Communications Security. (2008).

DOI: 10.1145/1455770.1455779

Google Scholar

[5] Stephen T. Jones, Andrea C. Arpaci-Dusseau, Remzi H. Arpaci-Dusseau. Antfarm: Tracking Process in a Virtual Machine Environment. Boston, Massachusetts: In Proceedings of the USENIX Annual Technical Conference. (2006).

DOI: 10.1145/1168857.1168861

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.