“A Multi-Layered Architecture for a Secure Virtualization Environment”
in Fast Abstract at the 2012 International Conference on Dependable Systems and Networks, Boston, MA, USA, Jun. 2012.
Abstract: Virtualization is a way to efficiently use and distribute system resources. There are two ways to design a virtualization environment: using hardware or software. Although most commodity CPUs support virtualization, they are able to only support one single layer of virtual machines. To cope with this limitation, one promising approach is to use recursive virtualization, which can also be exploited to increase the security level of a virtualization environment. In this paper we propose an architecture applying the idea of defense-in-depth to enhance the security of virtualization systems.
Research line(s): Timeliness and Adaptation in Dependable Systems (TADS)