Slashdot | VM-Based Rootkits Proved Easily Detectable

Comments
Posted at 2007/10/08/0828 by farkinga
(show tags and categories)

RTFA: http://it.slashdot.org/article.pl?sid=07/10/02/032…

“A year and a half has passed since SubVirt, the first VMM (virtual machine monitor) based rootkit, was introduced (PDF), covered in the tech press, and discussed here. Later Joanna Rutkowska made news by claiming she had a VMM-based attack on Vista that was undetectable � a claim that was roundly challenged. Now in this year’s HotOS workshop, researchers from Stanford, CMU, VMware, and XenSource have published a paper titled Compatibility Is Not Transparency: VMM Detection Myths and Realities (PDF) showing that VMM-based rootkits are actually easily detectable.”

Followup.

Theoretically related posts:
  1. Slashdot | Slashdot Turns 10 But You Get The Presents
  2. Wolfram Blog: The Prize Is Won; The Simplest Universal Turing Machine Is Proved
  3. AlphaGalileo.Org - the Internet-based news centre for European science, engineering and technology.
more recent post
older post

 

Trackbacks

(Trackback URL)

close Reblog this comment
Powered by Disqus · Learn more
blog comments powered by Disqus