{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,20]],"date-time":"2025-02-20T23:57:46Z","timestamp":1740095866693,"version":"3.37.3"},"publisher-location":"Berlin, Heidelberg","reference-count":66,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642309205"},{"type":"electronic","value":"9783642309212"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2012]]},"DOI":"10.1007\/978-3-642-30921-2_11","type":"book-chapter","created":{"date-parts":[[2012,6,8]],"date-time":"2012-06-08T09:54:41Z","timestamp":1339149281000},"page":"179-200","source":"Crossref","is-referenced-by-count":14,"title":["Verifying System Integrity by Proxy"],"prefix":"10.1007","author":[{"given":"Joshua","family":"Schiffman","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hayawardh","family":"Vijayakumar","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Trent","family":"Jaeger","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"11_CR1","unstructured":"Processor-Based Virtualization, AMD64 Style, \n                    \n                      http:\/\/developer.amd.com\/documentation\/articles\/pages\/630200615.aspx"},{"key":"11_CR2","unstructured":"Anderson, J.P.: Computer Security Technology Planning Study. Tech. Rep. ESD-TR-73-51, The Mitre Corporation, Air Force Electronic Systems Division, Hanscom AFB, Badford, MA (1972)"},{"key":"11_CR3","unstructured":"Andronick, J., Greenaway, D., Elphinstone, K.: Towards Proving Security in the Presence of Large Untrusted Components. In: Proc. 5th Workshop on Systems Software Verification (2010)"},{"key":"11_CR4","unstructured":"Arbaugh, W.A., Farber, D.J., Smith, J.M.: A Secure and Reliable Bootstrap Architecture. In: Proc. IEEE SSP (1997)"},{"key":"11_CR5","unstructured":"Azab, A.M., Ning, P., Wang, Z., Jiang, X., Zhang, X., Skalsky, N.C.: HyperSentry: Enabling Stealthy In-Context Measurement of Hypervisor Integrity. In: Proc. 17th ACM Conference on Computer and Communications Security (2010), \n                    \n                      http:\/\/doi.acm.org\/10.1145\/1866307.1866313"},{"key":"11_CR6","unstructured":"Badger, L., Sterne, D.F., Sherman, D.L., Walker, K.M., Haghighat, S.A.: Practical domain and type enforcement for unix. In: IEEE Symposium on Security and Privacy (1995)"},{"key":"11_CR7","doi-asserted-by":"crossref","unstructured":"Baliga, A., Ganapathy, V., Iftode, L.: Automatic Inference and Enforcement of Kernel Data Structure Invariants. In: Proc. ACSAC (2008), \n                    \n                      http:\/\/dx.doi.org\/10.1109\/ACSAC.2008.29","DOI":"10.1109\/ACSAC.2008.29"},{"key":"11_CR8","unstructured":"BBC: Amazon apologises for cloud fault one week on, \n                    \n                      http:\/\/www.bbc.co.uk\/news\/business-13242782"},{"key":"11_CR9","unstructured":"Berger, S., et al.: vTPM: Virtualizing the Trusted Platform Module. In: USENIX Security Symposium (2006)"},{"key":"11_CR10","unstructured":"Biba, K.J.: Integrity Considerations for Secure Computer Systems. Tech. Rep. MTR-3153, MITRE (1975)"},{"key":"11_CR11","unstructured":"Carbone, M., Cui, W., Lu, L., Lee, W., Peinado, M., Jiang, X.: Mapping kernel objects to enable systematic integrity checking. In: Proceedings of the 16th ACM Conference on Computer and Communications Security"},{"key":"11_CR12","unstructured":"Chen, P.M., Noble, B.D.: When Virtual Is Better Than Real. In: Proc. HotOS (2001)"},{"key":"11_CR13","doi-asserted-by":"crossref","unstructured":"Clark, D.D., Wilson, D.R.: A Comparison of Commercial and Military Computer Security Policies. Security and Privacy (1987)","DOI":"10.1109\/SP.1987.10001"},{"key":"11_CR14","unstructured":"CVE-2010-3081, \n                    \n                      http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2010-3081"},{"key":"11_CR15","doi-asserted-by":"crossref","unstructured":"Fraser, T., Evenson, M.R., Arbaugh, W.A.: VICI Virtual Machine Introspection for Cognitive Immunity. In: Proceedings of the 2008 ACSAC (2008), \n                    \n                      http:\/\/dx.doi.org\/10.1109\/ACSAC.2008.33","DOI":"10.1109\/ACSAC.2008.33"},{"key":"11_CR16","doi-asserted-by":"crossref","unstructured":"Garfinkel, T., Pfaff, B., Chow, J., Rosenblum, M., Boneh, D.: Terra: A Virtual Machine-Based Platform for Trusted Computing. In: Proc. 19th ACM SOSP (2003)","DOI":"10.1145\/945445.945464"},{"key":"11_CR17","unstructured":"Garfinkel, T., Rosenblum, M.: A Virtual Machine Introspection Based Architecture for Intrusion Detection. In: Proc. NDSS (2003)"},{"key":"11_CR18","doi-asserted-by":"crossref","unstructured":"Gasmi, Y., Sadeghi, A.R., Stewin, P., Unger, M., Asokan, N.: Beyond Secure Channels. In: Proc. ACM Workshop on Scalable Trusted Computing (2007)","DOI":"10.1145\/1314354.1314363"},{"key":"11_CR19","unstructured":"Goldman, K., Perez, R., Sailer, R.: Linking Remote Attestation to Secure Tunnel Endpoints. In: Proc. First ACM Workshop on Scalable Trusted Computing (2006), \n                    \n                      http:\/\/doi.acm.org\/10.1145\/1179474.1179481"},{"key":"11_CR20","unstructured":"Haldar, V., Chandra, D., Franz, M.: Semantic remote attestation: a virtual machine directed approach to trusted computing. In: Proceedings of the 3rd Conference on Virtual Machine Research And Technology Symposium (2004)"},{"key":"11_CR21","doi-asserted-by":"publisher","first-page":"74","DOI":"10.1145\/1368506.1368517","volume":"42","author":"B. Hay","year":"2008","unstructured":"Hay, B., Nance, K.: Forensics examination of volatile system data using virtual introspection. SIGOPS Oper. Syst. Rev.\u00a042, 74\u201382 (2008)","journal-title":"SIGOPS Oper. Syst. Rev."},{"key":"11_CR22","unstructured":"Trusted Execution Technology, \n                    \n                      http:\/\/www.intel.com\/technology\/security\/"},{"key":"11_CR23","doi-asserted-by":"crossref","unstructured":"Jaeger, T., Sailer, R., Shankar, U.: PRIMA: Policy-Reduced Integrity Measurement Architecture. In: Proc. 11th ACM SACMAT (2006)","DOI":"10.1145\/1133058.1133063"},{"key":"11_CR24","unstructured":"Jaeger, T., Sailer, R., Zhang, X.: Analyzing Integrity Protection in the SELinux Example Policy. In: Proc. 12th USENIX-SS (2003)"},{"key":"11_CR25","doi-asserted-by":"crossref","unstructured":"Joshi, A., King, S.T., Dunlap, G.W., Chen, P.M.: Detecting past and present intrusions through vulnerability-specific predicates. In: SOSP. ACM (2005)","DOI":"10.1145\/1095810.1095820"},{"key":"11_CR26","unstructured":"Kennell, R., Jamieson, L.H.: Establishing the genuinity of remote computer systems. In: USENIX Security Symposium (2003), \n                    \n                      http:\/\/portal.acm.org\/citation.cfm?id=1251353.1251374"},{"key":"11_CR27","doi-asserted-by":"crossref","unstructured":"Klein, G., et al.: seL4: Formal Verification of an OS Kernel. In: SOSP (2009)","DOI":"10.1145\/1629575.1629596"},{"key":"11_CR28","doi-asserted-by":"crossref","unstructured":"Li, N., Mao, Z., Chen, H.: Usable Mandatory Integrity Protection for Operating Systems. In: Proc. IEEE SSP (2007)","DOI":"10.1109\/SP.2007.37"},{"key":"11_CR29","unstructured":"Integrity: Linux Integrity Module(LIM), \n                    \n                      http:\/\/lwn.net\/Articles\/287790\/"},{"key":"11_CR30","unstructured":"Litty, L., Lagar-Cavilla, H.A., Lie, D.: Hypervisor Support for Identifying Covertly Executing Binaries. In: Proc. 17th Usenix Security Symposium (2008)"},{"key":"11_CR31","unstructured":"Maruyama, H., Seliger, F., Nagaratnam, N., Ebringer, T., Munetoh, S., Yoshihama, S., Nakamura, T.: Trusted Platform on Demand. Tech. Rep. RT0564. IBM (2004)"},{"key":"11_CR32","doi-asserted-by":"crossref","unstructured":"McCune, J.M., Li, Y., Qu, N., Zhou, Z., Datta, A., Gligor, V., Perrig, A.: TrustVisor: Efficient TCB Reduction and Attestation. In: Proc. IEEE SSP (2010), \n                    \n                      http:\/\/dx.doi.org\/10.1109\/SP.2010.17","DOI":"10.1109\/SP.2010.17"},{"key":"11_CR33","doi-asserted-by":"crossref","unstructured":"McCune, J.M., Parno, B.J., Perrig, A., Reiter, M.K., Isozaki, H.: Flicker: An Execution Infrastructure for TCB Minimization. In: Proc. 3rd ACM SIGOPS\/EuroSys (2008)","DOI":"10.1145\/1352592.1352625"},{"key":"11_CR34","doi-asserted-by":"crossref","unstructured":"Moyer, T., Butler, K., Schiffman, J., McDaniel, P., Jaeger, T.: Scalable Asynchronous Web Content Attestation. In: ACSAC 2009 (2009)","DOI":"10.1109\/ACSAC.2009.19"},{"key":"11_CR35","doi-asserted-by":"crossref","unstructured":"Murray, D.G., Milos, G., Hand, S.: Improving xen security through disaggregation. In: VEE. VEE 2008. ACM (2008)","DOI":"10.1145\/1346256.1346278"},{"key":"11_CR36","unstructured":"Linux Kernel Backdoors And Their Detection, \n                    \n                      http:\/\/invisiblethings.org\/papers\/ITUnderground2004_Linux_kernel_backdoors.ppt"},{"key":"11_CR37","unstructured":"Security-enhanced linux, \n                    \n                      http:\/\/www.nsa.gov\/selinux"},{"key":"11_CR38","unstructured":"OpenTC: OpenTC PET, \n                    \n                      http:\/\/www.opentc.net\/publications\/OpenTC_PET_prototype_documentation_v1.0.pdf"},{"key":"11_CR39","doi-asserted-by":"crossref","unstructured":"Parno, B., McCune, J.M., Perrig, A.: Bootstrapping Trust in Commodity Computers. In: IEEE SP 2010 (2010)","DOI":"10.1109\/SP.2010.32"},{"key":"11_CR40","doi-asserted-by":"crossref","unstructured":"Payne, B.D., Carbone, M., Lee, W.: Secure and Flexible Monitoring of Virtual Machines. In: ACSAC (2007)","DOI":"10.1109\/ACSAC.2007.4413005"},{"key":"11_CR41","doi-asserted-by":"crossref","unstructured":"Payne, B.D., Carbone, M., Sharif, M., Lee, W.: Lares: An architecture for secure active monitoring using virtualization. In: IEEE Symposium on Security and Privacy (May 2008)","DOI":"10.1109\/SP.2008.24"},{"key":"11_CR42","unstructured":"Petroni, N.L., Timothy, J., Jesus, F., William, M., Arbaugh, A.: Copilot - A Coprocessor-based Kernel Runtime Integrity Monitor. In: Proc. 13th USENIX Security Symposium (2004)"},{"key":"11_CR43","unstructured":"Sailer, R., Zhang, X., Jaeger, T., van Doorn, L.: Design and Implementation of a TCG-based Integrity Measurement Architecture. In: USENIX Security Symposium (2004)"},{"key":"11_CR44","unstructured":"Santos, N., Gummadi, K.P., Rodrigues, R.: Towards Trusted Cloud Computing. In: HOTCLOUD (2009)"},{"key":"11_CR45","doi-asserted-by":"crossref","unstructured":"Schiffman, J., Moyer, T., Shal, C., Jaeger, T., McDaniel, P.: Justifying integrity using a virtual machine verifier. In: Annual Computer Security Applications Conference, pp. 83\u201392(December 2009)","DOI":"10.1109\/ACSAC.2009.18"},{"key":"11_CR46","doi-asserted-by":"crossref","unstructured":"Schiffman, J., Moyer, T., Jaeger, T., McDaniel, P.: Network-based Root of Trust for Installation. IEEE Security & Privacy (2011)","DOI":"10.1109\/MSP.2011.15"},{"key":"11_CR47","doi-asserted-by":"crossref","unstructured":"Seshadri, A., Luk, M., Qu, N., Perrig, A.: Secvisor: A Tiny Hypervisor To Provide Lifetime Kernel Code Integrity For Commodity Oses. In: Proceedings of Twenty-First ACM SOSP (2007)","DOI":"10.1145\/1294261.1294294"},{"key":"11_CR48","doi-asserted-by":"crossref","unstructured":"Seshadri, A., Luk, M., Shi, E., Perrig, A., van Doorn, L., Khosla, P.: Pioneer: Verifying Code Integrity And Enforcing Untampered Code Execution On Legacy Systems. In: Proceedings of the 20th ACM SOSP (2005)","DOI":"10.1145\/1095810.1095812"},{"key":"11_CR49","unstructured":"Shankar, U., Jaeger, T., Sailer, R.: Toward Automated Information-Flow Integrity Verification for Security-Critical Applications. In: Proc. 2006 NDSS (2006)"},{"key":"11_CR50","doi-asserted-by":"crossref","unstructured":"Sharif, M.I., Lee, W., Cui, W., Lanzi, A.: Secure in-vm monitoring using hardware virtualization. In: Proceedings of the 16th ACM Conference on Computer and Communications Security (2009)","DOI":"10.1145\/1653662.1653720"},{"key":"11_CR51","unstructured":"Shi, E., Perrig, A., van Doorn, L.: BIND: A Fine-Grained Attestation Service for Secure Distributed Systems. In: IEEE SP 2005 (2005)"},{"key":"11_CR52","unstructured":"Sirer, E.G., de Bruijn, W., Reynolds, P., Shieh, A., Walsh, K., Williams, D., Schneider, F.B.: Logical attestation: an authorization architecture for trustworthy computing. In: Proceedings of the Twenty-Third ACM Symposium on Operating Systems Principles, New York, NY, USA, pp. 249\u2013264 (2011), \n                    \n                      http:\/\/doi.acm.org\/10.1145\/2043556.2043580"},{"key":"11_CR53","unstructured":"Smalley, S., Vance, C., Salamon, W.: Implementing SELinux as a Linux Security Module. Tech. Rep. 01-043, NAI Labs (2001)"},{"key":"11_CR54","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"72","DOI":"10.1007\/3-540-45853-0_5","volume-title":"Computer Security - ESORICS 2002","author":"S.W. Smith","year":"2002","unstructured":"Smith, S.W.: Outbound Authentication for Programmable Secure Coprocessors. In: Gollmann, D., Karjoth, G., Waidner, M. (eds.) ESORICS 2002. LNCS, vol.\u00a02502, pp. 72\u201389. Springer, Heidelberg (2002)"},{"key":"11_CR55","unstructured":"Sony: Update on playstation network and qriocity (April 2011), \n                    \n                      http:\/\/blog.us.playstation.com\/2011\/04\/26\/update-on-playstation-network-and-qriocity"},{"key":"11_CR56","unstructured":"Srinivasan, D., Wang, Z., Jiang, X., Xu, D.: Process out-grafting: an efficient \u201dout-of-vm\u201d approach for fine-grained process execution monitoring. In: Proceedings of the 18th ACM Conference on Computer and Communications Security, New York, NY, USA, pp. 363\u2013374 (2011), \n                    \n                      http:\/\/doi.acm.org\/10.1145\/2046707.2046751"},{"key":"11_CR57","doi-asserted-by":"crossref","unstructured":"St. Clair, L., Schiffman, J., Jaeger, T., McDaniel, P.: Establishing and Sustaining System Integrity via Root of Trust Installation. In: Annual Computer Security Applications Conference (2007)","DOI":"10.1109\/ACSAC.2007.25"},{"key":"11_CR58","doi-asserted-by":"publisher","first-page":"209","DOI":"10.1145\/1755913.1755935","volume-title":"Proceedings of the 5th European Conference on Computer Systems, EuroSys 2010","author":"U. Steinberg","year":"2010","unstructured":"Steinberg, U., Kauer, B.: Nova: a microhypervisor-based secure virtualization architecture. In: Proceedings of the 5th European Conference on Computer Systems, EuroSys 2010, pp. 209\u2013222. ACM, New York (2010)"},{"key":"11_CR59","doi-asserted-by":"crossref","unstructured":"Stumpf, F., Fuchs, A., Katzenbeisser, S., Eckert, C.: Improving the scalability of platform attestation. In: ACM Workshop on Scalable Trusted Computing (2008)","DOI":"10.1145\/1456455.1456457"},{"key":"11_CR60","doi-asserted-by":"crossref","unstructured":"Sun, W., Sekar, R., Poothia, G., Karandikar, T.: Practical Proactive Integrity Preservation: A Basis for Malware Defense. In: Proc. 2008 IEEE SSP (2008)","DOI":"10.1109\/SP.2008.35"},{"key":"11_CR61","unstructured":"Ta-Min, R., Litty, L., Lie, D.: Splitting interfaces: making trust between applications and operating systems configurable. In: OSDI. USENIX Association, Berkeley (2007)"},{"key":"11_CR62","unstructured":"TCG: Infrastructure Subject Key Attestation Evidence Extension Version 1.0, Revision 5. Tech. report (2005)"},{"key":"11_CR63","unstructured":"TCG: Trusted Network Connect: Open Standards for Integrity-based Network Access Control. Technical report (2005), \n                    \n                      http:\/\/www.trustedcomputinggroup.org"},{"key":"11_CR64","unstructured":"TCG: Trusted Platform Module (2005), \n                    \n                      https:\/\/www.trustedcomputinggroup.org\/specs\/TPM\/"},{"key":"11_CR65","unstructured":"Trousers, \n                    \n                      http:\/\/trousers.sourceforge.net\/"},{"key":"11_CR66","unstructured":"VMWare VMsafe, \n                    \n                      http:\/\/www.vmware.com\/go\/vmsafe"}],"container-title":["Lecture Notes in Computer Science","Trust and Trustworthy Computing"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-30921-2_11.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,5,4]],"date-time":"2021-05-04T11:33:39Z","timestamp":1620128019000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-30921-2_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2012]]},"ISBN":["9783642309205","9783642309212"],"references-count":66,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-30921-2_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2012]]}}}