{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,25]],"date-time":"2026-04-25T06:09:37Z","timestamp":1777097377204,"version":"3.51.4"},"reference-count":27,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011,9]]},"DOI":"10.1109\/icnss.2011.6059967","type":"proceedings-article","created":{"date-parts":[[2011,11,1]],"date-time":"2011-11-01T16:59:24Z","timestamp":1320166764000},"page":"113-120","source":"Crossref","is-referenced-by-count":55,"title":["CloudSec: A security monitoring appliance for Virtual Machines in the IaaS cloud model"],"prefix":"10.1109","author":[{"given":"Amani S.","family":"Ibrahim","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"James","family":"Hamlyn-Harris","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"John","family":"Grundy","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohamed","family":"Almorsy","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653720"},{"key":"ref11","doi-asserted-by":"crossref","first-page":"74","DOI":"10.1145\/1368506.1368517","article-title":"Forensics examination of volatile system data using virtual introspection","volume":"42","author":"brian","year":"2008","journal-title":"ACM SIGOPS Operating Syst Rev"},{"key":"ref12","doi-asserted-by":"crossref","first-page":"32","DOI":"10.1109\/MSP.2008.134","article-title":"Virtual Machine Introspection: Observation or Interference?","volume":"6","author":"kara","year":"2008","journal-title":"Journal of IEEE Security and Privacy"},{"key":"ref13","article-title":"DKSM: Subverting Virtual Machine Introspection for Fun and Profit","author":"sina","year":"0","journal-title":"Proc IEEE International Symposium on Reliable Distributed Systems"},{"key":"ref14","doi-asserted-by":"crossref","first-page":"40","DOI":"10.1109\/2.722284","article-title":"The Windows NT Kernel Architecture","volume":"31","author":"solomon","year":"1998","journal-title":"Computer"},{"key":"ref15","article-title":"McAfee Firewall Enterprise","year":"0","journal-title":"McAfee Inc"},{"key":"ref16","first-page":"175","article-title":"Distributed Intrusion Detection in Clouds Using Mobile Agents","author":"amir","year":"0","journal-title":"Proc of The Third International Conference on Advanced Engineering Computing and Applications in Sciences"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/ICISE.2009.1192"},{"key":"ref18","article-title":"An analysis of the cloud computing security problem","author":"mohamed","year":"0","journal-title":"Proc of The Asia Pacific Cloud Workshop (co-located with APSEC 2010)"},{"key":"ref19","first-page":"97","article-title":"Cloud security is not (just) virtualization security: a short paper","author":"mihai","year":"2009"},{"key":"ref4","article-title":"Stealthy Deployment and Execution of In-Guest Kernel Agents","author":"tzi-cker","year":"0","journal-title":"Black Hat"},{"key":"ref27","article-title":"An Introduction to VMsafe. Architecture, Performance, and Solutions","author":"seongbeom","year":"2009","journal-title":"VMWare Inc"},{"key":"ref3","article-title":"Virtual Appliances: A New Paradigm for Software Delivery","year":"2009","journal-title":"VMware"},{"key":"ref6","article-title":"Xenaccess Library","author":"payne","year":"2009"},{"key":"ref5","first-page":"233","article-title":"Lares: An Architecture for Secure Active Monitoring Using Virtualization","author":"payne","year":"0","journal-title":"Proc of the IEEE Symposium on Security and Privacy"},{"key":"ref8","doi-asserted-by":"crossref","first-page":"85","DOI":"10.1016\/j.entcs.2009.03.016","article-title":"Transparent Process Monitoring in a Virtual Environment","volume":"236","author":"fabrizio","year":"2009","journal-title":"Electronic Notes in Theoretical Computer Science"},{"key":"ref7","first-page":"393","article-title":"PsycoTrace: Virtual and Transparent Monitoring of a Process Self","author":"fabrizio","year":"0","journal-title":"Proc of the 17th Euromicro International Conference on Parallel Distributed and Network-based Processing"},{"key":"ref2","first-page":"191","article-title":"Virtual Machine Introspection Based Architecture for Intrusion Detection","author":"tal","year":"0","journal-title":"Proc Symp Network and Distributed System Security"},{"key":"ref9","first-page":"2029","article-title":"KvmSec: a security extension for Linux kernel virtual machines","author":"flavio","year":"0","journal-title":"Proc of the ACM Symposium on Applied Computing"},{"key":"ref1","article-title":"Emerging Security Challenges of Cloud Virtual Infrastructure","author":"ibrahim","year":"0","journal-title":"Proc of The Asia Pacific Cloud Workshop (co-located with APSEC 2010)"},{"key":"ref20","article-title":"Windows Symbol Packages","year":"2010","journal-title":"Microsoft"},{"key":"ref22","article-title":"Intel Trusted Exceution Technology","year":"2011","journal-title":"Intel"},{"key":"ref21","article-title":"Trusted Platform Module","year":"2011","journal-title":"Trusted Computing Group"},{"key":"ref24","article-title":"Hidden Processes Detection using the PspCidTable","author":"mihir","year":"0","journal-title":"MIEL Labs2010"},{"key":"ref23","article-title":"Intel&#x00AE; 64 and IA-32 Architectures Software Developer's Manual Volume 3 A: System Programming Guide, Part 1","year":"2011","journal-title":"Intel"},{"key":"ref26","article-title":"Debugging Tools For Windows","year":"2010","journal-title":"Microsoft"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653730"}],"event":{"name":"2011 5th International Conference on Network and System Security (NSS)","location":"Milan, Italy","start":{"date-parts":[[2011,9,6]]},"end":{"date-parts":[[2011,9,8]]}},"container-title":["2011 5th International Conference on Network and System Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx5\/6044613\/6059944\/06059967.pdf?arnumber=6059967","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,6,20]],"date-time":"2017-06-20T04:56:08Z","timestamp":1497934568000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/6059967\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,9]]},"references-count":27,"URL":"https:\/\/doi.org\/10.1109\/icnss.2011.6059967","relation":{},"subject":[],"published":{"date-parts":[[2011,9]]}}}