{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,30]],"date-time":"2025-08-30T16:21:53Z","timestamp":1756570913069,"version":"3.37.3"},"reference-count":56,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"1","license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"name":"US National Science Foundation","award":["1453020"],"award-info":[{"award-number":["1453020"]}]},{"DOI":"10.13039\/501100001809","name":"National Science Foundation of China","doi-asserted-by":"crossref","award":["61672421","61402358"],"award-info":[{"award-number":["61672421","61402358"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"crossref"}]},{"DOI":"10.13039\/501100002338","name":"Ministry of Education of China","doi-asserted-by":"crossref","award":["20120201110010"],"award-info":[{"award-number":["20120201110010"]}],"id":[{"id":"10.13039\/501100002338","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Dependable and Secure Comput."],"published-print":{"date-parts":[[2019,1,1]]},"DOI":"10.1109\/tdsc.2017.2675991","type":"journal-article","created":{"date-parts":[[2017,3,2]],"date-time":"2017-03-02T19:34:48Z","timestamp":1488483288000},"page":"44-57","source":"Crossref","is-referenced-by-count":22,"title":["Design and Implementation of SecPod, A Framework for Virtualization-Based Security Systems"],"prefix":"10.1109","volume":"16","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5055-4552","authenticated-orcid":false,"given":"Xiaoguang","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yong","family":"Qi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhi","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yue","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yajin","family":"Zhou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455779"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660303"},{"journal-title":"Understanding the Linux Kernel","year":"2005","author":"bovet","key":"ref33"},{"journal-title":"Operating System Concepts","year":"2012","author":"silberschatz","key":"ref32"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.25"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315313"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/2872362.2872379"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2010.38"},{"key":"ref35","first-page":"39","article-title":"kGuard: Lightweight kernel protection against return-to-user attacks","author":"kemerlis","year":"2012","journal-title":"Proc 21st USENIX Conf Security Symp"},{"journal-title":"Computer Architecture A Quantitative Approach","year":"2012","author":"hennessy","key":"ref34"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/2517349.2522718"},{"journal-title":"A JIT for packet filters","year":"0","key":"ref27"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23233"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.25"},{"journal-title":"CVE database","article-title":"Common vulnerabilities and exposures database","year":"0","key":"ref1"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/2168836.2168850"},{"journal-title":"Wikipedia","article-title":"DMA attack","year":"0","key":"ref22"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945466"},{"journal-title":"Intel 64 and IA-32 Architectures Software Developer? Manual Intel Santa Clara CA USA","year":"2014","key":"ref24"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/HOTOS.2001.990073"},{"key":"ref26","first-page":"33","article-title":"FlexSC: Flexible system call scheduling with exception-less system calls","author":"soares","year":"2010","journal-title":"Proc of the 7th Symp on Operating systems design and implementation"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/1609956.1609960"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294295"},{"key":"ref51","first-page":"75","article-title":"XFI: Software guards for system address spaces","author":"erlingsson","year":"2006","journal-title":"Proc 7th USENIX Symp on Operating Systems Design and Implementation"},{"journal-title":"Xen 3 3 feature Shadow 3","year":"0","key":"ref56"},{"key":"ref55","first-page":"103","article-title":"Cassyopia: Compiler assisted system optimization","author":"rajagopalan","year":"2003","journal-title":"Proc 9th Conf Hot Topics Operating Syst"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1145\/2694344.2694386"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660350"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1145\/168619.168635"},{"key":"ref10","first-page":"363","article-title":"Process out-grafting: An efficient &#x201C;out-of-VM","author":"srinivasan","year":"2011","journal-title":"Proc 18th ACM Conf Comput Commun Secur"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653728"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-74320-0_11"},{"key":"ref12","first-page":"225","article-title":"KVM: The Linux virtual machine monitor","author":"kivity","year":"2007","journal-title":"Proc Ottawa Linux Symp"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/945461.945462"},{"key":"ref14","first-page":"115","article-title":"Efficient monitoring of untrusted kernel-mode execution","author":"srivastava","year":"2011","journal-title":"Proc 18th Annu Netw Distrib Syst Secur Symp"},{"journal-title":"VMware","article-title":"Performance evaluation of Intel EPT hardware assist","year":"0","key":"ref15"},{"journal-title":"Trusted Boot Project","article-title":"Trusted boot","year":"0","key":"ref16"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/1743546.1743574"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046754"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.30"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/1698750.1698752"},{"journal-title":"Data Execution Prevention","year":"0","key":"ref3"},{"key":"ref6","first-page":"243","article-title":"Hypervisor support for identifying covertly executing binaries","author":"litty","year":"2008","journal-title":"Proc 17th USENIX Security Symp"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/1755913.1755934"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-87403-4_1"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.26"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653720"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.35"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/1346281.1346284"},{"key":"ref48","first-page":"40","article-title":"Enhanced operating system security through efficient and fine-grained address space randomization","author":"giuffrida","year":"2012","journal-title":"Proc 21st USENIX Conf Security Symp"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/2043556.2043575"},{"key":"ref42","first-page":"191","article-title":"A virtual machine introspection based architecture for intrusion detection","author":"garfinkel","year":"2003","journal-title":"Proc 10th Netw Distrib Syst Secur Symp"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/1519065.1519072"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.40"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2011.11"}],"container-title":["IEEE Transactions on Dependable and Secure Computing"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8858\/8613030\/07866845.pdf?arnumber=7866845","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,13]],"date-time":"2022-07-13T20:48:35Z","timestamp":1657745315000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/7866845\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,1,1]]},"references-count":56,"journal-issue":{"issue":"1"},"URL":"https:\/\/doi.org\/10.1109\/tdsc.2017.2675991","relation":{},"ISSN":["1545-5971","1941-0018","2160-9209"],"issn-type":[{"type":"print","value":"1545-5971"},{"type":"electronic","value":"1941-0018"},{"type":"electronic","value":"2160-9209"}],"subject":[],"published":{"date-parts":[[2019,1,1]]}}}