{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,17]],"date-time":"2026-01-17T19:11:03Z","timestamp":1768677063796,"version":"3.49.0"},"reference-count":99,"publisher":"Association for Computing Machinery (ACM)","issue":"3","license":[{"start":{"date-parts":[[2013,6,1]],"date-time":"2013-06-01T00:00:00Z","timestamp":1370044800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"New Sz\u00e9chenyi Plan"},{"DOI":"10.13039\/501100003825","name":"Magyar Tudom\u00e1nyos Akad\u00e9mia","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100003825","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2013,6]]},"abstract":"<jats:p>Virtualization is a powerful technology for increasing the efficiency of computing services; however, besides its advantages, it also raises a number of security issues. In this article, we provide a thorough survey of those security issues in hardware virtualization. We focus on potential vulnerabilities and existing attacks on various virtualization platforms, but we also briefly sketch some possible countermeasures. To the best of our knowledge, this is the first survey of security issues in hardware virtualization with this level of details. Moreover, the adversary model and the structuring of the attack vectors are original contributions, never published before.<\/jats:p>","DOI":"10.1145\/2480741.2480757","type":"journal-article","created":{"date-parts":[[2013,7,1]],"date-time":"2013-07-01T12:27:28Z","timestamp":1372681648000},"page":"1-34","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":56,"title":["A survey of security issues in hardware virtualization"],"prefix":"10.1145","volume":"45","author":[{"given":"G\u00e1bor","family":"P\u00e9k","sequence":"first","affiliation":[{"name":"Budapest University of Technology and Economics and K\u00dcRT Co., Budapest, Hungary"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Levente","family":"Butty\u00e1n","sequence":"additional","affiliation":[{"name":"Budapest University of Technology and Economics, Budapest, Hungary"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Boldizs\u00e1r","family":"Bencs\u00e1th","sequence":"additional","affiliation":[{"name":"Budapest University of Technology and Economics, Budapest, Hungary"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2013,7,3]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1168857.1168860"},{"key":"e_1_2_1_2_1","volume-title":"Proceedings of the Linux Symposium (OLS'09)","author":"Arcangeli A."},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866313"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046752"},{"key":"e_1_2_1_5_1","volume-title":"Proceedings of the USENIX Annual Technical Conference, FREENIX Track. 41--46","author":"Bellard F.","year":"2005"},{"key":"e_1_2_1_6_1","unstructured":"Bellard F. 2008. QEMU. http:\/\/wiki.gemu.org\/indx.html.  Bellard F. 2008. QEMU. http:\/\/wiki.gemu.org\/indx.html."},{"key":"e_1_2_1_7_1","volume-title":"Duqu: A stuxnet-like malware found in the wild. Tech. rep., BME CrySyS Lab.","author":"Bencs\u00e1th B.","year":"2011"},{"key":"e_1_2_1_8_1","unstructured":"Bert. 2010. Which ESX version am I running on &quest; http:\/\/virtwo.blogspot.hu\/2010\/04\/which-esx-version-am-i-running-on.html.  Bert. 2010. Which ESX version am I running on &quest; http:\/\/virtwo.blogspot.hu\/2010\/04\/which-esx-version-am-i-running-on.html."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046753"},{"key":"e_1_2_1_10_1","unstructured":"Butler J. M. and Vandenbrink R. 2009. IT audit for the virtual environment. SANS Whitepaper. http:\/\/www.sans.org\/.  Butler J. M. and Vandenbrink R. 2009. IT audit for the virtual environment. SANS Whitepaper. http:\/\/www.sans.org\/."},{"key":"e_1_2_1_11_1","volume-title":"Proceedings of the 38th Annual IEEE International Conference on Dependable Systems and Networks (DSN'08)","author":"Chen X."},{"key":"e_1_2_1_12_1","unstructured":"Cisco and VMware. 2009. DMZ virtualization using VMware vSphere 4 and the Cisco Nexus 1000V virtual switch. http:\/\/www.VMWare.com\/resources\/tech resource\/10035.  Cisco and VMware. 2009. DMZ virtualization using VMware vSphere 4 and the Cisco Nexus 1000V virtual switch. http:\/\/www.VMWare.com\/resources\/tech resource\/10035."},{"key":"e_1_2_1_13_1","unstructured":"Citrix. 2007. XenServer. http:\/\/www.citrix.com\/English\/ps2\/products\/product.asp&quest;contentID\\=683148.  Citrix. 2007. XenServer. http:\/\/www.citrix.com\/English\/ps2\/products\/product.asp&quest;contentID\\=683148."},{"key":"e_1_2_1_14_1","volume-title":"Proceedings of the 7th International Symposium on Recent Advances in Intrusion Detection (RAID). 39--58","author":"Dagon D."},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455779"},{"key":"e_1_2_1_16_1","doi-asserted-by":"crossref","unstructured":"Dolev D. and Yao A. C. 1981. On the security of public key protocols. Tech. rep. Stanford University CA.   Dolev D. and Yao A. C. 1981. On the security of public key protocols. Tech. rep. Stanford University CA.","DOI":"10.1109\/SFCS.1981.32"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/844128.844148"},{"key":"e_1_2_1_18_1","unstructured":"Dwivedi H. 2003. Storage security. http:\/\/www.blockhat.com\/presentations\/bh-usa-03\/bh-us-03-Dwivedi.pdf.  Dwivedi H. 2003. Storage security. http:\/\/www.blockhat.com\/presentations\/bh-usa-03\/bh-us-03-Dwivedi.pdf."},{"key":"e_1_2_1_19_1","unstructured":"Dwivedi H. 2004. Insecure IP storage networks. http:\/\/blackhat.com\/presentations\/bh-usa-04\/bh-us-04-Dwivedi.pdf.  Dwivedi H. 2004. Insecure IP storage networks. http:\/\/blackhat.com\/presentations\/bh-usa-04\/bh-us-04-Dwivedi.pdf."},{"key":"e_1_2_1_20_1","unstructured":"Dwivedi H. 2005. iSCSI Security - Insecure SCSI. http:\/\/www.blackhat.com\/presentations\/bh-usa-05\/bh-us-05-Dwivedi-update.pdf.  Dwivedi H. 2005. iSCSI Security - Insecure SCSI. http:\/\/www.blackhat.com\/presentations\/bh-usa-05\/bh-us-05-Dwivedi-update.pdf."},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/224057.224076"},{"key":"e_1_2_1_22_1","unstructured":"Ferrie P. 2006. Attacks on virtual machine emulators. Symantec Whitepaper. http:\/\/www.symantec.com\/avcenter\/refrence\/virtual_Machine_Threats.pdf.  Ferrie P. 2006. Attacks on virtual machine emulators. Symantec Whitepaper. http:\/\/www.symantec.com\/avcenter\/refrence\/virtual_Machine_Threats.pdf."},{"key":"e_1_2_1_23_1","volume-title":"Proceedings of the 16th USENIX Security Symposium.","author":"Ferrie P.","year":"2007"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368506.1368518"},{"key":"e_1_2_1_25_1","unstructured":"FreeBSD. 2000. FreeBSD Handbook - Jails. http:\/\/www.freebsd.org\/doc\/handbook\/jails.html.  FreeBSD. 2000. FreeBSD Handbook - Jails. http:\/\/www.freebsd.org\/doc\/handbook\/jails.html."},{"key":"e_1_2_1_26_1","volume-title":"Proceedings of the 11th Workshop on Hot Topics in Operating Systems (HotOS-XI).","author":"Garfinkel T."},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/1831407.1831429"},{"key":"e_1_2_1_28_1","volume-title":"Proceedings of the 6th IEEE Information Assurance Workshop.","author":"Holz T."},{"key":"e_1_2_1_29_1","unstructured":"iSecLab. 2007. Analysing unknown binaries. http:\/\/anubis.iseclab.org\/.  iSecLab. 2007. Analysing unknown binaries. http:\/\/anubis.iseclab.org\/."},{"key":"e_1_2_1_30_1","unstructured":"Kato K. 2003. VMware backdoor commands. http:\/\/chitchat.at.infoseek.co.jp\/vmware\/backdoor.html.  Kato K. 2003. VMware backdoor commands. http:\/\/chitchat.at.infoseek.co.jp\/vmware\/backdoor.html."},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/1815961.1816010"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.38"},{"key":"e_1_2_1_33_1","unstructured":"Klein A. 2010. Detecting virtualization over the Web with IE9 (platform preview) and semi-permanent computer finger printing and user tracking in IE9 (platform preview). http:\/\/www.trusteer.com\/sites\/default\/files\/VM_Detection_and_Temporary_User_Tracking_in_IE9_Platform_Preview.pdf.  Klein A. 2010. Detecting virtualization over the Web with IE9 (platform preview) and semi-permanent computer finger printing and user tracking in IE9 (platform preview). http:\/\/www.trusteer.com\/sites\/default\/files\/VM_Detection_and_Temporary_User_Tracking_in_IE9_Platform_Preview.pdf."},{"key":"e_1_2_1_34_1","unstructured":"Klein T. 2008. ScoopyDoo - VMware Fingerprint Suite. http:\/\/www.trapkit.de\/research\/vmm\/scoopydoo\/index.html.  Klein T. 2008. ScoopyDoo - VMware Fingerprint Suite. http:\/\/www.trapkit.de\/research\/vmm\/scoopydoo\/index.html."},{"key":"e_1_2_1_35_1","volume-title":"Cloudburst: A VMware guest to host escape story","author":"Kortchinsky K.","year":"2009"},{"key":"e_1_2_1_36_1","unstructured":"KVM. 2007. Kernel-based Virtual Machine. http:\/\/www.linux-kvm.org\/page\/Main_Page.  KVM. 2007. Kernel-based Virtual Machine. http:\/\/www.linux-kvm.org\/page\/Main_Page."},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISCA.2005.14"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/49.536480"},{"key":"e_1_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2010.29"},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/356989.357005"},{"key":"e_1_2_1_41_1","unstructured":"McAfee. 2011. McAfee DeepSAFE. http:\/\/www.mcafee.com\/us\/solutions\/mcafee-deepsafe.aspx.  McAfee. 2011. McAfee DeepSAFE. http:\/\/www.mcafee.com\/us\/solutions\/mcafee-deepsafe.aspx."},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.17"},{"key":"e_1_2_1_43_1","unstructured":"Microsoft. 2006. Virtual PC. http:\/\/www.microsoft.com\/windows\/virtual-pc\/default.aspx.  Microsoft. 2006. Virtual PC. http:\/\/www.microsoft.com\/windows\/virtual-pc\/default.aspx."},{"key":"e_1_2_1_44_1","unstructured":"Microsoft. 2008. Hyper-V. http:\/\/technet.microsoft.com\/en-us\/windowsserver\/dd448604.  Microsoft. 2008. Hyper-V. http:\/\/technet.microsoft.com\/en-us\/windowsserver\/dd448604."},{"key":"e_1_2_1_45_1","unstructured":"Microsoft. 2012. Virtual PC - Configure BIOS for hardware assisted virtualization (HAV) PCs. https:\/\/www.microsoft.com\/windows\/virtual-pc\/support\/configure-bios.aspx.  Microsoft. 2012. Virtual PC - Configure BIOS for hardware assisted virtualization (HAV) PCs. https:\/\/www.microsoft.com\/windows\/virtual-pc\/support\/configure-bios.aspx."},{"key":"e_1_2_1_46_1","unstructured":"Oberheide J. Cooke E. and Jahanian F. 2008. Empirical exploitation of live virtual machine migration. http:\/\/www.eecs.mich.edu\/fjgroup\/pubs\/blackhat08-migration.pdf.  Oberheide J. Cooke E. and Jahanian F. 2008. Empirical exploitation of live virtual machine migration. http:\/\/www.eecs.mich.edu\/fjgroup\/pubs\/blackhat08-migration.pdf."},{"key":"e_1_2_1_47_1","unstructured":"Offensive Computing. 2003. http:\/\/www.offensivecomputing.net\/.  Offensive Computing. 2003. http:\/\/www.offensivecomputing.net\/."},{"key":"e_1_2_1_48_1","unstructured":"Omella A. A. 2006. Methods for virtual machine detection. http:\/\/www.s21sec.com\/descargas\/vmware-eng.pdf.  Omella A. A. 2006. Methods for virtual machine detection. http:\/\/www.s21sec.com\/descargas\/vmware-eng.pdf."},{"key":"e_1_2_1_49_1","unstructured":"OpenVZ. 2005. Open VirtualiZation. http:\/\/wiki.openvz.org\/Main_Page.  OpenVZ. 2005. Open VirtualiZation. http:\/\/wiki.openvz.org\/Main_Page."},{"key":"e_1_2_1_50_1","unstructured":"Oracle. 2004. Oracle Solaris Containers. http:\/\/www.oracle.com\/technetwork\/server-storage\/solaris\/containers-169727.html.  Oracle. 2004. Oracle Solaris Containers. http:\/\/www.oracle.com\/technetwork\/server-storage\/solaris\/containers-169727.html."},{"key":"e_1_2_1_51_1","unstructured":"Oracle. 2007. VirtualBox. http:\/\/www.virtualbox.org\/.  Oracle. 2007. VirtualBox. http:\/\/www.virtualbox.org\/."},{"key":"e_1_2_1_52_1","unstructured":"Ormandy T. and Tinnes J. 2009. Invalid PF exception code in VMware can result in guest privilege escalation. http:\/\/seclists.org\/fulldisclosure\/2009\/Oct\/330.  Ormandy T. and Tinnes J. 2009. Invalid PF exception code in VMware can result in guest privilege escalation. http:\/\/seclists.org\/fulldisclosure\/2009\/Oct\/330."},{"key":"e_1_2_1_53_1","volume-title":"Information Supplement: PCI DSS virtualization guidelines","author":"PCI Security Standards Council","year":"2011"},{"key":"e_1_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/1972551.1972554"},{"key":"e_1_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/1216370.1216373"},{"key":"e_1_2_1_56_1","volume-title":"Proceedings of the Defcon 14","author":"Quist D."},{"key":"e_1_2_1_57_1","unstructured":"Quist D. and Smith V. 2008. Detecting the presence of virtual machines using the local data table. http:\/\/www.offensivecomputing.net\/files\/active\/0\/vm.pdf.  Quist D. and Smith V. 2008. Detecting the presence of virtual machines using the local data table. http:\/\/www.offensivecomputing.net\/files\/active\/0\/vm.pdf."},{"key":"e_1_2_1_58_1","volume-title":"Proceedings of the Information Security Conference (ISC'07)","author":"Raffetseder T."},{"key":"e_1_2_1_59_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653687"},{"key":"e_1_2_1_60_1","unstructured":"Rutkowska J. 2004. Red Pill\u2026 or how to detect VMM using (almost) one CPU instruction. http:\/\/www.securiteam.com\/securityreviews\/6Z00H20BQS.html.  Rutkowska J. 2004. Red Pill\u2026 or how to detect VMM using (almost) one CPU instruction. http:\/\/www.securiteam.com\/securityreviews\/6Z00H20BQS.html."},{"key":"e_1_2_1_61_1","unstructured":"Rutkowska J. 2006. Subverting Vista Kernel for fun and profit. http:\/\/blackhat.com\/presentations\/bh-usa-06\/BH-US-06-Rutkowska.pdf.  Rutkowska J. 2006. Subverting Vista Kernel for fun and profit. http:\/\/blackhat.com\/presentations\/bh-usa-06\/BH-US-06-Rutkowska.pdf."},{"key":"e_1_2_1_62_1","volume-title":"Shype: Secure hypervisor approach to trusted virtualized systems. In IBM Res. Rep. RC23511.","author":"Sailer R.","year":"2005"},{"key":"e_1_2_1_63_1","unstructured":"Scarfone K. Souppaya M. and Hoffman P. 2011. Guide to security for full virtualization technologies: Recommendations of the National Institute of Standards and Technology. http:\/\/csrc.nist.gov\/publications\/nistpubs\/800-125\/SP800-125-final.pdf.   Scarfone K. Souppaya M. and Hoffman P. 2011. Guide to security for full virtualization technologies: Recommendations of the National Institute of Standards and Technology. http:\/\/csrc.nist.gov\/publications\/nistpubs\/800-125\/SP800-125-final.pdf."},{"key":"e_1_2_1_64_1","volume-title":"Virtualization: State of the art","author":"Scope A.","year":"2008"},{"key":"e_1_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"e_1_2_1_66_1","unstructured":"Shelton T. 2005. VMware natd heap overflow. http:\/\/lists.grok.og\/uk\/pipermail\/full-disclosure\/2005-December\/040442.html.  Shelton T. 2005. VMware natd heap overflow. http:\/\/lists.grok.og\/uk\/pipermail\/full-disclosure\/2005-December\/040442.html."},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-31979-5_9"},{"key":"e_1_2_1_68_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2005.173"},{"key":"e_1_2_1_69_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-89862-7_1"},{"key":"e_1_2_1_70_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046751"},{"key":"e_1_2_1_71_1","doi-asserted-by":"publisher","DOI":"10.1145\/1755913.1755935"},{"key":"e_1_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISCA.2005.22"},{"key":"e_1_2_1_73_1","doi-asserted-by":"publisher","DOI":"10.1145\/1972551.1972552"},{"key":"e_1_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046754"},{"key":"e_1_2_1_75_1","unstructured":"Takemura C. and Crawford L. S. 2007. The Book of Xen A Practical Guide for the System Administrator. No Strach Press San Francisco CA.   Takemura C. and Crawford L. S. 2007. The Book of Xen A Practical Guide for the System Administrator. No Strach Press San Francisco CA."},{"key":"e_1_2_1_76_1","volume-title":"KVM: Bare-metal hypervisor&quest","author":"VirtualizationReview","year":"2009"},{"key":"e_1_2_1_77_1","unstructured":"VMware. 1999. Workstation. http:\/\/www.vmware.com\/products\/workstation\/.  VMware. 1999. Workstation. http:\/\/www.vmware.com\/products\/workstation\/."},{"key":"e_1_2_1_78_1","unstructured":"VMware. 2006. VMware ESX Server 3 802.1Q VLAN Solutions. http:\/\/www.VMWare.com\/resources\/techresources\/412.  VMware. 2006. VMware ESX Server 3 802.1Q VLAN Solutions. http:\/\/www.VMWare.com\/resources\/techresources\/412."},{"key":"e_1_2_1_79_1","unstructured":"VMware. 2007. ESXi. http:\/\/www.vmware.com\/products\/vsphere-hypervisor\/overview.html.  VMware. 2007. ESXi. http:\/\/www.vmware.com\/products\/vsphere-hypervisor\/overview.html."},{"key":"e_1_2_1_80_1","unstructured":"VMware. 2008a. SAN system design and deployment guide. http:\/\/www.VMWare.com\/resources\/techresources\/772.  VMware. 2008a. SAN system design and deployment guide. http:\/\/www.VMWare.com\/resources\/techresources\/772."},{"key":"e_1_2_1_81_1","unstructured":"VMware. 2008b. Virtual networking concepts. http:\/\/www.VMWare.com\/resources\/techresources\/997.  VMware. 2008b. Virtual networking concepts. http:\/\/www.VMWare.com\/resources\/techresources\/997."},{"key":"e_1_2_1_82_1","unstructured":"VMware. 2009a. ESX monitor modes. http:\/\/communities.vmware.com\/docs\/DOC-9882\/.  VMware. 2009a. ESX monitor modes. http:\/\/communities.vmware.com\/docs\/DOC-9882\/."},{"key":"e_1_2_1_83_1","unstructured":"VMware. 2009b. Network segmentation in virtualized environments. http:\/\/www.VMWare.com\/resources\/techresources\/1052.  VMware. 2009b. Network segmentation in virtualized environments. http:\/\/www.VMWare.com\/resources\/techresources\/1052."},{"key":"e_1_2_1_84_1","unstructured":"VMware. 2009c. VMware ESX and VMware ESXi. http:\/\/www.vmware.com\/files\/pdf\/VMware-ESX-and-vmware-ESXi-DS-EN.pdf.  VMware. 2009c. VMware ESX and VMware ESXi. http:\/\/www.vmware.com\/files\/pdf\/VMware-ESX-and-vmware-ESXi-DS-EN.pdf."},{"key":"e_1_2_1_85_1","unstructured":"VMware. 2009d. What is new in VMware vSphere#8482;4: Storage. http:\/\/www.VMWare.com\/files\/pdf\/storage-with-VMWare-vSphere.pdf.  VMware. 2009d. What is new in VMware vSphere#8482;4: Storage. http:\/\/www.VMWare.com\/files\/pdf\/storage-with-VMWare-vSphere.pdf."},{"key":"e_1_2_1_86_1","unstructured":"VMware. 2010. VMWare vStorage virtual machine file system - technical overview and best practices. http:\/\/www.VMWare.com\/resources\/techresources\/10110.  VMware. 2010. VMWare vStorage virtual machine file system - technical overview and best practices. http:\/\/www.VMWare.com\/resources\/techresources\/10110."},{"key":"e_1_2_1_87_1","unstructured":"VMware. 2011a. Performance best practices for VMware vSphere 5.0. http:\/\/www.vmware.com\/pdf\/Perf_Best_Practices_vSphere5.0.pdf.  VMware. 2011a. Performance best practices for VMware vSphere 5.0. http:\/\/www.vmware.com\/pdf\/Perf_Best_Practices_vSphere5.0.pdf."},{"key":"e_1_2_1_88_1","doi-asserted-by":"crossref","unstructured":"VMware. 2011b. VMWare vSphere 4.1 security hardening guide. http:\/\/www.VMWare.com\/resources\/techresources\/10198.  VMware. 2011b. VMWare vSphere 4.1 security hardening guide. http:\/\/www.VMWare.com\/resources\/techresources\/10198.","DOI":"10.1002\/9781118255988.ch1"},{"key":"e_1_2_1_89_1","unstructured":"VMware. 2012. Configuring disks to use VMware Paravirtual SCSI (PVSCSI) adapters. http:\/\/kb.vmware.com\/selfservice\/microsites\/search.do&quest;language=en_US&cmd=displayKC&externalId=1010398.  VMware. 2012. Configuring disks to use VMware Paravirtual SCSI (PVSCSI) adapters. http:\/\/kb.vmware.com\/selfservice\/microsites\/search.do&quest;language=en_US&cmd=displayKC&externalId=1010398."},{"key":"e_1_2_1_90_1","doi-asserted-by":"publisher","DOI":"10.5555\/1060289.1060307"},{"key":"e_1_2_1_91_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.30"},{"key":"e_1_2_1_92_1","unstructured":"Wireshark. 2006. http:\/\/wiki.wireshark.org\/Gratuitous_ARP.  Wireshark. 2006. http:\/\/wiki.wireshark.org\/Gratuitous_ARP."},{"key":"e_1_2_1_93_1","unstructured":"Wojtczuk R. 2008a. Adventures with a certain Xen vulnerability (in the PVFB backend). http:\/\/hax.tor.hu\/read\/xen\/xenfb-adventures-10.pdf.  Wojtczuk R. 2008a. Adventures with a certain Xen vulnerability (in the PVFB backend). http:\/\/hax.tor.hu\/read\/xen\/xenfb-adventures-10.pdf."},{"key":"e_1_2_1_94_1","unstructured":"Wojtczuk R. 2008b. Xen Owning Trilogy. http:\/\/virtualization.com\/tag\/backhat\/.  Wojtczuk R. 2008b. Xen Owning Trilogy. http:\/\/virtualization.com\/tag\/backhat\/."},{"key":"e_1_2_1_95_1","unstructured":"Wojtczuk R. and Rutkowska J. 2009. Attacking Intel Trusted Execution Technology. http:\/\/invisiblethingslab.com.  Wojtczuk R. and Rutkowska J. 2009. Attacking Intel Trusted Execution Technology. http:\/\/invisiblethingslab.com."},{"key":"e_1_2_1_96_1","unstructured":"Wojtczuk R. and Rutkowska J. 2011. Following the white rabbit: Software attacks against Intel\u00ae VT-d technology. http:\/\/invisiblethingslab.com\/.  Wojtczuk R. and Rutkowska J. 2011. Following the white rabbit: Software attacks against Intel\u00ae VT-d technology. http:\/\/invisiblethingslab.com\/."},{"key":"e_1_2_1_97_1","unstructured":"Wojtczuk R. Rutkowska J. and Tereshkin A. 2009. Another way to circumvent Intel Trusted Execution Technology. http:\/\/invisiblethingslab.com\/.  Wojtczuk R. Rutkowska J. and Tereshkin A. 2009. Another way to circumvent Intel Trusted Execution Technology. http:\/\/invisiblethingslab.com\/."},{"key":"e_1_2_1_98_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2004.842221"},{"key":"e_1_2_1_99_1","unstructured":"Zovi D. A. D. 2006. Hardware virtualization rootkits. http:\/\/www.blackhat.com\/presentations\/bh-usa-06\/BH-US-06-Zovi.pdf.  Zovi D. A. D. 2006. Hardware virtualization rootkits. http:\/\/www.blackhat.com\/presentations\/bh-usa-06\/BH-US-06-Zovi.pdf."}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2480741.2480757","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2480741.2480757","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T08:39:14Z","timestamp":1750235954000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2480741.2480757"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013,6]]},"references-count":99,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2013,6]]}},"alternative-id":["10.1145\/2480741.2480757"],"URL":"https:\/\/doi.org\/10.1145\/2480741.2480757","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013,6]]},"assertion":[{"value":"2011-08-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2012-05-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2013-07-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}