摘要
通过对虚拟机UML(user-mode Linux)的体系结构的分析,结合它自身的特点,提出了一种适合于UML的主机入侵检测方法:关于虚拟机的主机系统调用的入侵检测系统。这种方法是从虚拟机外部,即它的虚拟机管理器VMM(Virtual Machine Monitor)上采集数据,和传统的在虚拟机内部采集数据的方法比较,这种方法速度快,而且还很安全。
This paper proposes a host intrusion detection system suitable for user-mode Linux based on the analysis of UML architecture and its own characteristics. This method is host intrusion detection system under UML it collects data from exterior of the virtual machine, i, e. virtual machine monitor. Compared ,with the traditional method of data collecting from interior of the virtual machine, this method is faster and safe.
出处
《电脑开发与应用》
2008年第9期2-4,8,共4页
Computer Development & Applications
基金
山西省自然科学基金资助项目(20041047)
太原理工大学博士基金资助项目(12903376)
