The auditing facility for a VMM security kernel
- 1 January 1990
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- p. 262-277
- https://doi.org/10.1109/risp.1990.63856
Abstract
The VAX security kernel, a prototype security kernel implemented as a virtual machine monitor (VMM) for the VAX architecture, is capable of emulating one or more virtual machines (VMs) on a single physical machine allowing multiple copies of virtual machine operating systems to execute concurrently. The system supports both VMS and ULTRIX as virtual machine operating systems. A fundamental component of any security kernel is the ability to produce an audit trial of security relevant events. While there are numerous examples of auditing subsystems at the DoD Trusted Computer System Evaluation Criteria (TCSEC) C2 or B1 level, there is much less experience with the requirements at the B2 level and above. The design and implementation of the VAX security kernel auditing facility, built to satisfy the requirements at the A1 level, are described.Keywords
This publication has 6 references indexed in Scilit:
- Detection of anomalous computer session activityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- A prototype real-time intrusion-detection expert systemPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- A VMM security kernel for the VAX architecturePublished by Institute of Electrical and Electronics Engineers (IEEE) ,1990
- The Design of an Effective Auditing SubsystemPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1987
- On the Design and the Implementation of Secure Xenix WorkstationsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1986
- Synchronization with eventcounts and sequencersCommunications of the ACM, 1979