| In conjunction with the ACM Conference on Computer & Communications Security
Workshop Program
Location: GMU Johnson Center Room G (Campus Map)
Breakfast (8:00am - 9:00am)
Keynote (9:00am - 10:30am)
Building Virtualization Security (Brandon Baker & William Arbaugh)[Presentation]
In 2003 Microsoft began work on a hardware assisted virtualization system integrated into the operating system. This project was recently released as Hyper-V, a component of Windows Server 2008. Hyper-V is a platform investment and will serve as a foundation for future technologies. As a result it was critically important to get the architecture right from the start. Through the design and development of Hyper-V we applied principles from the Trustworthy Computing Initiative in building more secure, more robust commercial software, and learned new techniques unique to virtualization.
In this talk we will discuss the architecture of Hyper-V and the aspects of our business and customer needs that guided those decisions. We will highlight our security goals and what we did to meet them, and equally important present the security trade-offs that were necessary to ship a product. From our experience in building virtualization software and feedback from our customers, we will present our thoughts on what the future holds for virtualization security
Morning Break (10:30am - 11:00am)
Session: Portability & Recovery (11:00am - 12:30pm)
Secure Control of Portable Images in a Virtual Computing Utility [Presentation]
Ionut Constandache (Duke University)
Aydan Yumerefendi (Duke University)
Jeff Chase (Duke University)
VEP: A Virtual Machine for Extended Proof-Carrying Code [Presentation]
Heidar Pirzadeh (University of Montreal)
Danny Dubé (Université Laval)
Efficiently Tracking Application Interactions Using Lightweight Virtualization [Presentation]
Yih Huang (George Mason University)
Angelos Stavrou (George Mason University)
Anup K. Ghosh (George Mason University)
Sushil Jajodia (George Mason University)
Using Virtual Machines to Do Cross-Layer Damage Assessment [Presentation]
Xiaoqi Jia (The Pennsylvania State University and Chinese Academy of Sciences)
Shengzhi Zhang (The Pennsylvania State University)
Jiwu Jing (Chinese Academy of Sciences)
Peng Liu (The Pennsylvania State University)
Lunch (12:30pm - 2:00pm)
Session: Hardware & Monitoring (2:00pm - 3:30pm)
Boxing Clever with IOMMUs [Presentation]
Grzegorz Miłoś (University of Cambridge)
Derek G. Murray (University of Cambridge)
Binding Software to Specific Native Hardware in a VM Environment: The PUF Challenge and Opportunity [Presentation]
Mikhail J. Atallah (Arxan Technologies, Inc. and Purdue University)
Eric D. Bryant (Arxan Technologies, Inc.]
John T. Korb (Arxan Technologies, Inc. and Purdue University)
John R. Rice (Arxan Technologies, Inc. and Purdue University)
Traps, Events, Emulation, and Enforcement: Managing the Yin and Yang of Virtualization-based Security [Presentation]
Sergey Bratus (Dartmouth College)
Michael E. Locasto (Dartmouth College)
Ashwin Ramaswamy (Dartmouth College)
Sean W. Smith (Dartmouth College)
Afternoon Break (3:30pm - 4:00pm)
Panel Discussion (4:00pm - 5:00pm)
|
