용환 노, profile picture
Uploaded by용환 노
PPTX, PDF2,731 views

Hypervisor seminar

This document discusses hardware-assisted virtual machines (HVM). It covers the history of virtualization from 1960s to present, virtualization techniques including full virtualization, para-virtualization and direct execution. It then focuses on HVM, how it virtualizes the CPU using AMD-V and VT-x extensions, I/O using AMD-Vi and VT-d, and networking using VT-c. It describes the HVM instructions, data structures including the VMCS region, and how a VMM can initialize, run and handle exits from a virtual machine using HVM. Related works exploring HVM for security applications are also briefly mentioned.

Embed presentation

Downloaded 63 times
Hardware-assisted Virtual Machine 노용환 (a.k.a. somma) fixbrain@gmail.com
Virtualization… system utilization management cost consolidation isolation trusted environment resource aggregation GRID system MPP (Massively Parallel Processing)resource access control mobility emulation
History… 1960 1970 1999 2006 현재 CP-40, IBM, Cambridge Scientific Center full virtualization System/370, IBM x86 virtualization, VMWare application virtualization (application streaming) x86,x64, ARM, … Storage, Network … VMWare, Virtual Box, Xen… … OpenStack, CloudStack,… … Amazon, Google…
Virtualization techniques Shared Device Memory and I/O Virtualization VMM CPU CPU MEMORY Physical H/W Control Guest OS Guest OS physical h/w virtualized h/w VMM must … - support same hardware interface - can control guest OS when accessing H/W resources.
Virtualization techniques Full Virtualization - No OS modification - Binary translation, Trace cache,… - VMware ESX server Para Virtualization - Need OS modification - Hypercall - Xen Direct execution eflags, control registers, MSR registers, port I/O, privileged instructions, …
HVM (Hardware-assisted Virtual Machine) Virtualize… CPU - AMD-V , VT-x IOMMU - AMD-Vi, VT-d Network - VT-c VMX operation VMX root operation VMX non-root operation
HVM (Hardware-assisted Virtual Machine)
HVM – new instructions
HVM – instruction execution order VMXON VMCLEAR VMPTRLD VMWRITE VMLAUNCH GUEST Exit VMREAD VMRESUME VMXOFF
HVM – data… VMXON Region - created per logical processor - used by VMX instructions VMCS Region - created per virtual CPU for guest OS - used by CPU and VMM - 4Kb aligned - PHYSICAL_ADDRESS == typedef LARGE_INTEGER - …
HVM – VMM programming summary check VMX support allocate VMXON region execute VMXON allocate VMCS regionexecute VMCLEARexecute VMPTRLD initialize VMCS data host-state area fields VM-exit control fields VM-entry control fields VM-execution control fields guest-state area fields execute VMLAUNCH handling various VM-exits
HVM – VMCS data organization #1 Guest state fields - saved on VM exits, loaded on VM entries #2 Host state fields - loaded on VM exits #3 Execution control fields - control VMX-non root operations #4 Exit control fields - control VM exits #5 Entry control fields - control VM entries #6 VM Exit info - saved VM exits information on VM exits pin-based controls processor-based controls exception-bitmap address I/O bitmap address Timestamp counter offset CR0/CR4 guest/host masks CR3 targets MSR bitmaps
HVM – VMCS data organization
HVM – accessing VMCS data VMWRITE VMREAD virtual address / physical address READ virtual address / physical address WRITE
HVM – accessing VMCS data
HVM – accessing VMCS data
HVM – initialize and run VMM
HVM – handling VM exits #6 VM Exit info
HVM – handling VM exits
Q & A
HVM – Blue Pill
HVM – related works Hypersight - Northsecuritylabs( http://northsecuritylabs.com/ ) - 2011 년 이후 업데이트 없음… McAfee DeepSAFE Microsoft - Countering Kernel Rootkits with Lightweight Hook Protection
HVM – related works HyperDbg - SoftIce 와 유사 - HVM 을 이용한 커널디버거
DEMO & Q & A

More Related Content

PDF
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
byvwchu
 
PPTX
2014.08.30 Virtual Machine Threat 세미나
by용환 노
 
PPTX
Hypervisors
byInzemamul Haque
 
PPSX
Virtualization basics
byChandrani Ray Chowdhury
 
PPTX
Introduction to Virtualization, Virsh and Virt-Manager
bywalkerchang
 
PPTX
Cloud.pptm
byMayank Chaudhari
 
PPTX
Virtualization
byEdris Nasihat Kon
 
PDF
Virtualization Technology Overview
byOpenCity Community
 
Hypervisors and Virtualization - VMware, Hyper-V, XenServer, and KVM
byvwchu
 
2014.08.30 Virtual Machine Threat 세미나
by용환 노
 
Hypervisors
byInzemamul Haque
 
Virtualization basics
byChandrani Ray Chowdhury
 
Introduction to Virtualization, Virsh and Virt-Manager
bywalkerchang
 
Cloud.pptm
byMayank Chaudhari
 
Virtualization
byEdris Nasihat Kon
 
Virtualization Technology Overview
byOpenCity Community
 

What's hot

PDF
How to Optimize Microsoft Hyper-V Failover Cluster and Double Performance
byStarWind Software
 
PDF
Hypervisor Framework
byEdgar Barbosa
 
PDF
Hypervisor comparison 201212
byChang kil Lee
 
PDF
Memory Virtualization
byTsuyoshi OZAWA
 
PPTX
5. IO virtualization
byHwanju Kim
 
PPTX
Principles of Virtualization - Introduction to Virtualization Software
byRubal Sagwal
 
PPT
Hyper-V vs. vSphere: Understanding the Differences
bySolarWinds
 
PPTX
Security Best Practices For Hyper V And Server Virtualization
byrsnarayanan
 
PPTX
Transitioning to vmWare ESXi
byJose Antonio Chavez Verdin
 
PPTX
Vm Vs Hyperv
byAnthonyzschusschen
 
PPTX
Virtualization using VMWare Workstation
byHitesh Gupta
 
PDF
Linux On V Mware ESXi
byMasafumi Ohta
 
PDF
Scheduler Support for Video-oriented Multimedia on Client-side Virtualization
byHwanju Kim
 
PDF
Virtualization security and threat
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
PDF
Hyper-V Best Practices & Tips and Tricks
byAmit Gatenyo
 
PDF
30 important-virtualization-vmware-interview-questions-with-answers
byLatif Siddiqui
 
PPT
Implementing a Hyper-V Virtualization Infrastructure
byASPE, Inc.
 
PDF
ACRN vMeet-Up EU 2021 - Introduction and Architecture Look Forward
byProject ACRN
 
DOCX
Virtualization Questions
byTrupti Jethva
 
PPTX
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
byHann Yu-Ju Huang
 
How to Optimize Microsoft Hyper-V Failover Cluster and Double Performance
byStarWind Software
 
Hypervisor Framework
byEdgar Barbosa
 
Hypervisor comparison 201212
byChang kil Lee
 
Memory Virtualization
byTsuyoshi OZAWA
 
5. IO virtualization
byHwanju Kim
 
Principles of Virtualization - Introduction to Virtualization Software
byRubal Sagwal
 
Hyper-V vs. vSphere: Understanding the Differences
bySolarWinds
 
Security Best Practices For Hyper V And Server Virtualization
byrsnarayanan
 
Transitioning to vmWare ESXi
byJose Antonio Chavez Verdin
 
Vm Vs Hyperv
byAnthonyzschusschen
 
Virtualization using VMWare Workstation
byHitesh Gupta
 
Linux On V Mware ESXi
byMasafumi Ohta
 
Scheduler Support for Video-oriented Multimedia on Client-side Virtualization
byHwanju Kim
 
Virtualization security and threat
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
Hyper-V Best Practices & Tips and Tricks
byAmit Gatenyo
 
30 important-virtualization-vmware-interview-questions-with-answers
byLatif Siddiqui
 
Implementing a Hyper-V Virtualization Infrastructure
byASPE, Inc.
 
ACRN vMeet-Up EU 2021 - Introduction and Architecture Look Forward
byProject ACRN
 
Virtualization Questions
byTrupti Jethva
 
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
byHann Yu-Ju Huang
 

Viewers also liked

PPTX
Virtualization technology for security
byhanbeom Park
 
PPTX
Quick & Dirty Tips for x64 hooks
by용환 노
 
PPTX
virtualization and hypervisors
byGaurav Suri
 
PPT
Gi fi Technology
byRoshan Patra
 
DOCX
Gi fi seminar Report
byShivam Joshi
 
PPTX
Gi fi technology finl ppt
byTapesh Chalisgaonkar
 
PPT
Gi-Fi ppt presentation
byAnkit Satnalika
 
Virtualization technology for security
byhanbeom Park
 
Quick & Dirty Tips for x64 hooks
by용환 노
 
virtualization and hypervisors
byGaurav Suri
 
Gi fi Technology
byRoshan Patra
 
Gi fi seminar Report
byShivam Joshi
 
Gi fi technology finl ppt
byTapesh Chalisgaonkar
 
Gi-Fi ppt presentation
byAnkit Satnalika
 

Similar to Hypervisor seminar

PPT
CC_virtualization is in the cloud UNIT 3.1.ppt
byRahulBhole12
 
PPTX
eve of Virtualization and virtualization support .pptx
byVenkateshperadka2
 
PDF
Cloud Computing Virtualization and containers
bySelvaraj Kesavan
 
PPTX
Virtualization
byvishnurk
 
PDF
Virtualization in Cloud Computing
byPyingkodi Maran
 
PPTX
Server virtualization
byKingston Smiler
 
PPTX
Hardware support for efficient virtualization
byLennox Wu
 
PPTX
Virtualization-Presentation-with-History
bySachin Darekar
 
PPT
Virtualization in cloud
byAshok Kumar
 
PDF
Sierraware ARM hypervisor
bySierraware
 
PPTX
Virtualization of computing and servers
bypooranionline
 
PPTX
cost control unit , exchange rate derivative
bysumitshelar11
 
PPTX
Operating system Virtualization_NEW.pptx
bySenthil Vit
 
PDF
virtual-machine-150316004018-conversion-gate01.pdf
byKowsalyaJayakumar2
 
PPTX
Virtual machine
byIGZ Software house
 
PDF
2virtualizationtechnologyoverview 13540659831745-phpapp02-121127193019-phpapp01
byVietnam Open Infrastructure User Group
 
PDF
01_Virtualization_fro univsersity_students.pdf
bydaemontargaryan224
 
PPT
While technology and algorithms are an important part of computer science, th...
byKishan Kaushik
 
PPTX
668242206-unit1-Virtualization dadod de A
byJoaquimBarros18
 
PPTX
KIIT_Cloud_scaling and Virtualization.pptx
bybhaskarkumar0125
 
CC_virtualization is in the cloud UNIT 3.1.ppt
byRahulBhole12
 
eve of Virtualization and virtualization support .pptx
byVenkateshperadka2
 
Cloud Computing Virtualization and containers
bySelvaraj Kesavan
 
Virtualization
byvishnurk
 
Virtualization in Cloud Computing
byPyingkodi Maran
 
Server virtualization
byKingston Smiler
 
Hardware support for efficient virtualization
byLennox Wu
 
Virtualization-Presentation-with-History
bySachin Darekar
 
Virtualization in cloud
byAshok Kumar
 
Sierraware ARM hypervisor
bySierraware
 
Virtualization of computing and servers
bypooranionline
 
cost control unit , exchange rate derivative
bysumitshelar11
 
Operating system Virtualization_NEW.pptx
bySenthil Vit
 
virtual-machine-150316004018-conversion-gate01.pdf
byKowsalyaJayakumar2
 
Virtual machine
byIGZ Software house
 
2virtualizationtechnologyoverview 13540659831745-phpapp02-121127193019-phpapp01
byVietnam Open Infrastructure User Group
 
01_Virtualization_fro univsersity_students.pdf
bydaemontargaryan224
 
While technology and algorithms are an important part of computer science, th...
byKishan Kaushik
 
668242206-unit1-Virtualization dadod de A
byJoaquimBarros18
 
KIIT_Cloud_scaling and Virtualization.pptx
bybhaskarkumar0125
 

Recently uploaded

PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
final.pdf
byomarbishtawi04
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
final.pdf
byomarbishtawi04
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
Workflow and decision Automation with Flowable
bychakib ch
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 

Hypervisor seminar

  • 1.
    Hardware-assisted Virtual Machine 노용환(a.k.a. somma) fixbrain@gmail.com
  • 2.
    Virtualization… system utilization management cost consolidation isolation trustedenvironment resource aggregation GRID system MPP (Massively Parallel Processing)resource access control mobility emulation
  • 3.
    History… 1960 1970 19992006 현재 CP-40, IBM, Cambridge Scientific Center full virtualization System/370, IBM x86 virtualization, VMWare application virtualization (application streaming) x86,x64, ARM, … Storage, Network … VMWare, Virtual Box, Xen… … OpenStack, CloudStack,… … Amazon, Google…
  • 4.
    Virtualization techniques Shared Device Memoryand I/O Virtualization VMM CPU CPU MEMORY Physical H/W Control Guest OS Guest OS physical h/w virtualized h/w VMM must … - support same hardware interface - can control guest OS when accessing H/W resources.
  • 5.
    Virtualization techniques Full Virtualization -No OS modification - Binary translation, Trace cache,… - VMware ESX server Para Virtualization - Need OS modification - Hypercall - Xen Direct execution eflags, control registers, MSR registers, port I/O, privileged instructions, …
  • 6.
    HVM (Hardware-assisted VirtualMachine) Virtualize… CPU - AMD-V , VT-x IOMMU - AMD-Vi, VT-d Network - VT-c VMX operation VMX root operation VMX non-root operation
  • 7.
  • 8.
    HVM – newinstructions
  • 9.
    HVM – instructionexecution order VMXON VMCLEAR VMPTRLD VMWRITE VMLAUNCH GUEST Exit VMREAD VMRESUME VMXOFF
  • 10.
    HVM – data… VMXONRegion - created per logical processor - used by VMX instructions VMCS Region - created per virtual CPU for guest OS - used by CPU and VMM - 4Kb aligned - PHYSICAL_ADDRESS == typedef LARGE_INTEGER - …
  • 11.
    HVM – VMMprogramming summary check VMX support allocate VMXON region execute VMXON allocate VMCS regionexecute VMCLEARexecute VMPTRLD initialize VMCS data host-state area fields VM-exit control fields VM-entry control fields VM-execution control fields guest-state area fields execute VMLAUNCH handling various VM-exits
  • 12.
    HVM – VMCSdata organization #1 Guest state fields - saved on VM exits, loaded on VM entries #2 Host state fields - loaded on VM exits #3 Execution control fields - control VMX-non root operations #4 Exit control fields - control VM exits #5 Entry control fields - control VM entries #6 VM Exit info - saved VM exits information on VM exits pin-based controls processor-based controls exception-bitmap address I/O bitmap address Timestamp counter offset CR0/CR4 guest/host masks CR3 targets MSR bitmaps
  • 13.
    HVM – VMCSdata organization
  • 14.
    HVM – accessingVMCS data VMWRITE VMREAD virtual address / physical address READ virtual address / physical address WRITE
  • 15.
  • 16.
  • 17.
    HVM – initializeand run VMM
  • 18.
    HVM – handlingVM exits #6 VM Exit info
  • 19.
  • 20.
  • 21.
  • 22.
    HVM – relatedworks Hypersight - Northsecuritylabs( http://northsecuritylabs.com/ ) - 2011 년 이후 업데이트 없음… McAfee DeepSAFE Microsoft - Countering Kernel Rootkits with Lightweight Hook Protection
  • 23.
    HVM – relatedworks HyperDbg - SoftIce 와 유사 - HVM 을 이용한 커널디버거
  • 24.

Editor's Notes

  • #3 system utilization 시스템의 사용률을 높임 하나의 시스템에서 통합(consolidation) 할 수 있고, 관리부하를 줄일 수 있음 isolation 물리자원을 직접 사용하지 않고, 에뮬레이션 된 자원을 이용하므로 결함 제거/전파 저지/보안향상 안전하고, 깨끗한 컴퓨팅 환경 제공 resource aggregation 디스크, CPU 같은 분산된 여러 물리자원을 단일 자원으로 집합시킬 수 있음 동일한 인터페이스로 통합 mobility system 의 이동/마이그레이션을 쉽게 가능하게 해줌 fast suspend/resume 등 emulation - 존재하지 않는 환경, 하드웨어등을 모의 시험할 수 있게 함