Advertisement
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen
µ-Xen

Check these out next

Building a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on Xen
The Linux Foundation
ELC21: VM-to-VM Communication Mechanisms for Embedded
ELC21: VM-to-VM Communication Mechanisms for Embedded
Stefano Stabellini
LCA13: Xen on ARM
LCA13: Xen on ARM
Linaro
PVH : PV Guest in HVM container
PVH : PV Guest in HVM container
The Linux Foundation
LFNW2014 Advanced Security Features of Xen Project Hypervisor
LFNW2014 Advanced Security Features of Xen Project Hypervisor
The Linux Foundation
Virtualization with KVM (Kernel-based Virtual Machine)
Virtualization with KVM (Kernel-based Virtual Machine)
Novell
Xen io
Xen io
wangyuanzhf
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization Opportunities
The Linux Foundation
1 of 21

µ-Xen

Sep. 7, 2012
Download to read offline
Technology

This talk with discuss the design and implementation of a new type of hypervisor derived from the Xen code base. µ-Xen has been built and optimized for modern CPUs and chipsets, and thus assumes the presence of CPU and IO MMUs that are virtualization capable. µ-Xen borrows extensively from the production-proven and tuned Xen code base, but removal of support for older hardware and PV-MMU guests has enabled significant simplification of the code. µ-Xen supports optimizations in support of running large numbers of very similar virtual machines, through the support of a native 'vmfork' optimization and efficient re-merging of shareable pages. The primary goal of µ-Xen has been to run as a late-load hypervisor on an existing OS. It has a narrow and well-defined interface to the services it expects from the underlying OS, which makes it easy to port to other OSes, or to enable it to run on bare metal. During initialisation, µ-Xen can de-privilege the running host OS into a VM container, enabling it to establish itself as the most privileged software component in the system. Thus, µ-Xen enforces the privacy and integrity of itself and VMs that it is running, against a faulty or malicious host OS, while co-operating with the host OS on the actual allocation of physical resources.

The Linux Foundation
Director, Open Source Solutions at Citrix
Advertisement
Advertisement
Advertisement

Recommended

Xen and Client Virtualization: the case of XenClient XTXen and Client Virtualization: the case of XenClient XT
Xen and Client Virtualization: the case of XenClient XTThe Linux Foundation3.7K views26 slides
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...
Dealing with Hardware Heterogeneity Using EmbeddedXEN, a Virtualization Frame...The Linux Foundation1.6K views21 slides
LCNA14: Security in the Cloud: Containers, KVM, and Xen - George Dunlap, Citr...LCNA14: Security in the Cloud: Containers, KVM, and Xen - George Dunlap, Citr...
LCNA14: Security in the Cloud: Containers, KVM, and Xen - George Dunlap, Citr...The Linux Foundation2.4K views50 slides
XPDS14: OpenXT - Security and the Properties of a Xen Virtualisation Platform...XPDS14: OpenXT - Security and the Properties of a Xen Virtualisation Platform...
XPDS14: OpenXT - Security and the Properties of a Xen Virtualisation Platform...The Linux Foundation3.4K views16 slides
Rootlinux17: An introduction to Xen Project VirtualisationRootlinux17: An introduction to Xen Project Virtualisation
Rootlinux17: An introduction to Xen Project VirtualisationThe Linux Foundation7.7K views66 slides
Scale 12x Securing Your Cloud with The Xen HypervisorScale 12x Securing Your Cloud with The Xen Hypervisor
Scale 12x Securing Your Cloud with The Xen HypervisorThe Linux Foundation4.1K views65 slides

More Related Content

Slideshows for you(20)

Building a Distributed Block Storage System on XenBuilding a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on Xen
The Linux Foundation2.7K views
ELC21: VM-to-VM Communication Mechanisms for EmbeddedELC21: VM-to-VM Communication Mechanisms for Embedded
ELC21: VM-to-VM Communication Mechanisms for Embedded
Stefano Stabellini279 views
LCA13: Xen on ARMLCA13: Xen on ARM
LCA13: Xen on ARM
Linaro1.9K views
PVH : PV Guest in HVM containerPVH : PV Guest in HVM container
PVH : PV Guest in HVM container
The Linux Foundation58K views
LFNW2014 Advanced Security Features of Xen Project HypervisorLFNW2014 Advanced Security Features of Xen Project Hypervisor
LFNW2014 Advanced Security Features of Xen Project Hypervisor
The Linux Foundation2.9K views
Virtualization with KVM (Kernel-based Virtual Machine)Virtualization with KVM (Kernel-based Virtual Machine)
Virtualization with KVM (Kernel-based Virtual Machine)
Novell15.7K views
Xen ioXen io
Xen io
wangyuanzhf1.3K views
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization Opportunities
The Linux Foundation8.4K views
XPDS14 - Xen on ARM: Status and Performance - Stefano Stabellini, CitrixXPDS14 - Xen on ARM: Status and Performance - Stefano Stabellini, Citrix
XPDS14 - Xen on ARM: Status and Performance - Stefano Stabellini, Citrix
The Linux Foundation38.9K views
Xen on ARM for embedded and IoT: from secure containers to dom0less systemsXen on ARM for embedded and IoT: from secure containers to dom0less systems
Xen on ARM for embedded and IoT: from secure containers to dom0less systems
Stefano Stabellini405 views
XPDS16: A Paravirtualized Interface for Socket Syscalls - Dimitri Stiliadis, ...XPDS16: A Paravirtualized Interface for Socket Syscalls - Dimitri Stiliadis, ...
XPDS16: A Paravirtualized Interface for Socket Syscalls - Dimitri Stiliadis, ...
The Linux Foundation9K views
Xen Project for ARM ServersXen Project for ARM Servers
Xen Project for ARM Servers
Stefano Stabellini698 views
CIF16/Scale14x: The latest from the Xen Project (Lars Kurth, Chairman of Xen ...CIF16/Scale14x: The latest from the Xen Project (Lars Kurth, Chairman of Xen ...
CIF16/Scale14x: The latest from the Xen Project (Lars Kurth, Chairman of Xen ...
The Linux Foundation2.1K views
XPDS14 - Zero-Footprint Guest Memory Introspection from Xen - Mihai Dontu, Bi...XPDS14 - Zero-Footprint Guest Memory Introspection from Xen - Mihai Dontu, Bi...
XPDS14 - Zero-Footprint Guest Memory Introspection from Xen - Mihai Dontu, Bi...
The Linux Foundation6.6K views
XPDS16: Hypervisor Enforced Data Loss Prevention - Neil Sikka, A1LOGICXPDS16: Hypervisor Enforced Data Loss Prevention - Neil Sikka, A1LOGIC
XPDS16: Hypervisor Enforced Data Loss Prevention - Neil Sikka, A1LOGIC
The Linux Foundation1.2K views
Xen Project: Windows PV DriversXen Project: Windows PV Drivers
Xen Project: Windows PV Drivers
The Linux Foundation154.8K views
Linaro connect : Introduction to Xen on ARMLinaro connect : Introduction to Xen on ARM
Linaro connect : Introduction to Xen on ARM
The Linux Foundation76.7K views
Virtualization Technology OverviewVirtualization Technology Overview
Virtualization Technology Overview
OpenCity Community7.6K views
Introduction to Virtualization, Virsh and Virt-ManagerIntroduction to Virtualization, Virsh and Virt-Manager
Introduction to Virtualization, Virsh and Virt-Manager
walkerchang4.9K views
KvmKvm
Kvm
Bert Desmet1.2K views

Viewers also liked(20)

[HackInTheBox] Breaking virtualization by any means[HackInTheBox] Breaking virtualization by any means
[HackInTheBox] Breaking virtualization by any means
Moabi.com2.1K views
Xen @ Google, 2011Xen @ Google, 2011
Xen @ Google, 2011
The Linux Foundation13.2K views
Red Hat Enterprise Linux 5.2 Virtualization GuideRed Hat Enterprise Linux 5.2 Virtualization Guide
Red Hat Enterprise Linux 5.2 Virtualization Guide
Rishi Sharma4.2K views
Xen revisitedXen revisited
Xen revisited
Shahbaz Sidhu878 views
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622
Todd Deshane7.5K views
Xen and Art of Virtualization (Xen Architecture)Xen and Art of Virtualization (Xen Architecture)
Xen and Art of Virtualization (Xen Architecture)
Mr Cracker829 views
Why xen slidesWhy xen slides
Why xen slides
The Linux Foundation4.3K views
Mirage: extreme specialisation of virtual appliancesMirage: extreme specialisation of virtual appliances
Mirage: extreme specialisation of virtual appliances
The Linux Foundation4.2K views
Openstack Xen and XCPOpenstack Xen and XCP
Openstack Xen and XCP
The Linux Foundation5.2K views
Xen Overview Q3 2009Xen Overview Q3 2009
Xen Overview Q3 2009
The Linux Foundation1.2K views
Art of Using Xen at ScaleArt of Using Xen at Scale
Art of Using Xen at Scale
The Linux Foundation11.7K views
Xen HypervisorXen Hypervisor
Xen Hypervisor
Susheel Thakur6.4K views
Engaging the xen communityEngaging the xen community
Engaging the xen community
The Linux Foundation13.9K views
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCPOscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
Oscon 2012 : From Datacenter to the Cloud - Featuring Xen and XCP
The Linux Foundation7.7K views
Windsor: Domain 0 Disaggregation for XenServer and XCP Windsor: Domain 0 Disaggregation for XenServer and XCP
Windsor: Domain 0 Disaggregation for XenServer and XCP
The Linux Foundation6.4K views
Xen and Apache cloudstack Xen and Apache cloudstack
Xen and Apache cloudstack
The Linux Foundation8.7K views
Scale11x : Virtualization with Xen and XCP Scale11x : Virtualization with Xen and XCP
Scale11x : Virtualization with Xen and XCP
The Linux Foundation76.7K views
COMO RECUPERAR INFORMACIONCOMO RECUPERAR INFORMACION
COMO RECUPERAR INFORMACION
diani1.9K views
Tercera parte del contenidoTercera parte del contenido
Tercera parte del contenido
Darwin Alarcon388 views
Buenas prácticas de vinculación del CNADBuenas prácticas de vinculación del CNAD
Buenas prácticas de vinculación del CNAD
Jimmy De la Hoz Cortés674 views
Advertisement

Similar to µ-Xen(20)

Xen Community Update 2011Xen Community Update 2011
Xen Community Update 2011
The Linux Foundation785 views
The VDI InfoSec ConundrumThe VDI InfoSec Conundrum
The VDI InfoSec Conundrum
VirtualTal698 views
Ina Pratt Fosdem Feb2008Ina Pratt Fosdem Feb2008
Ina Pratt Fosdem Feb2008
The Linux Foundation550 views
Securing your Cloud with Xen - SUSECon 2013Securing your Cloud with Xen - SUSECon 2013
Securing your Cloud with Xen - SUSECon 2013
The Linux Foundation2.9K views
VirtualizationVirtualization
Virtualization
3M Construction158 views
virtualization.pptxvirtualization.pptx
virtualization.pptx
Ali Fraz Khan26 views
Virtual Desktop Infrastructure OverviewVirtual Desktop Infrastructure Overview
Virtual Desktop Infrastructure Overview
koesteruk226.5K views
Xen Project Update LinuxCon BrazilXen Project Update LinuxCon Brazil
Xen Project Update LinuxCon Brazil
The Linux Foundation1.1K views
V mwarev sphere5.1notes-v2V mwarev sphere5.1notes-v2
V mwarev sphere5.1notes-v2
karanamsaibabu897 views
VirtualizationVirtualization
Virtualization
Chandan Varadaraj1.1K views
ProtectV - Data Security for the CloudProtectV - Data Security for the Cloud
ProtectV - Data Security for the Cloud
SafeNet895 views
Zero footprint guest memory introspection from xenZero footprint guest memory introspection from xen
Zero footprint guest memory introspection from xen
Bitdefender Enterprise3.5K views
Virtualization securityv2Virtualization securityv2
Virtualization securityv2
vivekbhat855 views
VirtualizationVirtualization
Virtualization
preethipreethi3546 views
Mitigating Risk for the Mobile Worker: Novell ZENworks Endpoint Security Mana...Mitigating Risk for the Mobile Worker: Novell ZENworks Endpoint Security Mana...
Mitigating Risk for the Mobile Worker: Novell ZENworks Endpoint Security Mana...
Novell436 views
CSA Presentation 26th May Virtualization securityv2CSA Presentation 26th May Virtualization securityv2
CSA Presentation 26th May Virtualization securityv2
vivekbhat400 views
Ian Prattlinuxworld Xen Aug2008Ian Prattlinuxworld Xen Aug2008
Ian Prattlinuxworld Xen Aug2008
The Linux Foundation681 views
Walter hofstetter xen client enterprise digicompWalter hofstetter xen client enterprise digicomp
Walter hofstetter xen client enterprise digicomp
Digicomp Academy AG1.8K views
Managing Windows RT devices in the Enterprise Managing Windows RT devices in the Enterprise
Managing Windows RT devices in the Enterprise
Microsoft TechNet - Belgium and Luxembourg3.3K views
Slide finalSlide final
Slide final
Nikita Gupta142 views

More from The Linux Foundation(20)

ELC2019: Static Partitioning Made SimpleELC2019: Static Partitioning Made Simple
ELC2019: Static Partitioning Made Simple
The Linux Foundation4.1K views
XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...
XPDDS19: How TrenchBoot is Enabling Measured Launch for Open-Source Platform ...
The Linux Foundation1K views
XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...
XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...
The Linux Foundation1K views
XPDDS19 Keynote: Xen Project Weather Report 2019 - Lars Kurth, Director of Op...XPDDS19 Keynote: Xen Project Weather Report 2019 - Lars Kurth, Director of Op...
XPDDS19 Keynote: Xen Project Weather Report 2019 - Lars Kurth, Director of Op...
The Linux Foundation812 views
XPDDS19 Keynote: Unikraft Weather ReportXPDDS19 Keynote: Unikraft Weather Report
XPDDS19 Keynote: Unikraft Weather Report
The Linux Foundation920 views
XPDDS19 Keynote: Secret-free Hypervisor: Now and Future - Wei Liu, Software E...XPDDS19 Keynote: Secret-free Hypervisor: Now and Future - Wei Liu, Software E...
XPDDS19 Keynote: Secret-free Hypervisor: Now and Future - Wei Liu, Software E...
The Linux Foundation935 views
XPDDS19 Keynote: Xen Dom0-less - Stefano Stabellini, Principal Engineer, XilinxXPDDS19 Keynote: Xen Dom0-less - Stefano Stabellini, Principal Engineer, Xilinx
XPDDS19 Keynote: Xen Dom0-less - Stefano Stabellini, Principal Engineer, Xilinx
The Linux Foundation5.2K views
XPDDS19 Keynote: Patch Review for Non-maintainers - George Dunlap, Citrix Sys...XPDDS19 Keynote: Patch Review for Non-maintainers - George Dunlap, Citrix Sys...
XPDDS19 Keynote: Patch Review for Non-maintainers - George Dunlap, Citrix Sys...
The Linux Foundation629 views
XPDDS19: Memories of a VM Funk - Mihai Donțu, BitdefenderXPDDS19: Memories of a VM Funk - Mihai Donțu, Bitdefender
XPDDS19: Memories of a VM Funk - Mihai Donțu, Bitdefender
The Linux Foundation516 views
OSSJP/ALS19: The Road to Safety Certification: Overcoming Community Challeng...OSSJP/ALS19: The Road to Safety Certification: Overcoming Community Challeng...
OSSJP/ALS19: The Road to Safety Certification: Overcoming Community Challeng...
The Linux Foundation4.8K views
OSSJP/ALS19: The Road to Safety Certification: How the Xen Project is Making... OSSJP/ALS19: The Road to Safety Certification: How the Xen Project is Making...
OSSJP/ALS19: The Road to Safety Certification: How the Xen Project is Making...
The Linux Foundation4.8K views
XPDDS19: Speculative Sidechannels and Mitigations - Andrew Cooper, CitrixXPDDS19: Speculative Sidechannels and Mitigations - Andrew Cooper, Citrix
XPDDS19: Speculative Sidechannels and Mitigations - Andrew Cooper, Citrix
The Linux Foundation428 views
XPDDS19: Keeping Coherency on Arm: Reborn - Julien Grall, Arm ltdXPDDS19: Keeping Coherency on Arm: Reborn - Julien Grall, Arm ltd
XPDDS19: Keeping Coherency on Arm: Reborn - Julien Grall, Arm ltd
The Linux Foundation499 views
XPDDS19: QEMU PV Backend 'qdevification'... What Does it Mean? - Paul Durrant...XPDDS19: QEMU PV Backend 'qdevification'... What Does it Mean? - Paul Durrant...
XPDDS19: QEMU PV Backend 'qdevification'... What Does it Mean? - Paul Durrant...
The Linux Foundation443 views
XPDDS19: Status of PCI Emulation in Xen - Roger Pau Monné, Citrix Systems R&DXPDDS19: Status of PCI Emulation in Xen - Roger Pau Monné, Citrix Systems R&D
XPDDS19: Status of PCI Emulation in Xen - Roger Pau Monné, Citrix Systems R&D
The Linux Foundation516 views
XPDDS19: [ARM] OP-TEE Mediator in Xen - Volodymyr Babchuk, EPAM SystemsXPDDS19: [ARM] OP-TEE Mediator in Xen - Volodymyr Babchuk, EPAM Systems
XPDDS19: [ARM] OP-TEE Mediator in Xen - Volodymyr Babchuk, EPAM Systems
The Linux Foundation789 views
XPDDS19: Bringing Xen to the Masses: The Story of Building a Community-driven...XPDDS19: Bringing Xen to the Masses: The Story of Building a Community-driven...
XPDDS19: Bringing Xen to the Masses: The Story of Building a Community-driven...
The Linux Foundation446 views
XPDDS19: Will Robots Automate Your Job Away? Streamlining Xen Project Contrib...XPDDS19: Will Robots Automate Your Job Away? Streamlining Xen Project Contrib...
XPDDS19: Will Robots Automate Your Job Away? Streamlining Xen Project Contrib...
The Linux Foundation363 views
XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...
XPDDS19: Client Virtualization Toolstack in Go - Nick Rosbrook & Brendan Kerr...
The Linux Foundation667 views
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSEXPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
The Linux Foundation1.5K views
Advertisement

Recently uploaded(20)

AWS_FSI_Migrations_Webinar_PPT.pdfAWS_FSI_Migrations_Webinar_PPT.pdf
AWS_FSI_Migrations_Webinar_PPT.pdf
Abhinav Gupta0 views
TenT-Day08.pptxTenT-Day08.pptx
TenT-Day08.pptx
JohanMyburgh150 views
Vin secure solutions PPT (1).pdfVin secure solutions PPT (1).pdf
Vin secure solutions PPT (1).pdf
vin secure solutions0 views
re:Invent ARC307 - Serverless architectural patterns and best practices.pdfre:Invent ARC307 - Serverless architectural patterns and best practices.pdf
re:Invent ARC307 - Serverless architectural patterns and best practices.pdf
Heitor Lessa0 views
Divide_and_Contrast__Source_free_Domain_Adaptation_via_Adaptive_Contrastive_L...Divide_and_Contrast__Source_free_Domain_Adaptation_via_Adaptive_Contrastive_L...
Divide_and_Contrast__Source_free_Domain_Adaptation_via_Adaptive_Contrastive_L...
Huang Po Chun0 views
C++ Programming.pdfC++ Programming.pdf
C++ Programming.pdf
MrRSmey0 views
Improving typing skills RESEARCH.pptxImproving typing skills RESEARCH.pptx
Improving typing skills RESEARCH.pptx
RamerieCalagoyo0 views
Nanotechnology Infographics.pdfNanotechnology Infographics.pdf
Nanotechnology Infographics.pdf
seed250 views
Generative AI(How and when it was developed).pdfGenerative AI(How and when it was developed).pdf
Generative AI(How and when it was developed).pdf
TarunTiwari940 views
TenT-Day09.pptxTenT-Day09.pptx
TenT-Day09.pptx
JohanMyburgh150 views
AWS Lambda Powertools walkthrough.pdfAWS Lambda Powertools walkthrough.pdf
AWS Lambda Powertools walkthrough.pdf
Heitor Lessa0 views
EMA Policy 0070 Relaunch - Changes and how GenInvo can helpEMA Policy 0070 Relaunch - Changes and how GenInvo can help
EMA Policy 0070 Relaunch - Changes and how GenInvo can help
geninvomarketing0 views
AlamofirebyJun.pdfAlamofirebyJun.pdf
AlamofirebyJun.pdf
JUNSHIN80 views
From Project to Product: Leaders, Here's What It Means to YouFrom Project to Product: Leaders, Here's What It Means to You
From Project to Product: Leaders, Here's What It Means to You
Cprime0 views
TenT-Day02.pptxTenT-Day02.pptx
TenT-Day02.pptx
JohanMyburgh150 views
4.1 Modeling Data Relationships.pdf4.1 Modeling Data Relationships.pdf
4.1 Modeling Data Relationships.pdf
Felipelipilef2nd0 views
social_engineering.pptxsocial_engineering.pptx
social_engineering.pptx
alexadejumo0 views
Futures for the Web - Reclaim 2023.pptxFutures for the Web - Reclaim 2023.pptx
Futures for the Web - Reclaim 2023.pptx
Bryan Alexander0 views
Digital Transformation - M2M to IoTDigital Transformation - M2M to IoT
Digital Transformation - M2M to IoT
Vishal Sharma0 views
Webinar: Bancada de eletrônica profissionalWebinar: Bancada de eletrônica profissional
Webinar: Bancada de eletrônica profissional
Embarcados0 views

µ-Xen

  1. ® µ-Xen Ian Pratt SVP, Products Bromium Inc. 1
  2. Outline ® • µ-Xen Goals • Architecture and implementation • Evolutionary path • Use case: Bromium end-point security 2
  3. The µ-Xen Client Hypervisor ® • Derived from the Xen code base • Designed to address client hypervisor deployment challenges • Designed to achieve a high-degree of security assurance • No requirement to support legacy s/w or h/w • Optimized to support micro-virtualization • Evolution to a new class of hypervisor 3
  4. Evolution to a new class of hypervisor ® • Start with a self-contained type-2 – Host kernel module containing µ-Xen blob – Well-defined interface to/from the host • Memory allocation, Schedule VCPUs, Timers, Events • Similar to hXen project – Windows, OS X; easily portable – µ-Xen drives VT hardware, leaves IO and other hardware to host OS 4
  5. µ-Xen streamlines Xen code base ® • x64 only • No support for systems that are not VTx/EPT or AMDV/NPT capable • No support for PV MMU guests • Significant code size reductions • No compat code • Separate build target • Future: slim down instruction emulator 5
  6. µ-Xen virtual IO ® • µ-Xen demultiplexes IORecs and events to multiple host processes per VM – Able to have separate video, audio, disk, net etc processes – Helps scheduling latency, enables better exploitation mitigation lock-down • Use just the relevant parts of QEMU • User-space PV backend drivers • Post-boot virtual IO device revocation 6
  7. Support for large numbers of similar VMs ® • Support for VM fork – Simple extension of Populate on Demand code • Tree of templates/VMs supported • PV driver support for re-sharing free pages • IO tracking to re-share swapped and re-read pages 7
  8. Evolution to a new class of hypervisor ® • Goal: host is responsible for resource allocation, but can not interfere with the privacy or integrity of the hypervisor or other guests, e.g.: – Hypervisor asks host for memory, receives it, then removes host access to it – Host may perform IO on behalf of hypervisor and guests, but must be privacy and integrity protected – Host may deny service, crash; IO tamper detectable 8
  9. De-privilege host into a VT container ® • Remove host access to hypervisor and guest memory in EPT tables – h/w devices passed through to host, VTd protected • Device models can only access Granted memory – Require PV network and disk as no virtual DMA – Guest IO buffers encrypted/authenticated before grant copy/map • Save/restore, dom builder must first have guest memory encrypted/authenticated by hypervisor – Hypervisor paging requires similar treatment 9
  10. Further Enhanced Security ® • Migrate certain host h/w devices to ownership by hypervisor or privileged guest(s), replace with virtual device – E.g. Keyboard controller to avoid key logging – Possibly WiFi/NIC too • Measured launch of hypervisor – TXT/TPM to establish DRoT – Remote attestation of hypervisor configuration 10
  11. Task-based Micro-virtualization
  12. The Challenge
  13. What Went Wrong?  Poor Isolation leads to Vulnerability  Multi-tenancy of code (& data) from a huge set of trust sources  Code & Data are executed in the context of a few, weakly organized and poorly isolated “bins” representing levels of trust - e.g. UID, GID, PID  Overloaded, complex specs & buggy implementations of porous interfaces  Thus malware can:  Access data and documents in the same “bin”  Subvert other good code that is placed into the same “bin”  Use another bug in an App or OS to elevate its privilege
  14. Why Legacy Security Solutions Fail Black-listing: Detection is not protection  Doesn’t protect users from zero day attacks  Unable to detect targeted & advanced malware White-listing: Restriction is not protection  Users want to be productive  Attackers can compromise trusted applications and web sites
  15. The Challenge Bromium Confidential 15 Bromium Confidential
  16. The Micro-Virtualization Approach Next generation endpoint security A pragmatic approach to trusted computing Based on hardware based isolation and not detection  Contain risky activity from corporate data and network  Block zero day and polymorphic threats Provides isolation & trust through hardware virtualization
  17. Lightweight, fast, Virtualizes vulnerable hidden, with an tasks within a single unchanged native UX Windows desktop Small code base for Hypervisor I/O Virtualization (VT-d) maximum security TXT & TPM based hardware root of Hardware Virtualization trust (VT-x)
  18. The Microvisor isolates vulnerable tasks from Windows, each other & key system resources Windows and IT Micro-VMs have provisioned apps “least privilege” are trusted access to files, Each vulnerable task networks & devices, is instantly isolated and execute CoW in a micro-VM, invisible to the user
  19. Key Threat Vectors Are Isolated Web Browsing E-mail Attachments External Documents USB files
  20. Conclusions ® • µ-Xen is targeted at client systems • Combines ease of deployment with useful security properties • Enables task-based micro-virtualization, allowing mandatory access control to be retrofitted to commodity client OSes • We’re hiring! Please email ian@bromium.com 21

Editor's Notes

  1. dynamic content cannot be blacklistedmalicious content can compromise whitelisted apps
Advertisement