Spotlight | Reviews | Current Issue | Newsletter | Subscribe | Contact |
Departments

Partner Links
Website builder
WinWeb OnlineOffice
Shopping and price comparison with product reviews at dooyoo.co.uk

user friendly

CeBIT 2010 CFP

High-class talks around the clock in the Forum, non-commercial projects presenting their work, new developments at the largest IT fair in the world, CeBIT Open Source 2010 in Hanover, Germany.

Visit them in hall 2, March 2-6 or here.

  linux-magazine.com » Issues » 2008 » 90 » VIRTUAL MALWARE  

Print this page. Recommend
Slashdot it! Delicious Share on Facebook Tweet! Digg

Virtualizing rootkits and the future of system security

VIRTUAL MALWARE

Author(s): WILHELM DOLLE AND CHRISTOPH WEGENER

A new generation of rootkits avoids detection by virtualizing the compromised system – and the user doesn’t notice a thing.

In the typical cat-and-mouse game of attackers and defenders, the aim of the game is to gain or keep control of the operating system. Legacy malware tries to escalate privileges and, if possible, to run in ring 0, the operating system’s kernel mode. Once it gets there, the exploit, and thus the attacker, can manipulate the system. Virtualization is often heralded as a big advance for system security. Multiple virtual systems can run on the same hardware without the ability to influence each other. This isolation prevents a number of standard attack techniques, but today’s virtualization technologies also open a whole new frontier for attacks that never would have been possible in the past. Experts are already talking about a new generation of rootkits that will exploit the powers of virtualization to avoid detection.


Read full article as PDF »


Comments


Print this page. Recommend
Slashdot it! Delicious Share on Facebook Tweet! Digg
Related Articles
MUSIC MAKERS Tuning up with the 64 Studio and JAD audio Linux distros
PREVENTION Staying one step ahead of the intruders
ASK KLAUS!
TECH TOOLS
ASK KLAUS!
ZACK'S KERNEL NEWS
FREE Live Streaming Video from ApacheCon US 2009

Watch our free Video Archive from Apachecon US 2009. Archive provided by The Apache Foundation, COLLABNET, and Linux Pro Magazine

Drawing internationally renowned thought-leaders, contributors, and organizations in the Open Source community, ApacheCon offers insight into the culture and community that develops and shepherds industry-leading Open Source projects, including Apache HTTP Server – the world's most popular Web server software for more than 10 years.

Find out more

 

In the US and Canada, Linux Magazine is known as Linux Pro Magazine.
Entire contents © 2010 [Linux New Media USA, LLC]
Linux New Media web sites:
North America: [Linux Pro Magazine]
UK/Worldwide: [Linux Magazine]
Germany: [Linux-Magazin] [LinuxUser] [EasyLinux] [Linux-Community] [Linux Technical Review]
Eastern Europe: [Linux Magazine Poland] [Linux Community Poland]
International: [Linux Magazine Brazil] [EasyLinux Brazil] [Linux Magazine Spanish]
Corporate: [Linux New Media AG]