WEKO3
アイテム
SVTester: Finding DoS Vulnerabilities of Virtual Switches
https://ipsj.ixsq.nii.ac.jp/records/212860
https://ipsj.ixsq.nii.ac.jp/records/2128608cb2d090-2fc7-4d7b-96df-0f1d4cddcdff
| 名前 / ファイル | ライセンス | アクション |
|---|---|---|
IPSJ-JNL6209011.pdf (579.5 kB)
|
Copyright (c) 2021 by the Information Processing Society of Japan
|
|
| オープンアクセス | ||
| Item type | Journal(1) | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 公開日 | 2021-09-15 | |||||||||||
| タイトル | ||||||||||||
| タイトル | SVTester: Finding DoS Vulnerabilities of Virtual Switches | |||||||||||
| タイトル | ||||||||||||
| 言語 | en | |||||||||||
| タイトル | SVTester: Finding DoS Vulnerabilities of Virtual Switches | |||||||||||
| 言語 | ||||||||||||
| 言語 | eng | |||||||||||
| キーワード | ||||||||||||
| 主題Scheme | Other | |||||||||||
| 主題 | [特集:Society 5.0を実現するコンピュータセキュリティ技術] virtual network, security testing, DoS attack | |||||||||||
| 資源タイプ | ||||||||||||
| 資源タイプ識別子 | http://purl.org/coar/resource_type/c_6501 | |||||||||||
| 資源タイプ | journal article | |||||||||||
| 著者所属 | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者所属 | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者所属 | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者所属(英) | ||||||||||||
| en | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者所属(英) | ||||||||||||
| en | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者所属(英) | ||||||||||||
| en | ||||||||||||
| National Defense Academy of Japan | ||||||||||||
| 著者名 |
Son, Duc Nguyen
× Son, Duc Nguyen
× Mamoru, Mimura
× Hidema, Tanaka
|
|||||||||||
| 著者名(英) |
Son, Duc Nguyen
× Son, Duc Nguyen
× Mamoru, Mimura
× Hidema, Tanaka
|
|||||||||||
| 論文抄録 | ||||||||||||
| 内容記述タイプ | Other | |||||||||||
| 内容記述 | Nowadays, virtualization is being deployed in many companies and institutions' systems. However, a noticeable security problem of virtualization is the fact that multiple virtual machines are run on one physical host machine called hypervisor. Hypervisors often implement a virtual switch to manage network connections between the internal virtual network and the external physical network. However, an adversary could exploit virtual switch flaws and use them to sabotage the entire virtual network. As a consequence, the attack could make all applications running on virtual machines unavailable. In this paper, we present SVTester, a fuzzing-based testing tool that can automatically identify possible vulnerabilities of a virtual switch that can be exploited for certain types of Denial-of-Service attack. We used an initial version of SVTester to check several hypervisors that implement the virtual switch. The results show that SVTester was able to rediscover DoS weaknesses on an old version of VMware hypervisor and found a novel possible vulnerability in the Oracle VirtualBox hypervisor. Our results also prove the effectiveness and potential of SVTester in evaluating virtual network security. ------------------------------ This is a preprint of an article intended for publication Journal of Information Processing(JIP). This preprint should not be cited. This article should be cited as: Journal of Information Processing Vol.29(2021) (online) DOI http://dx.doi.org/10.2197/ipsjjip.29.581 ------------------------------ |
|||||||||||
| 論文抄録(英) | ||||||||||||
| 内容記述タイプ | Other | |||||||||||
| 内容記述 | Nowadays, virtualization is being deployed in many companies and institutions' systems. However, a noticeable security problem of virtualization is the fact that multiple virtual machines are run on one physical host machine called hypervisor. Hypervisors often implement a virtual switch to manage network connections between the internal virtual network and the external physical network. However, an adversary could exploit virtual switch flaws and use them to sabotage the entire virtual network. As a consequence, the attack could make all applications running on virtual machines unavailable. In this paper, we present SVTester, a fuzzing-based testing tool that can automatically identify possible vulnerabilities of a virtual switch that can be exploited for certain types of Denial-of-Service attack. We used an initial version of SVTester to check several hypervisors that implement the virtual switch. The results show that SVTester was able to rediscover DoS weaknesses on an old version of VMware hypervisor and found a novel possible vulnerability in the Oracle VirtualBox hypervisor. Our results also prove the effectiveness and potential of SVTester in evaluating virtual network security. ------------------------------ This is a preprint of an article intended for publication Journal of Information Processing(JIP). This preprint should not be cited. This article should be cited as: Journal of Information Processing Vol.29(2021) (online) DOI http://dx.doi.org/10.2197/ipsjjip.29.581 ------------------------------ |
|||||||||||
| 書誌レコードID | ||||||||||||
| 収録物識別子タイプ | NCID | |||||||||||
| 収録物識別子 | AN00116647 | |||||||||||
| 書誌情報 |
情報処理学会論文誌 巻 62, 号 9, 発行日 2021-09-15 |
|||||||||||
| ISSN | ||||||||||||
| 収録物識別子タイプ | ISSN | |||||||||||
| 収録物識別子 | 1882-7764 | |||||||||||
