{"updated":"2025-01-19T15:15:09.231444+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00218147","sets":["1164:1867:10898:10929"]},"path":["10929"],"owner":"44499","recid":"218147","title":["ハイパーバイザにおける仮想デバイスの脆弱ウィンドウを短縮する不正I/Oフィルタ"],"pubdate":{"attribute_name":"公開日","attribute_value":"2022-05-19"},"_buckets":{"deposit":"4f32ebbb-cfb6-44b0-8f82-cddb7afd06e0"},"_deposit":{"id":"218147","pid":{"type":"depid","value":"218147","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"ハイパーバイザにおける仮想デバイスの脆弱ウィンドウを短縮する不正I/Oフィルタ","author_link":["566672","566673","566671"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"ハイパーバイザにおける仮想デバイスの脆弱ウィンドウを短縮する不正I/Oフィルタ"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"仮想化・OS","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2022-05-19","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"慶應義塾大学"},{"subitem_text_value":"慶應義塾大学／現在，法政大学"},{"subitem_text_value":"慶應義塾大学"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Keio University","subitem_text_language":"en"},{"subitem_text_value":"Keio University / Presently with Hosei Uniersity","subitem_text_language":"en"},{"subitem_text_value":"Keio University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/218147/files/IPSJ-OS22155005.pdf","label":"IPSJ-OS22155005.pdf"},"date":[{"dateType":"Available","dateValue":"2024-05-19"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-OS22155005.pdf","filesize":[{"value":"947.5 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"11"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"74a162be-5439-4307-9bf0-acd3a67b2ac6","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2022 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"瀬貫, 真菜"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"石黒, 健太"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"河野, 健二"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10444176","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8795","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"マルチテナント型のクラウド環境において，ハイパーバイザは仮想マシンの隔離と安全性を保証しているものの，ハイパーバイザにも多くの脆弱性が報告されており，特にデバイスエミュレータはその温床となっている．デバイスエミュレータはその複雑さから修正パッチの開発が容易ではなく，脆弱性の発見からパッチの適用までに長い時間を要することが多い．本論文では，デバイスエミュレータを対象に一時的に脆弱性を防ぐ手法を提案する．デバイスエミュレータの脆弱性を突く攻撃では，通常の I/O 処理では行われることのない I/O 要求を行うことが多い．そこで，脆弱性を突く不正攻撃に特有の I/O 要求を拒否する I/O フィルタの仕組みを導入する．I/O フィルタでは，特定の脆弱性を突くための特徴的な I/O 要求が記述でき，その記述に合致する I/O 要求を拒絶する．このフィルタはデバイスの内部構造を理解することなく記述可能であるため，修正パッチの作成より容易であることが期待できる．実際に CVE-2015-3456 (VENOM)，CVE-2016-7909 など 4 個の脆弱性を防ぐフィルタの記述が可能であり，通常時の仮想マシンの動作を阻害することはなく，実行時オーバーヘッドも最大 8% 程度であることを示す．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"9","bibliographic_titles":[{"bibliographic_title":"研究報告システムソフトウェアとオペレーティング・システム（OS）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2022-05-19","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"5","bibliographicVolumeNumber":"2022-OS-155"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:18:33.970511+00:00","id":218147,"links":{}}