{"updated":"2025-01-19T12:41:30.556235+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00225752","sets":["1164:1867:11128:11250"]},"path":["11250"],"owner":"44499","recid":"225752","title":["ネステッド仮想化のファジングにおけるカバレッジ向上に向けて"],"pubdate":{"attribute_name":"公開日","attribute_value":"2023-05-09"},"_buckets":{"deposit":"957be7da-1b95-4b67-b626-5f194c446502"},"_deposit":{"id":"225752","pid":{"type":"depid","value":"225752","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"ネステッド仮想化のファジングにおけるカバレッジ向上に向けて","author_link":["597996","597998","597997"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"ネステッド仮想化のファジングにおけるカバレッジ向上に向けて"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"ネストした仮想化","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2023-05-09","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"東京大学"},{"subitem_text_value":"産業技術総合研究所"},{"subitem_text_value":"東京大学"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"The University of Tokyo","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Advanced Industrial Science and Technology","subitem_text_language":"en"},{"subitem_text_value":"The University of Tokyo","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/225752/files/IPSJ-OS23159012.pdf","label":"IPSJ-OS23159012.pdf"},"date":[{"dateType":"Available","dateValue":"2025-05-09"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-OS23159012.pdf","filesize":[{"value":"529.8 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"11"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"058b0fd9-87ad-480d-b090-d9fadeb9c411","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2023 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"石井, 玲真"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"深井, 貴明"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"品川, 高廣"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10444176","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8795","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"近年の IaaS 型クラウドでは，ユーザーが独自のハイパーバイザを実行できるネステッド仮想化がサポートされるようになってきた．ネステッド仮想化では，クラウド事業者のハイパーバイザが，CPU のハードウェア仮想化支援機能をエミュレートすることにより，ユーザーのハイパーバイザを実行可能にするが，仮想化支援機能は非常に複雑であるため，ネステッド仮想化の実装にもしばしば脆弱性が発見されている．脆弱性を発見する手法としてはファジングが有効であることが知られているが，ネステッド仮想化に単純にファジングを適用すると，(1) 入力として特殊な CPU 命令列が必要，(2) 仮想マシンの状態空間が膨大，(3) CPU 機能の有無による挙動変化，といった問題によりカバレッジを向上させることが難しい．本研究では，ネステッド仮想化のファジングにおけるカバレッジ向上に向けて，(1) 異なる特権レベルで指定した命令列を実行できる特殊な小型ハーネスの導入，(2) 適切な仮想マシンの状態を生成できる有効状態判定器の導入，(3) ハイパーバイザの起動時パラメータのミューテーション，といった手法により，正しい状態と不正な状態の境界領域を効率的にファジングすることでカバレッジを向上させる手法を提案する．実験により，提案手法は syzkaller と比べてネステッド仮想化のコードカバレッジを 17.9% 向上させることができることを確認した．また，提案手法を用いて KVM をファジングしたところ，ネステッド仮想化における未知の脆弱性を発見し CVE ID が割り当てられた．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"10","bibliographic_titles":[{"bibliographic_title":"研究報告システムソフトウェアとオペレーティング・システム（OS）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2023-05-09","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"12","bibliographicVolumeNumber":"2023-OS-159"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:25:15.280223+00:00","id":225752,"links":{}}