@inproceedings{02bde2c69b66499084c4f68ae389ae74,
title = "Chinese wall isolation mechanism and its implementation on VMM",
abstract = "Virtualization is achieving increasing popularity and there are some mandatory access control (MAC) mechanisms available which control overt communications among virtual machines (VM) in virtual machine systems. However such mechanisms cannot block covert channels. A strong isolation mechanism at hardware layer can benefit solutions to this problem. Hence, in this paper we propose an isolation mechanism based on Chinese Wall policy to make an air-gap among VMs which have conflict of interest, and implement it on a popular virtual machine monitor (VMM), Xen. It regulates the VMM allocating hardware resources like physical memory, CPUs and I/O adapters to VMs without many losses of system performance. Hence it provides stronger isolation among VMs than VMMs do.",
author = "Guanhai Wang and Minglu Li and Chuliang Weng",
year = "2010",
doi = "10.1007/978-3-642-14944-3\_2",
language = "英语",
isbn = "9783642149436",
series = "Communications in Computer and Information Science",
pages = "13--18",
editor = "Latifa Boursas and Mark Carlson and Hai Jin and Michelle Sibilla and KesWold",
booktitle = "Systems and Virtualization Management",
note = "3rd International DMTF Academic Alliance Workshop on Systems and Virtualization Management: Standards and the Cloud, SVM 2009 ; Conference date: 22-09-2009 Through 23-09-2009",
}