Detection of Malware and Kernel-Level Rootkits in Cloud Computing Environments

Win, Thu Yein ORCID: 0000-0002-4977-0511, Tianfield, Huaglory and Mair, Quentin (2016) Detection of Malware and Kernel-Level Rootkits in Cloud Computing Environments. In: The 2nd IEEE International Conference on Cyber Security and Cloud Computing, 3-5 November 2015, New York, United States.

Detection of Malware and Kernel.pdf - Accepted Version
Available under License All Rights Reserved.

Download (280kB) | Preview


Cyberattacks targeted at virtualization infrastructure underlying cloud computing services has become increasingly sophisticated. This paper presents a novel malware and rookit detection system which protects the guests against different attacks. It combines system call monitoring and system call hashing on the guest kernel together with Support Vector Machines (SVM)-based external monitoring on the host. We demonstrate the effectiveness of our solution by evaluating it against well-known user-level malware as well as kernel-level rootkit attacks.

Item Type: Conference or Workshop Item (Paper)
Additional Information: This article received the IEEE Best paper award.
Uncontrolled Keywords: Virtualization security, Cloud security, Malware detection, Rootkit detection, Support vector machine, Virtual machine introspection
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
Divisions: Schools and Research Institutes > School of Business, Computing and Social Sciences
Research Priority Areas: Applied Business & Technology
Depositing User: Susan Turner
Date Deposited: 21 Nov 2016 10:33
Last Modified: 31 Aug 2023 08:01

University Staff: Request a correction | Repository Editors: Update this record

University Of Gloucestershire

Bookmark and Share

Find Us On Social Media:

Social Media Icons Facebook Twitter Google+ YouTube Pinterest Linkedin

Other University Web Sites

University of Gloucestershire, The Park, Cheltenham, Gloucestershire, GL50 2RH. Telephone +44 (0)844 8010001.