Recently,virtualization technologies have been widely used in industry.In order to monitor the security of target systems in virtualization environments,conventional methods usually put the security monitoring mechani...Recently,virtualization technologies have been widely used in industry.In order to monitor the security of target systems in virtualization environments,conventional methods usually put the security monitoring mechanism into the normal functionality of the target systems.However,these methods are either prone to be tempered by attackers or introduce considerable performance overhead for target systems.To address these problems,in this paper,we present a concurrent security monitoring method which decouples traditional serial mechanisms,including security event collector and analyzer,into two concurrent components.On one hand,we utilize the SIM framework to deploy the event collector into the target virtual machine.On the other hand,we combine the virtualization technology and multi-core technology to put the event analyzer into a trusted execution environment.To address the synchronization problem between these two concurrent components,we make use of Lamport's ring buffer algorithm.Based on the Xen hypervisor,we have implemented a prototype system named COMO.The experimental results show that COMO can monitor the security of the target virtual machine concurrently within a little performance overhead.展开更多
Rapid prototyping,real-time control and monitoring of various events in robots are crucial requirements for research in the fields of modular and swarm robotics.A large quantities of resources(time,man power,infrastru...Rapid prototyping,real-time control and monitoring of various events in robots are crucial requirements for research in the fields of modular and swarm robotics.A large quantities of resources(time,man power,infrastructure,etc.)are often invested in programming,interfacing the sensors,debugging the response to algorithms during prototyping and operational phases of a robot development cycle.The cost of developing an optimal infrastructure to efficiently address such control and monitoring requirements increases significantly in the presence of mobile robots.Though numerous solutions have been developed for minimizing the resources spent on hardware prototyping and algorithm validation in both static and mobile scenarios,it can be observed that researchers have either chosen methodologies that conflict with the power and infrastructure constraints of the research field or generated constrained solutions whose applications are restricted to the field itself.This paper develops a solution for addressing the challenges in controlling heterogeneous mobile robots.A platform named Quanta-a cost effective,energy efficient and high-speed wireless infrastructure is prototyped as a part of the research in the field of modular robotics.Quanta is capable of controlling and monitoring various events in/using a robot with the help of a light-weight communication protocol independent of the robot hardware architecture(s).展开更多
基金supported in part by National Natural Science Foundation of China(NSFC)under Grant No.61100228 and 61202479the National High-tech R&D Program of China under Grant No.2012AA013101+1 种基金the Strategic Priority Research Program of the Chinese Academy of Sciences under Grant No.XDA06030601 and XDA06010701Open Found of Key Laboratory of IOT Application Technology of Universities in Yunnan Province Grant No.2015IOT03
文摘Recently,virtualization technologies have been widely used in industry.In order to monitor the security of target systems in virtualization environments,conventional methods usually put the security monitoring mechanism into the normal functionality of the target systems.However,these methods are either prone to be tempered by attackers or introduce considerable performance overhead for target systems.To address these problems,in this paper,we present a concurrent security monitoring method which decouples traditional serial mechanisms,including security event collector and analyzer,into two concurrent components.On one hand,we utilize the SIM framework to deploy the event collector into the target virtual machine.On the other hand,we combine the virtualization technology and multi-core technology to put the event analyzer into a trusted execution environment.To address the synchronization problem between these two concurrent components,we make use of Lamport's ring buffer algorithm.Based on the Xen hypervisor,we have implemented a prototype system named COMO.The experimental results show that COMO can monitor the security of the target virtual machine concurrently within a little performance overhead.
文摘Rapid prototyping,real-time control and monitoring of various events in robots are crucial requirements for research in the fields of modular and swarm robotics.A large quantities of resources(time,man power,infrastructure,etc.)are often invested in programming,interfacing the sensors,debugging the response to algorithms during prototyping and operational phases of a robot development cycle.The cost of developing an optimal infrastructure to efficiently address such control and monitoring requirements increases significantly in the presence of mobile robots.Though numerous solutions have been developed for minimizing the resources spent on hardware prototyping and algorithm validation in both static and mobile scenarios,it can be observed that researchers have either chosen methodologies that conflict with the power and infrastructure constraints of the research field or generated constrained solutions whose applications are restricted to the field itself.This paper develops a solution for addressing the challenges in controlling heterogeneous mobile robots.A platform named Quanta-a cost effective,energy efficient and high-speed wireless infrastructure is prototyped as a part of the research in the field of modular robotics.Quanta is capable of controlling and monitoring various events in/using a robot with the help of a light-weight communication protocol independent of the robot hardware architecture(s).
