Article Title: Virtual Machine software developer: How to restrict Virtual Machine network attacks. Linux is a technology channel of the IT lab in China. Including desktop applications, Linux system management, kernel research, embedded systems, open source, and other basic categories. by reducing the time for Virtual Machine versions to exist on the network to prevent hacker attacks, in this way, the well-managed virtual machine will make intruders accessible, said Professor George Mason of the Virtual Machine software developer.
By limiting the online time of virtual machines and updating servers in a timely manner, enterprises can effectively cut off hacker intrusion channels, said Arun Sood, a computer science professor.
The software is called Self Cleansing Intrusion Tolerance, abbreviated as SCIT. It can reside on the physical machine and the life cycle of the virtual machine. Professor Sood has begun funding the establishment of SCIT labs to develop commercial SCIT products.
Traditional Physical machines are often attached to the network for several months, which provides an opportunity for intruders to attack and become targets of their attacks, Professor Sood explained. SCIT-controlled virtual machines can schedule the network stop time before shutdown.
Sood supports layered network defense and says his research is not intended to replace intrusion defense systems or other security systems that prevent attacks. However, because these systems cannot prevent all malicious attacks, he is studying intrusion tolerance-a system that can maintain system functions when the system is under external attacks.
"I cannot block all intruders out of the system, but I will do my best to control the consequences of their destruction," Sood said. Sood believes that the technology he developed can reduce the number of intruders and increase the difficulty of malicious attacks by intruders. "If you take the server offline every minute, the efforts of intruders will be futile ", sood explains.
SCIT technology is most suitable for servers with a short transaction period and has been tested on domain name servers, networks, and stand-alone servers. The results show that SCIT can play an effective role even if each virtual machine takes only a few seconds, sood representation.
SCIT further increases the difficulty of attacker intrusion by generating replace virtual machines and performing the same functions on different platforms. Therefore, the server in the offline status can also use Linux as the operating system or replace it with the Windows operating system. If the alternative server is Microsoft's domain name server, it can also be Professor bind dns. Sood who said this approach is differentiated strategic security.
So far, Sood has created virtual machines on the VMware platform and claims that any other virtualization software can also be applied. Professor Sood has applied for four patents for SCIT technology.
