Red/Blue Pills, deeper and deeper

August 6, 2008


One of the most promising areas of innovation from a blackhat whitehat standpoint in research is the area of hardware based virtualization.  So basically after the 5 year trend of software based virtualization VMware, VirtualPC ectera, AMD and Intel and others implemented hardware support for virtual machines.  One physical box hosts multiple OS versions or Guest OS’s with emulated calls to the abstracted hardware layer yet all machines can share access to the underlying hardware functionality.  The term hypervisor came into being that basically shrunk, and optimized the software used to manage virtual machines, and added a bunch of enterprise management and security features. 

Security researchers have primarily four goals, creation of virtualization rootkits, escaping the Virtual machine to affect other virtual machines or the host OS/hypervisor, makeing the hypervisor undetectable to malware and malware being able to detect that its running in a virtualized environment. 

One of the leading researchers in this field is

Joanna Rutkowska is the babe brains behind the operation and is sort of an international wunderkind.  I spent most of my formative years doinking around with games.  heh, gotta catch up..

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: