Windows vault: prevention of virus infection and secret leakage with secure OS and virtual machine

Authors:
Yoshiki Sameshima;Hideaki Saisho;Tsutomu Matsumoto;Norihisa Komoda
Affiliations:
Hitachi Software Engineering, Co., Ltd., Yokohama National University;Hitachi Software Engineering, Co., Ltd., Yokohama National University;Graduate School of Environment and Information Science, Yokohama National University;Graduate School of Information Science and Technology, Osaka University
Venue:
WISA'07 Proceedings of the 8th international conference on Information security applications
Year:
2007

Citing 3
Cited 0

Semantics-Aware Malware Detection

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
VIRTUS: a new processor virtualization architecture for security-oriented next-generation mobile terminals

Proceedings of the 43rd annual Design Automation Conference
Trusted virtual domains: toward secure distributed services

HotDep'05 Proceedings of the First conference on Hot topics in system dependability

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present an integrated system of two Windows workstations; while the first workstation is prepared to process secret information, the second is for non-secret which may contain computer virus, and the two workstations are integrated into a PC with secure OS, virtual machine and gateways. Since the two workstations are virtually separated at the physical level, the first workstation is not infected by virus, nor is secret leaked out to the Internet, even if the second is infected by unknown virus. Comparing previous work which realizes complete data isolation for intelligence community, user of the proposed system can import data securely from the second workstation to the first through security guaranteed channel between the two workstations. The user can also read e-mail from the Internet on the first without fear of virus infection, and as a result the user does not need to be aware that she/he uses the two workstations.