Moving from logical sharing of guest OS to physical sharing of deduplication on virtual machine

Authors:
Kuniyasu Suzaki;Toshiki Yagi;Kengo Iijima;Nguyen Anh Quynh;Cyrille Artho;Yoshihito Watanebe
Affiliations:
National Institute of Advanced Industrial Science and Technology;National Institute of Advanced Industrial Science and Technology;National Institute of Advanced Industrial Science and Technology;National Institute of Advanced Industrial Science and Technology;National Institute of Advanced Industrial Science and Technology;Alpha Systems Inc.
Venue:
HotSec'10 Proceedings of the 5th USENIX conference on Hot topics in security
Year:
2010

Citing 12
Cited 1

Disco: running commodity operating systems on scalable multiprocessors

Proceedings of the sixteenth ACM symposium on Operating systems principles
Venti: A New Approach to Archival Storage

FAST '02 Proceedings of the Conference on File and Storage Technologies
Hacking: The Art of Exploitation

Hacking: The Art of Exploitation
Deep Store: An Archival Storage System Architecture

ICDE '05 Proceedings of the 21st International Conference on Data Engineering
Memory resource management in VMware ESX server

OSDI '02 Proceedings of the 5th symposium on Operating systems design and implementationCopyright restrictions prevent ACM from being able to make the PDFs for this conference available for downloading
Slinky: static linking reloaded

ATEC '05 Proceedings of the annual conference on USENIX Annual Technical Conference
Secure coding in c and c++

Secure coding in c and c++
HYDRAstor: a Scalable Secondary Storage

FAST '09 Proccedings of the 7th conference on File and storage technologies
The effectiveness of deduplication on virtual machine disk images

SYSTOR '09 Proceedings of SYSTOR 2009: The Israeli Experimental Systems Conference
Difference engine: harnessing memory redundancy in virtual machines

OSDI'08 Proceedings of the 8th USENIX conference on Operating systems design and implementation
Satori: enlightened page sharing

USENIX'09 Proceedings of the 2009 conference on USENIX Annual technical conference
Experiences with content addressable storage and virtual disks

WIOV'08 Proceedings of the First conference on I/O virtualization

Memory deduplication as a threat to the guest OS

Proceedings of the Fourth European Workshop on System Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Current OSes include many logical sharing techniques (shared library, symbolic link, etc.) on memory and storage. Unfortunately they cause security and management problems which come from the dynamic management of logical sharing; e.g., search path replacement attack, GOT (Global Offset Table) overwrite attack, Dependency Hell, etc. This paper proposes that self-contained binaries eliminate the problems caused by logical sharing. The memory and storage overheads caused by self-contained binaries are mitigated by physical sharing (memory and disk deduplication). The effect of deduplication was investigated on the KVM virtual machine with KSM (Kernel Samepage Merging) and LBCAS (Loopback Content Addressable Storage).