{"created":"2023-05-15T12:00:33.799794+00:00","id":7444,"links":{},"metadata":{"_buckets":{"deposit":"e908f211-f41e-44b9-ac87-d58b08d2d3ab"},"_deposit":{"created_by":3,"id":"7444","owners":[3],"pid":{"revision_id":0,"type":"depid","value":"7444"},"status":"published"},"_oai":{"id":"oai:kyutech.repo.nii.ac.jp:00007444","sets":["8:24"]},"author_link":["32155","20772"],"item_21_biblio_info_6":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicIssueDates":{"bibliographicIssueDate":"2021-07-13","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"1","bibliographicPageEnd":"8","bibliographicPageStart":"1","bibliographicVolumeNumber":"2021-OS-153","bibliographic_titles":[{"bibliographic_title":"情報処理学会研究報告. [システムソフトウェアとオペレーティング・システム]"}]}]},"item_21_description_4":{"attribute_name":"抄録","attribute_value_mlt":[{"subitem_description":"IaaS型クラウドの普及により，クラウドの仮想マシン（VM）においても重要なデータが扱われるようになっている．クラウド内には悪意のある管理者などの内部犯がいる可能性があるが，AMD SEVを用いてVMのメモリを透過的に暗号化することにより，メモリの盗聴による情報漏洩を防ぐことができる．一方，VM内に侵入されるとSEVによるVMの保護は機能しなくなるため，侵入検知システム（IDS）を用いて攻撃を検知する必要がある．しかし，VMの外にIDSをオフロードして安全に実行しようとしても，暗号化されたVMのメモリ上のデータを監視することはできない．本稿では，SEVを用いてメモリが暗号化されたVM内でエージェントを動作させることによりIDSオフロードを実現するシステムSEVmonitorを提案する．SEVmonitorは監視対象VMの内部でエージェントを安全に動作させ，IDSがエージェントからメモリデータを取得することによってVMの監視を行う．IDSもSEVによって保護された別のVM内で動作させることで，IDS経由での情報漏洩も防ぐ．SEVmonitorをKVMとLinuxを用いて実装し，監視対象VMのOSデータを取得する性能を調べた．","subitem_description_type":"Abstract"}]},"item_21_description_5":{"attribute_name":"内容記述","attribute_value_mlt":[{"subitem_description":"2021年並列／分散／協調処理に関するサマー・ワークショップ (SWoPP2021), 2021年7月19日- 21日, オンライン開催","subitem_description_type":"Other"}]},"item_21_description_60":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"subitem_description":"Journal Article","subitem_description_type":"Other"}]},"item_21_publisher_7":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会"}]},"item_21_relation_14":{"attribute_name":"情報源","attribute_value_mlt":[{"subitem_relation_name":[{"subitem_relation_name_text":"http://id.nii.ac.jp/1001/00211754/"}],"subitem_relation_type_id":{"subitem_relation_type_id_text":"http://id.nii.ac.jp/1001/00211754/","subitem_relation_type_select":"URI"}}]},"item_21_rights_13":{"attribute_name":"権利","attribute_value_mlt":[{"subitem_rights":"Copyright (c) 2021 Information Processing Society of Japan. ここに掲載した著作物の利用に関する注意 本著作物の著作権は情報処理学会に帰属します。本著作物は著作権者である情報処理学会の許可のもとに掲載するものです。ご利用に当たっては「著作権法」ならびに「情報処理学会倫理綱領」に従うことをお願いいたします。 / Notice for the use of this material The copyright of this material is retained by the Information Processing Society of Japan (IPSJ). This material is published on this web site with the agreement of the author (s) and the IPSJ. Please be complied with Copyright Law of Japan and the Code of Ethics of the IPSJ if any users wish to reproduce, make derivative work, distribute or make available to the public any part or whole thereof. All Rights Reserved, Copyright (C) Information Processing Society of Japan. Comments are welcome. Mail to address editj＠ipsj.or.jp, please."}]},"item_21_select_59":{"attribute_name":"査読の有無","attribute_value_mlt":[{"subitem_select_item":"no"}]},"item_21_source_id_10":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10444176","subitem_source_identifier_type":"NCID"}]},"item_21_source_id_8":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8795","subitem_source_identifier_type":"ISSN"}]},"item_21_subject_16":{"attribute_name":"日本十進分類法","attribute_value_mlt":[{"subitem_subject":"547","subitem_subject_scheme":"NDC"}]},"item_21_text_36":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"九州工業大学"},{"subitem_text_value":"九州工業大学"}]},"item_21_text_63":{"attribute_name":"連携ID","attribute_value_mlt":[{"subitem_text_value":"9789"}]},"item_21_version_type_58":{"attribute_name":"著者版フラグ","attribute_value_mlt":[{"subitem_version_resource":"http://purl.org/coar/version/c_970fb48d4fbd8a85","subitem_version_type":"VoR"}]},"item_creator":{"attribute_name":"著者","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"能野,  智玄"}],"nameIdentifiers":[{}]},{"creatorAffiliations":[{"affiliationNameIdentifiers":[],"affiliationNames":[{"affiliationName":""}]}],"creatorNames":[{"creatorName":"Kourai, Kenichi","creatorNameLang":"en"},{"creatorName":"光来, 健一","creatorNameLang":"ja"},{"creatorName":"コウライ, ケンイチ","creatorNameLang":"ja-Kana"}],"familyNames":[{},{},{}],"givenNames":[{},{},{}],"nameIdentifiers":[{},{},{},{},{}]}]},"item_files":{"attribute_name":"ファイル情報","attribute_type":"file","attribute_value_mlt":[{"accessrole":"open_date","date":[{"dateType":"Available","dateValue":"2021-12-08"}],"displaytype":"detail","filename":"RECN_2021-07.pdf","filesize":[{"value":"1.1 MB"}],"format":"application/pdf","licensetype":"license_note","mimetype":"application/pdf","url":{"label":"RECN_2021-07.pdf","url":"https://kyutech.repo.nii.ac.jp/record/7444/files/RECN_2021-07.pdf"},"version_id":"fcf34ee1-9a6c-4fca-b379-64c54e3265c3"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"オフロード","subitem_subject_scheme":"Other"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourcetype":"journal article","resourceuri":"http://purl.org/coar/resource_type/c_6501"}]},"item_title":"AMD SEVを用いてメモリが暗号化されたVMに対するIDSオフロード","item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"AMD SEVを用いてメモリが暗号化されたVMに対するIDSオフロード"}]},"item_type_id":"21","owner":"3","path":["24"],"pubdate":{"attribute_name":"公開日","attribute_value":"2021-12-08"},"publish_date":"2021-12-08","publish_status":"0","recid":"7444","relation_version_is_last":true,"title":["AMD SEVを用いてメモリが暗号化されたVMに対するIDSオフロード"],"weko_creator_id":"3","weko_shared_id":3},"updated":"2023-10-25T08:59:05.965753+00:00"}