Publication: Assessment of hypervisor vulnerabilities
Issued Date
2016-10-18
Resource Type
Other identifier(s)
2-s2.0-84994879740
Rights
Mahidol University
Rights Holder(s)
SCOPUS
Bibliographic Citation
Proceedings - International Conference on Cloud Computing Research and Innovation 2016, ICCCRI 2016. (2016), 71-77
Suggested Citation
Ammarit Thongthua, Sudsanguan Ngamsuriyaroj Assessment of hypervisor vulnerabilities. Proceedings - International Conference on Cloud Computing Research and Innovation 2016, ICCCRI 2016. (2016), 71-77. doi:10.1109/ICCCRI.2016.19 Retrieved from: https://repository.li.mahidol.ac.th/handle/20.500.14594/43238
Research Projects
Organizational Units
Authors
Journal Issue
Thesis
Title
Assessment of hypervisor vulnerabilities
Author(s)
Other Contributor(s)
Abstract
© 2016 IEEE. Hypervisors are the main components for managing virtual machines on cloud computing systems. Thus, the security of hypervisors is very crucial as the whole system could be compromised when just one vulnerability is exploited. In this paper, we assess the vulnerabilities of widely used hypervisors including VMware ESXi, Citrix XenServer and KVM using the NIST 800-115 security testing framework. We perform real experiments to assess the vulnerabilities of those hypervisors using security testing tools. The results are evaluated using weakness information from CWE, and using vulnerability information from CVE. We also compute the severity scores using CVSS information. All vulnerabilities found of three hypervisors will be compared in terms of weaknesses, severity scores and impact. The experimental results showed that ESXi and XenServer have common weaknesses and vulnerabilities whereas KVM has fewer vulnerabilities. In addition, we discover a new vulnerability called HTTP response splitting on ESXi web interface.
