关键词: 入侵隔离 隔离执行 虚拟执行环境 安全 虚拟机

Abstract:

Isolation is a mechanism that has been applied to allow untrusted code to run while isolating their effects Irom nt isolation technologies cannot achieve both the strong isolation （i. e. , operating system isolation） and the functionality of isolated applications  s （accomplished via reproducing the computing environment and committing changes within the isolated environment）. In this paper, we propose a safe vi  irtual execution environment （SVEE） based on the local virtualization technology and implement it on Windows. Via systematic virtualization,SVEE fulfi  ills strong isolation, thus completely isolates the effects of untrusted code execution within SVEE from the underlying host operating system. The key f eature of SVEE is that it provides the capability to reproduce the computing environment of the host operating system, therefore it can reproduce the be    havior of applications, as if it were running natively within the host operating system. This is  oreover, SVEE provides a convenient way to compare the changes within SVEE and the host operating system. Using these comparison results for reference,    SVEE will select a proper method to commit these changes.

Key words: intrusion isolation, isolated execution, virtual execution environment, security, virtual machine