VIRTUAL MACHINE DETECTION IN SOFTWARE-DEFINED NETWORKS
Bihl, Timothy D.
McEachen, John C.
MetadataShow full item record
In this thesis, we evaluate a means of determining whether or not a network host is a virtual machine from the perspective of a network administrator using software-defined networking infrastructure. Virtualization presents a user with a desktop and computing environment identical to what is normally expected while also permitting them to be unwittingly controlled from outside the desktop environment. The added complexity of virtual environments causes extra computing delays, which may be observed in traffic round-trip times. In this thesis, we demonstrate how the observed round-trip times may be used to determine which machines were virtualized and which were running natively directly atop the hardware. Two versions of the experiment were performed. The first substantiated that the approach was feasible. The second, using a more realistic software-defined networking infrastructure, showed that delay measurement must be done by methods that minimize unnecessary hops before measurement, though the experiment still succeeded in differentiating virtual machines in the majority of cases.
RightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Showing items related by title, author, creator and subject.
Hudson, Ken; Nissen, Mark E. (2011-06);Effective Command and Control (C2) is enabled by information technology, but the potential of C2 through virtual environments offers opportunities for radical increases in awareness and performance. To realize such radical ...
Nardon, Luciara; Aten, Kathryn (JAIS, 2012-10);Virtual worlds offer great potential for supporting the collaborative work of geographically distributed teams. However, reports indicate the existence of substantial barriers to the acceptance and use of virtual worlds ...
Karadeniz, Kadir. (2001-03);This thesis explores the Intel IA-64 architecture's capability to support a secure virtual machine monitor. The major mission of a virtual machine monitor is to provide an execution environment identical to the real machine ...