Mississippi State University
Dandass, Yoginder S.
Dampier, David A.
Morris, Thomas H.
Date of Degree
Graduate Thesis - Open Access
Computer Science and Engineering
Master of Science
James Worth Bagley College of Engineering
Department of Computer Science and Engineering
Malware detection is typically performed using either software scanners running inside the operating system or external devices designed to validate the integrity of the kernel. This thesis proposes a hypervisor-based malware that compromises the system by targeting the hard disk drive and leaving the kernel unmodified. The hypervisor is able to issue read and write commands to the disk while actively hiding these actions from the operating system and any detection software therein. Additionally, the hypervisor’s presence has minimal impact on the performance of the system. The ability to perform these commands compromises the confidentiality, integrity, and availability of the stored data. As a result, this thesis has widespread implications affecting personal, corporate, and government users alike.
Martin, Jaron W., "Attacking Disk Storage Using Hypervisor-Based Malware" (2013). Theses and Dissertations. 810.