This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
nickle [2008/09/16 11:51] ryan |
nickle [2009/12/08 10:41] dxu |
||
---|---|---|---|
Line 9: | Line 9: | ||
===== Publications ===== | ===== Publications ===== | ||
There are two publications corresponding to NICKLE: The conference paper and the technical report. When in doubt, read the conference paper. (The tech report has a few more experiments described and a bit more detail about the VirtualBox report.) | There are two publications corresponding to NICKLE: The conference paper and the technical report. When in doubt, read the conference paper. (The tech report has a few more experiments described and a bit more detail about the VirtualBox report.) | ||
- | * "Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing". Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //11th International Symposium on Recent Advances in Intrusion Detection// ([[http://www.ll.mit.edu/RAID2008/|RAID 2008]]). | + | * "Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing". Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //11th International Symposium on Recent Advances in Intrusion Detection// ([[http://www.ll.mit.edu/RAID2008/|RAID 2008]]). Best paper award. |
* [[http://friends.cs.purdue.edu/pubs/RAID08.pdf|Paper]] in PDF format. | * [[http://friends.cs.purdue.edu/pubs/RAID08.pdf|Paper]] in PDF format. | ||
+ | * [[http://friends.cs.purdue.edu/projects/nickle/raid08/|Presentation]] as a Flash video. | ||
* "Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing". Ryan Riley, Xuxian Jiang, and Dongyan Xu. CERIAS TR 2001-146. | * "Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing". Ryan Riley, Xuxian Jiang, and Dongyan Xu. CERIAS TR 2001-146. | ||
* [[http://www.cerias.purdue.edu/tools_and_resources/bibtex_archive/archive/2001-146.pdf|TR]] in PDF format. | * [[http://www.cerias.purdue.edu/tools_and_resources/bibtex_archive/archive/2001-146.pdf|TR]] in PDF format. | ||
+ | |||
+ | * "Multi-Aspect Profiling of Kernel Rootkit Behavior". Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //Fourth European Conference on Computer Systems// ([[http://eurosys2009.informatik.uni-erlangen.de/|EuroSys 2009]]). | ||
+ | * [[http://friends.cs.purdue.edu/pubs/eurosys09.pdf|Paper]] in PDF format. | ||
===== Software ===== | ===== Software ===== | ||
Line 23: | Line 27: | ||
===== People ===== | ===== People ===== | ||
* [[http://www.cs.purdue.edu/homes/rileyrd/|Ryan Riley]] | * [[http://www.cs.purdue.edu/homes/rileyrd/|Ryan Riley]] | ||
- | * [[http://www.ise.gmu.edu/~xjiang/|Xuxian Jiang]] | + | * [[http://www.csc.ncsu.edu/faculty/jiang/|Xuxian Jiang]] |
* [[http://www.cs.purdue.edu/homes/dxu/|Dongyan Xu]] | * [[http://www.cs.purdue.edu/homes/dxu/|Dongyan Xu]] |