User Tools

Site Tools


nickle

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
nickle [2008/09/16 11:51]
ryan
nickle [2009/12/08 10:41]
dxu
Line 9: Line 9:
 ===== Publications ===== ===== Publications =====
 There are two publications corresponding to NICKLE: The conference paper and the technical report. ​ When in doubt, read the conference paper. ​ (The tech report has a few more experiments described and a bit more detail about the VirtualBox report.) There are two publications corresponding to NICKLE: The conference paper and the technical report. ​ When in doubt, read the conference paper. ​ (The tech report has a few more experiments described and a bit more detail about the VirtualBox report.)
-  * "​Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing"​. Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //11th International Symposium on Recent Advances in Intrusion Detection// ([[http://​www.ll.mit.edu/​RAID2008/​|RAID 2008]]).+  * "​Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing"​. Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //11th International Symposium on Recent Advances in Intrusion Detection// ([[http://​www.ll.mit.edu/​RAID2008/​|RAID 2008]]).  Best paper award.
      * [[http://​friends.cs.purdue.edu/​pubs/​RAID08.pdf|Paper]] in PDF format.      * [[http://​friends.cs.purdue.edu/​pubs/​RAID08.pdf|Paper]] in PDF format.
 +     * [[http://​friends.cs.purdue.edu/​projects/​nickle/​raid08/​|Presentation]] as a Flash video.
  
   * "​Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing"​. Ryan Riley, Xuxian Jiang, and Dongyan Xu. CERIAS TR 2001-146.   * "​Guest-Transparent Prevention of Kernel Rootkits with VMM-based Memory Shadowing"​. Ryan Riley, Xuxian Jiang, and Dongyan Xu. CERIAS TR 2001-146.
      * [[http://​www.cerias.purdue.edu/​tools_and_resources/​bibtex_archive/​archive/​2001-146.pdf|TR]] in PDF format.      * [[http://​www.cerias.purdue.edu/​tools_and_resources/​bibtex_archive/​archive/​2001-146.pdf|TR]] in PDF format.
 +
 +  * "​Multi-Aspect Profiling of Kernel Rootkit Behavior"​. Ryan Riley, Xuxian Jiang, and Dongyan Xu. In //Fourth European Conference on Computer Systems// ([[http://​eurosys2009.informatik.uni-erlangen.de/​|EuroSys 2009]]). ​
 +     * [[http://​friends.cs.purdue.edu/​pubs/​eurosys09.pdf|Paper]] in PDF format.
  
 ===== Software ===== ===== Software =====
Line 23: Line 27:
 ===== People ===== ===== People =====
   * [[http://​www.cs.purdue.edu/​homes/​rileyrd/​|Ryan Riley]]   * [[http://​www.cs.purdue.edu/​homes/​rileyrd/​|Ryan Riley]]
-  * [[http://​www.ise.gmu.edu/~xjiang/|Xuxian Jiang]]+  * [[http://​www.csc.ncsu.edu/faculty/​jiang/|Xuxian Jiang]]
   * [[http://​www.cs.purdue.edu/​homes/​dxu/​|Dongyan Xu]]   * [[http://​www.cs.purdue.edu/​homes/​dxu/​|Dongyan Xu]]
nickle.txt ยท Last modified: 2009/12/08 10:41 by dxu