Next Article in Journal
Energy Efficient Power Allocation for the Uplink of Distributed Massive MIMO Systems
Previous Article in Journal
An Adaptive Back-Off Mechanism for Wireless Sensor Networks
Article Menu
Issue 2 (June) cover image

Export Article

Open AccessArticle
Future Internet 2017, 9(2), 20; doi:10.3390/fi9020020

An Access Control Model for Preventing Virtual Machine Escape Attack

School of Computer Engineering and Science, Shanghai University, Shanghai 200444, China
Author to whom correspondence should be addressed.
Academic Editor: Luis Javier Garcia Villalba
Received: 26 March 2017 / Revised: 20 May 2017 / Accepted: 23 May 2017 / Published: 2 June 2017
View Full-Text   |   Download PDF [2947 KB, uploaded 30 June 2017]   |  


With the rapid development of Internet, the traditional computing environment is making a big migration to the cloud-computing environment. However, cloud computing introduces a set of new security problems. Aiming at the virtual machine (VM) escape attack, we study the traditional attack model and attack scenarios in the cloud-computing environment. In addition, we propose an access control model that can prevent virtual machine escape (PVME) by adapting the BLP (Bell-La Padula) model (an access control model developed by D. Bell and J. LaPadula). Finally, the PVME model has been implemented on full virtualization architecture. The experimental results show that the PVME module can effectively prevent virtual machine escape while only incurring 4% to 8% time overhead. View Full-Text
Keywords: virtual security; virtual machine escape; access control; BLP model; PVME model virtual security; virtual machine escape; access control; BLP model; PVME model

Figure 1

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. (CC BY 4.0).

Scifeed alert for new publications

Never miss any articles matching your research from any publisher
  • Get alerts for new papers matching your research
  • Find out the new papers from selected authors
  • Updated daily for 49'000+ journals and 6000+ publishers
  • Define your Scifeed now

SciFeed Share & Cite This Article

MDPI and ACS Style

Wu, J.; Lei, Z.; Chen, S.; Shen, W. An Access Control Model for Preventing Virtual Machine Escape Attack. Future Internet 2017, 9, 20.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics



[Return to top]
Future Internet EISSN 1999-5903 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top