Black Box Voting : (US) 6/06 - Virtual machine rootkits -- in other words, malware loaders

SHORTCUTS: How to find what you're looking for

Forum Navigation
  Topics
  Log In
  Log Out
:
Forum Search
  New Today
  New This Week
  Advanced Search
  Tree View

Forum Account
  Edit Profile
  Register
  Forgot Password

Forum Tools
  Help/Instructions
  Policies

CLICK STATE TO SEE:

"WATCH LIST"
Marked with:

"OPEN & HONEST"
Marked with:

...

(US) 6/06 - Virtual machine rootkits ...

Black Box Voting » General discussion » (US) 2006 - General Discussion Archive » (US) 6/06 - Virtual machine rootkits -- in other words, malware loaders

« Previous Next »

Author

Message

Ron Crane
Frequent Voting Rights Forum Participant
Username: Ron_crane

Post Number: 151
Registered: 08-2005

Best of Black Box?
Votes: 1 (A keeper?)

Posted on Friday, June 30, 2006 - 12:53 pm:

Microsoft Research has demonstrated a rootkit that inserts a virtual machine monitor between an operating system (e.g., Windows) and the CPU on which it runs. The rootkit then uses this privileged position to force the OS to do whatever the rootkit's creator wants.

http://www.eweek.com/article2/0,1895,1936666,00.asp

This is closely analogous to the malware loader I and others described in _A Deeper Look: Rebutting Shamos on e-Voting_ at s.3.1.2 (http://www-db.stanford.edu/pub/keller/2006/Shamos-rebuttal.pdf). In a voting machine, the machine's firmware could play the role of the rootkit, and the voting application the role of the OS under attack.

(Message edited by ron_crane on June 30, 2006)

All original content on this website is Copyright (c) 2008-2009 by Black Box Voting. All rights reserved.
Forums powered by Discus Professional - www.discusware.com.
Original site and logo design is by Andy Markley - art101.com.