Back To Schedule
Wednesday, June 20 • 10:10 - 10:40
Improving the security of QEMU as a device emulator in Xen - Paul Durrant, Citrix Systems

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Recent developments in Xen and Linux now provide an environment in which it is possible to effectively limit the privilege of QEMU running as a device emulator in a privileged domain. This talk will discuss how dm (device model) op hypercall, file handle restriction in privcmd, libxentoolcore and the acquire_resources new memory op all contribute to the security of a system using QEMU as device emulator for untrusted guests

avatar for Paul Durrant

Paul Durrant

Principal Hypervisor Engineer, Amazon
Paul Durrant is a Principal Hypervisor Engineer in the Amazon Web Services EC2 team based in Cambridge, UK.

Wednesday June 20, 2018 10:10 - 10:40 GMT+07
Jiangning, Level 2