Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

KernelSnitch in a VM #1

Open
zvonkok opened this issue Jan 5, 2025 · 1 comment
Open

KernelSnitch in a VM #1

zvonkok opened this issue Jan 5, 2025 · 1 comment

Comments

@zvonkok
Copy link

zvonkok commented Jan 5, 2025

Great paper!
Have you guys done any experiments running KernelSnitch in a VM, and how can it be used to escape a VMM like QEMU?
Or how KernelSnitch could be used to attack confidential VMs?
@lukasmaar
Copy link
Collaborator

Thanks.
The basic principle of KernelSnitch is that the victim and attacker must share the same kernel. So in its current form, KernelSnitch cannot be used to attack VMs. However, KernelSnitch can be extended to attack VMs if you find a data structure in, say, the KVM subsystem that has measurable timing differences based on its state.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zvonkok @lukasmaar