Sciweavers

ICAC
2009
IEEE

Out-of-band detection of boot-sequence termination events

14 years 7 months ago
Out-of-band detection of boot-sequence termination events
The popularization of both virtualization and CDP technologies mean that we can now watch disk accesses of systems from entities which are not controlled by the OS. This is a rich source of information about the system’s inner workings. In this paper, we explore one way of mining the stream of data, to determine if the system had finished booting. Systems which we detect as failing to boot (or taking too long to boot) are flagged for further manual or automatic remediation. By performing this detection out-of-band, we gain a head start on any detection scheme that runs within the OS, and therefore must wait for the boot event to finish. Additionally, our scheme is agnostic to file-system layout and to kernel architecture. We implemented our solution for the x86 architecture under two different virtualization platforms, and tested it on both Windows and Linux virtual machines. Under a variety of workloads and configurations, our detector managed to successfully identify the boo...
Naama Parush, Dan Pelleg, Muli Ben-Yehuda, Paula T
Added 21 May 2010
Updated 21 May 2010
Type Conference
Year 2009
Where ICAC
Authors Naama Parush, Dan Pelleg, Muli Ben-Yehuda, Paula Ta-Shma
Comments (0)