University of Tokushima
Real-time Virtual Machine (VM) monitoring is now necessary and challenging problem for making ubiquitous virtual machines secure. With the rapid advance of hypervisor such as Xen, Linux KVM and VMWare, VM monitoring technologies have been well developed and researched. However, real-time access monitoring has not been proposed and is still not available, particularly in virtualized Windows OS. In other words, whereas VM status capture and analysis (for example, Volatility) is available, modules are not accessible to monitor resource access on real-time. There are two reasons for the difficulty of real-time monitoring.