On-access anti-virus mechanism for virtual machine architecture

Assignee

• VMware LLC · US

Inventors

• Yufeng Zheng · Santa Clara, US
• Xiaoxin Chen · Cupertino, US
• Bich Cau Le · San Jose, US
• Jagannath Gopal Krishnan · Brookline, US
• Derek Uluski · Weymouth, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/566
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A tangible medium embodying instructions usable by a computer system to protect a plurality of guest virtual machines (VMs), which execute via virtualization software on a common host platform, from malicious code is described. A scan engine is configured to scan data for malicious code and determine a result of the scanning, wherein the result indicates whether malicious code is present in the data. A driver portion is configured for installation in an operating system of a target VM, which is one of the guest VMs. The driver portion intercepts an access request to a file, that originates within the target VM. The driver portion communicates information identifying a location of the data to be scanned by the scan engine without sending a copy of the data to the scan engine. The scan engine executes within the virtualization layer outside a context of the target VM.