Download: PDF.
“Seeding Clouds with Trust Anchors” by Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakumar, Trent Jaeger, and Patrick McDaniel. In CCSW '10: Proceedings of the 2010 ACM Workshop on Cloud Computing Security, 2010.
Abstract
Customers with security-critical data processing needs are beginning to push back strongly against using cloud computing. Cloud vendors run their computations upon cloud provided VM systems, but customers are worried such host systems may not be able to protect themselves from attack, ensure isolation of customer processing, or load customer processing correctly. To provide assurance of data processing protection in clouds to customers, we advocate methods to improve cloud transparency using hardware-based attestation mechanisms. We find that the centralized management of cloud data centers is ideal for attestation frameworks, enabling the development of a practical approach for customers to trust in the cloud platform. Specifically, we propose a cloud verifier service that generates integrity proofs for customers to verify the integrity and access control enforcement abilities of the cloud platform that protect the integrity of customer’s application VMs in IaaS clouds. While a cloud-wide verifier service could present a significant system bottleneck, we demonstrate that aggregating proofs enables significant overhead reductions. As a result, transparency of data security protection can be verified at cloud-scale.
Download: PDF.
BibTeX entry:
@inproceedings{ccsw10-schiffman,
author = {Joshua Schiffman and Thomas Moyer and Hayawardh Vijayakumar
and Trent Jaeger and Patrick McDaniel},
title = {{Seeding Clouds with Trust Anchors}},
booktitle = {CCSW '10: Proceedings of the 2010 ACM Workshop on Cloud
Computing Security},
publisher = {ACM},
year = {2010}
}
(This webpage was created with bibtex2web.)
Back to Trent Jaeger's Publications.