• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Concurrency and Computation >Building dynamic and transparent integrity measurement and protection for virtualized platform in cloud computing
【24h】

Building dynamic and transparent integrity measurement and protection for virtualized platform in cloud computing

机译:为云计算中的虚拟化平台构建动态透明的完整性度量和保护

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

In the cloud computing infrastructure, there is an increasing demand to maintain and verify the integrity of software stacks running on remote systems and protect users' sensitive data. However, due to the fact that software stacks running on cloud platforms are usually provided and maintained by different authorities (or providers) who are potentially untrusting to each other, the problem of measuring and protecting runtime system integrity becomes very challenging and has not been well addressed yet. In this paper, we present an integrity measurement and protection architecture for software stacks running on a guest operating system (OS) of a virtualized platform in cloud environment. Our solution does not change the guest OS, and thus is transparent to the OS authority. Furthermore, our architecture ensures that sensitive information of users is protected once the integrity of software stacks is broken during runtime. We implement our solution on Xen, and present a simple prototype-based Nimbus. We demonstrate the capability of dynamically detecting the integrity change of programs in cloud computing, and our evaluation results show that the solution is effective for integrity protection with acceptable performance overhead.
机译:在云计算基础架构中,维护和验证在远程系统上运行的软件堆栈的完整性并保护用户的敏感数据的需求不断增长。但是,由于通常在云平台上运行的软件堆栈通常是由可能互不信任的不同机构(或提供者)提供和维护的,因此衡量和保护运行时系统完整性的问题变得非常具有挑战性,并非一帆风顺解决了。在本文中,我们为在云环境中虚拟化平台的来宾操作系统(OS)上运行的软件堆栈提供了完整性度量和保护体系结构。我们的解决方案不会更改访客操作系统,因此对操作系统授权是透明的。此外,我们的体系结构可确保在运行期间破坏软件堆栈的完整性后,可以保护用户的敏感信息。我们在Xen上实现我们的解决方案,并提出了一个基于原型的简单Nimbus。我们展示了动态检测云计算中程序完整性变化的能力,我们的评估结果表明该解决方案对于具有可接受性能开销的完整性保护是有效的。

著录项

  • 来源
    《Concurrency and Computation》 |2010年第13期|P.1893-1910|共18页
  • 作者

    Ge Cheng; rnHai Jin; rnDeqing Zou; rnXinwen Zhang;

  • 作者单位

    Services Computing Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan 430074, People's Republic of China;

    rnServices Computing Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan 430074, People's Republic of China;

    rnServices Computing Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan 430074, People's Republic of China;

    rnComputer Science Lab, Samsung Information Systems America, San Jose, CA, U.S.A.;

  • 收录信息
  • 原文格式 PDF
  • 正文语种 eng
  • 中图分类
  • 关键词

    integrity measurement; integrity protection; trusted computing; cloud computing; authority;

    机译:完整性测量;完整性保护;可信计算;云计算;权威;

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号