TY - GEN
T1 - Effectively auditing IaaS cloud servers
AU - Wang, Chunlu
AU - Liu, Chuanyi
AU - Wang, Xiaoliang
AU - Dong, Yingfei
PY - 2013
Y1 - 2013
N2 - Cloud computing is broadly recognized as one of major factors in achieving more flexible, scalable, and efficient systems. However, as customers lose the direct control of their data and applications hosted by cloud providers, the trustworthiness of cloud services is a main issue that hinders the deployment of cloud applications. In this paper, we have developed a novel framework to detect compromises on physical servers in cloud services, via remote attestation with a Trusted Third Party (TTP). Furthermore, to avoid the TTP becoming a bottleneck, we have designed a cloud based TTP platform, using a small private cloud to audit large clouds. We have implemented a prototype system, and evaluated it with several common benchmarks to demonstrate its efficiency. Our experimental results show that the proposed framework is effective in detecting compromise and adds little overhead to a common IaaS cloud environment.
AB - Cloud computing is broadly recognized as one of major factors in achieving more flexible, scalable, and efficient systems. However, as customers lose the direct control of their data and applications hosted by cloud providers, the trustworthiness of cloud services is a main issue that hinders the deployment of cloud applications. In this paper, we have developed a novel framework to detect compromises on physical servers in cloud services, via remote attestation with a Trusted Third Party (TTP). Furthermore, to avoid the TTP becoming a bottleneck, we have designed a cloud based TTP platform, using a small private cloud to audit large clouds. We have implemented a prototype system, and evaluated it with several common benchmarks to demonstrate its efficiency. Our experimental results show that the proposed framework is effective in detecting compromise and adds little overhead to a common IaaS cloud environment.
KW - Audit
KW - Cloud Computing
KW - Remote Attestation
KW - Trusted Cloud
KW - Trustworthiness
UR - https://www.scopus.com/pages/publications/84904108870
U2 - 10.1109/GLOCOM.2013.6831151
DO - 10.1109/GLOCOM.2013.6831151
M3 - 会议稿件
AN - SCOPUS:84904108870
SN - 9781479913534
SN - 9781479913534
T3 - Proceedings - IEEE Global Communications Conference, GLOBECOM
SP - 682
EP - 688
BT - 2013 IEEE Global Communications Conference, GLOBECOM 2013
T2 - 2013 IEEE Global Communications Conference, GLOBECOM 2013
Y2 - 9 December 2013 through 13 December 2013
ER -