论文信息 - Experimental Proof: Data Remanence in Cloud VMs

Experimental Proof: Data Remanence in Cloud VMs

Data security is one of the main concerns organizations have when implementing cloud computing. In particular, data leakage issues in public clouds have been widely studied. Data remanence is considered a major threat, as residual data may include sensitive information like user names, passwords, encryption keys, URLS, etc. However, until now little if any experimental evidence has been put forward supporting the existence and extent of such threat in commercial cloud VMs. In this paper, we provide experimental proof of the remanence of data in VM memory and hard disk. Our experimental design is repeatable and suitable for inclusion in assurance testing and certification suites.

Ernesto Damiani | Khaled Salah | Bushra AlBelooshi | Thomas Martin

[1] virtualization.info 日本語,et al. 白書：Understanding Memory Resource Management in VMware ESX 4.1（20100719-3） , 2010 .

[2] Peter Kulchyski. and , 2015 .

[3] A WaldspurgerCarl. Memory resource management in VMware ESX server , 2002 .

[4] Alan T. Sherman,et al. Acquiring forensic evidence from infrastructure-as-a-service cloud computing: Exploring and evaluating tools, trust, and techniques , 2012, Digit. Investig..

[5] Ernesto Damiani,et al. Towards the Certification of Cloud Services , 2013, 2013 IEEE Ninth World Congress on Services.

[6] Brian D. Carrier,et al. File System Forensic Analysis , 2005 .

[7] Xiaoyun Zhu,et al. Memory overbooking and dynamic control of Xen virtual machines in consolidated environments , 2009, 2009 IFIP/IEEE International Symposium on Integrated Network Management.

[8] Xen* Hypervisor Case Study - Designing Embedded Virtualized Intel ® Architecture Platforms Executive Summary Xen* Hypervisor Case Study - Designing Embedded Virtualized Intel® Architecture Platforms Contents , .

[9] P. Mell,et al. The NIST Definition of Cloud Computing , 2011 .