TVPDc: A Model for Secure Managing Virtual Infrastructure in IaaS Cloud

We introduce a model for secure managing virtual infrastructure in IaaS Cloud which called Trusted Private Virtual Data center (TVPDc). It can offer centralized management of the computing and storage resources distributed in different locations and physical machines within an IaaS cloud. Additionally, we propose a hierarchical management framework and a TVPDc establishment and deployment protocol for the security architecture. The TVPDc model leverages trusted computing technology and develops to address the need for privacy protection and data security guarantees to enhance systems management capabilities in virtualized environments.

[1]  Dhananjay S. Phatak,et al.  Building trust into utility cloud computing , 2010 .

[2]  Stefan Berger,et al.  vTPM: Virtualizing the Trusted Platform Module , 2006, USENIX Security Symposium.

[3]  Ahmad-Reza Sadeghi,et al.  Trusted virtual domains: Color your network , 2010, Datenschutz und Datensicherheit - DuD.

[4]  Michiharu Kudo,et al.  Towards Multi – Layer Trusted Virtual Domains , 2006 .

[5]  Claudia Eckert,et al.  Enhancing Trusted Platform Modules with Hardware-Based Virtualization Techniques , 2008, 2008 Second International Conference on Emerging Security Information, Systems and Technologies.

[6]  Bernhard Jansen,et al.  Trusted Virtual Domains: Secure Foundations for Business and IT Services , 2005 .

[7]  Ahmad-Reza Sadeghi,et al.  Property-based attestation for computing platforms: caring about properties, not mechanisms , 2004, NSPW '04.

[8]  Stefan Berger,et al.  TVDc: managing security in the trusted virtual datacenter , 2008, OPSR.

[9]  Stefan Berger,et al.  Building a MAC-based security architecture for the Xen open-source hypervisor , 2005, 21st Annual Computer Security Applications Conference (ACSAC'05).

[10]  Trent Jaeger,et al.  Design and Implementation of a TCG-based Integrity Measurement Architecture , 2004, USENIX Security Symposium.

[11]  Paul England,et al.  Para-Virtualized TPM Sharing , 2008, TRUST.

[12]  Ahmad-Reza Sadeghi,et al.  Transparent Mobile Storage Protection in Trusted Virtual Domains , 2009, LISA.

[13]  Trent Jaeger,et al.  Trusted virtual domains: toward secure distributed services , 2005 .

[14]  Robert P. Goldberg,et al.  Survey of virtual machine research , 1974, Computer.

[15]  Ahmad-Reza Sadeghi,et al.  Flexible and secure enterprise rights management based on trusted virtual domains , 2008, STC '08.

[16]  Dalit Naor,et al.  Capability based Secure Access Control to Networked Storage Devices , 2007, 24th IEEE Conference on Mass Storage Systems and Technologies (MSST 2007).

[17]  M. Schunter,et al.  Property Attestation — Scalable and Privacy-friendly Security Assessment of Peer Computers , 2004 .

[18]  R. P. Goldberg,et al.  Virtual Machine Technology: A Bridge From Large Mainframes To Networks Of Small Computers , 1979 .