论文信息 - Covert Channels Implementation and Detection in Virtual Environments

Covert Channels Implementation and Detection in Virtual Environments

It can be said that a system is as secure as its most insecure component. Since the most important component of Cloud is virtualization, breaking it would mean breaking the Cloud. This is what covert channels are capable of “Covert channels” represent a concept as actual as it is old; they make use of shared resources, or even the network, to send confidential information. They are difficult to detect, especially since nowadays servers host thousands of virtual machines. However, this is not impossible. This paper demonstrates that covert channels, although a real threat to the Cloud, may still be detected with high accuracy. We also present in depth a way in which data can be transmitted between virtual machines, using the CPU load-based technique.

Catalin Leordeanu | Alecsandru Patrascu | Irina Mihai

[1] Barrie Sosinsky,et al. Cloud Computing Bible , 2010 .

[2] Patrick F. Dunn,et al. Measurement and Data Analysis for Engineering and Science , 2017 .

[3] Rajkumar Buyya,et al. High Performance Cluster Computing , 1999 .

[4] Tim Mather,et al. Cloud Security and Privacy - An Enterprise Perspective on Risks and Compliance , 2009, Theory in practice.

[5] Butler W. Lampson,et al. A note on the confinement problem , 1973, CACM.

[6] Rajeswari Goudar,et al. Covert Channels:" Emerged in mystery and departed in confusion" , 2011 .

[7] Steven J. Murdoch,et al. Internet Censorship and Control [Guest editors' introduction] , 2013, IEEE Internet Comput..

[8] Yongji Wang,et al. C2Detector: a covert channel detection framework in cloud computing , 2014, Secur. Commun. Networks.

[9] Luis Rodero-Merino,et al. A break in the clouds: towards a cloud definition , 2008, CCRV.

[10] Barrie Sosinsky. Cloud Computing Bible: Sosinsky/Cloud , 2010 .