ONHelp: Components in Building Secure Cloud Based on OpenNebula

Due to the rapid development of cloud computing, several cloud computing platforms are developed to build cloud for individuals and companies. Open Nebula is known as one of the most popular open-source cloud computing software platforms. However, Open Nebula does not perform effectively in security. Virtual machines face risks of being attacked, which leads to services halt and data loss. We analyze the latest version of Open Nebula as well as some other similar products, and find out some functions are missing in these software platforms which turn out to be essential in secure cloud environment. We present ON Help, security components assisting Open Nebula to build a securer cloud platform, including trustworthiness attestation of computing nodes and VMs, deep monitoring of VMs, service-level fault tolerant service, cloud anti-virus in VMs and secure cloud storage. Our experimental results show that ON Help can be easily deployed with Open Nebula when constructing a cloud computing platform, and it can enhance the stability of cloud service and the security of cloud computing environment.

[1]  Bofeng Zhang,et al.  Comparison of Several Cloud Computing Platforms , 2009, 2009 Second International Symposium on Information Science and Engineering.

[2]  Borja Sotomayor,et al.  Virtual Infrastructure Management in Private and Hybrid Clouds , 2009, IEEE Internet Computing.

[3]  Douglas Thain,et al.  A Comparison and Critique of Eucalyptus, OpenNebula and Nimbus , 2010, 2010 IEEE Second International Conference on Cloud Computing Technology and Science.

[4]  Ian Lumb,et al.  A Taxonomy and Survey of Cloud Computing Systems , 2009, 2009 Fifth International Joint Conference on INC, IMS and IDC.

[5]  Rajkumar Buyya,et al.  Article in Press Future Generation Computer Systems ( ) – Future Generation Computer Systems Cloud Computing and Emerging It Platforms: Vision, Hype, and Reality for Delivering Computing as the 5th Utility , 2022 .

[6]  Lori M. Kaufman,et al.  Data Security in the World of Cloud Computing , 2009, IEEE Security & Privacy.

[7]  Gang Chen,et al.  SHelp: Automatic Self-Healing for Multiple Application Instances in a Virtual Machine Environment , 2010, 2010 IEEE International Conference on Cluster Computing.

[8]  Shishir Garg,et al.  Opening the clouds: qualitative overview of the state-of-the-art open source VM-based cloud management platforms , 2009, Middleware.

[9]  John C. Grundy,et al.  An Analysis of the Cloud Computing Security Problem , 2016, APSEC 2010.

[10]  Stefan Berger,et al.  vTPM: Virtualizing the Trusted Platform Module , 2006, USENIX Security Symposium.

[11]  Borja Sotomayor,et al.  Capacity Leasing in Cloud Systems using the OpenNebula Engine , 2008 .