Trusted Launch of Virtual Machine Instances in Public IaaS Environments
Number of Authors: 4
2013 (English)In: Lecture Notes in Computer Science, Vol. 7839, 309-323 p.Article in journal (Refereed) Published
Cloud computing and Infrastructure-as-a-Service (IaaS) are emerging and promising technologies, however their adoption is hampered by data security concerns. At the same time, Trusted Computing (TC) is experiencing an increasing interest as a security mechanism for IaaS. In this paper we present a protocol to ensure the launch of a virtual machine (VM) instance on a trusted remote compute host. Relying on Trusted Platform Module operations such as binding and sealing to provide integrity guarantees for clients that require a trusted VM launch, we have designed a trusted launch protocol for VM instances in public IaaS environments. We also present a proof-of-concept implementation of the protocol based on OpenStack, an open-source IaaS platform. The results provide a basis for the use of TC mechanisms within IaaS platforms and pave the way for a wider applicability of TC to IaaS security.
Place, publisher, year, edition, pages
Springer , 2013, 15. Vol. 7839, 309-323 p.
IaaS, security, trusted computing, trusted virtual machine launch, OpenStack
Computer and Information Science
IdentifiersURN: urn:nbn:se:ri:diva-24153OAI: oai:DiVA.org:ri-24153DiVA: diva2:1043232
ProjectsTESPEVTrustworthy Networked Platforms