Certicloud: A Novel TPM-based Approach to Ensure Cloud IaaS Security

Bertholon, Benoit; Varrette, Sébastien; Bouvry, Pascal

doi:10.1109/cloud.2011.71

Cited by 43 publications

(30 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In "VerifyMyVM", the hypervisor running on a confirmed host utilizes an imitated TPM to check on-request the uprightness of running VMs. Our approach is in numerous viewpoints like the one in [7] specifically with respect to have validation preceding VM example dispatch. In any case, the approach in [7] requires the client to dependably scramble the VM picture before instantiation, hence confusing picture administration.…”

Section: A Trusted Launchmentioning

confidence: 99%

“…Our approach is in numerous viewpoints like the one in [7] specifically with respect to have validation preceding VM example dispatch. In any case, the approach in [7] requires the client to dependably scramble the VM picture before instantiation, hence confusing picture administration. This keeps occupants from utilizing ware VM pictures offered by the cloud supplier for trusted VM dispatches.…”

Section: A Trusted Launchmentioning

confidence: 99%

“…Besides, the TL convention does not require extra inhabitant collaboration to dispatch the VM on a put stock in have, past the underlying dispatch contentions. Stage authentication before VM dispatch is additionally connected in [7], which presents two conventions -"TPM-based certification of a Remote Resource" (TCRR) and "VerifyMyVM". With TCRR an inhabitant can confirm the trustworthiness of a remote host and build up a confided in channel for promote correspondence.…”

Section: A Trusted Launchmentioning

confidence: 99%

See 2 more Smart Citations

A Security Based Infrastructure for cloud Storage system in terms of Public Data

Rani

2017

IJRASET

View full text Add to dashboard Cite

The framework cloud (IaaS) benefit demonstrate offers enhanced asset flexibility and accessibility, where occupantsprotected from the details of equipment upkeep -lease registering assets to send and work complex frameworks. Substantial scale administrations running on IaaS stages exhibit the practicality of this model; all things considered, numerous associations working on delicate information abstain from moving operations to IaaS stages because of security concerns. In this paper, we portray a system for information and operation security in IaaS, comprising of conventions for a trusted dispatch of virtual machines and space based capacity insurance. We proceed with a broad hypothetical examination with proofs about convention resistance against assaults in the defined risk demonstrate. The conventions enable trust to be set up by remotely bearing witness to have stage configuration before propelling visitor virtual machines and guarantee confidentiality of information in remote stockpiling, with encryption keys kept up outside of the IaaS space. Exhibited exploratory outcomes show the legitimacy and efficiency of the proposed conventions. The structure model was executed on a proving ground working an open electronic wellbeing record framework, demonstrating that the proposed conventions can be incorporated into existing cloud conditions. Index Terms: Security; Cloud Computing; Storage Protection; Trusted Computing. I. INTRODUCTIONCloud computing has progressed from a bold vision to massive deployments in different application spaces. Be that as it may, the unpredictability of innovation hidden distributed computing presents novel security dangers and difficulties. Dangers and relief procedures for the IaaS display have been under concentrated investigation lately [1], [2], [3], [4], while the business has put resources into improved security arrangements and issued best practice suggestions [5]. From an end-client perspective the security of cloud framework suggests obvious trust in the cloud supplier, at times verified by reports of outside examiners. While suppliers may offer security improvements, for example, assurance of information very still, end-clients have restricted or no power over such instruments. There is a reasonable requirement for usable and practical cloud stage security components appropriate for associations that depend on cloud framework. One such system is stage honesty verification for figure has that help the virtualized cloud framework. Sever allarge cloud vendors have signal edpractical implementations of this mechanism, primarily to protect the cloud infrastructure from insider threats and advanced persistent threats. We see two major improvement vectors regarding these implementations. First, details of such proprietary solutions are not disclosed and can thus not be implemented and improved by other cloud platforms. Second, to the best of our knowledge, none of the solutions provides cloud tenants a proof regarding the integrity of compute hosts supporting their slic...

show abstract

Section: A Trusted Launchmentioning

confidence: 99%

Section: A Trusted Launchmentioning

confidence: 99%

Section: A Trusted Launchmentioning

confidence: 99%

See 1 more Smart Citation

A Security Based Infrastructure for cloud Storage system in terms of Public Data

Rani

2017

IJRASET

View full text Add to dashboard Cite

show abstract

“…In [11], present a solution based on Virtual Co-ordinate Network System (VCS) coupled with Global Positioning Networks (GNP) landmarks and RTT measurements. Some related work to TPM, incorporating it in a cloud environment is also present as in [12], [13]. In [14], Dongxi Liu et al presented the concept of virtual TPMs on a cloud platform which shows the possibilities on part of TPM that it can provide and over the period of time become one of the much needed utility just like encryption today, for security purposes.…”

Section: Related Workmentioning

confidence: 99%

Data Location Verification in Cloud Computing

Vaish¹,

Kushwaha²,

Das³

et al. 2013

IJCA

View full text Add to dashboard Cite

Cloud computing has pioneered the area of On-demand services. The customer can choose the resources according to the current needs with the facility of incrementing and decrementing the resources in the future. It generally follows a pay-as-you-use model which has proven beneficial for enterprises and individual users alike. Since the services are hosted over the internet, one of the recent concerns that are rising among the users is about the location of their data. Sometimes it is necessary for the data to stay in a particular jurisdiction. Therefore, it may be required for the organization to verify the location of their data from time to time. Here in this paper we propose a mechanism based on remote attestation technology of trusted platform module. Remote attestation technique is used to validate the current location of the data, and the generated result is passed to the user/verifier. The very fact that the trusted platform module is tamper proof provides the basis for the accuracy of the result.

show abstract

“…The work of building a trust cloud platform as follows: CERTICLOUD [10] proposed two protocols to verify the trustworthiness of cloud: TCRR and Verify MyVM. When the first one asserts the integrity of a remote resource and permits to exchange a private symmetric key, the second authorizes the user to detect trustfully and on demand any tampering attempt on its running VM.…”

Section: Related Workmentioning

confidence: 99%

T-YUN: Trustworthiness Verification and Audit on the Cloud Providers

Liu

Lin

Fang

2013

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYCloud computing is broadly recognized as as the prevalent trend in IT. However, in cloud computing mode, customers lose the direct control of their data and applications hosted by the cloud providers, which leads to the trustworthiness issue of the cloud providers, hindering the widespread use of cloud computing. This paper proposes a trustworthiness verification and audit mechanism on cloud providers called T-YUN. It introduces a trusted third party to cyclically attest the remote clouds, which are instrumented with the trusted chain covering the whole architecture stack. According to the main operations of the clouds, remote verification protocols are also proposed in T-YUN, with a dedicated key management scheme. This paper also implements a proof-of-concept emulator to validate the effectiveness and performance overhead of T-YUN. The experimental results show that T-YUN is effective and the extra overhead incurred by it is acceptable.

show abstract

Certicloud: A Novel TPM-based Approach to Ensure Cloud IaaS Security

Cited by 43 publications

References 4 publications

A Security Based Infrastructure for cloud Storage system in terms of Public Data

A Security Based Infrastructure for cloud Storage system in terms of Public Data

Data Location Verification in Cloud Computing

T-YUN: Trustworthiness Verification and Audit on the Cloud Providers

Contact Info

Product

Resources

About