poster

POSTER: An E2E Trusted Cloud Infrastructure

Authors:

Bo Zhao,

Fei Yan,

Hongxin HuAuthors Info & Claims

CCS '14: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

Pages 1517 - 1519

https://doi.org/10.1145/2660267.2662383

Published: 03 November 2014 Publication History

Get Access

Abstract

In this paper, a framework of end to end (E2E) trusted cloud infrastructure is proposed. On one end of the cloud provider, the trusted chain is extended to VMM and VM by trusted measurement and remote attestation, which can assure the trust of VMM and VM. On another end of the cloud terminal, the trusted mechanism is used to protect the terminal security. For the trust of cloud network, trusted network connect (TNC) is leveraged to protect the security of communication between the loud provider and the cloud terminal. The E2E trusted cloud infrastructure provides an E2E trusted protection for cloud computing. In addition, it can support the Chinese cryptographic algorithm (SMx) based on TPM 2.0.

References

[1]

GARFINKEL T, PFAFF B, CHOW J, et al. Terra: A virtual machine-based platform for trusted computing. ACM SIGOPS Operating Systems Review. ACM, pp. 193--206.

Digital Library

Google Scholar

[2]

IntelCorp. Intel Trusted Execution Technology. http://www.intel.com/technology/security/

Google Scholar

[3]

Intel Corp. Trusted Boot (tboot). http://sourceforge.net/projects/tboot, 2007.

Google Scholar

[4]

AZAB A M, NING Peng, WANG Zhi, et al. HyperSentry: enabling stealthy in-context measurement of hypervisor integrity. Proceedings of the 17th ACM conference on Computer and communications security, ACM, 2010, pp. 38--49.

Digital Library

Google Scholar

[5]

DAI Weiqi, JIN Hai, ZOU Deqing, et al. TEE: a virtual DRTM based execution environment for secure cloud-end computing. In Proceedings of the 17th ACM Conference on Computer and Communications Security (CCS 2010), New York.

Digital Library

Google Scholar

[6]

B. D. Payne, M. Carbone, and W. Lee. Secure and Flexible Monitoring of Virtual Machines. In Proc. of ACSAC'07, 2007.

Crossref

Google Scholar

[7]

SANTOS N, GUMMADI K.P, RODRIGUES R. Towards trusted Cloud Computing. In Proceedings of the 2009 Conference on Hot Topics in Cloud Computing, Hot-Cloud2009. USENIX Association, Berkeley (2009).

Digital Library

Google Scholar

[8]

SCHIFFMAN J, MOYER T, VIJAYAKUMAR H, et al. Seeding Clouds With Trust Anchors. In Proceedings of the, ACM Workshop on Cloud Computing Security, CCSW 2010, pp. 43--46. ACM, New York (2010).

Digital Library

Google Scholar

[9]

ASLAM M, GEHRMANN C, RASMUSSON L, et al. Securely Launching Virtual Machines on Trustworthy Platforms in a Public Cloud - An Enterprise's Perspective. Leymann, F. Ivanov, I. van Sinderen, M.,Shan, T. (eds.) CLOSER,pp. 511--521. SciTePress (2012).

Google Scholar

[10]

PALADI N, GEHRMANN C, ASLAM M, et al. Trusted Launch of Virtual Machine Instances in Public IaaS Environments. T. Kwon, M.-K. Lee, and D. Kwon ( E d s.): ICISC 2012, LNCS 7839, pp.309--323, 2013.

Digital Library

Google Scholar

[11]

Chen Chen, Himanshu Raj, Stefan Saroiu, and Alec Wolman. "cTPM: A Cloud TPM for Cross-Device Trusted Applications", In NSDI, April 2014.

Digital Library

Google Scholar

Cited By

View all

Zhou MRuan SLiu JChen XYang MWang Q(2022)vTPM-SM: An Application Scheme of SM2/SM3/SM4 Algorithms Based on Trusted Computing in Cloud Environment2022 IEEE 15th International Conference on Cloud Computing (CLOUD)10.1109/CLOUD55607.2022.00058(351-356)Online publication date: Jul-2022
https://doi.org/10.1109/CLOUD55607.2022.00058
A. M. Ibrahim FHemayed E(2019)Trusted Cloud Computing Architectures for infrastructure as a serviceComputers and Security10.1016/j.cose.2018.12.01482:C(196-226)Online publication date: 1-May-2019
https://dl.acm.org/doi/10.1016/j.cose.2018.12.014
Hosseinzadeh SSequeiros BInácio PLeppänen V(2019)Recent trends in applying TPM to cloud computingSECURITY AND PRIVACY10.1002/spy2.933:1Online publication date: 28-Nov-2019
https://doi.org/10.1002/spy2.93
Show More Cited By

Index Terms

POSTER: An E2E Trusted Cloud Infrastructure
1. Information systems

Recommendations

Security in container-based virtualization through vTPM
UCC '16: Proceedings of the 9th International Conference on Utility and Cloud Computing

Cloud computing is a wide-spread technology that enables the enterprises to provide services to their customers with a lower cost, higher performance, better availability and scalability. However, privacy and security in cloud computing has always been ...
Cloud Computing Security--Trends and Research Directions
SERVICES '11: Proceedings of the 2011 IEEE World Congress on Services

Cloud Computing is increasingly becoming popular as many enterprise applications and data are moving into cloud platforms. However, a major barrier for cloud adoption is real and perceived lack of security. In this paper, we take a holistic view of ...
Cloud Computing Security: Amazon Web Service
ACCT '15: Proceedings of the 2015 Fifth International Conference on Advanced Computing & Communication Technologies

Cloud Computing is a recently emerged model which is becoming popular among almost all enterprises. It involves the concept of on demand services which means using the cloud resources on demand and we can scale the resources as per demand. Cloud ...

Comments

Information & Contributors

Information

Published In

CCS '14: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

November 2014

1592 pages

ISBN:9781450329576

DOI:10.1145/2660267

General Chair:
Gail-Joon Ahn
Arizona State University, USA
,
Program Chairs:
Moti Yung
Google -- Columbia University, USA
,
Ninghui Li
Purdue University, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 03 November 2014

Check for updates

Author Tags

Qualifiers

Poster

Conference

CCS'14

Sponsor:

SIGSAC

CCS'14: 2014 ACM SIGSAC Conference on Computer and Communications Security

November 3 - 7, 2014

Arizona, Scottsdale, USA

Acceptance Rates

CCS '14 Paper Acceptance Rate 114 of 585 submissions, 19%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
359
Total Downloads

Downloads (Last 12 months)4
Downloads (Last 6 weeks)0

Reflects downloads up to 01 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Zhou MRuan SLiu JChen XYang MWang Q(2022)vTPM-SM: An Application Scheme of SM2/SM3/SM4 Algorithms Based on Trusted Computing in Cloud Environment2022 IEEE 15th International Conference on Cloud Computing (CLOUD)10.1109/CLOUD55607.2022.00058(351-356)Online publication date: Jul-2022
https://doi.org/10.1109/CLOUD55607.2022.00058
A. M. Ibrahim FHemayed E(2019)Trusted Cloud Computing Architectures for infrastructure as a serviceComputers and Security10.1016/j.cose.2018.12.01482:C(196-226)Online publication date: 1-May-2019
https://dl.acm.org/doi/10.1016/j.cose.2018.12.014
Hosseinzadeh SSequeiros BInácio PLeppänen V(2019)Recent trends in applying TPM to cloud computingSECURITY AND PRIVACY10.1002/spy2.933:1Online publication date: 28-Nov-2019
https://doi.org/10.1002/spy2.93
Wang JHong ZZhang YJin Y(2018)Enabling Security-Enhanced Attestation With Intel SGX for Remote Terminal and IoTIEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems10.1109/TCAD.2017.275006737:1(88-96)Online publication date: Jan-2018
https://doi.org/10.1109/TCAD.2017.2750067
Lu DMa JSun CWu QSun ZXi N(2017)Building a Secure Scheme for a Trusted Hardware Sharing EnvironmentIEEE Access10.1109/ACCESS.2017.27031245(20260-20271)Online publication date: 2017
https://doi.org/10.1109/ACCESS.2017.2703124
He XTian J(2017)A Trusted VM Live Migration Protocol in IaaSTrusted Computing and Information Security10.1007/978-981-10-7080-8_4(41-52)Online publication date: 23-Nov-2017
https://doi.org/10.1007/978-981-10-7080-8_4

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Security in container-based virtualization through vTPM

Cloud Computing Security--Trends and Research Directions

Cloud Computing Security: Amazon Web Service

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations