Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas...
Transcript of Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas...
![Page 1: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/1.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Seeding Clouds with Trust Anchors
Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar,
Trent Jaeger, and Patrick McDanielCCSW ’10
1Saturday, October 16, 2010
![Page 2: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/2.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Hurdles to Cloud Adoption
• Clouds offer customers a platform for on-demand resources and reduced administrative effort
• However, fears of data loss and security breaches have stifled adoption by many businesses
• We propose increasing the transparency of cloud platforms to build trust in them
2Saturday, October 16, 2010
![Page 3: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/3.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
Dom0
Xen
Saturday, October 16, 2010
![Page 4: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/4.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomUDom0
Xen
Saturday, October 16, 2010
![Page 5: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/5.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
Saturday, October 16, 2010
![Page 6: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/6.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
XenXen
Saturday, October 16, 2010
![Page 7: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/7.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
Dom0
Xen
Saturday, October 16, 2010
![Page 8: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/8.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
Saturday, October 16, 2010
![Page 9: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/9.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU
Saturday, October 16, 2010
![Page 10: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/10.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 11: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/11.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 12: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/12.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 13: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/13.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 14: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/14.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 15: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/15.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
• Customers are concerned with:
‣ Host and VM integrity
‣ VM isolation / protection
‣ Data leakage
• Need to verify integrity of those components
Uncertainty in Clouds
3
DomU DomUDom0
Xen
DomU DomU
Saturday, October 16, 2010
![Page 16: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/16.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud support for proofs
• Clouds offer a unique administrative environment for integrity measurement
‣ Physical security, internal PKI, consistent components
‣ Centralized administration over many systems
• Focus on using hardened / proven components
‣ Assured hypervisors (e.g., SEL4) and code
‣ Verifiable enforcement policies
4Saturday, October 16, 2010
![Page 17: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/17.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud Verifier• We propose a Cloud Verifier (CV) mechanism to
enable verification of cloud platforms by proxy
‣ Verifiable component in the cloud
‣ Monitors the integrity of VM hosts using a public integrity criteria
5
CV
NodeController
NodeController
NodeController
Saturday, October 16, 2010
![Page 18: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/18.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud Verifier• We propose a Cloud Verifier (CV) mechanism to
enable verification of cloud platforms by proxy
‣ Verifiable component in the cloud
‣ Monitors the integrity of VM hosts using a public integrity criteria
5
CV
NodeController
NodeController
NodeController
Saturday, October 16, 2010
![Page 19: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/19.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud Verifier• We propose a Cloud Verifier (CV) mechanism to
enable verification of cloud platforms by proxy
‣ Verifiable component in the cloud
‣ Monitors the integrity of VM hosts using a public integrity criteria
5
CV
NodeController
NodeController
NodeController
Saturday, October 16, 2010
![Page 20: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/20.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud Verifier• We propose a Cloud Verifier (CV) mechanism to
enable verification of cloud platforms by proxy
‣ Verifiable component in the cloud
‣ Monitors the integrity of VM hosts using a public integrity criteria
5
CV
NodeController
NodeController
NodeController
Saturday, October 16, 2010
![Page 21: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/21.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Cloud Verifier• We propose a Cloud Verifier (CV) mechanism to
enable verification of cloud platforms by proxy
‣ Verifiable component in the cloud
‣ Monitors the integrity of VM hosts using a public integrity criteria
5
CV
NodeController
NodeController
NodeController
IntegrityCriteria
Saturday, October 16, 2010
![Page 22: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/22.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeController
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 23: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/23.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 24: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/24.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 25: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/25.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 26: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/26.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Generate VM key pair
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 27: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/27.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Generate VM key pair
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 28: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/28.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Sign public key
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 29: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/29.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 30: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/30.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Get VM key
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 31: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/31.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 32: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/32.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
Verifies CVand criteria
VM
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 33: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/33.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 34: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/34.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Form authenticatedconnection
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 35: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/35.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Customers using the CV
6
CV NodeControllerVerifies Integrity
VM
Form authenticatedconnection
Authorizeaccess
• CV then vouches for integrity of a VM’s host using a signed public key
Storage
Saturday, October 16, 2010
![Page 36: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/36.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Transparency Challenges
• How can customers verify these proofs?
‣ Custom distributions
‣ Copious amount of details and systems
• How can this be done efficiently?
‣ Clouds operate at Internet scale
‣ Commodity trusted hardware is slow
7Saturday, October 16, 2010
![Page 37: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/37.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Integrity Criteria
• Current integrity measurement approaches are very system configuration specific
‣ Difficult to assess arbitrary data and custom code
‣ Resolution of measurement is often insufficient
• Require an integrity criteria that focuses on integrity properties achieved by a system
‣ Establish a verifiable origin for data
‣ Leverage enforcement to minimize measurements
‣ Enable verifiers to compare requirements
8Saturday, October 16, 2010
![Page 38: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/38.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Performance
• Constructed a testbed using Eucalyptus
‣ Configured nodes using network-based ROTI installation
• Attestations take ~1 second to produce
• CV generates asynchronous attestations
‣ Using an attested time server to provide nonces
‣ Handle over 7,000 requests per second
9Saturday, October 16, 2010
![Page 39: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/39.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Further Challenges
• CV Scalability
• Enforcing customer security requirements
• Key revocation and remediation
10Saturday, October 16, 2010
![Page 40: Seeding Clouds with Trust Anchors · Seeding Clouds with Trust Anchors Joshua Schiffman, Thomas Moyer, Hayawardh Vijayakuamar, Trent Jaeger, and Patrick McDaniel CCSW ’10 1 Saturday,](https://reader033.fdocuments.net/reader033/viewer/2022050517/5fa100d75aa72a5804780430/html5/thumbnails/40.jpg)
Systems and Internet Infrastructure Security Laboratory (SIIS) Page
Questions?
11
Joshua Schiffman ([email protected])
http://www.joshschiffman.org/
SIIS Laboratory (http://siis.cse.psu.edu)
Saturday, October 16, 2010