Trusted Launch of Virtual Machine Instances in Public IaaS Environments

Paladi, Nicolae and Gehrmann, Christian and Aslam, Mudassar and Morenius, Fredric (2013) Trusted Launch of Virtual Machine Instances in Public IaaS Environments. In: 15th Annual International Conference on Information Security and Cryptology, 28-30 Nov 2012, Seoul, Korea. (In Press)

This is the latest version of this item.



Cloud computing and Infrastructure-as-a-Service (IaaS) are emerging and promising technologies, however their adoption is hampered by data security concerns. At the same time, Trusted Computing (TC) is experiencing an increasing interest as a security mechanism for IaaS. In this paper we present a protocol to ensure the launch of a virtual machine (VM) instance on a trusted remote compute host. Relying on Trusted Platform Module operations such as binding and sealing to provide integrity guarantees for clients that require a trusted VM launch, we have designed a trusted launch protocol for VM instances in public IaaS environments. We also present a proof-of-concept implementation of the protocol based on OpenStack, an open-source IaaS platform. The results provide a basis for the use of TC mechanisms within IaaS platforms and pave the way for a wider applicability of TC to IaaS security.

Item Type:Conference or Workshop Item (Paper)
Additional Information:"The original publication is available at"
Uncontrolled Keywords:IaaS, security, trusted computing, trusted virtual machine launch, OpenStack
ID Code:5608
Deposited By:Nicolae Paladi
Deposited On:10 Dec 2013 14:17
Last Modified:10 Dec 2013 14:17

Repository Staff Only: item control page