Institutional Repository
| xenpump: a new method to mitigate timing channel in cloud computing | |
| Wu Jingzheng; Ding Liping; Lin Yuqi; Min-Allah Nasro; Wang Yongji | |
| 2012 | |
| 会议名称 | 2012 IEEE 5th International Conference on Cloud Computing, CLOUD 2012 |
| 会议录名称 | Proceedings - 2012 IEEE 5th International Conference on Cloud Computing, CLOUD 2012 |
| 页码 | 678-685 |
| 会议日期 | June 24, 2012 - June 29, 2012 |
| 会议地点 | Honolulu, HI, United states |
| 收录类别 | EI |
| ISBN | 9780769547558 |
| 部门归属 | (1) National Engineering Research Center for Fundamental Software Institute of Software Beijing China; (2) State Key Laboratory of Computer Sciences Institute of Software Beijing China; (3) Graduate School Chinese Academy of Sciences Beijing China; (4) COMSATS Institute of Information Technology Islamabad Pakistan |
| 摘要 | Cloud computing security has become the focus in information security, where much attention has been drawn to the user privacy leakage. Although isolation and some other security policies have been provided to protect the security of cloud computing, confidential information can be still stolen by timing channels without being detected. In this paper, a new method named XenPump is presented aiming to mitigate the threat of the timing channels by adding latency. XenPump is designed as a module located in hypervisor, monitoring the hypercalls used by the timing channels and adding latencies to lower the threat into an acceptable level. The prototype of XenPump has been implemented in Xen virtualization platform, and the performance is evaluated by the shared memory based timing channel. The experiment results show that XenPump can mitigate the threat of the timing channel by interrupting both the capacity and transmission accuracy. It is believed that after small extension, XenPump can mitigate the incoming timing channels. © 2012 IEEE.; Cloud computing security has become the focus in information security, where much attention has been drawn to the user privacy leakage. Although isolation and some other security policies have been provided to protect the security of cloud computing, confidential information can be still stolen by timing channels without being detected. In this paper, a new method named XenPump is presented aiming to mitigate the threat of the timing channels by adding latency. XenPump is designed as a module located in hypervisor, monitoring the hypercalls used by the timing channels and adding latencies to lower the threat into an acceptable level. The prototype of XenPump has been implemented in Xen virtualization platform, and the performance is evaluated by the shared memory based timing channel. The experiment results show that XenPump can mitigate the threat of the timing channel by interrupting both the capacity and transmission accuracy. It is believed that after small extension, XenPump can mitigate the incoming timing channels. © 2012 IEEE. |
| 关键词 | Security Of Data Virtual Reality |
| 主办者 | IEEE; IEEE Computer Society; TC-SVC; IBM; SAP |
| 语种 | 英语 |
| 内容类型 | 会议论文 |
| URI标识 | http://ir.iscas.ac.cn/handle/311060/15753 |
| 专题 | 中国科学院软件研究所 |
| 推荐引用方式 GB/T 7714 | Wu Jingzheng,Ding Liping,Lin Yuqi,et al. xenpump: a new method to mitigate timing channel in cloud computing[C],2012:678-685. |
| 条目包含的文件 | 条目无相关文件。 | |||||
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论