Hardening OpenStack Cloud Platforms against Compute Node Compromises
作者: Wai Kit Sze , Abhinav Srivastava , R. Sekar
关键词: Scalability 、 Security policy 、 Distributed computing 、 Free access 、 Computer science 、 Mandatory access control 、 Computer security 、 Cloud computing 、 Virtual machine
摘要: Infrastructure-as-a-Service (IaaS) clouds such as OpenStack consist of two kinds nodes in their infrastructure: control and compute nodes. While run all critical services, host virtual machines customers. Given the large number nodes, fact that they are hosting VMs (possibly malicious) customers, it is possible some may be compromised. This paper examines impact a compromise. We focus on OpenStack, popular open-source cloud plat- form widely adopted. show attackers com- promising single node can extend controls over entire infrastructure. They then gain free access to resources have not paid for, or even bring down whole affect startling result stems from platform's misplaced trust, which does match today's threats. To overcome weakness, we propose new system, called SOS , for hardening OpenStack. limits trust consists framework enforce wide range security policies. Specifically, applied mandatory capabilities con- fine interactions among different components. Effective confinement policies generated automatically. Furthermore, requires no modifications has allowed us deploy multiple versions Our experimental results demonstrate scalable, incurs negligible overheads offers strong protection.
acm.org
sci-hub.se 参考文章(19)
R. Sekar, An Efficient Black-box Technique for Defeating Web Application Attacks. network and distributed system security symposium. ,(2009)
Abhinav Srivastava, Himanshu Raj, Jonathon Giffin, Paul England, Trusted VM Snapshots in Untrusted Cloud Infrastructures Research in Attacks, Intrusions, and Defenses. pp. 1- 21 ,(2012) , 10.1007/978-3-642-33338-5_1
Peter A. Loscocco, Stephen D. Smalley, Meeting Critical Security Objectives with Security-Enhanced Linux ,(2001)
Sören Bleikertz, Sven Bugiel, Hugo Ideler, Stefan Nürnberger, Ahmad-Reza Sadeghi, Client-controlled cryptography-as-a-service in the cloud applied cryptography and network security. pp. 19- 36 ,(2013) , 10.1007/978-3-642-38980-1_2
Yinqian Zhang, Ari Juels, Michael K. Reiter, Thomas Ristenpart, Cross-VM side channels and their use to extract private keys Proceedings of the 2012 ACM conference on Computer and communications security - CCS '12. pp. 305- 316 ,(2012) , 10.1145/2382196.2382230
Meixing Le, Angelos Stavrou, Brent ByungHoon Kang, DoubleGuard: Detecting Intrusions in Multitier Web Applications IEEE Transactions on Dependable and Secure Computing. ,vol. 9, pp. 512- 525 ,(2012) , 10.1109/TDSC.2011.59
Joshua Schiffman, Yuqiong Sun, Hayawardh Vijayakumar, Trent Jaeger, Cloud Verifier: Verifiable Auditing Service for IaaS Clouds world congress on services. pp. 239- 246 ,(2013) , 10.1109/SERVICES.2013.37
Norm Hardy, The Confused Deputy: (or why capabilities might have been invented) Operating Systems Review. ,vol. 22, pp. 36- 38 ,(1988) , 10.1145/54289.871709
Andrew Brown, Jeffrey S. Chase, Trusted platform-as-a-service Proceedings of the 3rd ACM workshop on Cloud computing security workshop - CCSW '11. pp. 15- 20 ,(2011) , 10.1145/2046660.2046665
R. Sekar, M. Bendre, D. Dhurjati, P. Bollineni, A fast automaton-based method for detecting anomalous program behaviors ieee symposium on security and privacy. pp. 144- 155 ,(2001) , 10.1109/SECPRI.2001.924295