Unikernel-based approach for software-defined security in cloud infrastructures
作者: Maxime Compastie , Remi Badonnel , Olivier Festor , Ruan He , Mohamed Kassi-Lahlou
DOI: 10.1109/NOMS.2018.8406155
关键词: Attack surface 、 Security policy 、 Virtualization 、 Cloud computing 、 Computer science 、 Computer security 、 Overhead (computing) 、 Security management 、 Unikernel 、 Context (language use)
摘要: … The web server implementation is based on the CoHTTP library [31]. It listens for connections on ports 443. The security mechanism configuration is specified through its source code, in …
sci-hub.se 参考文章(24)
Adrian Waller, Ian Sandy, Eamonn Power, Efthimia Aivaloglou, Charalampos Skianis, Antonio Muñoz, Antonio Maña, Policy Based Management for Security in Cloud Computing FTRA International Conference on Secure and Trust Computing, Data Management, and Application. pp. 130- 137 ,(2011) , 10.1007/978-3-642-22365-5_16
Gabi Dreo, Wolfgang Hommel, Mario Golling, Frank Tietze, ICEMAN: An architecture for secure federated inter-cloud identity management integrated network management. pp. 1207- 1210 ,(2013)
Tal Garfinkel, Mendel Rosenblum, A Virtual Machine Introspection Based Architecture for Intrusion Detection. network and distributed system security symposium. ,(2003)
J. Liedtke, On micro-kernel construction symposium on operating systems principles. ,vol. 29, pp. 237- 250 ,(1995) , 10.1145/224056.224075
Luis M. Vaquero, Luis Rodero-Merino, Juan Caceres, Maik Lindner, A break in the clouds ACM SIGCOMM Computer Communication Review. ,vol. 39, pp. 50- 55 ,(2008) , 10.1145/1496091.1496100
Xuxian Jiang, Xinyuan Wang, Dongyan Xu, Stealthy malware detection through vmm-based "out-of-the-box" semantic view reconstruction computer and communications security. pp. 128- 138 ,(2007) , 10.1145/1315245.1315262
D. R. Engler, M. F. Kaashoek, J. O'Toole, Exokernel: an operating system architecture for application-level resource management symposium on operating systems principles. ,vol. 29, pp. 251- 266 ,(1995) , 10.1145/224056.224076
Nadav Har'El, Vlad Zolotarov, Avi Kivity, Dor Laor, Glauber Costa, Don Marti, Pekka Enberg, OS v : optimizing the operating system for virtual machines usenix annual technical conference. pp. 61- 72 ,(2014)
Anil Madhavapeddy, Richard Mortier, Charalampos Rotsos, David Scott, Balraj Singh, Thomas Gazagnaire, Steven Smith, Steven Hand, Jon Crowcroft, Unikernels Proceedings of the eighteenth international conference on Architectural support for programming languages and operating systems - ASPLOS '13. ,vol. 48, pp. 461- 472 ,(2013) , 10.1145/2451116.2451167
Seyed Kaveh Fayazbakhsh, Vyas Sekar, Minlan Yu, Jeffrey C Mogul, None, FlowTags: enforcing network-wide policies in the presence of dynamic middlebox actions acm special interest group on data communication. pp. 19- 24 ,(2013) , 10.1145/2491185.2491203