Checking Running and Dormant Virtual Machines for the Necessity of Security Updates in Cloud Environments
作者: Roland Schwarzkopf , Matthias Schmidt , Christian Strack , Bernd Freisleben
关键词:
摘要: A common approach in Infrastructure-as-a-Service Clouds or virtualized Grid computing is to provide virtual machines customers execute their software remotely. While giving full super user permissions eases the installation and use of a customer's software, it may lead security issues. Providers usually delegate task keeping up date customer, while customer expects provider perform this task. Consequently, large number (either running dormant) are not patched against latest vulnerabilities. The presented paper deals with problem by helping users as well providers keep date. Prior update step, crucial know which actually outdated. seems trivial, developing solution that takes care multiple, different repositories identifies correct packages challenging Update Checker outdated machines, even if installed repositories. presents design, implementation an experimental evaluation approach.
sci-hub.se 参考文章(10)
Constantine Sapuntzakis, Nickolai Zeldovich, Mendel Rosenblum, Monica S. Lam, David Brumley, Jim Chow, Ramesh Chandra, Virtual Appliances for Deploying and Maintaining Software usenix large installation systems administration conference. pp. 181- 194 ,(2003)
S. Potter, J. Nieh, AutoPod: Unscheduled System Updates with Zero Data Loss international conference on autonomic computing. pp. 367- 368 ,(2005) , 10.1109/ICAC.2005.16
Douglas Crockford, The application/json Media Type for JavaScript Object Notation (JSON) RFC. ,vol. 4627, pp. 1- 10 ,(2006)
Darrell Reimer, Arun Thomas, Glenn Ammons, Todd Mummert, Bowen Alpern, Vasanth Bala, Opening black boxes Proceedings of the fourth ACM SIGPLAN/SIGOPS international conference on Virtual execution environments - VEE '08. pp. 111- 120 ,(2008) , 10.1145/1346256.1346272
M. Smith, M. Schmidt, N. Fallenbeck, T. Dörnemann, C. Schridde, B. Freisleben, Secure on-demand grid computing Future Generation Computer Systems. ,vol. 25, pp. 315- 325 ,(2009) , 10.1016/J.FUTURE.2008.03.002
Roland Schwarzkopf, Matthias Schmidt, Niels Fallenbeck, Bernd Freisleben, Multi-layered Virtual Machines for Security Updates in Grid Environments software engineering and advanced applications. pp. 563- 570 ,(2009) , 10.1109/SEAA.2009.74
Matei Zaharia, Ariel Rabkin, Michael Armbrust, David A. Patterson, Andrew Konwinski, Anthony D. Joseph, Gunho Lee, Ion Stoica, Randy H. Katz, Armando Fox, Rean Griffith, Above the Clouds: A Berkeley View of Cloud Computing Science. ,vol. 53, pp. 07- 013 ,(2009)
Jinpeng Wei, Xiaolan Zhang, Glenn Ammons, Vasanth Bala, Peng Ning, Managing security of virtual machine images in a cloud environment ieee international conference on cloud computing technology and science. pp. 91- 96 ,(2009) , 10.1145/1655008.1655021
Janna Quitney Anderson, Harrison Rainie, None, The future of cloud computing Pew Internet and American Life Project. ,(2010)
Terrence V. Lillard, Clint P. Garrison, Craig A. Schiller, James Steele, RETRACTED: The Future of Cloud Computing Digital Forensics for Network, Internet, and Cloud Computing. pp. 319- 339 ,(2010) , 10.1016/B978-1-59749-537-0.00012-0